efecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xe}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3304.435869][T27065] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3304.443838][T27065] R13: 00007ffd99893f3f R14: 00007f1214e239c0 R15: 000000000118bf2c [ 3304.487460][T27068] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3304.528173][T27068] CPU: 0 PID: 27068 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3304.537041][T27068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3304.547091][T27068] Call Trace: [ 3304.550391][T27068] dump_stack+0x107/0x163 [ 3304.554730][T27068] sysfs_warn_dup.cold+0x1c/0x29 [ 3304.559705][T27068] sysfs_do_create_link_sd+0x11e/0x140 [ 3304.565186][T27068] sysfs_create_link+0x5f/0xc0 [ 3304.570098][T27068] device_add+0x79a/0x1ce0 [ 3304.574526][T27068] ? devlink_add_symlinks+0x450/0x450 [ 3304.580503][T27068] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3304.586496][T27068] wiphy_register+0x1dfc/0x2900 [ 3304.591366][T27068] ? wiphy_unregister+0xbb0/0xbb0 [ 3304.596401][T27068] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3304.602596][T27068] ieee80211_register_hw+0x1b0f/0x3b00 [ 3304.608223][T27068] ? ieee80211_restart_hw+0x290/0x290 [ 3304.614258][T27068] ? debug_object_destroy+0x210/0x210 [ 3304.619633][T27068] ? memset+0x20/0x40 [ 3304.623615][T27068] ? __hrtimer_init+0x136/0x280 15:52:48 executing program 1: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}, 0x2, [0x6, 0x0, 0x4, 0x1, 0x7ff, 0x7fff, 0x8, 0x1]}, 0x5c) [ 3304.628473][T27068] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3304.634372][T27068] ? hwsim_virtio_rx_work+0x350/0x350 [ 3304.639739][T27068] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3304.645289][T27068] ? memcpy+0x39/0x60 [ 3304.649282][T27068] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3304.654959][T27068] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3304.660860][T27068] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3304.668220][T27068] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3304.675514][T27068] genl_family_rcv_msg_doit+0x228/0x320 [ 3304.681066][T27068] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3304.688443][T27068] ? ns_capable+0xde/0x100 [ 3304.693358][T27068] genl_rcv_msg+0x328/0x580 [ 3304.697866][T27068] ? genl_get_cmd+0x480/0x480 [ 3304.702586][T27068] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3304.708995][T27068] ? lock_release+0x710/0x710 [ 3304.714329][T27068] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3304.720385][T27068] netlink_rcv_skb+0x153/0x420 [ 3304.725827][T27068] ? genl_get_cmd+0x480/0x480 [ 3304.730533][T27068] ? netlink_ack+0xaa0/0xaa0 [ 3304.735643][T27068] genl_rcv+0x24/0x40 [ 3304.739647][T27068] netlink_unicast+0x533/0x7d0 [ 3304.744427][T27068] ? netlink_attachskb+0x810/0x810 [ 3304.749551][T27068] ? __phys_addr_symbol+0x2c/0x70 [ 3304.754582][T27068] ? __check_object_size+0x171/0x3f0 [ 3304.759870][T27068] netlink_sendmsg+0x856/0xd90 [ 3304.764636][T27068] ? netlink_unicast+0x7d0/0x7d0 [ 3304.769579][T27068] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3304.774871][T27068] ? netlink_unicast+0x7d0/0x7d0 [ 3304.780396][T27068] sock_sendmsg+0xcf/0x120 [ 3304.785507][T27068] ____sys_sendmsg+0x6e8/0x810 [ 3304.790885][T27068] ? kernel_sendmsg+0x50/0x50 [ 3304.795561][T27068] ? do_recvmmsg+0x6c0/0x6c0 [ 3304.800159][T27068] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3304.806143][T27068] ___sys_sendmsg+0xf3/0x170 [ 3304.810729][T27068] ? sendmsg_copy_msghdr+0x160/0x160 [ 3304.816388][T27068] ? __fget_files+0x272/0x400 [ 3304.821606][T27068] ? lock_downgrade+0x6d0/0x6d0 [ 3304.826454][T27068] ? find_held_lock+0x2d/0x110 [ 3304.831257][T27068] ? __fget_files+0x294/0x400 [ 3304.835949][T27068] ? __fget_light+0xea/0x280 [ 3304.840606][T27068] __sys_sendmsg+0xe5/0x1b0 [ 3304.845108][T27068] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3304.850783][T27068] ? __do_sys_futex+0x2a2/0x470 [ 3304.855658][T27068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3304.861557][T27068] do_syscall_64+0x2d/0x70 [ 3304.865999][T27068] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3304.871884][T27068] RIP: 0033:0x45deb9 [ 3304.876217][T27068] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3304.896396][T27068] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3304.905372][T27068] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3304.914153][T27068] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3304.922340][T27068] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3304.930839][T27068] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3304.939696][T27068] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3304.968184][T27099] IPVS: ftp: loaded support on port[0] = 21 [ 3305.014472][T27078] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3305.067038][T27078] CPU: 1 PID: 27078 Comm: syz-executor.2 Not tainted 5.10.0-rc4-syzkaller #0 [ 3305.075813][T27078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3305.085874][T27078] Call Trace: [ 3305.089177][T27078] dump_stack+0x107/0x163 [ 3305.093515][T27078] sysfs_warn_dup.cold+0x1c/0x29 [ 3305.098486][T27078] sysfs_do_create_link_sd+0x11e/0x140 [ 3305.103956][T27078] sysfs_create_link+0x5f/0xc0 [ 3305.108729][T27078] device_add+0x79a/0x1ce0 [ 3305.113150][T27078] ? devlink_add_symlinks+0x450/0x450 [ 3305.118527][T27078] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3305.124515][T27078] wiphy_register+0x1dfc/0x2900 [ 3305.129378][T27078] ? wiphy_unregister+0xbb0/0xbb0 [ 3305.134413][T27078] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3305.140486][T27078] ieee80211_register_hw+0x1b0f/0x3b00 [ 3305.145971][T27078] ? ieee80211_restart_hw+0x290/0x290 [ 3305.151361][T27078] ? debug_object_destroy+0x210/0x210 [ 3305.156741][T27078] ? memset+0x20/0x40 [ 3305.160814][T27078] ? __hrtimer_init+0x136/0x280 [ 3305.165672][T27078] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3305.171410][T27078] ? hwsim_virtio_rx_work+0x350/0x350 [ 3305.176780][T27078] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3305.182326][T27078] ? memcpy+0x39/0x60 [ 3305.186322][T27078] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3305.191438][T27078] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3305.197345][T27078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3305.204711][T27078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3305.212000][T27078] genl_family_rcv_msg_doit+0x228/0x320 [ 3305.217548][T27078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3305.224932][T27078] ? ns_capable+0xde/0x100 [ 3305.229380][T27078] genl_rcv_msg+0x328/0x580 [ 3305.233887][T27078] ? genl_get_cmd+0x480/0x480 [ 3305.238565][T27078] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3305.244460][T27078] ? lock_release+0x710/0x710 [ 3305.249154][T27078] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3305.254439][T27078] netlink_rcv_skb+0x153/0x420 [ 3305.259197][T27078] ? genl_get_cmd+0x480/0x480 [ 3305.263873][T27078] ? netlink_ack+0xaa0/0xaa0 [ 3305.268983][T27078] genl_rcv+0x24/0x40 [ 3305.273655][T27078] netlink_unicast+0x533/0x7d0 [ 3305.278951][T27078] ? netlink_attachskb+0x810/0x810 [ 3305.284072][T27078] ? __phys_addr_symbol+0x2c/0x70 [ 3305.289402][T27078] ? __check_object_size+0x171/0x3f0 [ 3305.294988][T27078] netlink_sendmsg+0x856/0xd90 [ 3305.300292][T27078] ? netlink_unicast+0x7d0/0x7d0 [ 3305.305245][T27078] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3305.310648][T27078] ? netlink_unicast+0x7d0/0x7d0 [ 3305.315867][T27078] sock_sendmsg+0xcf/0x120 [ 3305.320779][T27078] ____sys_sendmsg+0x6e8/0x810 [ 3305.325549][T27078] ? kernel_sendmsg+0x50/0x50 [ 3305.330474][T27078] ? do_recvmmsg+0x6c0/0x6c0 [ 3305.335230][T27078] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3305.341695][T27078] ___sys_sendmsg+0xf3/0x170 [ 3305.346596][T27078] ? sendmsg_copy_msghdr+0x160/0x160 [ 3305.351885][T27078] ? __fget_files+0x272/0x400 [ 3305.356705][T27078] ? lock_downgrade+0x6d0/0x6d0 [ 3305.361554][T27078] ? find_held_lock+0x2d/0x110 [ 3305.366570][T27078] ? __fget_files+0x294/0x400 [ 3305.371657][T27078] ? __fget_light+0xea/0x280 [ 3305.376774][T27078] __sys_sendmsg+0xe5/0x1b0 [ 3305.381527][T27078] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3305.386547][T27078] ? __do_sys_futex+0x2a2/0x470 [ 3305.391411][T27078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3305.397919][T27078] do_syscall_64+0x2d/0x70 [ 3305.402438][T27078] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3305.408742][T27078] RIP: 0033:0x45deb9 [ 3305.413303][T27078] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3305.433586][T27078] RSP: 002b:00007fcfc3912c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3305.442742][T27078] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3305.450934][T27078] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3305.458902][T27078] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:52:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f925}, 0x0) 15:52:48 executing program 3: setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000100)={0xfffffff9, {{0xa, 0x4e21, 0xb2f2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4c2c}}}, 0x88) r0 = socket$inet6(0xa, 0x3, 0x3a) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000040)={@remote, @remote, 0x0}, &(0x7f00000001c0)=0x3d) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x2, 0x5, 0x3, 0x1, 0x100, 0x1, 0x0, [], r1, 0xffffffffffffffff, 0x2, 0x1}, 0x40) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r2, 0x800c6613, &(0x7f0000000240)=@v1={0x0, @aes256, 0x4, "7f77b12a2faa95de"}) setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000000)=0x5, 0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1, 0x401}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:52:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xf}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3305.466864][T27078] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3305.475083][T27078] R13: 00007ffc6f8168bf R14: 00007fcfc39139c0 R15: 000000000118bf2c [ 3305.564666][T27064] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3305.596294][T27064] CPU: 0 PID: 27064 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3305.605071][T27064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3305.615160][T27064] Call Trace: [ 3305.618461][T27064] dump_stack+0x107/0x163 [ 3305.622794][T27064] sysfs_warn_dup.cold+0x1c/0x29 [ 3305.627737][T27064] sysfs_do_create_link_sd+0x11e/0x140 [ 3305.633198][T27064] sysfs_create_link+0x5f/0xc0 [ 3305.637963][T27064] device_add+0x79a/0x1ce0 [ 3305.642391][T27064] ? devlink_add_symlinks+0x450/0x450 [ 3305.648157][T27064] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3305.654142][T27064] wiphy_register+0x1dfc/0x2900 [ 3305.659843][T27064] ? wiphy_unregister+0xbb0/0xbb0 [ 3305.665366][T27064] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3305.671451][T27064] ieee80211_register_hw+0x1b0f/0x3b00 [ 3305.677480][T27064] ? ieee80211_restart_hw+0x290/0x290 [ 3305.683065][T27064] ? debug_object_destroy+0x210/0x210 [ 3305.689365][T27064] ? memset+0x20/0x40 [ 3305.693741][T27064] ? __hrtimer_init+0x136/0x280 [ 3305.698709][T27064] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3305.704472][T27064] ? hwsim_virtio_rx_work+0x350/0x350 [ 3305.710481][T27064] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3305.716033][T27064] ? memcpy+0x39/0x60 [ 3305.720338][T27064] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3305.725481][T27064] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3305.731405][T27064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3305.739390][T27064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3305.746796][T27064] genl_family_rcv_msg_doit+0x228/0x320 [ 3305.752348][T27064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3305.760379][T27064] ? ns_capable+0xde/0x100 [ 3305.764914][T27064] genl_rcv_msg+0x328/0x580 [ 3305.770386][T27064] ? genl_get_cmd+0x480/0x480 [ 3305.775140][T27064] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3305.781346][T27064] ? lock_release+0x710/0x710 [ 3305.786026][T27064] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3305.791565][T27064] netlink_rcv_skb+0x153/0x420 [ 3305.796486][T27064] ? genl_get_cmd+0x480/0x480 [ 3305.801162][T27064] ? netlink_ack+0xaa0/0xaa0 [ 3305.806775][T27064] genl_rcv+0x24/0x40 [ 3305.811277][T27064] netlink_unicast+0x533/0x7d0 [ 3305.816487][T27064] ? netlink_attachskb+0x810/0x810 [ 3305.822401][T27064] ? __phys_addr_symbol+0x2c/0x70 [ 3305.827801][T27064] ? __check_object_size+0x171/0x3f0 [ 3305.833825][T27064] netlink_sendmsg+0x856/0xd90 [ 3305.838594][T27064] ? netlink_unicast+0x7d0/0x7d0 [ 3305.844231][T27064] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3305.850339][T27064] ? netlink_unicast+0x7d0/0x7d0 [ 3305.856016][T27064] sock_sendmsg+0xcf/0x120 [ 3305.860498][T27064] ____sys_sendmsg+0x6e8/0x810 [ 3305.865265][T27064] ? kernel_sendmsg+0x50/0x50 [ 3305.869943][T27064] ? do_recvmmsg+0x6c0/0x6c0 [ 3305.875622][T27064] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3305.881610][T27064] ___sys_sendmsg+0xf3/0x170 [ 3305.886200][T27064] ? sendmsg_copy_msghdr+0x160/0x160 [ 3305.891689][T27064] ? __fget_files+0x272/0x400 [ 3305.896509][T27064] ? lock_downgrade+0x6d0/0x6d0 [ 3305.901967][T27064] ? find_held_lock+0x2d/0x110 [ 3305.907411][T27064] ? __fget_files+0x294/0x400 [ 3305.912934][T27064] ? __fget_light+0xea/0x280 [ 3305.918222][T27064] __sys_sendmsg+0xe5/0x1b0 [ 3305.922723][T27064] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3305.927978][T27064] ? __do_sys_futex+0x2a2/0x470 [ 3305.932842][T27064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3305.938739][T27064] do_syscall_64+0x2d/0x70 [ 3305.943491][T27064] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3305.949988][T27064] RIP: 0033:0x45deb9 [ 3305.953882][T27064] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3305.973476][T27064] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3305.982046][T27064] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3305.990257][T27064] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3305.998243][T27064] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3306.006609][T27064] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3306.014583][T27064] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3306.070872][T27113] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3306.111324][T27113] CPU: 0 PID: 27113 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3306.120090][T27113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3306.130138][T27113] Call Trace: [ 3306.133430][T27113] dump_stack+0x107/0x163 [ 3306.137891][T27113] sysfs_warn_dup.cold+0x1c/0x29 [ 3306.142839][T27113] sysfs_do_create_link_sd+0x11e/0x140 [ 3306.148301][T27113] sysfs_create_link+0x5f/0xc0 [ 3306.153063][T27113] device_add+0x79a/0x1ce0 [ 3306.158289][T27113] ? devlink_add_symlinks+0x450/0x450 [ 3306.163666][T27113] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3306.170094][T27113] wiphy_register+0x1dfc/0x2900 [ 3306.174964][T27113] ? wiphy_unregister+0xbb0/0xbb0 [ 3306.180657][T27113] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3306.186730][T27113] ieee80211_register_hw+0x1b0f/0x3b00 [ 3306.192536][T27113] ? ieee80211_restart_hw+0x290/0x290 [ 3306.197926][T27113] ? debug_object_destroy+0x210/0x210 [ 3306.203303][T27113] ? memset+0x20/0x40 [ 3306.207286][T27113] ? __hrtimer_init+0x136/0x280 [ 3306.212143][T27113] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3306.217879][T27113] ? hwsim_virtio_rx_work+0x350/0x350 [ 3306.223255][T27113] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3306.229033][T27113] ? memcpy+0x39/0x60 [ 3306.233026][T27113] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3306.238471][T27113] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3306.244379][T27113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3306.251744][T27113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3306.259030][T27113] genl_family_rcv_msg_doit+0x228/0x320 [ 3306.264576][T27113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3306.272558][T27113] ? ns_capable+0xde/0x100 [ 3306.276977][T27113] genl_rcv_msg+0x328/0x580 [ 3306.281834][T27113] ? genl_get_cmd+0x480/0x480 [ 3306.287387][T27113] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3306.293288][T27113] ? lock_release+0x710/0x710 [ 3306.298942][T27113] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3306.304235][T27113] netlink_rcv_skb+0x153/0x420 [ 3306.309198][T27113] ? genl_get_cmd+0x480/0x480 [ 3306.313881][T27113] ? netlink_ack+0xaa0/0xaa0 [ 3306.319057][T27113] genl_rcv+0x24/0x40 [ 3306.323041][T27113] netlink_unicast+0x533/0x7d0 [ 3306.327930][T27113] ? netlink_attachskb+0x810/0x810 [ 3306.333053][T27113] ? __phys_addr_symbol+0x2c/0x70 [ 3306.338497][T27113] ? __check_object_size+0x171/0x3f0 [ 3306.343790][T27113] netlink_sendmsg+0x856/0xd90 [ 3306.348945][T27113] ? netlink_unicast+0x7d0/0x7d0 [ 3306.353902][T27113] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3306.359624][T27113] ? netlink_unicast+0x7d0/0x7d0 [ 3306.364569][T27113] sock_sendmsg+0xcf/0x120 [ 3306.369784][T27113] ____sys_sendmsg+0x6e8/0x810 [ 3306.374548][T27113] ? kernel_sendmsg+0x50/0x50 [ 3306.379732][T27113] ? do_recvmmsg+0x6c0/0x6c0 [ 3306.384333][T27113] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3306.390590][T27113] ___sys_sendmsg+0xf3/0x170 [ 3306.395185][T27113] ? sendmsg_copy_msghdr+0x160/0x160 [ 3306.400876][T27113] ? __fget_files+0x272/0x400 [ 3306.405559][T27113] ? lock_downgrade+0x6d0/0x6d0 [ 3306.411356][T27113] ? find_held_lock+0x2d/0x110 [ 3306.416828][T27113] ? __fget_files+0x294/0x400 [ 3306.421529][T27113] ? __fget_light+0xea/0x280 [ 3306.426130][T27113] __sys_sendmsg+0xe5/0x1b0 [ 3306.430993][T27113] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3306.436016][T27113] ? __do_sys_futex+0x2a2/0x470 [ 3306.440886][T27113] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3306.447084][T27113] do_syscall_64+0x2d/0x70 [ 3306.451668][T27113] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3306.457554][T27113] RIP: 0033:0x45deb9 [ 3306.462129][T27113] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3306.481726][T27113] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3306.490702][T27113] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3306.499075][T27113] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3306.507810][T27113] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3306.515786][T27113] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3306.523761][T27113] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:52:50 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x7000000}, 0x0) 15:52:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x10}, 0x1, 0xffffff7f0e000000}, 0x0) 15:52:50 executing program 2 (fault-call:16 fault-nth:0): unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:52:50 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = socket$caif_stream(0x25, 0x1, 0x2) recvmmsg(r1, &(0x7f0000004340)=[{{&(0x7f0000000000)=@phonet, 0x80, &(0x7f0000001480)=[{&(0x7f0000000100)=""/121, 0x79}, {&(0x7f0000000180)=""/128, 0x80}, {&(0x7f0000000200)=""/71, 0x47}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/188, 0xbc}, {&(0x7f0000001340)=""/93, 0x5d}, {&(0x7f00000013c0)=""/172, 0xac}], 0x7, &(0x7f0000001500)=""/183, 0xb7}, 0x2}, {{&(0x7f00000015c0)=@hci, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000001640)=""/130, 0x82}, {&(0x7f0000001700)=""/214, 0xd6}, {&(0x7f0000001800)=""/13, 0xd}, {&(0x7f0000001840)=""/97, 0x61}, {&(0x7f00000018c0)=""/200, 0xc8}, {&(0x7f00000019c0)=""/222, 0xde}, {&(0x7f0000001ac0)=""/230, 0xe6}], 0x7, &(0x7f0000001c40)=""/34, 0x22}, 0x8}, {{&(0x7f0000001c80)=@alg, 0x80, &(0x7f0000003100)=[{&(0x7f0000001d00)=""/235, 0xeb}, {&(0x7f0000001e00)=""/230, 0xe6}, {&(0x7f0000001f00)=""/185, 0xb9}, {&(0x7f0000001fc0)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/176, 0xb0}, {&(0x7f0000003080)=""/60, 0x3c}, {&(0x7f00000030c0)=""/35, 0x23}], 0x7, &(0x7f0000003180)=""/62, 0x3e}, 0x1}, {{0x0, 0x0, &(0x7f0000003300)=[{&(0x7f00000031c0)=""/21, 0x15}, {&(0x7f0000003200)=""/91, 0x5b}, {&(0x7f0000003280)=""/21, 0x15}, {&(0x7f00000032c0)=""/38, 0x26}], 0x4, &(0x7f0000003340)=""/4096, 0x1000}, 0x5}], 0x4, 0x2, &(0x7f0000004440)={0x77359400}) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x5c) 15:52:50 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f926}, 0x0) [ 3306.671917][T27152] IPVS: ftp: loaded support on port[0] = 21 [ 3306.734596][T27154] FAULT_INJECTION: forcing a failure. [ 3306.734596][T27154] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3306.751158][T27153] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3306.784754][T27154] CPU: 0 PID: 27154 Comm: syz-executor.2 Not tainted 5.10.0-rc4-syzkaller #0 [ 3306.793515][T27154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3306.804250][T27154] Call Trace: [ 3306.807545][T27154] dump_stack+0x107/0x163 [ 3306.811875][T27154] should_fail.cold+0x5/0xa [ 3306.817143][T27154] _copy_from_user+0x2c/0x180 [ 3306.821827][T27154] do_ipv6_setsockopt.constprop.0+0x449/0x4140 [ 3306.827976][T27154] ? lock_chain_count+0x20/0x20 [ 3306.832956][T27154] ? ipv6_update_options+0x3a0/0x3a0 [ 3306.838781][T27154] ? aa_label_sk_perm+0xf2/0x560 [ 3306.843718][T27154] ? aa_profile_af_perm+0x2e0/0x2e0 [ 3306.848913][T27154] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3306.854926][T27154] ? find_held_lock+0x2d/0x110 [ 3306.859707][T27154] ipv6_setsockopt+0xd6/0x180 [ 3306.864392][T27154] rawv6_setsockopt+0xd8/0x690 [ 3306.869310][T27154] ? dst_output+0x170/0x170 [ 3306.873832][T27154] ? sock_common_setsockopt+0x2b/0x100 [ 3306.879290][T27154] __sys_setsockopt+0x2db/0x610 [ 3306.884138][T27154] ? sock_common_recvmsg+0x1a0/0x1a0 [ 3306.889415][T27154] ? __ia32_sys_recv+0x100/0x100 [ 3306.894359][T27154] ? vfs_write+0x18e/0xa30 [ 3306.898770][T27154] ? fput_many+0x2f/0x1a0 [ 3306.903108][T27154] __x64_sys_setsockopt+0xba/0x150 [ 3306.908218][T27154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3306.914098][T27154] do_syscall_64+0x2d/0x70 [ 3306.918508][T27154] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3306.924393][T27154] RIP: 0033:0x45deb9 [ 3306.928287][T27154] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3306.947898][T27154] RSP: 002b:00007fcfc38f1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 3306.956364][T27154] RAX: ffffffffffffffda RBX: 0000000000030ac0 RCX: 000000000045deb9 [ 3306.964331][T27154] RDX: 00000000000000d2 RSI: 0000000000000029 RDI: 0000000000000008 [ 3306.973182][T27154] RBP: 00007fcfc38f1ca0 R08: 000000000000005c R09: 0000000000000000 [ 3306.981594][T27154] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000000 [ 3306.989948][T27154] R13: 00007ffc6f8168bf R14: 00007fcfc38f29c0 R15: 000000000118bfd4 [ 3306.997926][T27153] CPU: 1 PID: 27153 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3307.006676][T27153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3307.006683][T27153] Call Trace: [ 3307.006705][T27153] dump_stack+0x107/0x163 [ 3307.006726][T27153] sysfs_warn_dup.cold+0x1c/0x29 [ 3307.006747][T27153] sysfs_do_create_link_sd+0x11e/0x140 [ 3307.006764][T27153] sysfs_create_link+0x5f/0xc0 [ 3307.006786][T27153] device_add+0x79a/0x1ce0 [ 3307.006804][T27153] ? devlink_add_symlinks+0x450/0x450 [ 3307.006831][T27153] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3307.055461][T27153] wiphy_register+0x1dfc/0x2900 [ 3307.060328][T27153] ? wiphy_unregister+0xbb0/0xbb0 [ 3307.065370][T27153] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3307.071448][T27153] ieee80211_register_hw+0x1b0f/0x3b00 [ 3307.076917][T27153] ? ieee80211_restart_hw+0x290/0x290 [ 3307.082292][T27153] ? debug_object_destroy+0x210/0x210 [ 3307.087673][T27153] ? memset+0x20/0x40 [ 3307.091656][T27153] ? __hrtimer_init+0x136/0x280 [ 3307.096510][T27153] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3307.102243][T27153] ? hwsim_virtio_rx_work+0x350/0x350 [ 3307.107603][T27153] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3307.113146][T27153] ? memcpy+0x39/0x60 [ 3307.117127][T27153] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3307.122238][T27153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3307.128141][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3307.135512][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3307.142799][T27153] genl_family_rcv_msg_doit+0x228/0x320 [ 3307.148351][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3307.155745][T27153] ? ns_capable+0xde/0x100 [ 3307.160880][T27153] genl_rcv_msg+0x328/0x580 [ 3307.165410][T27153] ? genl_get_cmd+0x480/0x480 [ 3307.170432][T27153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3307.176329][T27153] ? lock_release+0x710/0x710 [ 3307.181001][T27153] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3307.186290][T27153] netlink_rcv_skb+0x153/0x420 [ 3307.191055][T27153] ? genl_get_cmd+0x480/0x480 [ 3307.195737][T27153] ? netlink_ack+0xaa0/0xaa0 [ 3307.200338][T27153] genl_rcv+0x24/0x40 [ 3307.204331][T27153] netlink_unicast+0x533/0x7d0 [ 3307.209099][T27153] ? netlink_attachskb+0x810/0x810 [ 3307.214221][T27153] ? __phys_addr_symbol+0x2c/0x70 [ 3307.219557][T27153] ? __check_object_size+0x171/0x3f0 [ 3307.224860][T27153] netlink_sendmsg+0x856/0xd90 [ 3307.230356][T27153] ? netlink_unicast+0x7d0/0x7d0 [ 3307.235311][T27153] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3307.240594][T27153] ? netlink_unicast+0x7d0/0x7d0 [ 3307.245529][T27153] sock_sendmsg+0xcf/0x120 [ 3307.249957][T27153] ____sys_sendmsg+0x6e8/0x810 [ 3307.254723][T27153] ? kernel_sendmsg+0x50/0x50 [ 3307.259398][T27153] ? do_recvmmsg+0x6c0/0x6c0 [ 3307.263993][T27153] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3307.269980][T27153] ___sys_sendmsg+0xf3/0x170 [ 3307.275435][T27153] ? sendmsg_copy_msghdr+0x160/0x160 [ 3307.281586][T27153] ? __fget_files+0x272/0x400 [ 3307.286267][T27153] ? lock_downgrade+0x6d0/0x6d0 [ 3307.291117][T27153] ? find_held_lock+0x2d/0x110 [ 3307.295896][T27153] ? __fget_files+0x294/0x400 [ 3307.301452][T27153] ? __fget_light+0xea/0x280 [ 3307.306513][T27153] __sys_sendmsg+0xe5/0x1b0 [ 3307.311026][T27153] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3307.316056][T27153] ? __do_sys_futex+0x2a2/0x470 [ 3307.320919][T27153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3307.326856][T27153] do_syscall_64+0x2d/0x70 [ 3307.331271][T27153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3307.337158][T27153] RIP: 0033:0x45deb9 [ 3307.341727][T27153] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3307.361503][T27153] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3307.370038][T27153] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3307.378007][T27153] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:52:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x11}, 0x1, 0xffffff7f0e000000}, 0x0) 15:52:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x12}, 0x1, 0xffffff7f0e000000}, 0x0) 15:52:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x13}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3307.385977][T27153] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3307.393958][T27153] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3307.401922][T27153] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3307.459062][T27162] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3307.502286][T27162] CPU: 1 PID: 27162 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3307.511052][T27162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3307.521099][T27162] Call Trace: [ 3307.524395][T27162] dump_stack+0x107/0x163 [ 3307.528729][T27162] sysfs_warn_dup.cold+0x1c/0x29 [ 3307.533669][T27162] sysfs_do_create_link_sd+0x11e/0x140 [ 3307.539226][T27162] sysfs_create_link+0x5f/0xc0 [ 3307.544001][T27162] device_add+0x79a/0x1ce0 [ 3307.548427][T27162] ? devlink_add_symlinks+0x450/0x450 [ 3307.553813][T27162] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3307.559817][T27162] wiphy_register+0x1dfc/0x2900 [ 3307.564979][T27162] ? wiphy_unregister+0xbb0/0xbb0 [ 3307.570325][T27162] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3307.577046][T27162] ieee80211_register_hw+0x1b0f/0x3b00 [ 3307.583000][T27162] ? ieee80211_restart_hw+0x290/0x290 [ 3307.589494][T27162] ? debug_object_destroy+0x210/0x210 [ 3307.594891][T27162] ? memset+0x20/0x40 [ 3307.598863][T27162] ? __hrtimer_init+0x136/0x280 [ 3307.603699][T27162] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3307.609418][T27162] ? hwsim_virtio_rx_work+0x350/0x350 [ 3307.614780][T27162] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3307.620302][T27162] ? memcpy+0x39/0x60 [ 3307.624263][T27162] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3307.629374][T27162] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3307.635260][T27162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3307.642606][T27162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3307.649877][T27162] genl_family_rcv_msg_doit+0x228/0x320 [ 3307.655410][T27162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3307.662768][T27162] ? ns_capable+0xde/0x100 [ 3307.667162][T27162] genl_rcv_msg+0x328/0x580 [ 3307.671641][T27162] ? genl_get_cmd+0x480/0x480 [ 3307.676297][T27162] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3307.682176][T27162] ? lock_release+0x710/0x710 [ 3307.686924][T27162] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3307.692187][T27162] netlink_rcv_skb+0x153/0x420 [ 3307.696928][T27162] ? genl_get_cmd+0x480/0x480 [ 3307.701600][T27162] ? netlink_ack+0xaa0/0xaa0 [ 3307.706200][T27162] genl_rcv+0x24/0x40 [ 3307.710187][T27162] netlink_unicast+0x533/0x7d0 [ 3307.714946][T27162] ? netlink_attachskb+0x810/0x810 [ 3307.720039][T27162] ? __phys_addr_symbol+0x2c/0x70 [ 3307.725043][T27162] ? __check_object_size+0x171/0x3f0 [ 3307.730311][T27162] netlink_sendmsg+0x856/0xd90 [ 3307.735067][T27162] ? netlink_unicast+0x7d0/0x7d0 [ 3307.740035][T27162] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3307.745333][T27162] ? netlink_unicast+0x7d0/0x7d0 [ 3307.750414][T27162] sock_sendmsg+0xcf/0x120 [ 3307.754940][T27162] ____sys_sendmsg+0x6e8/0x810 [ 3307.759711][T27162] ? kernel_sendmsg+0x50/0x50 [ 3307.764362][T27162] ? do_recvmmsg+0x6c0/0x6c0 [ 3307.768939][T27162] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3307.774920][T27162] ___sys_sendmsg+0xf3/0x170 [ 3307.779491][T27162] ? sendmsg_copy_msghdr+0x160/0x160 [ 3307.784757][T27162] ? __fget_files+0x272/0x400 [ 3307.789417][T27162] ? lock_downgrade+0x6d0/0x6d0 [ 3307.794256][T27162] ? find_held_lock+0x2d/0x110 [ 3307.799004][T27162] ? __fget_files+0x294/0x400 [ 3307.803668][T27162] ? __fget_light+0xea/0x280 [ 3307.808247][T27162] __sys_sendmsg+0xe5/0x1b0 [ 3307.812726][T27162] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3307.817728][T27162] ? __do_sys_futex+0x2a2/0x470 [ 3307.822569][T27162] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3307.828442][T27162] do_syscall_64+0x2d/0x70 [ 3307.832941][T27162] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3307.838806][T27162] RIP: 0033:0x45deb9 [ 3307.842678][T27162] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3307.862257][T27162] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3307.870649][T27162] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3307.878608][T27162] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3307.886581][T27162] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3307.894544][T27162] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3307.902489][T27162] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3308.064450][T27153] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3308.101700][T27153] CPU: 0 PID: 27153 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3308.110760][T27153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3308.120918][T27153] Call Trace: [ 3308.124207][T27153] dump_stack+0x107/0x163 [ 3308.128654][T27153] sysfs_warn_dup.cold+0x1c/0x29 [ 3308.133596][T27153] sysfs_do_create_link_sd+0x11e/0x140 [ 3308.139595][T27153] sysfs_create_link+0x5f/0xc0 [ 3308.144359][T27153] device_add+0x79a/0x1ce0 [ 3308.148855][T27153] ? devlink_add_symlinks+0x450/0x450 [ 3308.154229][T27153] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3308.160819][T27153] wiphy_register+0x1dfc/0x2900 [ 3308.165692][T27153] ? wiphy_unregister+0xbb0/0xbb0 [ 3308.170746][T27153] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3308.176818][T27153] ieee80211_register_hw+0x1b0f/0x3b00 [ 3308.182356][T27153] ? ieee80211_restart_hw+0x290/0x290 [ 3308.188571][T27153] ? debug_object_destroy+0x210/0x210 [ 3308.193949][T27153] ? memset+0x20/0x40 [ 3308.198299][T27153] ? __hrtimer_init+0x136/0x280 [ 3308.203157][T27153] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3308.209680][T27153] ? hwsim_virtio_rx_work+0x350/0x350 [ 3308.215058][T27153] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3308.220831][T27153] ? memcpy+0x39/0x60 [ 3308.224837][T27153] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3308.230777][T27153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3308.237481][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3308.244865][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3308.252165][T27153] genl_family_rcv_msg_doit+0x228/0x320 [ 3308.258235][T27153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3308.266281][T27153] ? ns_capable+0xde/0x100 [ 3308.270786][T27153] genl_rcv_msg+0x328/0x580 [ 3308.275297][T27153] ? genl_get_cmd+0x480/0x480 [ 3308.280226][T27153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3308.287048][T27153] ? lock_release+0x710/0x710 [ 3308.291870][T27153] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3308.297160][T27153] netlink_rcv_skb+0x153/0x420 [ 3308.302260][T27153] ? genl_get_cmd+0x480/0x480 [ 3308.307843][T27153] ? netlink_ack+0xaa0/0xaa0 [ 3308.312586][T27153] genl_rcv+0x24/0x40 [ 3308.316571][T27153] netlink_unicast+0x533/0x7d0 [ 3308.322210][T27153] ? netlink_attachskb+0x810/0x810 [ 3308.327327][T27153] ? __phys_addr_symbol+0x2c/0x70 [ 3308.332353][T27153] ? __check_object_size+0x171/0x3f0 [ 3308.338064][T27153] netlink_sendmsg+0x856/0xd90 [ 3308.343105][T27153] ? netlink_unicast+0x7d0/0x7d0 [ 3308.348045][T27153] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3308.353327][T27153] ? netlink_unicast+0x7d0/0x7d0 [ 3308.358857][T27153] sock_sendmsg+0xcf/0x120 [ 3308.363272][T27153] ____sys_sendmsg+0x6e8/0x810 [ 3308.368468][T27153] ? kernel_sendmsg+0x50/0x50 [ 3308.373137][T27153] ? do_recvmmsg+0x6c0/0x6c0 [ 3308.378200][T27153] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3308.384182][T27153] ___sys_sendmsg+0xf3/0x170 [ 3308.389585][T27153] ? sendmsg_copy_msghdr+0x160/0x160 [ 3308.394892][T27153] ? __fget_files+0x272/0x400 [ 3308.399574][T27153] ? lock_downgrade+0x6d0/0x6d0 [ 3308.404419][T27153] ? find_held_lock+0x2d/0x110 [ 3308.409905][T27153] ? __fget_files+0x294/0x400 [ 3308.414586][T27153] ? __fget_light+0xea/0x280 [ 3308.419718][T27153] __sys_sendmsg+0xe5/0x1b0 [ 3308.424221][T27153] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3308.429245][T27153] ? __do_sys_futex+0x2a2/0x470 [ 3308.434122][T27153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3308.440205][T27153] do_syscall_64+0x2d/0x70 [ 3308.444615][T27153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3308.451249][T27153] RIP: 0033:0x45deb9 [ 3308.455145][T27153] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3308.474749][T27153] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3308.483166][T27153] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3308.491579][T27153] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3308.499572][T27153] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3308.507887][T27153] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3308.515856][T27153] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3308.595541][T27182] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3308.612342][T27182] CPU: 0 PID: 27182 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3308.621102][T27182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3308.631150][T27182] Call Trace: [ 3308.634444][T27182] dump_stack+0x107/0x163 [ 3308.638780][T27182] sysfs_warn_dup.cold+0x1c/0x29 [ 3308.643719][T27182] sysfs_do_create_link_sd+0x11e/0x140 [ 3308.649293][T27182] sysfs_create_link+0x5f/0xc0 [ 3308.654903][T27182] device_add+0x79a/0x1ce0 [ 3308.659398][T27182] ? devlink_add_symlinks+0x450/0x450 [ 3308.664782][T27182] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3308.671570][T27182] wiphy_register+0x1dfc/0x2900 [ 3308.676591][T27182] ? wiphy_unregister+0xbb0/0xbb0 [ 3308.682043][T27182] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3308.688962][T27182] ieee80211_register_hw+0x1b0f/0x3b00 [ 3308.694442][T27182] ? ieee80211_restart_hw+0x290/0x290 [ 3308.700894][T27182] ? debug_object_destroy+0x210/0x210 [ 3308.706271][T27182] ? memset+0x20/0x40 [ 3308.710343][T27182] ? __hrtimer_init+0x136/0x280 [ 3308.715205][T27182] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3308.721579][T27182] ? hwsim_virtio_rx_work+0x350/0x350 [ 3308.726949][T27182] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3308.732498][T27182] ? memcpy+0x39/0x60 [ 3308.736488][T27182] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3308.742425][T27182] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3308.749347][T27182] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3308.757670][T27182] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3308.764968][T27182] genl_family_rcv_msg_doit+0x228/0x320 [ 3308.771115][T27182] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3308.778667][T27182] ? ns_capable+0xde/0x100 [ 3308.783091][T27182] genl_rcv_msg+0x328/0x580 [ 3308.787602][T27182] ? genl_get_cmd+0x480/0x480 [ 3308.792589][T27182] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3308.799364][T27182] ? lock_release+0x710/0x710 [ 3308.804040][T27182] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3308.809741][T27182] netlink_rcv_skb+0x153/0x420 [ 3308.814502][T27182] ? genl_get_cmd+0x480/0x480 [ 3308.819177][T27182] ? netlink_ack+0xaa0/0xaa0 [ 3308.823779][T27182] genl_rcv+0x24/0x40 [ 3308.828270][T27182] netlink_unicast+0x533/0x7d0 [ 3308.833039][T27182] ? netlink_attachskb+0x810/0x810 [ 3308.838142][T27182] ? __phys_addr_symbol+0x2c/0x70 [ 3308.843157][T27182] ? __check_object_size+0x171/0x3f0 [ 3308.848912][T27182] netlink_sendmsg+0x856/0xd90 [ 3308.853813][T27182] ? netlink_unicast+0x7d0/0x7d0 [ 3308.858762][T27182] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3308.864058][T27182] ? netlink_unicast+0x7d0/0x7d0 [ 3308.869179][T27182] sock_sendmsg+0xcf/0x120 [ 3308.873609][T27182] ____sys_sendmsg+0x6e8/0x810 [ 3308.879019][T27182] ? kernel_sendmsg+0x50/0x50 [ 3308.883693][T27182] ? do_recvmmsg+0x6c0/0x6c0 [ 3308.888289][T27182] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3308.894280][T27182] ___sys_sendmsg+0xf3/0x170 [ 3308.899195][T27182] ? sendmsg_copy_msghdr+0x160/0x160 [ 3308.904484][T27182] ? __fget_files+0x272/0x400 [ 3308.909562][T27182] ? lock_downgrade+0x6d0/0x6d0 [ 3308.914412][T27182] ? find_held_lock+0x2d/0x110 [ 3308.919273][T27182] ? __fget_files+0x294/0x400 [ 3308.923960][T27182] ? __fget_light+0xea/0x280 [ 3308.928652][T27182] __sys_sendmsg+0xe5/0x1b0 [ 3308.933180][T27182] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3308.938213][T27182] ? __do_sys_futex+0x2a2/0x470 [ 3308.943994][T27182] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3308.950556][T27182] do_syscall_64+0x2d/0x70 [ 3308.955604][T27182] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3308.961502][T27182] RIP: 0033:0x45deb9 [ 3308.965402][T27182] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3308.985006][T27182] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3308.993426][T27182] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3309.001398][T27182] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3309.009433][T27182] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3309.017404][T27182] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3309.025380][T27182] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 15:52:55 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x2c, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010100}, @in6={0xa, 0x4e21, 0x0, @dev, 0x6}]}, &(0x7f0000000180)=0x10) r2 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000300)={r3, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x326}, 0x9c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={r3, 0x3, 0x1}, 0x8) 15:52:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x14}, 0x1, 0xffffff7f0e000000}, 0x0) 15:52:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8000000}, 0x0) 15:52:55 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = socket$caif_stream(0x25, 0x1, 0x2) recvmmsg(r1, &(0x7f0000004340)=[{{&(0x7f0000000000)=@phonet, 0x80, &(0x7f0000001480)=[{&(0x7f0000000100)=""/121, 0x79}, {&(0x7f0000000180)=""/128, 0x80}, {&(0x7f0000000200)=""/71, 0x47}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/188, 0xbc}, {&(0x7f0000001340)=""/93, 0x5d}, {&(0x7f00000013c0)=""/172, 0xac}], 0x7, &(0x7f0000001500)=""/183, 0xb7}, 0x2}, {{&(0x7f00000015c0)=@hci, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000001640)=""/130, 0x82}, {&(0x7f0000001700)=""/214, 0xd6}, {&(0x7f0000001800)=""/13, 0xd}, {&(0x7f0000001840)=""/97, 0x61}, {&(0x7f00000018c0)=""/200, 0xc8}, {&(0x7f00000019c0)=""/222, 0xde}, {&(0x7f0000001ac0)=""/230, 0xe6}], 0x7, &(0x7f0000001c40)=""/34, 0x22}, 0x8}, {{&(0x7f0000001c80)=@alg, 0x80, &(0x7f0000003100)=[{&(0x7f0000001d00)=""/235, 0xeb}, {&(0x7f0000001e00)=""/230, 0xe6}, {&(0x7f0000001f00)=""/185, 0xb9}, {&(0x7f0000001fc0)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/176, 0xb0}, {&(0x7f0000003080)=""/60, 0x3c}, {&(0x7f00000030c0)=""/35, 0x23}], 0x7, &(0x7f0000003180)=""/62, 0x3e}, 0x1}, {{0x0, 0x0, &(0x7f0000003300)=[{&(0x7f00000031c0)=""/21, 0x15}, {&(0x7f0000003200)=""/91, 0x5b}, {&(0x7f0000003280)=""/21, 0x15}, {&(0x7f00000032c0)=""/38, 0x26}], 0x4, &(0x7f0000003340)=""/4096, 0x1000}, 0x5}], 0x4, 0x2, &(0x7f0000004440)={0x77359400}) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x5c) 15:52:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f927}, 0x0) [ 3311.457856][T27245] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3311.485932][T27245] CPU: 0 PID: 27245 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3311.494710][T27245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3311.504864][T27245] Call Trace: [ 3311.508187][T27245] dump_stack+0x107/0x163 [ 3311.512638][T27245] sysfs_warn_dup.cold+0x1c/0x29 [ 3311.517587][T27245] sysfs_do_create_link_sd+0x11e/0x140 [ 3311.523148][T27245] sysfs_create_link+0x5f/0xc0 [ 3311.527948][T27245] device_add+0x79a/0x1ce0 [ 3311.532370][T27245] ? devlink_add_symlinks+0x450/0x450 [ 3311.537749][T27245] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3311.543743][T27245] wiphy_register+0x1dfc/0x2900 [ 3311.548628][T27245] ? wiphy_unregister+0xbb0/0xbb0 [ 3311.553671][T27245] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3311.559742][T27245] ieee80211_register_hw+0x1b0f/0x3b00 [ 3311.565298][T27245] ? ieee80211_restart_hw+0x290/0x290 [ 3311.570656][T27245] ? debug_object_destroy+0x210/0x210 [ 3311.576021][T27245] ? memset+0x20/0x40 [ 3311.579993][T27245] ? __hrtimer_init+0x136/0x280 [ 3311.584855][T27245] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3311.590577][T27245] ? hwsim_virtio_rx_work+0x350/0x350 [ 3311.595937][T27245] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3311.601491][T27245] ? memcpy+0x39/0x60 [ 3311.605474][T27245] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3311.610569][T27245] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3311.616456][T27245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3311.623803][T27245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3311.631070][T27245] genl_family_rcv_msg_doit+0x228/0x320 [ 3311.636611][T27245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3311.643967][T27245] ? ns_capable+0xde/0x100 [ 3311.648374][T27245] genl_rcv_msg+0x328/0x580 [ 3311.652854][T27245] ? genl_get_cmd+0x480/0x480 [ 3311.657507][T27245] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3311.663378][T27245] ? lock_release+0x710/0x710 [ 3311.668029][T27245] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3311.673289][T27245] netlink_rcv_skb+0x153/0x420 [ 3311.678029][T27245] ? genl_get_cmd+0x480/0x480 [ 3311.682691][T27245] ? netlink_ack+0xaa0/0xaa0 [ 3311.687268][T27245] genl_rcv+0x24/0x40 [ 3311.691224][T27245] netlink_unicast+0x533/0x7d0 [ 3311.695982][T27245] ? netlink_attachskb+0x810/0x810 [ 3311.701096][T27245] ? __phys_addr_symbol+0x2c/0x70 [ 3311.706095][T27245] ? __check_object_size+0x171/0x3f0 [ 3311.711359][T27245] netlink_sendmsg+0x856/0xd90 [ 3311.716104][T27245] ? netlink_unicast+0x7d0/0x7d0 [ 3311.721045][T27245] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3311.726329][T27245] ? netlink_unicast+0x7d0/0x7d0 [ 3311.731250][T27245] sock_sendmsg+0xcf/0x120 [ 3311.735645][T27245] ____sys_sendmsg+0x6e8/0x810 [ 3311.740389][T27245] ? kernel_sendmsg+0x50/0x50 [ 3311.745048][T27245] ? do_recvmmsg+0x6c0/0x6c0 [ 3311.749655][T27245] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3311.755645][T27245] ___sys_sendmsg+0xf3/0x170 [ 3311.760218][T27245] ? sendmsg_copy_msghdr+0x160/0x160 [ 3311.765485][T27245] ? __fget_files+0x272/0x400 [ 3311.770141][T27245] ? lock_downgrade+0x6d0/0x6d0 [ 3311.774972][T27245] ? find_held_lock+0x2d/0x110 [ 3311.779723][T27245] ? __fget_files+0x294/0x400 [ 3311.784390][T27245] ? __fget_light+0xea/0x280 [ 3311.788963][T27245] __sys_sendmsg+0xe5/0x1b0 [ 3311.793445][T27245] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3311.798446][T27245] ? __do_sys_futex+0x2a2/0x470 [ 3311.803282][T27245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3311.809243][T27245] do_syscall_64+0x2d/0x70 [ 3311.813663][T27245] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3311.819548][T27245] RIP: 0033:0x45deb9 [ 3311.823425][T27245] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3311.843005][T27245] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3311.851395][T27245] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 15:52:55 executing program 2 (fault-call:16 fault-nth:1): unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) [ 3311.859350][T27245] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3311.867299][T27245] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3311.875249][T27245] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3311.883202][T27245] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:52:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x15}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3311.946433][T27254] IPVS: ftp: loaded support on port[0] = 21 [ 3311.988131][T27255] FAULT_INJECTION: forcing a failure. [ 3311.988131][T27255] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3312.019694][T27255] CPU: 0 PID: 27255 Comm: syz-executor.2 Not tainted 5.10.0-rc4-syzkaller #0 [ 3312.028561][T27255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3312.038610][T27255] Call Trace: [ 3312.042252][T27255] dump_stack+0x107/0x163 [ 3312.046591][T27255] should_fail.cold+0x5/0xa [ 3312.051105][T27255] _copy_from_user+0x2c/0x180 [ 3312.055791][T27255] ip6_mroute_setsockopt+0x136e/0x1cb0 [ 3312.061262][T27255] ? ip6mr_sk_done+0x370/0x370 [ 3312.066141][T27255] ? __might_fault+0xd3/0x180 [ 3312.070820][T27255] ? lock_downgrade+0x6d0/0x6d0 [ 3312.075705][T27255] do_ipv6_setsockopt.constprop.0+0x34a/0x4140 [ 3312.082054][T27255] ? ipv6_update_options+0x3a0/0x3a0 [ 3312.087345][T27255] ? aa_label_sk_perm+0xf2/0x560 [ 3312.092287][T27255] ? aa_profile_af_perm+0x2e0/0x2e0 [ 3312.097643][T27255] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3312.104095][T27255] ? find_held_lock+0x2d/0x110 [ 3312.109627][T27255] ipv6_setsockopt+0xd6/0x180 [ 3312.114710][T27255] rawv6_setsockopt+0xd8/0x690 [ 3312.119475][T27255] ? dst_output+0x170/0x170 [ 3312.124405][T27255] ? sock_common_setsockopt+0x2b/0x100 [ 3312.129870][T27255] __sys_setsockopt+0x2db/0x610 [ 3312.134733][T27255] ? sock_common_recvmsg+0x1a0/0x1a0 [ 3312.140753][T27255] ? __ia32_sys_recv+0x100/0x100 [ 3312.145925][T27255] ? vfs_write+0x18e/0xa30 [ 3312.150647][T27255] ? fput_many+0x2f/0x1a0 [ 3312.155208][T27255] __x64_sys_setsockopt+0xba/0x150 [ 3312.160436][T27255] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3312.167093][T27255] do_syscall_64+0x2d/0x70 [ 3312.171746][T27255] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3312.178451][T27255] RIP: 0033:0x45deb9 [ 3312.182344][T27255] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3312.202699][T27255] RSP: 002b:00007fcfc38f1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 3312.211489][T27255] RAX: ffffffffffffffda RBX: 0000000000030ac0 RCX: 000000000045deb9 [ 3312.219454][T27255] RDX: 00000000000000d2 RSI: 0000000000000029 RDI: 0000000000000008 [ 3312.227718][T27255] RBP: 00007fcfc38f1ca0 R08: 000000000000005c R09: 0000000000000000 [ 3312.236176][T27255] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 3312.244585][T27255] R13: 00007ffc6f8168bf R14: 00007fcfc38f29c0 R15: 000000000118bfd4 15:52:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x16}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3312.350078][T27250] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3312.379963][T27250] CPU: 0 PID: 27250 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3312.388730][T27250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3312.398776][T27250] Call Trace: [ 3312.402511][T27250] dump_stack+0x107/0x163 [ 3312.406864][T27250] sysfs_warn_dup.cold+0x1c/0x29 [ 3312.411825][T27250] sysfs_do_create_link_sd+0x11e/0x140 [ 3312.417289][T27250] sysfs_create_link+0x5f/0xc0 [ 3312.422051][T27250] device_add+0x79a/0x1ce0 [ 3312.426474][T27250] ? devlink_add_symlinks+0x450/0x450 [ 3312.431852][T27250] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3312.437843][T27250] wiphy_register+0x1dfc/0x2900 [ 3312.442707][T27250] ? wiphy_unregister+0xbb0/0xbb0 [ 3312.447740][T27250] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3312.453816][T27250] ieee80211_register_hw+0x1b0f/0x3b00 [ 3312.459758][T27250] ? ieee80211_restart_hw+0x290/0x290 [ 3312.465139][T27250] ? debug_object_destroy+0x210/0x210 [ 3312.470657][T27250] ? memset+0x20/0x40 [ 3312.474642][T27250] ? __hrtimer_init+0x136/0x280 [ 3312.480297][T27250] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3312.486829][T27250] ? hwsim_virtio_rx_work+0x350/0x350 [ 3312.492202][T27250] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3312.497877][T27250] ? memcpy+0x39/0x60 [ 3312.501869][T27250] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3312.507589][T27250] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3312.513495][T27250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3312.520948][T27250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3312.528898][T27250] genl_family_rcv_msg_doit+0x228/0x320 [ 3312.534445][T27250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3312.541829][T27250] ? ns_capable+0xde/0x100 [ 3312.546244][T27250] genl_rcv_msg+0x328/0x580 [ 3312.550949][T27250] ? genl_get_cmd+0x480/0x480 [ 3312.555628][T27250] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3312.561525][T27250] ? lock_release+0x710/0x710 [ 3312.566200][T27250] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3312.571493][T27250] netlink_rcv_skb+0x153/0x420 [ 3312.576458][T27250] ? genl_get_cmd+0x480/0x480 [ 3312.581297][T27250] ? netlink_ack+0xaa0/0xaa0 [ 3312.586666][T27250] genl_rcv+0x24/0x40 [ 3312.591132][T27250] netlink_unicast+0x533/0x7d0 [ 3312.596485][T27250] ? netlink_attachskb+0x810/0x810 [ 3312.601598][T27250] ? __phys_addr_symbol+0x2c/0x70 [ 3312.606622][T27250] ? __check_object_size+0x171/0x3f0 [ 3312.611908][T27250] netlink_sendmsg+0x856/0xd90 [ 3312.616722][T27250] ? netlink_unicast+0x7d0/0x7d0 [ 3312.621688][T27250] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3312.626967][T27250] ? netlink_unicast+0x7d0/0x7d0 [ 3312.631894][T27250] sock_sendmsg+0xcf/0x120 [ 3312.636310][T27250] ____sys_sendmsg+0x6e8/0x810 [ 3312.641078][T27250] ? kernel_sendmsg+0x50/0x50 [ 3312.645747][T27250] ? do_recvmmsg+0x6c0/0x6c0 [ 3312.651036][T27250] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3312.657451][T27250] ___sys_sendmsg+0xf3/0x170 [ 3312.662042][T27250] ? sendmsg_copy_msghdr+0x160/0x160 [ 3312.667332][T27250] ? __fget_files+0x272/0x400 [ 3312.672038][T27250] ? lock_downgrade+0x6d0/0x6d0 [ 3312.677592][T27250] ? find_held_lock+0x2d/0x110 [ 3312.682365][T27250] ? __fget_files+0x294/0x400 [ 3312.687058][T27250] ? __fget_light+0xea/0x280 [ 3312.691647][T27250] __sys_sendmsg+0xe5/0x1b0 [ 3312.696142][T27250] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3312.701992][T27250] ? __do_sys_futex+0x2a2/0x470 [ 3312.706866][T27250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3312.712766][T27250] do_syscall_64+0x2d/0x70 [ 3312.717176][T27250] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3312.723360][T27250] RIP: 0033:0x45deb9 [ 3312.727253][T27250] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:52:56 executing program 1 (fault-call:2 fault-nth:0): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3312.747423][T27250] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3312.755989][T27250] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3312.763956][T27250] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3312.771921][T27250] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3312.779882][T27250] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3312.788094][T27250] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:52:56 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9000000}, 0x0) 15:52:56 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x17}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3312.929878][T27275] FAULT_INJECTION: forcing a failure. [ 3312.929878][T27275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3312.988354][T27275] CPU: 0 PID: 27275 Comm: syz-executor.1 Not tainted 5.10.0-rc4-syzkaller #0 [ 3312.997122][T27275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3313.007708][T27275] Call Trace: [ 3313.011388][T27275] dump_stack+0x107/0x163 [ 3313.015724][T27275] should_fail.cold+0x5/0xa [ 3313.020508][T27275] _copy_from_user+0x2c/0x180 [ 3313.025302][T27275] __copy_msghdr_from_user+0x91/0x4b0 [ 3313.030680][T27275] ? __ia32_sys_shutdown+0x70/0x70 [ 3313.035793][T27275] ? mark_lock+0xf7/0x24c0 [ 3313.041037][T27275] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3313.047528][T27275] ? __lock_acquire+0xbe0/0x5c00 [ 3313.052644][T27275] sendmsg_copy_msghdr+0xa1/0x160 [ 3313.057664][T27275] ? do_recvmmsg+0x6c0/0x6c0 [ 3313.062464][T27275] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3313.068445][T27275] ? _parse_integer+0x132/0x180 [ 3313.073949][T27275] ___sys_sendmsg+0xc6/0x170 [ 3313.078545][T27275] ? sendmsg_copy_msghdr+0x160/0x160 [ 3313.083838][T27275] ? __fget_files+0x272/0x400 [ 3313.088526][T27275] ? lock_downgrade+0x6d0/0x6d0 [ 3313.093376][T27275] ? find_held_lock+0x2d/0x110 [ 3313.098169][T27275] ? __fget_files+0x294/0x400 [ 3313.102875][T27275] ? __fget_light+0xea/0x280 [ 3313.108022][T27275] __sys_sendmsg+0xe5/0x1b0 [ 3313.112533][T27275] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3313.117560][T27275] ? fput_many+0x2f/0x1a0 [ 3313.122221][T27275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3313.128510][T27275] do_syscall_64+0x2d/0x70 [ 3313.132944][T27275] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3313.138832][T27275] RIP: 0033:0x45deb9 [ 3313.142727][T27275] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3313.162409][T27275] RSP: 002b:00007f1214e22c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3313.170826][T27275] RAX: ffffffffffffffda RBX: 000000000002e640 RCX: 000000000045deb9 [ 3313.178792][T27275] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 3313.186760][T27275] RBP: 00007f1214e22ca0 R08: 0000000000000000 R09: 0000000000000000 [ 3313.194726][T27275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3313.202743][T27275] R13: 00007ffd99893f3f R14: 00007f1214e239c0 R15: 000000000118bf2c 15:52:56 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x18}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3313.363319][T27277] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3313.416240][T27277] CPU: 0 PID: 27277 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3313.425019][T27277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3313.435168][T27277] Call Trace: [ 3313.438465][T27277] dump_stack+0x107/0x163 [ 3313.443547][T27277] sysfs_warn_dup.cold+0x1c/0x29 [ 3313.448495][T27277] sysfs_do_create_link_sd+0x11e/0x140 [ 3313.453959][T27277] sysfs_create_link+0x5f/0xc0 [ 3313.458727][T27277] device_add+0x79a/0x1ce0 [ 3313.463215][T27277] ? devlink_add_symlinks+0x450/0x450 [ 3313.469145][T27277] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3313.475571][T27277] wiphy_register+0x1dfc/0x2900 [ 3313.480722][T27277] ? wiphy_unregister+0xbb0/0xbb0 [ 3313.485763][T27277] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3313.491840][T27277] ieee80211_register_hw+0x1b0f/0x3b00 [ 3313.497315][T27277] ? ieee80211_restart_hw+0x290/0x290 [ 3313.502697][T27277] ? debug_object_destroy+0x210/0x210 [ 3313.508076][T27277] ? memset+0x20/0x40 [ 3313.512065][T27277] ? __hrtimer_init+0x136/0x280 [ 3313.516919][T27277] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3313.522655][T27277] ? hwsim_virtio_rx_work+0x350/0x350 [ 3313.528743][T27277] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3313.534731][T27277] ? memcpy+0x39/0x60 [ 3313.538721][T27277] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3313.544693][T27277] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3313.550607][T27277] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3313.557977][T27277] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3313.565374][T27277] genl_family_rcv_msg_doit+0x228/0x320 [ 3313.570923][T27277] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3313.578921][T27277] ? ns_capable+0xde/0x100 [ 3313.583340][T27277] genl_rcv_msg+0x328/0x580 [ 3313.587886][T27277] ? genl_get_cmd+0x480/0x480 [ 3313.592564][T27277] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3313.598703][T27277] ? lock_release+0x710/0x710 [ 3313.604019][T27277] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 3313.609907][T27277] netlink_rcv_skb+0x153/0x420 [ 3313.615536][T27277] ? genl_get_cmd+0x480/0x480 [ 3313.620219][T27277] ? netlink_ack+0xaa0/0xaa0 [ 3313.624973][T27277] genl_rcv+0x24/0x40 [ 3313.630564][T27277] netlink_unicast+0x533/0x7d0 [ 3313.635904][T27277] ? netlink_attachskb+0x810/0x810 [ 3313.641666][T27277] ? __phys_addr_symbol+0x2c/0x70 [ 3313.646687][T27277] ? __check_object_size+0x171/0x3f0 [ 3313.651979][T27277] netlink_sendmsg+0x856/0xd90 [ 3313.657036][T27277] ? netlink_unicast+0x7d0/0x7d0 [ 3313.662089][T27277] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3313.667378][T27277] ? netlink_unicast+0x7d0/0x7d0 [ 3313.672320][T27277] sock_sendmsg+0xcf/0x120 [ 3313.676737][T27277] ____sys_sendmsg+0x6e8/0x810 [ 3313.681499][T27277] ? kernel_sendmsg+0x50/0x50 [ 3313.686291][T27277] ? do_recvmmsg+0x6c0/0x6c0 [ 3313.690895][T27277] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3313.697719][T27277] ___sys_sendmsg+0xf3/0x170 [ 3313.702741][T27277] ? sendmsg_copy_msghdr+0x160/0x160 [ 3313.708042][T27277] ? __fget_files+0x272/0x400 [ 3313.712727][T27277] ? lock_downgrade+0x6d0/0x6d0 [ 3313.717586][T27277] ? find_held_lock+0x2d/0x110 [ 3313.722364][T27277] ? __fget_files+0x294/0x400 [ 3313.727053][T27277] ? __fget_light+0xea/0x280 [ 3313.731656][T27277] __sys_sendmsg+0xe5/0x1b0 [ 3313.736968][T27277] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3313.741994][T27277] ? __do_sys_futex+0x2a2/0x470 [ 3313.747451][T27277] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3313.753349][T27277] do_syscall_64+0x2d/0x70 [ 3313.758146][T27277] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3313.764030][T27277] RIP: 0033:0x45deb9 [ 3313.768544][T27277] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3313.788679][T27277] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3313.797096][T27277] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3313.805539][T27277] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:52:57 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r3}, 0x8) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r4, r3, 0x0, 0x100000001) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r4, 0x6612) sendfile(r2, r1, 0x0, 0x100000001) ioctl$sock_rose_SIOCRSCLRRT(r2, 0x89e4) 15:52:57 executing program 1 (fault-call:2 fault-nth:1): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:52:57 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f928}, 0x0) [ 3313.813511][T27277] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3313.822339][T27277] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3313.830304][T27277] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:52:57 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x19}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3313.898172][T27299] FAULT_INJECTION: forcing a failure. [ 3313.898172][T27299] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3313.950566][T27302] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3313.980665][T27302] CPU: 0 PID: 27302 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3313.990174][T27302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3314.000223][T27302] Call Trace: [ 3314.003518][T27302] dump_stack+0x107/0x163 [ 3314.007851][T27302] sysfs_warn_dup.cold+0x1c/0x29 [ 3314.012794][T27302] sysfs_do_create_link_sd+0x11e/0x140 [ 3314.018276][T27302] sysfs_create_link+0x5f/0xc0 [ 3314.023042][T27302] device_add+0x79a/0x1ce0 [ 3314.027463][T27302] ? devlink_add_symlinks+0x450/0x450 [ 3314.032838][T27302] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3314.038844][T27302] wiphy_register+0x1dfc/0x2900 [ 3314.043705][T27302] ? wiphy_unregister+0xbb0/0xbb0 [ 3314.048754][T27302] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3314.054963][T27302] ieee80211_register_hw+0x1b0f/0x3b00 [ 3314.060435][T27302] ? ieee80211_restart_hw+0x290/0x290 [ 3314.065802][T27302] ? debug_object_destroy+0x210/0x210 [ 3314.071178][T27302] ? memset+0x20/0x40 [ 3314.075848][T27302] ? __hrtimer_init+0x136/0x280 [ 3314.080710][T27302] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3314.086458][T27302] ? hwsim_virtio_rx_work+0x350/0x350 [ 3314.091827][T27302] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3314.097708][T27302] ? memcpy+0x39/0x60 [ 3314.101699][T27302] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3314.106820][T27302] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3314.112719][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3314.120081][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3314.127371][T27302] genl_family_rcv_msg_doit+0x228/0x320 [ 3314.133079][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3314.140445][T27302] ? ns_capable+0xde/0x100 [ 3314.144883][T27302] genl_rcv_msg+0x328/0x580 [ 3314.149388][T27302] ? genl_get_cmd+0x480/0x480 [ 3314.154061][T27302] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3314.159949][T27302] ? lock_release+0x710/0x710 [ 3314.164626][T27302] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3314.169921][T27302] netlink_rcv_skb+0x153/0x420 [ 3314.174678][T27302] ? genl_get_cmd+0x480/0x480 [ 3314.179352][T27302] ? netlink_ack+0xaa0/0xaa0 [ 3314.183943][T27302] genl_rcv+0x24/0x40 [ 3314.187920][T27302] netlink_unicast+0x533/0x7d0 [ 3314.192880][T27302] ? netlink_attachskb+0x810/0x810 [ 3314.197998][T27302] ? __phys_addr_symbol+0x2c/0x70 [ 3314.203020][T27302] ? __check_object_size+0x171/0x3f0 [ 3314.208309][T27302] netlink_sendmsg+0x856/0xd90 [ 3314.213088][T27302] ? netlink_unicast+0x7d0/0x7d0 [ 3314.218030][T27302] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3314.223417][T27302] ? netlink_unicast+0x7d0/0x7d0 [ 3314.228475][T27302] sock_sendmsg+0xcf/0x120 [ 3314.232903][T27302] ____sys_sendmsg+0x6e8/0x810 [ 3314.237668][T27302] ? kernel_sendmsg+0x50/0x50 [ 3314.242769][T27302] ? do_recvmmsg+0x6c0/0x6c0 15:52:57 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x1a}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3314.247381][T27302] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3314.253364][T27302] ___sys_sendmsg+0xf3/0x170 [ 3314.258377][T27302] ? sendmsg_copy_msghdr+0x160/0x160 [ 3314.263754][T27302] ? __fget_files+0x272/0x400 [ 3314.268438][T27302] ? lock_downgrade+0x6d0/0x6d0 [ 3314.273459][T27302] ? find_held_lock+0x2d/0x110 [ 3314.279011][T27302] ? __fget_files+0x294/0x400 [ 3314.283707][T27302] ? __fget_light+0xea/0x280 [ 3314.288306][T27302] __sys_sendmsg+0xe5/0x1b0 [ 3314.293593][T27302] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3314.298636][T27302] ? __do_sys_futex+0x2a2/0x470 [ 3314.303977][T27302] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3314.309986][T27302] do_syscall_64+0x2d/0x70 [ 3314.314404][T27302] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3314.320289][T27302] RIP: 0033:0x45deb9 [ 3314.324180][T27302] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3314.344354][T27302] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3314.353505][T27302] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3314.361471][T27302] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3314.369439][T27302] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3314.377410][T27302] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3314.385386][T27302] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3314.395613][T27299] CPU: 1 PID: 27299 Comm: syz-executor.1 Not tainted 5.10.0-rc4-syzkaller #0 [ 3314.404385][T27299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3314.414439][T27299] Call Trace: [ 3314.417733][T27299] dump_stack+0x107/0x163 [ 3314.422065][T27299] should_fail.cold+0x5/0xa [ 3314.426573][T27299] _copy_from_user+0x2c/0x180 [ 3314.431252][T27299] iovec_from_user+0x246/0x3c0 [ 3314.436036][T27299] __import_iovec+0x65/0x500 [ 3314.440637][T27299] import_iovec+0x10c/0x150 [ 3314.445150][T27299] sendmsg_copy_msghdr+0x12d/0x160 [ 3314.450266][T27299] ? do_recvmmsg+0x6c0/0x6c0 [ 3314.454884][T27299] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3314.460867][T27299] ? _parse_integer+0x132/0x180 [ 3314.465727][T27299] ___sys_sendmsg+0xc6/0x170 [ 3314.470318][T27299] ? sendmsg_copy_msghdr+0x160/0x160 [ 3314.475605][T27299] ? __fget_files+0x272/0x400 [ 3314.480286][T27299] ? lock_downgrade+0x6d0/0x6d0 [ 3314.485135][T27299] ? find_held_lock+0x2d/0x110 [ 3314.489911][T27299] ? __fget_files+0x294/0x400 [ 3314.494592][T27299] ? __fget_light+0xea/0x280 [ 3314.499186][T27299] __sys_sendmsg+0xe5/0x1b0 [ 3314.503686][T27299] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3314.508723][T27299] ? fput_many+0x2f/0x1a0 [ 3314.513058][T27299] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3314.518959][T27299] do_syscall_64+0x2d/0x70 [ 3314.523378][T27299] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3314.529263][T27299] RIP: 0033:0x45deb9 [ 3314.533151][T27299] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3314.552836][T27299] RSP: 002b:00007f1214e22c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3314.552874][T27299] RAX: ffffffffffffffda RBX: 000000000002e640 RCX: 000000000045deb9 [ 3314.552883][T27299] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 3314.552900][T27299] RBP: 00007f1214e22ca0 R08: 0000000000000000 R09: 0000000000000000 [ 3314.563830][T27302] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3314.569228][T27299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3314.569238][T27299] R13: 00007ffd99893f3f R14: 00007f1214e239c0 R15: 000000000118bf2c [ 3314.717376][T27302] CPU: 1 PID: 27302 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3314.726158][T27302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3314.736212][T27302] Call Trace: [ 3314.739508][T27302] dump_stack+0x107/0x163 [ 3314.743844][T27302] sysfs_warn_dup.cold+0x1c/0x29 [ 3314.748787][T27302] sysfs_do_create_link_sd+0x11e/0x140 [ 3314.754247][T27302] sysfs_create_link+0x5f/0xc0 [ 3314.759010][T27302] device_add+0x79a/0x1ce0 [ 3314.763428][T27302] ? devlink_add_symlinks+0x450/0x450 [ 3314.768816][T27302] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3314.774822][T27302] wiphy_register+0x1dfc/0x2900 [ 3314.779712][T27302] ? wiphy_unregister+0xbb0/0xbb0 [ 3314.784747][T27302] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3314.790824][T27302] ieee80211_register_hw+0x1b0f/0x3b00 [ 3314.796421][T27302] ? ieee80211_restart_hw+0x290/0x290 [ 3314.801800][T27302] ? debug_object_destroy+0x210/0x210 [ 3314.807178][T27302] ? memset+0x20/0x40 [ 3314.811168][T27302] ? __hrtimer_init+0x136/0x280 [ 3314.816041][T27302] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3314.821776][T27302] ? hwsim_virtio_rx_work+0x350/0x350 [ 3314.827151][T27302] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3314.832699][T27302] ? memcpy+0x39/0x60 [ 3314.836688][T27302] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3314.842627][T27302] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3314.848536][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3314.855905][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3314.863975][T27302] genl_family_rcv_msg_doit+0x228/0x320 [ 3314.870365][T27302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3314.877826][T27302] ? ns_capable+0xde/0x100 [ 3314.882946][T27302] genl_rcv_msg+0x328/0x580 [ 3314.887496][T27302] ? genl_get_cmd+0x480/0x480 [ 3314.892196][T27302] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3314.898110][T27302] ? lock_release+0x710/0x710 [ 3314.903499][T27302] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3314.909457][T27302] netlink_rcv_skb+0x153/0x420 [ 3314.914228][T27302] ? genl_get_cmd+0x480/0x480 [ 3314.918991][T27302] ? netlink_ack+0xaa0/0xaa0 [ 3314.924432][T27302] genl_rcv+0x24/0x40 [ 3314.929092][T27302] netlink_unicast+0x533/0x7d0 [ 3314.933877][T27302] ? netlink_attachskb+0x810/0x810 [ 3314.939706][T27302] ? __phys_addr_symbol+0x2c/0x70 [ 3314.944737][T27302] ? __check_object_size+0x171/0x3f0 [ 3314.950828][T27302] netlink_sendmsg+0x856/0xd90 [ 3314.955619][T27302] ? netlink_unicast+0x7d0/0x7d0 [ 3314.960580][T27302] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3314.966668][T27302] ? netlink_unicast+0x7d0/0x7d0 [ 3314.971611][T27302] sock_sendmsg+0xcf/0x120 [ 3314.976210][T27302] ____sys_sendmsg+0x6e8/0x810 [ 3314.980982][T27302] ? kernel_sendmsg+0x50/0x50 [ 3314.985655][T27302] ? do_recvmmsg+0x6c0/0x6c0 [ 3314.990821][T27302] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3314.997170][T27302] ___sys_sendmsg+0xf3/0x170 [ 3315.001790][T27302] ? sendmsg_copy_msghdr+0x160/0x160 [ 3315.008023][T27302] ? __fget_files+0x272/0x400 [ 3315.012951][T27302] ? lock_downgrade+0x6d0/0x6d0 [ 3315.017808][T27302] ? find_held_lock+0x2d/0x110 [ 3315.022591][T27302] ? __fget_files+0x294/0x400 [ 3315.027293][T27302] ? __fget_light+0xea/0x280 [ 3315.032134][T27302] __sys_sendmsg+0xe5/0x1b0 [ 3315.036786][T27302] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3315.041817][T27302] ? __do_sys_futex+0x2a2/0x470 [ 3315.046691][T27302] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3315.054006][T27302] do_syscall_64+0x2d/0x70 [ 3315.058588][T27302] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3315.064859][T27302] RIP: 0033:0x45deb9 [ 3315.069578][T27302] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3315.089199][T27302] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3315.098030][T27302] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3315.106680][T27302] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3315.115267][T27302] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3315.123679][T27302] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3315.132187][T27302] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:00 executing program 2 (fault-call:16 fault-nth:2): unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xe000000}, 0x0) 15:53:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x1b}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:00 executing program 1 (fault-call:2 fault-nth:2): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f929}, 0x0) 15:53:00 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r2, r1, 0x0, 0x100000001) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@map=r2, r3, 0x11, 0x1, r4}, 0x14) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3316.594659][T27354] IPVS: ftp: loaded support on port[0] = 21 [ 3316.605867][T27358] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3316.611951][T27356] FAULT_INJECTION: forcing a failure. [ 3316.611951][T27356] name failslab, interval 1, probability 0, space 0, times 0 [ 3316.676540][T27358] CPU: 0 PID: 27358 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3316.685313][T27358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3316.695461][T27358] Call Trace: [ 3316.698752][T27358] dump_stack+0x107/0x163 [ 3316.703078][T27358] sysfs_warn_dup.cold+0x1c/0x29 [ 3316.708037][T27358] sysfs_do_create_link_sd+0x11e/0x140 [ 3316.713580][T27358] sysfs_create_link+0x5f/0xc0 [ 3316.718345][T27358] device_add+0x79a/0x1ce0 [ 3316.722761][T27358] ? devlink_add_symlinks+0x450/0x450 [ 3316.728265][T27358] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3316.734248][T27358] wiphy_register+0x1dfc/0x2900 [ 3316.739106][T27358] ? wiphy_unregister+0xbb0/0xbb0 [ 3316.744140][T27358] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3316.750658][T27358] ieee80211_register_hw+0x1b0f/0x3b00 [ 3316.756986][T27358] ? ieee80211_restart_hw+0x290/0x290 [ 3316.762362][T27358] ? debug_object_destroy+0x210/0x210 [ 3316.767744][T27358] ? memset+0x20/0x40 [ 3316.771723][T27358] ? __hrtimer_init+0x136/0x280 [ 3316.776575][T27358] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3316.783163][T27358] ? hwsim_virtio_rx_work+0x350/0x350 [ 3316.788880][T27358] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3316.794426][T27358] ? memcpy+0x39/0x60 [ 3316.799105][T27358] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3316.804219][T27358] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3316.810124][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3316.817479][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3316.824755][T27358] genl_family_rcv_msg_doit+0x228/0x320 [ 3316.830301][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3316.837671][T27358] ? ns_capable+0xde/0x100 [ 3316.842081][T27358] genl_rcv_msg+0x328/0x580 [ 3316.846586][T27358] ? genl_get_cmd+0x480/0x480 [ 3316.851263][T27358] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3316.857165][T27358] ? lock_release+0x710/0x710 [ 3316.861831][T27358] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3316.868040][T27358] netlink_rcv_skb+0x153/0x420 [ 3316.872823][T27358] ? genl_get_cmd+0x480/0x480 [ 3316.877503][T27358] ? netlink_ack+0xaa0/0xaa0 [ 3316.882101][T27358] genl_rcv+0x24/0x40 [ 3316.886467][T27358] netlink_unicast+0x533/0x7d0 [ 3316.891256][T27358] ? netlink_attachskb+0x810/0x810 [ 3316.896372][T27358] ? __phys_addr_symbol+0x2c/0x70 [ 3316.901385][T27358] ? __check_object_size+0x171/0x3f0 [ 3316.906667][T27358] netlink_sendmsg+0x856/0xd90 [ 3316.911426][T27358] ? netlink_unicast+0x7d0/0x7d0 [ 3316.916367][T27358] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3316.921643][T27358] ? netlink_unicast+0x7d0/0x7d0 [ 3316.926565][T27358] sock_sendmsg+0xcf/0x120 [ 3316.930975][T27358] ____sys_sendmsg+0x6e8/0x810 [ 3316.935818][T27358] ? kernel_sendmsg+0x50/0x50 [ 3316.941209][T27358] ? do_recvmmsg+0x6c0/0x6c0 [ 3316.945826][T27358] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3316.951807][T27358] ___sys_sendmsg+0xf3/0x170 [ 3316.956398][T27358] ? sendmsg_copy_msghdr+0x160/0x160 [ 3316.961686][T27358] ? __fget_files+0x272/0x400 [ 3316.966359][T27358] ? lock_downgrade+0x6d0/0x6d0 [ 3316.971204][T27358] ? find_held_lock+0x2d/0x110 [ 3316.976316][T27358] ? __fget_files+0x294/0x400 [ 3316.980989][T27358] ? __fget_light+0xea/0x280 [ 3316.985570][T27358] __sys_sendmsg+0xe5/0x1b0 [ 3316.990075][T27358] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3316.995087][T27358] ? __do_sys_futex+0x2a2/0x470 [ 3316.999947][T27358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3317.005847][T27358] do_syscall_64+0x2d/0x70 [ 3317.010261][T27358] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3317.016142][T27358] RIP: 0033:0x45deb9 [ 3317.020034][T27358] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3317.039631][T27358] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3317.048900][T27358] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3317.056877][T27358] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3317.064863][T27358] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3317.072827][T27358] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3317.081238][T27358] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3317.093284][T27356] CPU: 1 PID: 27356 Comm: syz-executor.1 Not tainted 5.10.0-rc4-syzkaller #0 [ 3317.102043][T27356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3317.112094][T27356] Call Trace: [ 3317.115395][T27356] dump_stack+0x107/0x163 [ 3317.119731][T27356] should_fail.cold+0x5/0xa [ 3317.124242][T27356] ? __alloc_skb+0x6d/0x630 [ 3317.128747][T27356] should_failslab+0x5/0x10 [ 3317.133255][T27356] kmem_cache_alloc_node+0x353/0x490 [ 3317.138537][T27356] __alloc_skb+0x6d/0x630 [ 3317.139001][T27359] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3317.142865][T27356] netlink_sendmsg+0x94f/0xd90 [ 3317.142885][T27356] ? netlink_unicast+0x7d0/0x7d0 [ 3317.142909][T27356] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3317.142928][T27356] ? netlink_unicast+0x7d0/0x7d0 [ 3317.173146][T27356] sock_sendmsg+0xcf/0x120 [ 3317.177569][T27356] ____sys_sendmsg+0x6e8/0x810 [ 3317.182330][T27356] ? kernel_sendmsg+0x50/0x50 [ 3317.186991][T27356] ? do_recvmmsg+0x6c0/0x6c0 [ 3317.191572][T27356] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3317.197543][T27356] ? _parse_integer+0x132/0x180 [ 3317.202391][T27356] ___sys_sendmsg+0xf3/0x170 [ 3317.206994][T27356] ? sendmsg_copy_msghdr+0x160/0x160 [ 3317.212277][T27356] ? __fget_files+0x272/0x400 [ 3317.216945][T27356] ? lock_downgrade+0x6d0/0x6d0 [ 3317.221785][T27356] ? find_held_lock+0x2d/0x110 [ 3317.226549][T27356] ? __fget_files+0x294/0x400 [ 3317.231218][T27356] ? __fget_light+0xea/0x280 [ 3317.235802][T27356] __sys_sendmsg+0xe5/0x1b0 [ 3317.240297][T27356] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3317.245326][T27356] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3317.251221][T27356] do_syscall_64+0x2d/0x70 [ 3317.255623][T27356] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3317.261515][T27356] RIP: 0033:0x45deb9 [ 3317.265403][T27356] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3317.284993][T27356] RSP: 002b:00007f1214e22c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3317.293394][T27356] RAX: ffffffffffffffda RBX: 000000000002e640 RCX: 000000000045deb9 [ 3317.301352][T27356] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 3317.309309][T27356] RBP: 00007f1214e22ca0 R08: 0000000000000000 R09: 0000000000000000 [ 3317.317265][T27356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 15:53:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x1c}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3317.325228][T27356] R13: 00007ffd99893f3f R14: 00007f1214e239c0 R15: 000000000118bf2c [ 3317.333227][T27359] CPU: 0 PID: 27359 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3317.341985][T27359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3317.352030][T27359] Call Trace: [ 3317.355327][T27359] dump_stack+0x107/0x163 [ 3317.359664][T27359] sysfs_warn_dup.cold+0x1c/0x29 [ 3317.364604][T27359] sysfs_do_create_link_sd+0x11e/0x140 [ 3317.370533][T27359] sysfs_create_link+0x5f/0xc0 [ 3317.375346][T27359] device_add+0x79a/0x1ce0 [ 3317.379771][T27359] ? devlink_add_symlinks+0x450/0x450 [ 3317.385980][T27359] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3317.392054][T27359] wiphy_register+0x1dfc/0x2900 [ 3317.396908][T27359] ? wiphy_unregister+0xbb0/0xbb0 [ 3317.401936][T27359] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3317.408003][T27359] ieee80211_register_hw+0x1b0f/0x3b00 [ 3317.413454][T27359] ? ieee80211_restart_hw+0x290/0x290 [ 3317.418805][T27359] ? debug_object_destroy+0x210/0x210 [ 3317.424158][T27359] ? memset+0x20/0x40 [ 3317.428122][T27359] ? __hrtimer_init+0x136/0x280 [ 3317.432956][T27359] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3317.438665][T27359] ? hwsim_virtio_rx_work+0x350/0x350 [ 3317.444016][T27359] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3317.449562][T27359] ? memcpy+0x39/0x60 [ 3317.453529][T27359] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3317.458630][T27359] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3317.464517][T27359] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3317.471877][T27359] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3317.479222][T27359] genl_family_rcv_msg_doit+0x228/0x320 [ 3317.484749][T27359] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3317.492119][T27359] ? ns_capable+0xde/0x100 [ 3317.496547][T27359] genl_rcv_msg+0x328/0x580 [ 3317.501037][T27359] ? genl_get_cmd+0x480/0x480 [ 3317.505693][T27359] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3317.511568][T27359] ? lock_release+0x710/0x710 [ 3317.516219][T27359] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3317.521481][T27359] netlink_rcv_skb+0x153/0x420 [ 3317.526222][T27359] ? genl_get_cmd+0x480/0x480 [ 3317.530889][T27359] ? netlink_ack+0xaa0/0xaa0 [ 3317.535474][T27359] genl_rcv+0x24/0x40 [ 3317.539435][T27359] netlink_unicast+0x533/0x7d0 [ 3317.544195][T27359] ? netlink_attachskb+0x810/0x810 [ 3317.549287][T27359] ? __phys_addr_symbol+0x2c/0x70 [ 3317.554288][T27359] ? __check_object_size+0x171/0x3f0 [ 3317.559563][T27359] netlink_sendmsg+0x856/0xd90 [ 3317.564313][T27359] ? netlink_unicast+0x7d0/0x7d0 [ 3317.569234][T27359] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3317.574496][T27359] ? netlink_unicast+0x7d0/0x7d0 [ 3317.579410][T27359] sock_sendmsg+0xcf/0x120 [ 3317.583811][T27359] ____sys_sendmsg+0x6e8/0x810 [ 3317.588557][T27359] ? kernel_sendmsg+0x50/0x50 [ 3317.593226][T27359] ? do_recvmmsg+0x6c0/0x6c0 [ 3317.597977][T27359] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3317.604060][T27359] ___sys_sendmsg+0xf3/0x170 [ 3317.608628][T27359] ? sendmsg_copy_msghdr+0x160/0x160 [ 3317.613891][T27359] ? __fget_files+0x272/0x400 [ 3317.618542][T27359] ? lock_downgrade+0x6d0/0x6d0 [ 3317.623395][T27359] ? find_held_lock+0x2d/0x110 [ 3317.628152][T27359] ? __fget_files+0x294/0x400 [ 3317.632813][T27359] ? __fget_light+0xea/0x280 [ 3317.637384][T27359] __sys_sendmsg+0xe5/0x1b0 [ 3317.641864][T27359] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3317.646866][T27359] ? __do_sys_futex+0x2a2/0x470 [ 3317.651711][T27359] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3317.657582][T27359] do_syscall_64+0x2d/0x70 [ 3317.661973][T27359] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3317.667838][T27359] RIP: 0033:0x45deb9 [ 3317.671712][T27359] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3317.691293][T27359] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3317.699679][T27359] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3317.707633][T27359] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3317.715604][T27359] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3317.723558][T27359] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3317.731508][T27359] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x1d}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x1e}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3317.891396][T27363] FAULT_INJECTION: forcing a failure. [ 3317.891396][T27363] name failslab, interval 1, probability 0, space 0, times 0 [ 3317.910634][T27363] CPU: 0 PID: 27363 Comm: syz-executor.2 Not tainted 5.10.0-rc4-syzkaller #0 [ 3317.919515][T27363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3317.929650][T27363] Call Trace: [ 3317.932949][T27363] dump_stack+0x107/0x163 [ 3317.937467][T27363] should_fail.cold+0x5/0xa [ 3317.941982][T27363] ? atomic_notifier_call_chain+0xdf/0x170 [ 3317.948371][T27363] ? __alloc_skb+0x6d/0x630 [ 3317.952874][T27363] should_failslab+0x5/0x10 [ 3317.957936][T27363] kmem_cache_alloc_node+0x55/0x490 [ 3317.963142][T27363] __alloc_skb+0x6d/0x630 [ 3317.967481][T27363] mr6_netlink_event+0xdc/0x1a0 [ 3317.972346][T27363] ip6mr_mfc_add+0x136c/0x28e0 [ 3317.977315][T27363] ? ip6_mr_forward+0x1290/0x1290 [ 3317.982358][T27363] ? mutex_lock_io_nested+0xf60/0xf60 [ 3317.988123][T27363] ? lock_downgrade+0x6d0/0x6d0 [ 3317.993006][T27363] ip6_mroute_setsockopt+0x5c5/0x1cb0 [ 3317.998949][T27363] ? ip6mr_sk_done+0x370/0x370 [ 3318.003733][T27363] ? __might_fault+0xd3/0x180 [ 3318.008642][T27363] do_ipv6_setsockopt.constprop.0+0x34a/0x4140 [ 3318.015219][T27363] ? ipv6_update_options+0x3a0/0x3a0 [ 3318.020850][T27363] ? aa_label_sk_perm+0xf2/0x560 [ 3318.025803][T27363] ? aa_profile_af_perm+0x2e0/0x2e0 [ 3318.031245][T27363] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3318.037677][T27363] ? find_held_lock+0x2d/0x110 [ 3318.042468][T27363] ipv6_setsockopt+0xd6/0x180 [ 3318.047154][T27363] rawv6_setsockopt+0xd8/0x690 [ 3318.052923][T27363] ? dst_output+0x170/0x170 [ 3318.057811][T27363] ? sock_common_setsockopt+0x2b/0x100 [ 3318.063277][T27363] __sys_setsockopt+0x2db/0x610 [ 3318.068280][T27363] ? sock_common_recvmsg+0x1a0/0x1a0 [ 3318.073573][T27363] ? __ia32_sys_recv+0x100/0x100 [ 3318.078661][T27363] ? vfs_write+0x18e/0xa30 [ 3318.083085][T27363] ? fput_many+0x2f/0x1a0 [ 3318.087659][T27363] __x64_sys_setsockopt+0xba/0x150 [ 3318.092779][T27363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3318.098882][T27363] do_syscall_64+0x2d/0x70 [ 3318.103311][T27363] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3318.109432][T27363] RIP: 0033:0x45deb9 [ 3318.113325][T27363] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3318.132928][T27363] RSP: 002b:00007fcfc38f1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 3318.141865][T27363] RAX: ffffffffffffffda RBX: 0000000000030ac0 RCX: 000000000045deb9 [ 3318.150633][T27363] RDX: 00000000000000d2 RSI: 0000000000000029 RDI: 0000000000000008 [ 3318.159001][T27363] RBP: 00007fcfc38f1ca0 R08: 000000000000005c R09: 0000000000000000 [ 3318.167960][T27363] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000002 [ 3318.176312][T27363] R13: 00007ffc6f8168bf R14: 00007fcfc38f29c0 R15: 000000000118bfd4 15:53:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x21}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:01 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3318.317508][T27358] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3318.354798][T27358] CPU: 1 PID: 27358 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3318.363688][T27358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3318.373737][T27358] Call Trace: [ 3318.377042][T27358] dump_stack+0x107/0x163 [ 3318.381384][T27358] sysfs_warn_dup.cold+0x1c/0x29 [ 3318.386328][T27358] sysfs_do_create_link_sd+0x11e/0x140 [ 3318.391787][T27358] sysfs_create_link+0x5f/0xc0 [ 3318.396554][T27358] device_add+0x79a/0x1ce0 [ 3318.400974][T27358] ? devlink_add_symlinks+0x450/0x450 [ 3318.406352][T27358] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3318.412342][T27358] wiphy_register+0x1dfc/0x2900 [ 3318.417208][T27358] ? wiphy_unregister+0xbb0/0xbb0 [ 3318.422250][T27358] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3318.428323][T27358] ieee80211_register_hw+0x1b0f/0x3b00 [ 3318.433974][T27358] ? ieee80211_restart_hw+0x290/0x290 [ 3318.439350][T27358] ? debug_object_destroy+0x210/0x210 [ 3318.444731][T27358] ? memset+0x20/0x40 [ 3318.448716][T27358] ? __hrtimer_init+0x136/0x280 [ 3318.453573][T27358] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3318.459312][T27358] ? hwsim_virtio_rx_work+0x350/0x350 [ 3318.464683][T27358] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3318.470234][T27358] ? memcpy+0x39/0x60 [ 3318.474228][T27358] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3318.479348][T27358] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3318.485259][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3318.492626][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3318.499912][T27358] genl_family_rcv_msg_doit+0x228/0x320 [ 3318.505461][T27358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3318.512848][T27358] ? ns_capable+0xde/0x100 [ 3318.517271][T27358] genl_rcv_msg+0x328/0x580 [ 3318.521778][T27358] ? genl_get_cmd+0x480/0x480 [ 3318.526461][T27358] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3318.532355][T27358] ? lock_release+0x710/0x710 [ 3318.537042][T27358] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3318.542324][T27358] netlink_rcv_skb+0x153/0x420 [ 3318.547088][T27358] ? genl_get_cmd+0x480/0x480 [ 3318.551759][T27358] ? netlink_ack+0xaa0/0xaa0 [ 3318.556357][T27358] genl_rcv+0x24/0x40 [ 3318.560328][T27358] netlink_unicast+0x533/0x7d0 [ 3318.565090][T27358] ? netlink_attachskb+0x810/0x810 [ 3318.570200][T27358] ? __phys_addr_symbol+0x2c/0x70 [ 3318.575218][T27358] ? __check_object_size+0x171/0x3f0 [ 3318.580523][T27358] netlink_sendmsg+0x856/0xd90 [ 3318.585297][T27358] ? netlink_unicast+0x7d0/0x7d0 [ 3318.590241][T27358] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3318.595524][T27358] ? netlink_unicast+0x7d0/0x7d0 [ 3318.600458][T27358] sock_sendmsg+0xcf/0x120 [ 3318.604892][T27358] ____sys_sendmsg+0x6e8/0x810 [ 3318.609650][T27358] ? kernel_sendmsg+0x50/0x50 [ 3318.614318][T27358] ? do_recvmmsg+0x6c0/0x6c0 [ 3318.618904][T27358] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3318.624910][T27358] ___sys_sendmsg+0xf3/0x170 [ 3318.629499][T27358] ? sendmsg_copy_msghdr+0x160/0x160 [ 3318.634785][T27358] ? __fget_files+0x272/0x400 [ 3318.639472][T27358] ? lock_downgrade+0x6d0/0x6d0 [ 3318.644319][T27358] ? find_held_lock+0x2d/0x110 [ 3318.649087][T27358] ? __fget_files+0x294/0x400 [ 3318.653768][T27358] ? __fget_light+0xea/0x280 [ 3318.658381][T27358] __sys_sendmsg+0xe5/0x1b0 [ 3318.664613][T27358] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3318.669632][T27358] ? __do_sys_futex+0x2a2/0x470 [ 3318.674526][T27358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3318.680413][T27358] do_syscall_64+0x2d/0x70 [ 3318.684821][T27358] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3318.690723][T27358] RIP: 0033:0x45deb9 [ 3318.694614][T27358] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:53:02 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x22}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3318.714203][T27358] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3318.722610][T27358] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3318.730571][T27358] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3318.738531][T27358] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3318.746490][T27358] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3318.754456][T27358] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3318.844269][T27386] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:03 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x23}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:03 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f92a}, 0x0) 15:53:03 executing program 3: ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000100)="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") r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0xfffe, [0x0, 0x0, 0x0, 0x20000, 0x0, 0x8000]}, 0x5c) 15:53:03 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x100d0000}, 0x0) 15:53:03 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3320.090157][T27409] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3320.124911][T27409] CPU: 1 PID: 27409 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3320.133690][T27409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3320.143832][T27409] Call Trace: [ 3320.147159][T27409] dump_stack+0x107/0x163 [ 3320.151504][T27409] sysfs_warn_dup.cold+0x1c/0x29 [ 3320.156455][T27409] sysfs_do_create_link_sd+0x11e/0x140 [ 3320.161938][T27409] sysfs_create_link+0x5f/0xc0 [ 3320.166814][T27409] device_add+0x79a/0x1ce0 [ 3320.171243][T27409] ? devlink_add_symlinks+0x450/0x450 [ 3320.176625][T27409] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3320.182622][T27409] wiphy_register+0x1dfc/0x2900 [ 3320.187494][T27409] ? wiphy_unregister+0xbb0/0xbb0 [ 3320.192534][T27409] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3320.198741][T27409] ieee80211_register_hw+0x1b0f/0x3b00 [ 3320.204223][T27409] ? ieee80211_restart_hw+0x290/0x290 [ 3320.209606][T27409] ? debug_object_destroy+0x210/0x210 [ 3320.214999][T27409] ? memset+0x20/0x40 [ 3320.218992][T27409] ? __hrtimer_init+0x136/0x280 [ 3320.223959][T27409] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3320.229714][T27409] ? hwsim_virtio_rx_work+0x350/0x350 [ 3320.235229][T27409] ? __kmalloc_track_caller+0x21b/0x3d0 15:53:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x24}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x25}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3320.240891][T27409] ? memcpy+0x39/0x60 [ 3320.243477][T27417] IPVS: ftp: loaded support on port[0] = 21 [ 3320.245015][T27409] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3320.245042][T27409] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3320.245086][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3320.269376][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3320.276683][T27409] genl_family_rcv_msg_doit+0x228/0x320 [ 3320.282243][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3320.289624][T27409] ? ns_capable+0xde/0x100 [ 3320.294048][T27409] genl_rcv_msg+0x328/0x580 [ 3320.298562][T27409] ? genl_get_cmd+0x480/0x480 [ 3320.303251][T27409] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3320.309157][T27409] ? lock_release+0x710/0x710 [ 3320.314791][T27409] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3320.320102][T27409] netlink_rcv_skb+0x153/0x420 [ 3320.324893][T27409] ? genl_get_cmd+0x480/0x480 [ 3320.329581][T27409] ? netlink_ack+0xaa0/0xaa0 [ 3320.334316][T27409] genl_rcv+0x24/0x40 15:53:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x26}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3320.338300][T27409] netlink_unicast+0x533/0x7d0 [ 3320.343065][T27409] ? netlink_attachskb+0x810/0x810 [ 3320.348938][T27409] ? __phys_addr_symbol+0x2c/0x70 [ 3320.353962][T27409] ? __check_object_size+0x171/0x3f0 [ 3320.359244][T27409] netlink_sendmsg+0x856/0xd90 [ 3320.364035][T27409] ? netlink_unicast+0x7d0/0x7d0 [ 3320.368989][T27409] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3320.375161][T27409] ? netlink_unicast+0x7d0/0x7d0 [ 3320.380824][T27409] sock_sendmsg+0xcf/0x120 [ 3320.385242][T27409] ____sys_sendmsg+0x6e8/0x810 [ 3320.390011][T27409] ? kernel_sendmsg+0x50/0x50 [ 3320.395678][T27409] ? do_recvmmsg+0x6c0/0x6c0 [ 3320.400274][T27409] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3320.406467][T27409] ___sys_sendmsg+0xf3/0x170 [ 3320.411073][T27409] ? sendmsg_copy_msghdr+0x160/0x160 [ 3320.416886][T27409] ? __fget_files+0x272/0x400 [ 3320.421559][T27409] ? lock_downgrade+0x6d0/0x6d0 [ 3320.426407][T27409] ? find_held_lock+0x2d/0x110 [ 3320.432023][T27409] ? __fget_files+0x294/0x400 [ 3320.436834][T27409] ? __fget_light+0xea/0x280 [ 3320.441428][T27409] __sys_sendmsg+0xe5/0x1b0 [ 3320.445959][T27409] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3320.451790][T27409] ? __do_sys_futex+0x2a2/0x470 [ 3320.456661][T27409] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3320.462624][T27409] do_syscall_64+0x2d/0x70 [ 3320.467532][T27409] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3320.473418][T27409] RIP: 0033:0x45deb9 [ 3320.477748][T27409] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3320.497516][T27409] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3320.506287][T27409] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3320.515223][T27409] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3320.523193][T27409] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3320.531686][T27409] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3320.540283][T27409] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x27}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3320.599561][T27416] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3320.675920][T27410] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3320.734054][T27410] CPU: 1 PID: 27410 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3320.742825][T27410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3320.752874][T27410] Call Trace: [ 3320.756163][T27410] dump_stack+0x107/0x163 [ 3320.760494][T27410] sysfs_warn_dup.cold+0x1c/0x29 [ 3320.765435][T27410] sysfs_do_create_link_sd+0x11e/0x140 [ 3320.770895][T27410] sysfs_create_link+0x5f/0xc0 [ 3320.775660][T27410] device_add+0x79a/0x1ce0 [ 3320.780082][T27410] ? devlink_add_symlinks+0x450/0x450 [ 3320.785460][T27410] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3320.791452][T27410] wiphy_register+0x1dfc/0x2900 [ 3320.796319][T27410] ? wiphy_unregister+0xbb0/0xbb0 [ 3320.801357][T27410] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3320.807448][T27410] ieee80211_register_hw+0x1b0f/0x3b00 [ 3320.812930][T27410] ? ieee80211_restart_hw+0x290/0x290 [ 3320.818306][T27410] ? debug_object_destroy+0x210/0x210 [ 3320.823682][T27410] ? memset+0x20/0x40 [ 3320.827668][T27410] ? __hrtimer_init+0x136/0x280 [ 3320.832522][T27410] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3320.838256][T27410] ? hwsim_virtio_rx_work+0x350/0x350 [ 3320.843624][T27410] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3320.849147][T27410] ? memcpy+0x39/0x60 [ 3320.853160][T27410] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3320.858249][T27410] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3320.864121][T27410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3320.871464][T27410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3320.878740][T27410] genl_family_rcv_msg_doit+0x228/0x320 [ 3320.884278][T27410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3320.891633][T27410] ? ns_capable+0xde/0x100 [ 3320.896057][T27410] genl_rcv_msg+0x328/0x580 [ 3320.900544][T27410] ? genl_get_cmd+0x480/0x480 [ 3320.905299][T27410] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3320.911179][T27410] ? lock_release+0x710/0x710 [ 3320.915852][T27410] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3320.921121][T27410] netlink_rcv_skb+0x153/0x420 [ 3320.925865][T27410] ? genl_get_cmd+0x480/0x480 [ 3320.930522][T27410] ? netlink_ack+0xaa0/0xaa0 [ 3320.935104][T27410] genl_rcv+0x24/0x40 [ 3320.939065][T27410] netlink_unicast+0x533/0x7d0 [ 3320.943807][T27410] ? netlink_attachskb+0x810/0x810 [ 3320.948895][T27410] ? __phys_addr_symbol+0x2c/0x70 [ 3320.953892][T27410] ? __check_object_size+0x171/0x3f0 [ 3320.959154][T27410] netlink_sendmsg+0x856/0xd90 [ 3320.963895][T27410] ? netlink_unicast+0x7d0/0x7d0 [ 3320.968812][T27410] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3320.974077][T27410] ? netlink_unicast+0x7d0/0x7d0 [ 3320.978990][T27410] sock_sendmsg+0xcf/0x120 [ 3320.983384][T27410] ____sys_sendmsg+0x6e8/0x810 [ 3320.988125][T27410] ? kernel_sendmsg+0x50/0x50 [ 3320.992781][T27410] ? do_recvmmsg+0x6c0/0x6c0 [ 3320.997357][T27410] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3321.003323][T27410] ___sys_sendmsg+0xf3/0x170 [ 3321.007891][T27410] ? sendmsg_copy_msghdr+0x160/0x160 [ 3321.013158][T27410] ? __fget_files+0x272/0x400 [ 3321.017812][T27410] ? lock_downgrade+0x6d0/0x6d0 [ 3321.022642][T27410] ? find_held_lock+0x2d/0x110 [ 3321.027420][T27410] ? __fget_files+0x294/0x400 [ 3321.032084][T27410] ? __fget_light+0xea/0x280 [ 3321.036740][T27410] __sys_sendmsg+0xe5/0x1b0 [ 3321.041222][T27410] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3321.046226][T27410] ? __do_sys_futex+0x2a2/0x470 [ 3321.051064][T27410] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3321.056937][T27410] do_syscall_64+0x2d/0x70 [ 3321.061330][T27410] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3321.067197][T27410] RIP: 0033:0x45deb9 [ 3321.071075][T27410] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3321.090654][T27410] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3321.099045][T27410] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3321.106997][T27410] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3321.114951][T27410] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3321.122903][T27410] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3321.130850][T27410] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x28}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3321.173010][T27409] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3321.206057][T27409] CPU: 1 PID: 27409 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 15:53:04 executing program 3: r0 = socket$inet_smc(0x2b, 0x1, 0x0) sendto$inet(r0, &(0x7f0000000000)="fc4b3c1583a7aeeba94b35605505138c5181b3fd8674f799a5262af2e8b8bc135d2699dc5bcdf9427cdbb4f112f509430e9863fd6564e05b8d8ef0e7bfda324be3d294ee157de7fce888b2e644b936a3631bd633cf73c93ad3c5748d55933d2064fbb59c7347751d8793ab6bb6c4d26803e1fb5310dfdff6a2", 0x79, 0x48050, &(0x7f0000000100)={0x2, 0x4e20, @multicast2}, 0x10) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140), 0x4) r1 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x4e22, 0xfffffffe, @empty}, 0x0, [0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x80000000]}, 0x5c) [ 3321.214974][T27409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3321.226680][T27409] Call Trace: [ 3321.229980][T27409] dump_stack+0x107/0x163 [ 3321.234320][T27409] sysfs_warn_dup.cold+0x1c/0x29 [ 3321.239268][T27409] sysfs_do_create_link_sd+0x11e/0x140 [ 3321.244733][T27409] sysfs_create_link+0x5f/0xc0 [ 3321.249529][T27409] device_add+0x79a/0x1ce0 [ 3321.253961][T27409] ? devlink_add_symlinks+0x450/0x450 [ 3321.259442][T27409] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3321.265435][T27409] wiphy_register+0x1dfc/0x2900 [ 3321.270385][T27409] ? wiphy_unregister+0xbb0/0xbb0 [ 3321.275444][T27409] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3321.281753][T27409] ieee80211_register_hw+0x1b0f/0x3b00 [ 3321.287719][T27409] ? ieee80211_restart_hw+0x290/0x290 [ 3321.293106][T27409] ? debug_object_destroy+0x210/0x210 [ 3321.298612][T27409] ? memset+0x20/0x40 [ 3321.302674][T27409] ? __hrtimer_init+0x136/0x280 [ 3321.307549][T27409] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3321.313302][T27409] ? hwsim_virtio_rx_work+0x350/0x350 [ 3321.318684][T27409] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3321.324244][T27409] ? memcpy+0x39/0x60 [ 3321.328892][T27409] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3321.334020][T27409] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3321.339941][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3321.347795][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3321.355095][T27409] genl_family_rcv_msg_doit+0x228/0x320 [ 3321.360757][T27409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3321.368327][T27409] ? ns_capable+0xde/0x100 [ 3321.372745][T27409] genl_rcv_msg+0x328/0x580 [ 3321.377252][T27409] ? genl_get_cmd+0x480/0x480 [ 3321.381938][T27409] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3321.387835][T27409] ? lock_release+0x710/0x710 [ 3321.392508][T27409] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3321.398668][T27409] netlink_rcv_skb+0x153/0x420 [ 3321.403439][T27409] ? genl_get_cmd+0x480/0x480 [ 3321.408666][T27409] ? netlink_ack+0xaa0/0xaa0 [ 3321.413276][T27409] genl_rcv+0x24/0x40 [ 3321.417601][T27409] netlink_unicast+0x533/0x7d0 [ 3321.422566][T27409] ? netlink_attachskb+0x810/0x810 [ 3321.428480][T27409] ? __phys_addr_symbol+0x2c/0x70 [ 3321.433507][T27409] ? __check_object_size+0x171/0x3f0 [ 3321.439068][T27409] netlink_sendmsg+0x856/0xd90 [ 3321.444432][T27409] ? netlink_unicast+0x7d0/0x7d0 [ 3321.450223][T27409] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3321.455841][T27409] ? netlink_unicast+0x7d0/0x7d0 [ 3321.461362][T27409] sock_sendmsg+0xcf/0x120 [ 3321.465779][T27409] ____sys_sendmsg+0x6e8/0x810 [ 3321.471374][T27409] ? kernel_sendmsg+0x50/0x50 [ 3321.476043][T27409] ? do_recvmmsg+0x6c0/0x6c0 [ 3321.481265][T27409] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3321.487251][T27409] ___sys_sendmsg+0xf3/0x170 [ 3321.492481][T27409] ? sendmsg_copy_msghdr+0x160/0x160 [ 3321.498654][T27409] ? __fget_files+0x272/0x400 [ 3321.504145][T27409] ? lock_downgrade+0x6d0/0x6d0 [ 3321.508996][T27409] ? find_held_lock+0x2d/0x110 [ 3321.514335][T27409] ? __fget_files+0x294/0x400 [ 3321.519016][T27409] ? __fget_light+0xea/0x280 [ 3321.524022][T27409] __sys_sendmsg+0xe5/0x1b0 [ 3321.528652][T27409] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3321.534410][T27409] ? __do_sys_futex+0x2a2/0x470 [ 3321.539989][T27409] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3321.545904][T27409] do_syscall_64+0x2d/0x70 [ 3321.551101][T27409] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3321.556986][T27409] RIP: 0033:0x45deb9 [ 3321.561036][T27409] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3321.581287][T27409] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3321.590080][T27409] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3321.598606][T27409] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3321.606572][T27409] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3321.614687][T27409] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3321.623093][T27409] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3321.664802][T27443] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3321.724383][T27441] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3321.768322][T27441] CPU: 0 PID: 27441 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3321.777090][T27441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3321.787137][T27441] Call Trace: [ 3321.790427][T27441] dump_stack+0x107/0x163 [ 3321.794755][T27441] sysfs_warn_dup.cold+0x1c/0x29 [ 3321.799704][T27441] sysfs_do_create_link_sd+0x11e/0x140 [ 3321.805708][T27441] sysfs_create_link+0x5f/0xc0 [ 3321.810902][T27441] device_add+0x79a/0x1ce0 [ 3321.815417][T27441] ? devlink_add_symlinks+0x450/0x450 [ 3321.820882][T27441] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3321.827010][T27441] wiphy_register+0x1dfc/0x2900 [ 3321.831895][T27441] ? wiphy_unregister+0xbb0/0xbb0 [ 3321.837554][T27441] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3321.843632][T27441] ieee80211_register_hw+0x1b0f/0x3b00 [ 3321.849930][T27441] ? ieee80211_restart_hw+0x290/0x290 [ 3321.855316][T27441] ? debug_object_destroy+0x210/0x210 [ 3321.861028][T27441] ? memset+0x20/0x40 [ 3321.865908][T27441] ? __hrtimer_init+0x136/0x280 [ 3321.871306][T27441] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3321.877496][T27441] ? hwsim_virtio_rx_work+0x350/0x350 [ 3321.882866][T27441] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3321.889040][T27441] ? memcpy+0x39/0x60 [ 3321.893028][T27441] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3321.898621][T27441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3321.904532][T27441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3321.911900][T27441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3321.919188][T27441] genl_family_rcv_msg_doit+0x228/0x320 [ 3321.925457][T27441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3321.932839][T27441] ? ns_capable+0xde/0x100 [ 3321.937632][T27441] genl_rcv_msg+0x328/0x580 [ 3321.942138][T27441] ? genl_get_cmd+0x480/0x480 [ 3321.946822][T27441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3321.952717][T27441] ? lock_release+0x710/0x710 [ 3321.957786][T27441] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3321.963076][T27441] netlink_rcv_skb+0x153/0x420 [ 3321.968198][T27441] ? genl_get_cmd+0x480/0x480 [ 3321.972872][T27441] ? netlink_ack+0xaa0/0xaa0 [ 3321.977460][T27441] genl_rcv+0x24/0x40 [ 3321.981429][T27441] netlink_unicast+0x533/0x7d0 [ 3321.986194][T27441] ? netlink_attachskb+0x810/0x810 [ 3321.991301][T27441] ? __phys_addr_symbol+0x2c/0x70 [ 3321.997003][T27441] ? __check_object_size+0x171/0x3f0 [ 3322.002295][T27441] netlink_sendmsg+0x856/0xd90 [ 3322.007085][T27441] ? netlink_unicast+0x7d0/0x7d0 [ 3322.012320][T27441] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3322.017789][T27441] ? netlink_unicast+0x7d0/0x7d0 [ 3322.022721][T27441] sock_sendmsg+0xcf/0x120 [ 3322.027129][T27441] ____sys_sendmsg+0x6e8/0x810 [ 3322.032218][T27441] ? kernel_sendmsg+0x50/0x50 [ 3322.036891][T27441] ? do_recvmmsg+0x6c0/0x6c0 [ 3322.041489][T27441] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3322.047476][T27441] ___sys_sendmsg+0xf3/0x170 [ 3322.052813][T27441] ? sendmsg_copy_msghdr+0x160/0x160 [ 3322.058475][T27441] ? __fget_files+0x272/0x400 [ 3322.063152][T27441] ? lock_downgrade+0x6d0/0x6d0 [ 3322.068257][T27441] ? find_held_lock+0x2d/0x110 [ 3322.073026][T27441] ? __fget_files+0x294/0x400 [ 3322.077703][T27441] ? __fget_light+0xea/0x280 [ 3322.082299][T27441] __sys_sendmsg+0xe5/0x1b0 [ 3322.086795][T27441] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3322.091819][T27441] ? __do_sys_futex+0x2a2/0x470 [ 3322.097204][T27441] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3322.103104][T27441] do_syscall_64+0x2d/0x70 [ 3322.107516][T27441] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3322.114292][T27441] RIP: 0033:0x45deb9 [ 3322.118490][T27441] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3322.138595][T27441] RSP: 002b:00007f6138fe9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3322.147046][T27441] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3322.155305][T27441] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3322.163278][T27441] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3322.171315][T27441] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3322.179801][T27441] R13: 00007ffcdabc015f R14: 00007f6138fea9c0 R15: 000000000118bfd4 15:53:07 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x3a, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x29}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f92b}, 0x0) 15:53:07 executing program 3: setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x3, 0x0, @mcast1}, {0xa, 0x0, 0xfffffffe, @empty}, 0x0, [0x0, 0x0, 0x2]}, 0x5c) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000000)={@mcast2, 0x0}, &(0x7f0000000040)=0x14) setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000100)={r0, 0x1, 0x6}, 0x10) 15:53:07 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x2, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:07 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x20000000}, 0x0) [ 3323.555102][T27499] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3323.579419][T27499] CPU: 1 PID: 27499 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3323.588304][T27499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3323.598357][T27499] Call Trace: [ 3323.601663][T27499] dump_stack+0x107/0x163 [ 3323.606011][T27499] sysfs_warn_dup.cold+0x1c/0x29 [ 3323.610964][T27499] sysfs_do_create_link_sd+0x11e/0x140 [ 3323.616440][T27499] sysfs_create_link+0x5f/0xc0 [ 3323.618792][T27508] IPVS: ftp: loaded support on port[0] = 21 [ 3323.621199][T27499] device_add+0x79a/0x1ce0 [ 3323.621221][T27499] ? devlink_add_symlinks+0x450/0x450 [ 3323.621242][T27499] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3323.621262][T27499] wiphy_register+0x1dfc/0x2900 [ 3323.621287][T27499] ? wiphy_unregister+0xbb0/0xbb0 [ 3323.655960][T27499] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3323.662479][T27499] ieee80211_register_hw+0x1b0f/0x3b00 [ 3323.667948][T27499] ? ieee80211_restart_hw+0x290/0x290 [ 3323.673902][T27499] ? debug_object_destroy+0x210/0x210 [ 3323.679608][T27499] ? memset+0x20/0x40 [ 3323.684154][T27499] ? __hrtimer_init+0x136/0x280 [ 3323.689099][T27499] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3323.695027][T27499] ? hwsim_virtio_rx_work+0x350/0x350 [ 3323.701165][T27499] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3323.707492][T27499] ? memcpy+0x39/0x60 [ 3323.711768][T27499] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3323.716906][T27499] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3323.722828][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3323.730197][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3323.737485][T27499] genl_family_rcv_msg_doit+0x228/0x320 [ 3323.743040][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3323.750417][T27499] ? ns_capable+0xde/0x100 15:53:07 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @loopback}, 0x0, [0x0, 0xfff, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x5c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r3, r1, 0x0, 0x100000001) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000100)={{{@in=@loopback, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in=@remote}}, &(0x7f0000000280)=0xe8) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000000040)={'syztnl2\x00', &(0x7f0000000200)={'syztnl1\x00', r5, 0x2f, 0x14, 0x80, 0xfffff235, 0xc, @ipv4={[], [], @broadcast}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x700, 0x10, 0x0, 0x4000000}}) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@ipv4={[], [], @initdev}, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@loopback}}, &(0x7f00000003c0)=0xe8) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r8 = openat$cgroup_ro(r7, &(0x7f0000000540)='freezer.parent_freezing\x00', 0x0, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r8}, 0x25) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r9, r7, 0x0, 0x100000001) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r9, 0x84, 0x1e, &(0x7f00000004c0), &(0x7f0000000500)=0x4) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000480)={'ip6gre0\x00', &(0x7f0000000400)={'ip6gre0\x00', r6, 0x2f, 0x5, 0x81, 0x80000000, 0x1, @local, @empty, 0x7800, 0x700, 0x0, 0x40}}) 15:53:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2a}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3323.754958][T27499] genl_rcv_msg+0x328/0x580 [ 3323.759468][T27499] ? genl_get_cmd+0x480/0x480 [ 3323.764145][T27499] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3323.770038][T27499] ? lock_release+0x710/0x710 [ 3323.774712][T27499] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3323.780002][T27499] netlink_rcv_skb+0x153/0x420 [ 3323.784763][T27499] ? genl_get_cmd+0x480/0x480 [ 3323.789458][T27499] ? netlink_ack+0xaa0/0xaa0 [ 3323.794079][T27499] genl_rcv+0x24/0x40 [ 3323.798056][T27499] netlink_unicast+0x533/0x7d0 15:53:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2b}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3323.802819][T27499] ? netlink_attachskb+0x810/0x810 [ 3323.807924][T27499] ? __phys_addr_symbol+0x2c/0x70 [ 3323.812953][T27499] ? __check_object_size+0x171/0x3f0 [ 3323.818231][T27499] netlink_sendmsg+0x856/0xd90 [ 3323.823011][T27499] ? netlink_unicast+0x7d0/0x7d0 [ 3323.827976][T27499] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3323.833255][T27499] ? netlink_unicast+0x7d0/0x7d0 [ 3323.838185][T27499] sock_sendmsg+0xcf/0x120 [ 3323.842699][T27499] ____sys_sendmsg+0x6e8/0x810 [ 3323.847697][T27499] ? kernel_sendmsg+0x50/0x50 [ 3323.852381][T27499] ? do_recvmmsg+0x6c0/0x6c0 [ 3323.856979][T27499] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3323.862982][T27499] ___sys_sendmsg+0xf3/0x170 [ 3323.867575][T27499] ? sendmsg_copy_msghdr+0x160/0x160 [ 3323.872863][T27499] ? __fget_files+0x272/0x400 [ 3323.877536][T27499] ? lock_downgrade+0x6d0/0x6d0 [ 3323.882378][T27499] ? find_held_lock+0x2d/0x110 [ 3323.887147][T27499] ? __fget_files+0x294/0x400 [ 3323.891831][T27499] ? __fget_light+0xea/0x280 [ 3323.896425][T27499] __sys_sendmsg+0xe5/0x1b0 [ 3323.900939][T27499] ? __sys_sendmsg_sock+0xb0/0xb0 15:53:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2c}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3323.905976][T27499] ? __do_sys_futex+0x2a2/0x470 [ 3323.910862][T27499] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3323.916760][T27499] do_syscall_64+0x2d/0x70 [ 3323.921174][T27499] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3323.927065][T27499] RIP: 0033:0x45deb9 [ 3323.930962][T27499] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:53:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2d}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3323.950554][T27499] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3323.958961][T27499] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3323.966947][T27499] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3323.974920][T27499] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3323.982888][T27499] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3323.990858][T27499] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3324.032273][T27500] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3324.123136][T27507] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3324.167466][T27507] CPU: 0 PID: 27507 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3324.176659][T27507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3324.186713][T27507] Call Trace: [ 3324.190490][T27507] dump_stack+0x107/0x163 [ 3324.195272][T27507] sysfs_warn_dup.cold+0x1c/0x29 [ 3324.201060][T27507] sysfs_do_create_link_sd+0x11e/0x140 [ 3324.207485][T27507] sysfs_create_link+0x5f/0xc0 [ 3324.212448][T27507] device_add+0x79a/0x1ce0 [ 3324.217164][T27507] ? devlink_add_symlinks+0x450/0x450 [ 3324.223156][T27507] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3324.229361][T27507] wiphy_register+0x1dfc/0x2900 [ 3324.235118][T27507] ? wiphy_unregister+0xbb0/0xbb0 [ 3324.240165][T27507] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3324.246550][T27507] ieee80211_register_hw+0x1b0f/0x3b00 [ 3324.252810][T27507] ? ieee80211_restart_hw+0x290/0x290 [ 3324.258726][T27507] ? debug_object_destroy+0x210/0x210 [ 3324.264802][T27507] ? memset+0x20/0x40 [ 3324.269346][T27507] ? __hrtimer_init+0x136/0x280 [ 3324.274207][T27507] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3324.280154][T27507] ? hwsim_virtio_rx_work+0x350/0x350 [ 3324.286307][T27507] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3324.291868][T27507] ? memcpy+0x39/0x60 [ 3324.295862][T27507] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3324.300985][T27507] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3324.307251][T27507] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3324.314853][T27507] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3324.322902][T27507] genl_family_rcv_msg_doit+0x228/0x320 [ 3324.329308][T27507] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3324.337334][T27507] ? ns_capable+0xde/0x100 [ 3324.341759][T27507] genl_rcv_msg+0x328/0x580 [ 3324.346272][T27507] ? genl_get_cmd+0x480/0x480 [ 3324.350969][T27507] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3324.356949][T27507] ? lock_release+0x710/0x710 [ 3324.361622][T27507] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3324.366914][T27507] netlink_rcv_skb+0x153/0x420 [ 3324.371677][T27507] ? genl_get_cmd+0x480/0x480 [ 3324.376393][T27507] ? netlink_ack+0xaa0/0xaa0 [ 3324.381046][T27507] genl_rcv+0x24/0x40 [ 3324.385333][T27507] netlink_unicast+0x533/0x7d0 [ 3324.390357][T27507] ? netlink_attachskb+0x810/0x810 [ 3324.395547][T27507] ? __phys_addr_symbol+0x2c/0x70 [ 3324.400578][T27507] ? __check_object_size+0x171/0x3f0 [ 3324.406302][T27507] netlink_sendmsg+0x856/0xd90 [ 3324.411078][T27507] ? netlink_unicast+0x7d0/0x7d0 [ 3324.416031][T27507] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3324.421731][T27507] ? netlink_unicast+0x7d0/0x7d0 [ 3324.427397][T27507] sock_sendmsg+0xcf/0x120 [ 3324.431876][T27507] ____sys_sendmsg+0x6e8/0x810 [ 3324.436641][T27507] ? kernel_sendmsg+0x50/0x50 [ 3324.441301][T27507] ? do_recvmmsg+0x6c0/0x6c0 [ 3324.445874][T27507] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3324.451849][T27507] ___sys_sendmsg+0xf3/0x170 [ 3324.456422][T27507] ? sendmsg_copy_msghdr+0x160/0x160 [ 3324.461683][T27507] ? __fget_files+0x272/0x400 [ 3324.466345][T27507] ? lock_downgrade+0x6d0/0x6d0 [ 3324.471181][T27507] ? find_held_lock+0x2d/0x110 [ 3324.475928][T27507] ? __fget_files+0x294/0x400 [ 3324.480600][T27507] ? __fget_light+0xea/0x280 [ 3324.485180][T27507] __sys_sendmsg+0xe5/0x1b0 [ 3324.489658][T27507] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3324.494656][T27507] ? __do_sys_futex+0x2a2/0x470 [ 3324.499488][T27507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3324.505363][T27507] do_syscall_64+0x2d/0x70 [ 3324.509763][T27507] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3324.515630][T27507] RIP: 0033:0x45deb9 [ 3324.519499][T27507] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3324.539074][T27507] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3324.547481][T27507] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3324.555456][T27507] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:53:08 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) sendmmsg$sock(r0, &(0x7f0000003640)=[{{&(0x7f0000000000)=@in6={0xa, 0x4e23, 0xcc4, @ipv4={[], [], @broadcast}, 0x80}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000100)="db760120b50fbda7f80491d0e294bbb03289e2ea37660de3af0bc93bdf251b44692b48b67438c5144d8fda01cc920d2f6d889ba637d87dd0884fd2d1f2c108cb7dcaff5a0b74a4b399730abd734a2b7c61fe9e4c8c9d32a77c903d4eede94338fa5f27d1e5ccefd61e07cd655a4697d7d69459f2ec46f0642a8cc354d50825", 0x7f}, {&(0x7f0000000180)="1989e5b172311fe48d395354dffb16a0427d3472e76b6f93dcee5b9f4ea9d0d8dc888c177c5e595de6adc0dea0cd69ae876592b587deb769acee416588d5a4cf34567e04e6c93bf4de629e55da88f63be5fb00bd4a4d122d36a75ec3703ca79fa14a8a66f70cb4a5fdcaee261771986b3e", 0x71}], 0x2, &(0x7f0000000240)=[@timestamping={{0x14, 0x1, 0x25, 0x76}}, @mark={{0x14, 0x1, 0x24, 0x7fffffff}}, @timestamping={{0x14, 0x1, 0x25, 0x3f}}, @txtime={{0x18, 0x1, 0x3d, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0xff}}, @txtime={{0x18, 0x1, 0x3d, 0x6}}], 0xa8}}, {{&(0x7f0000000300)=@vsock={0x28, 0x0, 0x2711, @local}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000380)="7ff2ce4a564a3f0499912fe1b4aa8865b4f0b58fbfd410a75156605b065743a9c6719d13bc5eaccbb44c958c4db60287197f3e74fafd79e3bae5f87818de63dc850ef44d1705e17481886a9d5b689dd766ec195a90b34096bca3a58b8d2992ad019b32", 0x63}], 0x1, &(0x7f0000000440)=[@mark={{0x14, 0x1, 0x24, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0xa39}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffa}}, @timestamping={{0x14, 0x1, 0x25, 0x82e}}, @timestamping={{0x14, 0x1, 0x25, 0xfffffffb}}, @mark={{0x14}}, @timestamping={{0x14, 0x1, 0x25, 0x1000}}, @mark={{0x14, 0x1, 0x24, 0x8001}}, @mark={{0x14, 0x1, 0x24, 0x7}}], 0xd8}}, {{&(0x7f0000000540)=@un=@abs={0x0, 0x0, 0x4e21}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000005c0)="b821a9a04ecc4a438103aa9ff95b3088e78b89f35d90f9834df1c7becb", 0x1d}, {&(0x7f0000000600)="6c5cbf7cb4a84ea58f8a0b49bdb61fdc4cea034359ab2820a862df144b6b64703e01f14c554592b42f2d26c5bc2d7f31cdc01d337c682c2897d7f6a1c09878876b15113cab8356f8abc2e718e59c4aec6cc9a50b03179d25558633baaae727acd16357b15d852e2a47fde88b6904b6a482dead85acf6c51e935c488f253b832d122c53704f8354fcab8bd525730d24f2d7613b90688e96679358a75cac5ca6a62d8a95d0c15d3728114a1e9bce1fb16a26f0d8e172cdd9b88ceecd8e17bce7a1", 0xc0}], 0x2, &(0x7f0000000700)=[@txtime={{0x18, 0x1, 0x3d, 0xf51f}}], 0x18}}, {{&(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x40}}, 0x2, 0x0, 0x0, 0x3}}, 0x80, &(0x7f00000008c0)=[{&(0x7f00000007c0)="e6d90b51d7241b5a75453008b6474b132829a2eab42d652eda7d133424c21625f721bc4a7dfb30591af9466b21ba8b131e82fda356256bd5c56606b8e529d974c2304656533f086f62e0a3dd7b449598e6586fdac6213236c60d48b2baa1b89ece73a1608c059ed1108d4a10e4f2f1f07cf9c61e551e828f8fccd951a75e3d1d89980fbbdf266ac0c781f486d9785131ec027e6408a733f08a16289ce3c6e7098ce7c8e99dbed7026dce49706205da56491c57e984de13d1371a0d94ac68a0d393c76b46f296f0cb539d0c09ffa69700031310ad091ec8816be43a1c70cfaa76c111a1fa", 0xe4}], 0x1, &(0x7f0000000900)=[@txtime={{0x18, 0x1, 0x3d, 0x40}}, @timestamping={{0x14, 0x1, 0x25, 0x93bd}}, @txtime={{0x18, 0x1, 0x3d, 0x100000000}}, @timestamping={{0x14}}], 0x60}}, {{&(0x7f0000000980)=@ethernet={0x1}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000a00)="3a4a9e220587e2296a1baa859029832dc2aa3604bc8b78abda414a13576879957be9f617eb1f5d136857642443632c61ebcc402459cf0bcf21978fa071b2cdd2532acaa44407c73bd8e0644ad703124c8fa6146a502c7bf37d2c24ffa5a4fcf77a9bc108eee4b31d7cf2ba4fe5e33d46c18b7b4e8344474cbd4b0b1f687b7099f1c53852b71d0b8160f97bf2ee89", 0x8e}, {&(0x7f0000000ac0)="597710cb8e4cd627601408ac6bf20ca484ee3f23f192ac54f6f641c65c8cb3cf4b813182c69f3a3cd1b2178a152680898c89d94ede7ff08f20391c2bf9084f86670d5994f4edf478082cf3d20a3adf4fa8088d555ba9a5ad1204bd4706d7884e85f6a1eff752c7779aa752bb0636cc", 0x6f}, {&(0x7f0000000b40)="13cd8a", 0x3}, {&(0x7f0000000b80)="6cf1fd292d13c59ee801c9cc0a7f03eb4a37146595977e9c3133f04f0c5ca4b1c0b6f324a9f16a40520610de6fe3cd4beb286948d4a0a89f13b6d24f2e52875109df93e65699a7dea401eec09e7d0d6ce096ab96eb2c3bef795b42cf7f07f807b150e715ca9c1db4c419bd3948ffac64e71375dbf902c04464e1a0", 0x7b}, {&(0x7f0000000c00)="ae52763135f8dd3ea1df", 0xa}, {&(0x7f0000000c40)="5b2780ec243d75c088876fe64c4a1f98420155591fd91bb6c04b3966ad0411f3def50220f665dae932b7d8857aeea0a0b311566b148d781054a89fbf8f456cb0430ea501e415f9b16d5ce50bceea70b48c857f031c15ebf2dbdb9722a73945c66557c877ef1e7509979e50f3df3809d5b5c02e6cd40b47", 0x77}, {&(0x7f0000000cc0)="99fd3824f4990398dded3f856b9795293127d64cf120914d75633d07bb06bedc57a91f962de73c485dc702417e27faec9a3f39d0f8dfc7d7c7cc0a76b755bfa3e5c8f425f173936aedd7d899a78a1c05e4d3f17dc70776a2c8e728166527d51919eee5267d17cd482ae13a51c5a74f8e601707aadb05dd975b6804c90c56d8075bee8d85893b70c4272b45e116a3e8c6af91cbaaed5c7f226258cc88884cc39ad4fe8d61b470c5bdf4d28644d8c05bbc43b3026f0dffd892137f12b0b5c0cd70fe9a11f63c23e5fb5e14b71face18bc4419084c79823ce4f8f06fa6007e83afb39546445fa3b43d95ca664311d985ecee83ba7957969b8f7031d6ee65f3c6624521f3f616a8c9c55fb6a3d8722d224190e238ac2fe427882896c0d79a197919d78b78fe3a586147f41ee6b6afb8d11f9bba65127248342e5ee0bda06fec62dd174e9c53071e7d6199e3e67b1c9725cf66fc4caf738befde39d6843c996d0b830ca83bcf2479311f6a5b4315f2acbbd6d97b51f1916cc232aecdca2f044ea5141f9a06a0ebaba75c165a6532d32552a78b0fa014457d869c34c79342475fcf9816d8e35cd98adfbfc2fce3963341e38f0d6c377e8a384efccb6fc83d72bed8bf7daf7781c2d4747d83f7767252690b9d03042fef397f67cefaab08ae955a5beca6521d99c3ff34a4e3bb44370208f70aae1859e83de3d3c98337b807fe7dee398349640b889585ebb17f98348cf92f33ea9cc0ee0011d9ef2c110f8b697767ac3d89e69f67242511e836e81072a0ff476a847a2ff98320c94825e03575cd769a81c63e097ee89da0b5dde2a4f1095647ec55422ce0527a805857349aec1bc01f6f4a8e9be913c57dad0dceeaf612cf9e957a0cfad12d8e08759e3bced65e9a71417b74c4d01531581f1ee1d20173fd6ec81327062ed81923c8e6f1d0a83f2f81041a41ff3b7ea43579a2412dbaf9201de555e0bfcd40f4fc3e357e49e8a0a3751debce9f40071cc1aaef04d497f7b7ceb0ee2a154210adea3404340737bfe9814bebec7872e07bba41aef92a08c3d6b6d5b30cbc6f9be15aca7073dccbce42a44a86fe653f4a3fa316ab9bf5840429b264c36054eb862ea713a29aa39089d02f2d8bbc34a04e619fc077830a597233abc545d66011a4191e0247ece89f0650a2dcb0d8d9d3bdb0b683ae78f20efbba551e4c3f85900a780dd29ccc5898b76b9b69d05b58c5ba17ca470c3fa6c80e5d60f197e6ae70109bfe047de558f46f2c972a1e784753427582275c54db77a76e263bb68de70d04439048dccf41be745104bd64662e24ac39b307bf521e67ddfe868d40b9c58b2b4cde0c0deeea9ac67c2cb611151528fe505f57715b70f6a4778ce06fed6ffc1239bb8f750e19234d0bc768c78f05c0f97cb444a947073c9a677480ec0021f6098cb071d4f14089c85bfd9fc91fd6474f4bb457ae06b71eaf5d4000720588ad7e370b12dee91ea46cb3a761dc4523395003a29e9a14fd0cac26d3335d7ae5a4080d5c3ad9161854b55eda0de2df9a6f4648fcc9568eeef186010ecb36a906cda78733ee3ba6777ffd253dae7247b82b15f6398d7ad14941b7fb56383abe5b6aaf9943eb4697a92e3fba9afae8375dd295227434ec8e6809e3b6972b943e61ca740bbdb80791daa8ee31ffec69bffcdf9aa4f97e3b71b05b14bc3d69ff815680af2c921a4c5a4e3a37ed5dd10bdca2e95098f9dbdae8d50d5a5511a6c31bf642b706c5fd833021df8115c8f86524cd753d7a48da61471f9d10abd3da8fddbdedda1d45ab4689ff465c1b6b9ed2eb3b909a4ef652c2f2bc49a9d631438078dd274c4b79e9d5f7ef67c2146b3bdf01458fba4fd1ea27b381065c3b64958be19743e74a37b6c2915cbcf62d62cf1fc5fdd62fb25efb23f31edc2b7c348d0aaf4f2650a1136d4d234abd443a4b85b9abd840fd5aaddf8a313a7ba9af8a011ed7333e49bd19dc282e61d321e718e1e46f6e99cc3f59bb7e40f11b51eb7fe0c1584901eba334bc11d52d6e6a969347f47e122f7b2a9f6c2109a0c65333403c2bff500757a887963a840a67b6b0261db5485700a879739e49f3125c9798eef5b7ba4cc3754ead67c123ed4439f18f201f1a6f48b8493e22525eb7c94db7517f865c31c1b8cdc32599b30583ee25693840be025a279d14f4fd64e1cd34e298bc48987666ed785af441bd8d72b5d69c526895a1db77ab92fb3546ee93ef4f04cb193f0d67b975cf56f830d6ce1223943c2491a280b0ab8ee0fdd9dde7247abe5ecf31cc0752d03423fc748cd738190bfdace0e68e620508c173f441ea0a944acd9b32495688086d8cc8a8e5972f4101664632009331fc5ba3f1153b0df9f51a665cca0366a7286a22c196a5a67a2be952c06bb79f4ae87c8b3b00d6a37f6951c9f10b3bc9a6bf18db1298799dfb90e1c283d41a75fd8126026783d5c2630ce850dc10a2f699ec54ca25e31142072283c72d159ce1e5f97399f6293dc10ac12d235e80d4d34475f135b42cf7960b3da3bb3f832bdc76b23bfe975a0e2a402b8f58c9974ea186b9a7614f4b9f29aa92b3a488fb71c70fe75425ed16cae7d7c77d6f6e6ed868e24d99263b57267fa9a84769ffd6b43ae20240309e07cde779e60e2409d27f8c9e0646d56aed103a028009814a0ad2564659330726a8be36bd696c9c768a0832c9ebeedeb9536c040e65c019cee0c1f39669e2953049af41c293d69d57ed85e7dd69a31e455dc2313b6cb43a3c5aa0232906239e25e072c122beb8f3f20f9218405e55c9ae85ce1addcaff1b65d95c2914548ea30c5d14133d8591f099b7026433076d4e20c956f7b98beedcb04aba7f35e3a7c31b270e632d7713552f761778952ab5957f139798679e19219170a0500dd3e2224f64e35ad95b79cfaa9f8a73750e486672a1c1c4da664944911097e71afa57e154519826b289887b6ed5cef705ad5f1559ca6af4d966e78c79dda790a2107feb74e32064270b27cdb631a87cf8a527e9f3a39bac1cd32e4ed21c2ca719b2fb343a5caa551c9b3c5229b061cfce915d74b4b41b740d59cbc52228658fde6ce72425a7f74b531330e958dc487b6965b0dac60707c16556cffb2efa6e46836c5aa0f81334e6abe9bb836bf851f3036d3a1002a2c7aaea3ebc65e4e89e041d492fc9cde07fd8bf18888a5dbf2fe42181d1474be1f433544eebe8329a5a34508ebb5e636bd750ecc3f24ba6c3b1519790067969b0cd789f16d9d3b0d705626111a5f09645c706f1b9580a2ccd3a570f26bf04bab8f2eeebbb1e0d93c50577f4ab00afea486424c1c2b72555441731d37fc48dd465a39f594650b590fbb7a4e08947453e879b65b5f68a460d5ea0ec16935634187c893ba1dab65740e20e2f2f2493cf33f1ddebd7ac2be7d620bdb350b1143a8fc97654e7d04fc55dab8771a712b73a9b8f9bf33b7ab92a240a9147dd7783128b4c1790e39a7d30b00d072a8db9965ee283fe71b7638ad9ddae870c4cca31b58e184d3776b56af59e4e5e985c366450b8b0d9751446cb22efed2b67e00c17d92d29f47e4e7f32576b1fb2c64e14170180fb33b6c73adc33c5b87227ae03acf0ac259d02cda10e2e9646f6da67bb2e2c69dc81f027580adbe352ff45c0c6db54766460a4d1e0d4cdd388f64eab9dd9bb51dedc30647dbba7c4a629488f51e9317941401da0b09f77600fb34d258b42dfa4d2d8d1166cab702ba8745cdfa61eb668c61ff303df181bc6adaebecff8b595990bc762872b9a60f6db65733d779b1660f5b6a84220e0cd087e07d8bdb8a2689c17e038ee704bae9b1c928d1ef6381104f674755a22f732f7cbab33684d62f7f5abb04eac1b6833626879ffdfb5938a028e301b44d5b26ce5fa45a0bf480e7c02386d69d2b30784b6000e2d39a9bb2914d424d6ded01bed5b457cf9c4d7204d71146547818f688b23b39b1c2c0eeedd1898bca91d9725fb3e340f0593f8a49513e11c48ec79347a26e849fa3791cb20df21776c2ee3bdefb481570c8ee0909934e63d1fcd5a7b327d036d27d07ce515ad4602207f5055ee421eea89c73ab04cad40a22ce192fc463b11615add2bf4ac80725b67e7e0305c57211ad56e7596b50c2fdd11bc5bd944e8f104bde57f0d705e9beaa32da5293e25fc536a1e4e27855ec51a887b094646011fbfeb58723676de4fb7397f4f25ec9a52c18316664b6698906c3a6bd4790481a8b7b1d6be817b748ed762195262b9257097a9246374c78bd06a07b770cd888da3bda661c3828e35788d454a228865303d71a54ff0e446a8b0c76051880a4ff7ec9d4a6157e9bb8998b558e20eb018883aee28d5c25dc161170a741ca870f3a9c5305bdfd5be32ad6118930e577ec2b885809620abe283e1b8a68bb2ea069ddcdfe94718a6b9cdc339647b9effb1d6422fc9bb3be78e6610d10cd96b4b942b96b446989d643b6c723a536fddefc1828d21fbc9160b585e79126282cff2bc23bf4676dbac39ca1d197cd4aef29129acdddf3fa04bbf3a6f4f2acc5f20d94cede45f34d2cc077f90d69ee2cb391a70a655c46cd5669b51eb59a710cd961acf41850eaf9129252cb43cb893600983f03fb2306787ba9c541a773be16e8db3c369848ae3c510cf79d5bd4288ac38a83dc606958c6b6f043c2ea615a17bb595c11371c2ca90ab7801f94d1d26219358caf21b932ff597d44fef5749d751645a422281022abdee695c504f91225f49cf0566fdef65ef93de41b06b1adafb4605ec34c2b6b2ca4febc50768168f756bced761e349d9be1e48e43ae22880e60af78ae599ed4bf5ba2ac496fecd7a2a708146c25fa5c9da9132095f4d9e833fe90259f87ac71c336ae13c378ff07e91667dd270a5065305bc3cd30ef3568c92097dc3a6a04b07102d20c4e7b5514b3baf76b78efcced90c1d7c542ce188cbd45e2550bbc7c72f4a016b47d25db51f08bdd67726729fe41e16cfda28d419ca5fcbe2d8e920b6fe4d06b81ca2a651ef0f03a6f1e955d7e502033854d8aad7caf3a57eee4ee5b670d4ed958b1a6e5d5f20baeb726b763345d0f6e6eeaa99b95792060c5d5caac35506b4194fc46e3eabe0b3d703679318ab5f215330e830b9a8d9c01757830abb95c7b3166c8738f860151dce7b1c72346bf2bb34226db82f86e10d661ecf5e70944b05f7f47dc3978162f4bb101310881611c817fc35be094186c2e184e0878ff199b04f74b6b06621818767c5128e0b6d4cdf5d652de0268c317b7d1baf508e4d7bac760a963867d22b91cb5415d679f63307ab96d5c8b23ab67743a25e434367766058e8d65744f899c42fb7edddb390354569c9b0f4c037defb79fa267cf97b9047e0dce395b8c8cce0f59fa6b8606739fc41276bcd62b10fe85094d6389abaa11982d92b779d93041e26254413529bd7703f80e4b18f2af54b8a2d077a25d47ef6139b2b532d196115f64c0f8d025b0fa30823b7005f9d29a4773087f286ddbc2eab38ee3ab955d1820ddd5e188716f4dbff35029cda6425aaeee1ecdf3cc5076acd2d7f8ade512a39c8682a628e662c1f55e75bb7aaf8f5cd36eda1154b45f48b24784bc6d0589b55c85882dffd7f9578020fdfc18b617797739c87d930c5ad289454cd447fabe7f052eefef92a4c6bb490b0eccec95ddd231ca0edf3127fb06ddc4295a332ecab37ce15f1f41d1df8b879a83664ea74d1ac2e1822b4f9f6fb16819149b16361ae5ccdea9f2ccfff27dd2aefd03a224ac23ab49c3fe1bf80846ab128dccd18ae60869fdf9", 0x1000}], 0x7, &(0x7f0000001d40)=[@mark={{0x14, 0x1, 0x24, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x7f}}, @txtime={{0x18, 0x1, 0x3d, 0x80}}], 0x78}}, {{0x0, 0x0, &(0x7f0000003080)=[{&(0x7f0000001dc0)="04c7f351d8ce543fedf7cc67b4f61c7cfaada18ef5e90d09660966fd798e0f47373e3b605bd0b50605cc314896bf49a6709a36ffc0b2f011d5a6820251dbbfe5967b728e2605726871502fdc7951a356f1a458a639bbcccc0ae70b9b0aa6747bc0ca8f57fba28a2ad5b533e65c522bbe48938d821a07f4602800ecc352370d15b020cfccb50a94e0f223d6f8d754253a90e8484502c4288332fb176093437d85a01f0aef4c9bf9cccaead71f5a6de382d2068ac966c0c497130a62e1246c6488baf71703da4dd1b687d4b2d7a3babadd7b128380c4dec9d8eca62b9e7f288200196e19ef7cf25a428fe22d50c9", 0xed}, {&(0x7f0000001ec0)="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", 0x1000}, {&(0x7f0000002ec0)="931aab5bd249669544beedeebc6ad3d9dada8aa14c9d46a1f23ba86a0b089d577713f6082f6ffdec64f4", 0x2a}, {&(0x7f0000002f00)="7754cc13f32f5fdca4234cee20cf2609c1e9ae14d21ed2e558cd5d5c56447b7646926994e37493ba36ecefc253211ea8b046370f0e6835e2b0e7dce7a8506293b121e6a0a5b5f24cdd31902aa40d57890bf27c79c53082a511d531bcc16d1ac5d3e5d019cf31b184505b14a200981f7796024eb9296bebea5c0a4cc2a54fa58b4f169104f5704172d1ee6b4cecd74673c963f01b8f67326fab04026a41f350178502fdee7efcdfe894601d6e72a77a70b57ffb2527b2cac27b7f1ec66f018d0bd8f453ec", 0xc4}, {&(0x7f0000003000)="87db68909f6857a0b6fb4533171b81afc5ee19bcd17b8cf3c2f4c1c89bd6a8860532a0d4bb592783c287", 0x2a}, {&(0x7f0000003040)="080a52d9d97016c2c5edf0e63c451a6771406cc3144d9b9419b4dc0800df6dcc642b3578d4bcb763c5ac", 0x2a}], 0x6, &(0x7f0000003100)=[@timestamping={{0x14, 0x1, 0x25, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x8}}], 0x30}}, {{&(0x7f0000003140)=@nl=@kern={0x10, 0x0, 0x0, 0x8000000}, 0x80, &(0x7f0000003540)=[{&(0x7f00000031c0)="eebbc2428c48c9f8dc99f87e4e275022d4f4a625482c7813f9210fdf533d3b3c0e960d529309d75559a84d71ca3e051872d10c8ed82d02eeec33a1ca3ac904f70a2f23f19aed1b48f1069aadbc386d78bc2076d3c104a6d283c241ed2f12868a9fb40cabf30448bc59f5077fc05035c6d3df9af5d1eb428cbe43df42a9ad95c6a1ff088780ad5e550070a8063c65a5b564154b42de840e357d9d718e377a72fdb500016ee51f2d52d15b12eeb3052431e1a5407e598370", 0xb7}, {&(0x7f0000003280)="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", 0xfa}, {&(0x7f0000003380)="f6b6c177a155e674d035e30f8172a99af5863ee94fe62d86a1ab25ccf02423b1cddaabd9bf4d77c8fb827492d6f70f5973b87f18d962f2630a27968ca83a1b0db231097b25e2c929310e60f11785af30d210ba9c4db8d955d2d556be81b65111ed7a731712b26d6fb002145373ecdcdd9117b09b834ce1196a0dbc55724f99bbf1cfd591982e442aee9b17be4ada3ee8e97c", 0x92}, {&(0x7f0000003440)="ed7ab89241b7b18d0b81f8b7794fe7bb0f338572f6a73c7ec0dcb1736587a764cf6614ef1207be4f4b9c3790790348b624de5e6df9c98172ba909fe7fcfc47390bb55b6819a894758865da9d4a1359967779523c1645a73cf63ae916fcf1fce609dfa10c22368499f4395694208dfcd07985048bf9f9cc40f28fe8ececbe4138f18bac48afcfd8e06db5365938658192fd7cf427a0b3ad4c9e8378b13e82b11625f32d2c11cdb7715b0644d7102a0e4f54d5", 0xb2}, {&(0x7f0000003500)="280571c7676ddf0e43f8", 0xa}], 0x5, &(0x7f00000035c0)=[@txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffffa}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}], 0x60}}], 0x7, 0x4000001) [ 3324.563411][T27507] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3324.571358][T27507] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3324.579299][T27507] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3324.631907][T27538] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3324.635432][T27511] IPVS: ftp: loaded support on port[0] = 21 [ 3324.688809][T27499] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3324.733454][T27499] CPU: 1 PID: 27499 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3324.742230][T27499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3324.752277][T27499] Call Trace: [ 3324.755589][T27499] dump_stack+0x107/0x163 [ 3324.759923][T27499] sysfs_warn_dup.cold+0x1c/0x29 [ 3324.764892][T27499] sysfs_do_create_link_sd+0x11e/0x140 [ 3324.770359][T27499] sysfs_create_link+0x5f/0xc0 [ 3324.775211][T27499] device_add+0x79a/0x1ce0 [ 3324.779630][T27499] ? devlink_add_symlinks+0x450/0x450 [ 3324.785008][T27499] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3324.790995][T27499] wiphy_register+0x1dfc/0x2900 [ 3324.795859][T27499] ? wiphy_unregister+0xbb0/0xbb0 [ 3324.800908][T27499] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3324.806981][T27499] ieee80211_register_hw+0x1b0f/0x3b00 [ 3324.812456][T27499] ? ieee80211_restart_hw+0x290/0x290 [ 3324.817832][T27499] ? debug_object_destroy+0x210/0x210 [ 3324.823207][T27499] ? memset+0x20/0x40 [ 3324.828085][T27499] ? __hrtimer_init+0x136/0x280 [ 3324.833187][T27499] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3324.838924][T27499] ? hwsim_virtio_rx_work+0x350/0x350 [ 3324.845163][T27499] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3324.851401][T27499] ? memcpy+0x39/0x60 [ 3324.855591][T27499] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3324.861082][T27499] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3324.867760][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3324.876146][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3324.883727][T27499] genl_family_rcv_msg_doit+0x228/0x320 [ 3324.889392][T27499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3324.897426][T27499] ? ns_capable+0xde/0x100 [ 3324.902449][T27499] genl_rcv_msg+0x328/0x580 [ 3324.907686][T27499] ? genl_get_cmd+0x480/0x480 [ 3324.912723][T27499] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3324.918752][T27499] ? lock_release+0x710/0x710 [ 3324.923952][T27499] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3324.929778][T27499] netlink_rcv_skb+0x153/0x420 [ 3324.934978][T27499] ? genl_get_cmd+0x480/0x480 [ 3324.940144][T27499] ? netlink_ack+0xaa0/0xaa0 [ 3324.945276][T27499] genl_rcv+0x24/0x40 [ 3324.949263][T27499] netlink_unicast+0x533/0x7d0 [ 3324.954198][T27499] ? netlink_attachskb+0x810/0x810 [ 3324.959621][T27499] ? __phys_addr_symbol+0x2c/0x70 [ 3324.965660][T27499] ? __check_object_size+0x171/0x3f0 [ 3324.971343][T27499] netlink_sendmsg+0x856/0xd90 [ 3324.976877][T27499] ? netlink_unicast+0x7d0/0x7d0 [ 3324.982278][T27499] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3324.987931][T27499] ? netlink_unicast+0x7d0/0x7d0 [ 3324.993147][T27499] sock_sendmsg+0xcf/0x120 [ 3324.997588][T27499] ____sys_sendmsg+0x6e8/0x810 [ 3325.002352][T27499] ? kernel_sendmsg+0x50/0x50 [ 3325.007024][T27499] ? do_recvmmsg+0x6c0/0x6c0 [ 3325.011625][T27499] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3325.017599][T27499] ___sys_sendmsg+0xf3/0x170 [ 3325.022166][T27499] ? sendmsg_copy_msghdr+0x160/0x160 [ 3325.027431][T27499] ? __fget_files+0x272/0x400 [ 3325.032082][T27499] ? lock_downgrade+0x6d0/0x6d0 [ 3325.036911][T27499] ? find_held_lock+0x2d/0x110 [ 3325.041684][T27499] ? __fget_files+0x294/0x400 [ 3325.046337][T27499] ? __fget_light+0xea/0x280 [ 3325.050906][T27499] __sys_sendmsg+0xe5/0x1b0 [ 3325.055385][T27499] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3325.060384][T27499] ? __do_sys_futex+0x2a2/0x470 [ 3325.065226][T27499] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3325.071107][T27499] do_syscall_64+0x2d/0x70 [ 3325.075535][T27499] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3325.081412][T27499] RIP: 0033:0x45deb9 [ 3325.085283][T27499] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3325.104864][T27499] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3325.113255][T27499] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3325.121205][T27499] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3325.129152][T27499] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3325.137103][T27499] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3325.145072][T27499] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:11 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x7, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2e}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:11 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x3, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f92c}, 0x0) 15:53:11 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r1, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', 0x0}) setsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000040)={@mcast2, r2}, 0x14) 15:53:11 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2a6fc480}, 0x0) [ 3327.899272][T27621] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3327.937866][T27624] IPVS: ftp: loaded support on port[0] = 21 [ 3327.952913][T27620] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3327.965229][T27620] CPU: 1 PID: 27620 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3327.974001][T27620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3327.984058][T27620] Call Trace: [ 3327.987356][T27620] dump_stack+0x107/0x163 [ 3327.991694][T27620] sysfs_warn_dup.cold+0x1c/0x29 [ 3327.997088][T27620] sysfs_do_create_link_sd+0x11e/0x140 [ 3328.002557][T27620] sysfs_create_link+0x5f/0xc0 [ 3328.007333][T27620] device_add+0x79a/0x1ce0 [ 3328.011757][T27620] ? devlink_add_symlinks+0x450/0x450 [ 3328.017136][T27620] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3328.023128][T27620] wiphy_register+0x1dfc/0x2900 [ 3328.027991][T27620] ? wiphy_unregister+0xbb0/0xbb0 [ 3328.033000][T27620] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3328.039049][T27620] ieee80211_register_hw+0x1b0f/0x3b00 [ 3328.044500][T27620] ? ieee80211_restart_hw+0x290/0x290 [ 3328.049850][T27620] ? debug_object_destroy+0x210/0x210 [ 3328.055203][T27620] ? memset+0x20/0x40 [ 3328.059164][T27620] ? __hrtimer_init+0x136/0x280 [ 3328.063994][T27620] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3328.069695][T27620] ? hwsim_virtio_rx_work+0x350/0x350 [ 3328.075042][T27620] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3328.080563][T27620] ? memcpy+0x39/0x60 [ 3328.084527][T27620] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3328.089622][T27620] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3328.095523][T27620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3328.102879][T27620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3328.110136][T27620] genl_family_rcv_msg_doit+0x228/0x320 [ 3328.115659][T27620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3328.123009][T27620] ? ns_capable+0xde/0x100 [ 3328.127401][T27620] genl_rcv_msg+0x328/0x580 [ 3328.131880][T27620] ? genl_get_cmd+0x480/0x480 [ 3328.136547][T27620] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3328.142418][T27620] ? lock_release+0x710/0x710 [ 3328.147072][T27620] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3328.152338][T27620] netlink_rcv_skb+0x153/0x420 [ 3328.157081][T27620] ? genl_get_cmd+0x480/0x480 [ 3328.161735][T27620] ? netlink_ack+0xaa0/0xaa0 [ 3328.166314][T27620] genl_rcv+0x24/0x40 [ 3328.170285][T27620] netlink_unicast+0x533/0x7d0 [ 3328.175039][T27620] ? netlink_attachskb+0x810/0x810 [ 3328.180138][T27620] ? __phys_addr_symbol+0x2c/0x70 [ 3328.185163][T27620] ? __check_object_size+0x171/0x3f0 [ 3328.190444][T27620] netlink_sendmsg+0x856/0xd90 [ 3328.195195][T27620] ? netlink_unicast+0x7d0/0x7d0 [ 3328.200117][T27620] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3328.205379][T27620] ? netlink_unicast+0x7d0/0x7d0 [ 3328.210293][T27620] sock_sendmsg+0xcf/0x120 [ 3328.214687][T27620] ____sys_sendmsg+0x6e8/0x810 [ 3328.219427][T27620] ? kernel_sendmsg+0x50/0x50 [ 3328.224090][T27620] ? do_recvmmsg+0x6c0/0x6c0 [ 3328.228680][T27620] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3328.234640][T27620] ___sys_sendmsg+0xf3/0x170 [ 3328.239207][T27620] ? sendmsg_copy_msghdr+0x160/0x160 [ 3328.244468][T27620] ? __fget_files+0x272/0x400 [ 3328.249119][T27620] ? lock_downgrade+0x6d0/0x6d0 [ 3328.253949][T27620] ? find_held_lock+0x2d/0x110 [ 3328.258693][T27620] ? __fget_files+0x294/0x400 [ 3328.263344][T27620] ? __fget_light+0xea/0x280 [ 3328.267914][T27620] __sys_sendmsg+0xe5/0x1b0 [ 3328.272396][T27620] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3328.277394][T27620] ? __do_sys_futex+0x2a2/0x470 [ 3328.282251][T27620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3328.288120][T27620] do_syscall_64+0x2d/0x70 [ 3328.292523][T27620] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3328.298460][T27620] RIP: 0033:0x45deb9 [ 3328.302338][T27620] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3328.321916][T27620] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3328.330305][T27620] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3328.338248][T27620] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3328.346336][T27620] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:53:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2f}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3328.354281][T27620] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3328.362324][T27620] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3328.404909][T27621] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3328.472023][T27618] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3328.523144][T27618] CPU: 0 PID: 27618 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3328.531998][T27618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3328.542785][T27618] Call Trace: [ 3328.546083][T27618] dump_stack+0x107/0x163 [ 3328.550421][T27618] sysfs_warn_dup.cold+0x1c/0x29 [ 3328.555369][T27618] sysfs_do_create_link_sd+0x11e/0x140 [ 3328.561567][T27618] sysfs_create_link+0x5f/0xc0 [ 3328.566466][T27618] device_add+0x79a/0x1ce0 [ 3328.571419][T27618] ? devlink_add_symlinks+0x450/0x450 [ 3328.577122][T27618] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3328.583115][T27618] wiphy_register+0x1dfc/0x2900 [ 3328.587975][T27618] ? wiphy_unregister+0xbb0/0xbb0 [ 3328.593014][T27618] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3328.599174][T27618] ieee80211_register_hw+0x1b0f/0x3b00 [ 3328.604651][T27618] ? ieee80211_restart_hw+0x290/0x290 [ 3328.610029][T27618] ? debug_object_destroy+0x210/0x210 [ 3328.615416][T27618] ? memset+0x20/0x40 15:53:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x30}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3328.619408][T27618] ? __hrtimer_init+0x136/0x280 [ 3328.624264][T27618] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3328.630005][T27618] ? hwsim_virtio_rx_work+0x350/0x350 [ 3328.635504][T27618] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3328.641057][T27618] ? memcpy+0x39/0x60 [ 3328.645138][T27618] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3328.650257][T27618] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3328.656386][T27618] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3328.663772][T27618] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3328.671058][T27618] genl_family_rcv_msg_doit+0x228/0x320 [ 3328.676614][T27618] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3328.683997][T27618] ? ns_capable+0xde/0x100 [ 3328.688421][T27618] genl_rcv_msg+0x328/0x580 [ 3328.693140][T27618] ? genl_get_cmd+0x480/0x480 [ 3328.698182][T27618] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3328.704077][T27618] ? lock_release+0x710/0x710 [ 3328.709032][T27618] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3328.715270][T27618] netlink_rcv_skb+0x153/0x420 15:53:12 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x13f92d}, 0x0) [ 3328.720037][T27618] ? genl_get_cmd+0x480/0x480 [ 3328.724743][T27618] ? netlink_ack+0xaa0/0xaa0 [ 3328.729358][T27618] genl_rcv+0x24/0x40 [ 3328.733534][T27618] netlink_unicast+0x533/0x7d0 [ 3328.738303][T27618] ? netlink_attachskb+0x810/0x810 [ 3328.743761][T27618] ? __phys_addr_symbol+0x2c/0x70 [ 3328.748874][T27618] ? __check_object_size+0x171/0x3f0 [ 3328.754180][T27618] netlink_sendmsg+0x856/0xd90 [ 3328.758960][T27618] ? netlink_unicast+0x7d0/0x7d0 [ 3328.763903][T27618] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3328.769182][T27618] ? netlink_unicast+0x7d0/0x7d0 [ 3328.774116][T27618] sock_sendmsg+0xcf/0x120 [ 3328.778998][T27618] ____sys_sendmsg+0x6e8/0x810 [ 3328.784004][T27618] ? kernel_sendmsg+0x50/0x50 [ 3328.789142][T27618] ? do_recvmmsg+0x6c0/0x6c0 [ 3328.793737][T27618] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3328.799722][T27618] ___sys_sendmsg+0xf3/0x170 [ 3328.804307][T27618] ? sendmsg_copy_msghdr+0x160/0x160 [ 3328.809956][T27618] ? __fget_files+0x272/0x400 [ 3328.814634][T27618] ? lock_downgrade+0x6d0/0x6d0 [ 3328.819498][T27618] ? find_held_lock+0x2d/0x110 [ 3328.824278][T27618] ? __fget_files+0x294/0x400 [ 3328.828963][T27618] ? __fget_light+0xea/0x280 [ 3328.833678][T27618] __sys_sendmsg+0xe5/0x1b0 [ 3328.839011][T27618] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3328.844544][T27618] ? __do_sys_futex+0x2a2/0x470 [ 3328.849416][T27618] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3328.855494][T27618] do_syscall_64+0x2d/0x70 [ 3328.859911][T27618] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3328.865831][T27618] RIP: 0033:0x45deb9 [ 3328.869730][T27618] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3328.889396][T27618] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3328.898035][T27618] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3328.906011][T27618] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3328.914645][T27618] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:53:12 executing program 3: socketpair(0x9, 0x6, 0x463, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xc8, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x51, 0x56}}}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="69d9f4ea4520"}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x5}, @key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}, @NL80211_ATTR_KEY_DEFAULT={0x4}], @key_params=[@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_SEQ={0xd, 0xa, "b8e189ea80d065c3fd"}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x24, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}], @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x368}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}]]}, 0xc8}, 0x1, 0x0, 0x0, 0x4048000}, 0x20040000) r1 = socket$inet6(0xa, 0x3, 0x3a) socketpair(0x1d, 0x3, 0x8000, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000040)=0xffff0001, 0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3328.922611][T27618] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3328.930839][T27618] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x31}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:12 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x4, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3329.026932][T27632] IPVS: ftp: loaded support on port[0] = 21 [ 3329.056679][T27650] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3329.116208][T27650] CPU: 1 PID: 27650 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3329.124985][T27650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3329.135044][T27650] Call Trace: [ 3329.138351][T27650] dump_stack+0x107/0x163 [ 3329.142689][T27650] sysfs_warn_dup.cold+0x1c/0x29 [ 3329.147633][T27650] sysfs_do_create_link_sd+0x11e/0x140 [ 3329.153100][T27650] sysfs_create_link+0x5f/0xc0 [ 3329.157874][T27650] device_add+0x79a/0x1ce0 [ 3329.162295][T27650] ? devlink_add_symlinks+0x450/0x450 [ 3329.167666][T27650] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3329.173653][T27650] wiphy_register+0x1dfc/0x2900 [ 3329.178516][T27650] ? wiphy_unregister+0xbb0/0xbb0 [ 3329.183553][T27650] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3329.189627][T27650] ieee80211_register_hw+0x1b0f/0x3b00 [ 3329.195107][T27650] ? ieee80211_restart_hw+0x290/0x290 [ 3329.200492][T27650] ? debug_object_destroy+0x210/0x210 [ 3329.205883][T27650] ? memset+0x20/0x40 [ 3329.209878][T27650] ? __hrtimer_init+0x136/0x280 [ 3329.214759][T27650] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3329.221253][T27650] ? hwsim_virtio_rx_work+0x350/0x350 [ 3329.226706][T27650] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3329.232258][T27650] ? memcpy+0x39/0x60 [ 3329.236727][T27650] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3329.242603][T27650] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3329.248742][T27650] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3329.256416][T27650] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3329.264700][T27650] genl_family_rcv_msg_doit+0x228/0x320 [ 3329.271016][T27650] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3329.279038][T27650] ? ns_capable+0xde/0x100 [ 3329.284057][T27650] genl_rcv_msg+0x328/0x580 [ 3329.288799][T27650] ? genl_get_cmd+0x480/0x480 [ 3329.293623][T27650] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3329.300044][T27650] ? lock_release+0x710/0x710 [ 3329.304742][T27650] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3329.310140][T27650] netlink_rcv_skb+0x153/0x420 [ 3329.314911][T27650] ? genl_get_cmd+0x480/0x480 [ 3329.319590][T27650] ? netlink_ack+0xaa0/0xaa0 [ 3329.324725][T27650] genl_rcv+0x24/0x40 [ 3329.329430][T27650] netlink_unicast+0x533/0x7d0 [ 3329.334963][T27650] ? netlink_attachskb+0x810/0x810 [ 3329.340544][T27650] ? __phys_addr_symbol+0x2c/0x70 [ 3329.345898][T27650] ? __check_object_size+0x171/0x3f0 [ 3329.351462][T27650] netlink_sendmsg+0x856/0xd90 [ 3329.356755][T27650] ? netlink_unicast+0x7d0/0x7d0 [ 3329.362011][T27650] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3329.367621][T27650] ? netlink_unicast+0x7d0/0x7d0 [ 3329.372758][T27650] sock_sendmsg+0xcf/0x120 [ 3329.377172][T27650] ____sys_sendmsg+0x6e8/0x810 [ 3329.382199][T27650] ? kernel_sendmsg+0x50/0x50 [ 3329.387435][T27650] ? do_recvmmsg+0x6c0/0x6c0 [ 3329.392550][T27650] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3329.399326][T27650] ___sys_sendmsg+0xf3/0x170 [ 3329.404412][T27650] ? sendmsg_copy_msghdr+0x160/0x160 [ 3329.409851][T27650] ? __fget_files+0x272/0x400 [ 3329.414769][T27650] ? lock_downgrade+0x6d0/0x6d0 [ 3329.419611][T27650] ? find_held_lock+0x2d/0x110 [ 3329.424544][T27650] ? __fget_files+0x294/0x400 [ 3329.429893][T27650] ? __fget_light+0xea/0x280 [ 3329.435236][T27650] __sys_sendmsg+0xe5/0x1b0 [ 3329.440546][T27650] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3329.445877][T27650] ? __do_sys_futex+0x2a2/0x470 [ 3329.451155][T27650] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3329.457943][T27650] do_syscall_64+0x2d/0x70 [ 3329.463021][T27650] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3329.469418][T27650] RIP: 0033:0x45deb9 [ 3329.473480][T27650] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3329.493078][T27650] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3329.501488][T27650] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3329.509657][T27650] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3329.517659][T27650] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3329.526057][T27650] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3329.534226][T27650] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3329.685627][T27673] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3329.786542][T27673] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:13 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x14, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:13 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x40) r1 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r1, 0x8983, &(0x7f00000013c0)) r2 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000000)={0x84, 0xa, [], [@generic={0x3, 0x17, "d05f93d4b725435063c2e26ba2442ff9b238ba73868da8"}, @jumbo={0xc2, 0x4, 0x7}, @calipso={0x7, 0x20, {0x0, 0x6, 0x3, 0x401, [0xfffffffffffff2b1, 0x7, 0x5]}}, @enc_lim={0x4, 0x1, 0x18}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1]}, 0x60) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e24, 0x0, @private1}, {0xa, 0x0, 0x0, @empty, 0x6}}, 0x5c) 15:53:13 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x3f000000}, 0x0) 15:53:13 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xf0ffff}, 0x0) 15:53:13 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x32}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:13 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x5, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3330.043400][T27732] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3330.078543][T27735] IPVS: ftp: loaded support on port[0] = 21 15:53:13 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x8, &(0x7f0000000000)=[{0x9, 0xf8, 0xe0, 0x24b}, {0xff00, 0xa5, 0x2, 0xfffffffc}, {0x0, 0x8, 0x20, 0x8ca2}, {0x4, 0x5, 0x2, 0x800}, {0x1, 0x7f, 0x56, 0x40}, {0x8, 0x2, 0x3f, 0x1000}, {0x3, 0x5, 0x9, 0x3}, {0x5, 0x5, 0xff, 0x9}]}) [ 3330.126775][T27733] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:53:13 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x33}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3330.168733][T27733] CPU: 0 PID: 27733 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3330.177527][T27733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3330.187575][T27733] Call Trace: [ 3330.190872][T27733] dump_stack+0x107/0x163 [ 3330.195217][T27733] sysfs_warn_dup.cold+0x1c/0x29 [ 3330.200165][T27733] sysfs_do_create_link_sd+0x11e/0x140 [ 3330.205639][T27733] sysfs_create_link+0x5f/0xc0 [ 3330.210414][T27733] device_add+0x79a/0x1ce0 [ 3330.214879][T27733] ? devlink_add_symlinks+0x450/0x450 [ 3330.220262][T27733] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3330.226274][T27733] wiphy_register+0x1dfc/0x2900 [ 3330.231139][T27733] ? wiphy_unregister+0xbb0/0xbb0 [ 3330.236178][T27733] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3330.242254][T27733] ieee80211_register_hw+0x1b0f/0x3b00 [ 3330.247736][T27733] ? ieee80211_restart_hw+0x290/0x290 [ 3330.253119][T27733] ? debug_object_destroy+0x210/0x210 [ 3330.258499][T27733] ? memset+0x20/0x40 [ 3330.262488][T27733] ? __hrtimer_init+0x136/0x280 15:53:13 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x34}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3330.267351][T27733] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3330.273097][T27733] ? hwsim_virtio_rx_work+0x350/0x350 [ 3330.278471][T27733] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3330.284022][T27733] ? memcpy+0x39/0x60 [ 3330.288028][T27733] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3330.293151][T27733] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3330.299064][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3330.306447][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3330.313753][T27733] genl_family_rcv_msg_doit+0x228/0x320 15:53:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x35}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3330.319311][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3330.326783][T27733] ? ns_capable+0xde/0x100 [ 3330.331308][T27733] genl_rcv_msg+0x328/0x580 [ 3330.335822][T27733] ? genl_get_cmd+0x480/0x480 [ 3330.340499][T27733] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3330.346396][T27733] ? lock_release+0x710/0x710 [ 3330.351075][T27733] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3330.356453][T27733] netlink_rcv_skb+0x153/0x420 [ 3330.361218][T27733] ? genl_get_cmd+0x480/0x480 [ 3330.365916][T27733] ? netlink_ack+0xaa0/0xaa0 [ 3330.370527][T27733] genl_rcv+0x24/0x40 [ 3330.374504][T27733] netlink_unicast+0x533/0x7d0 [ 3330.379269][T27733] ? netlink_attachskb+0x810/0x810 [ 3330.384378][T27733] ? __phys_addr_symbol+0x2c/0x70 [ 3330.389391][T27733] ? __check_object_size+0x171/0x3f0 [ 3330.394671][T27733] netlink_sendmsg+0x856/0xd90 [ 3330.399437][T27733] ? netlink_unicast+0x7d0/0x7d0 [ 3330.404382][T27733] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3330.409667][T27733] ? netlink_unicast+0x7d0/0x7d0 [ 3330.414687][T27733] sock_sendmsg+0xcf/0x120 15:53:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x36}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3330.419098][T27733] ____sys_sendmsg+0x6e8/0x810 [ 3330.423870][T27733] ? kernel_sendmsg+0x50/0x50 [ 3330.428544][T27733] ? do_recvmmsg+0x6c0/0x6c0 [ 3330.433131][T27733] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3330.439102][T27733] ___sys_sendmsg+0xf3/0x170 [ 3330.443681][T27733] ? sendmsg_copy_msghdr+0x160/0x160 [ 3330.448960][T27733] ? __fget_files+0x272/0x400 [ 3330.453636][T27733] ? lock_downgrade+0x6d0/0x6d0 [ 3330.458481][T27733] ? find_held_lock+0x2d/0x110 [ 3330.463247][T27733] ? __fget_files+0x294/0x400 15:53:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x37}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3330.467927][T27733] ? __fget_light+0xea/0x280 [ 3330.472516][T27733] __sys_sendmsg+0xe5/0x1b0 [ 3330.477012][T27733] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3330.482034][T27733] ? __do_sys_futex+0x2a2/0x470 [ 3330.486903][T27733] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3330.492924][T27733] do_syscall_64+0x2d/0x70 [ 3330.497344][T27733] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3330.503235][T27733] RIP: 0033:0x45deb9 [ 3330.507171][T27733] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3330.526773][T27733] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3330.535177][T27733] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3330.543137][T27733] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3330.551104][T27733] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3330.559071][T27733] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3330.567039][T27733] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3330.635820][T27732] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3330.689485][T27734] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3330.735876][T27734] CPU: 1 PID: 27734 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3330.744646][T27734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3330.754695][T27734] Call Trace: [ 3330.757996][T27734] dump_stack+0x107/0x163 [ 3330.762434][T27734] sysfs_warn_dup.cold+0x1c/0x29 [ 3330.767375][T27734] sysfs_do_create_link_sd+0x11e/0x140 [ 3330.772833][T27734] sysfs_create_link+0x5f/0xc0 [ 3330.777602][T27734] device_add+0x79a/0x1ce0 [ 3330.782024][T27734] ? devlink_add_symlinks+0x450/0x450 [ 3330.787699][T27734] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3330.793689][T27734] wiphy_register+0x1dfc/0x2900 [ 3330.798627][T27734] ? wiphy_unregister+0xbb0/0xbb0 [ 3330.803661][T27734] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3330.809737][T27734] ieee80211_register_hw+0x1b0f/0x3b00 [ 3330.815220][T27734] ? ieee80211_restart_hw+0x290/0x290 [ 3330.820639][T27734] ? debug_object_destroy+0x210/0x210 [ 3330.826040][T27734] ? memset+0x20/0x40 [ 3330.830033][T27734] ? __hrtimer_init+0x136/0x280 [ 3330.835197][T27734] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3330.841412][T27734] ? hwsim_virtio_rx_work+0x350/0x350 [ 3330.847402][T27734] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3330.852961][T27734] ? memcpy+0x39/0x60 [ 3330.856946][T27734] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3330.862062][T27734] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3330.867966][T27734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3330.875355][T27734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3330.882642][T27734] genl_family_rcv_msg_doit+0x228/0x320 [ 3330.888183][T27734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3330.895565][T27734] ? ns_capable+0xde/0x100 [ 3330.899987][T27734] genl_rcv_msg+0x328/0x580 [ 3330.905063][T27734] ? genl_get_cmd+0x480/0x480 [ 3330.910519][T27734] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3330.917241][T27734] ? lock_release+0x710/0x710 [ 3330.922350][T27734] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3330.927922][T27734] netlink_rcv_skb+0x153/0x420 [ 3330.933199][T27734] ? genl_get_cmd+0x480/0x480 [ 3330.938654][T27734] ? netlink_ack+0xaa0/0xaa0 [ 3330.943863][T27734] genl_rcv+0x24/0x40 [ 3330.947843][T27734] netlink_unicast+0x533/0x7d0 [ 3330.952978][T27734] ? netlink_attachskb+0x810/0x810 [ 3330.958495][T27734] ? __phys_addr_symbol+0x2c/0x70 [ 3330.963717][T27734] ? __check_object_size+0x171/0x3f0 [ 3330.969493][T27734] netlink_sendmsg+0x856/0xd90 [ 3330.974904][T27734] ? netlink_unicast+0x7d0/0x7d0 [ 3330.980358][T27734] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3330.985785][T27734] ? netlink_unicast+0x7d0/0x7d0 [ 3330.991084][T27734] sock_sendmsg+0xcf/0x120 [ 3330.996412][T27734] ____sys_sendmsg+0x6e8/0x810 [ 3331.001604][T27734] ? kernel_sendmsg+0x50/0x50 [ 3331.007216][T27734] ? do_recvmmsg+0x6c0/0x6c0 [ 3331.012462][T27734] ? find_held_lock+0x2d/0x110 [ 3331.017755][T27734] ? rcu_preempt_deferred_qs_irqrestore+0x490/0x9d0 [ 3331.024588][T27734] ? lock_downgrade+0x6d0/0x6d0 [ 3331.030369][T27734] ___sys_sendmsg+0xf3/0x170 [ 3331.035925][T27734] ? sendmsg_copy_msghdr+0x160/0x160 [ 3331.041399][T27734] ? __fget_files+0x272/0x400 [ 3331.046873][T27734] ? lock_downgrade+0x6d0/0x6d0 [ 3331.052302][T27734] ? lockdep_hardirqs_off+0x90/0xd0 [ 3331.057506][T27734] ? __fget_files+0x294/0x400 [ 3331.062181][T27734] ? __fget_light+0xea/0x280 [ 3331.067598][T27734] __sys_sendmsg+0xe5/0x1b0 [ 3331.073035][T27734] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3331.078650][T27734] ? __do_sys_futex+0x2a2/0x470 [ 3331.084246][T27734] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3331.090146][T27734] do_syscall_64+0x2d/0x70 [ 3331.095381][T27734] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3331.101276][T27734] RIP: 0033:0x45deb9 [ 3331.105473][T27734] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3331.125579][T27734] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3331.134147][T27734] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3331.142820][T27734] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3331.151110][T27734] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3331.159760][T27734] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3331.168414][T27734] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3331.238078][T27741] IPVS: ftp: loaded support on port[0] = 21 [ 3331.252996][T27733] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3331.303145][T27733] CPU: 1 PID: 27733 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3331.311936][T27733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3331.321985][T27733] Call Trace: [ 3331.325281][T27733] dump_stack+0x107/0x163 [ 3331.329624][T27733] sysfs_warn_dup.cold+0x1c/0x29 [ 3331.334572][T27733] sysfs_do_create_link_sd+0x11e/0x140 [ 3331.340030][T27733] sysfs_create_link+0x5f/0xc0 [ 3331.344804][T27733] device_add+0x79a/0x1ce0 [ 3331.349246][T27733] ? devlink_add_symlinks+0x450/0x450 [ 3331.354618][T27733] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3331.360606][T27733] wiphy_register+0x1dfc/0x2900 [ 3331.365479][T27733] ? wiphy_unregister+0xbb0/0xbb0 [ 3331.370523][T27733] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3331.376618][T27733] ieee80211_register_hw+0x1b0f/0x3b00 [ 3331.382102][T27733] ? ieee80211_restart_hw+0x290/0x290 [ 3331.387483][T27733] ? debug_object_destroy+0x210/0x210 [ 3331.392866][T27733] ? memset+0x20/0x40 [ 3331.396857][T27733] ? __hrtimer_init+0x136/0x280 [ 3331.401713][T27733] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3331.407452][T27733] ? hwsim_virtio_rx_work+0x350/0x350 [ 3331.412822][T27733] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3331.418383][T27733] ? memcpy+0x39/0x60 [ 3331.422375][T27733] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3331.427491][T27733] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3331.433397][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3331.440767][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3331.448050][T27733] genl_family_rcv_msg_doit+0x228/0x320 [ 3331.453613][T27733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3331.461008][T27733] ? ns_capable+0xde/0x100 [ 3331.465433][T27733] genl_rcv_msg+0x328/0x580 [ 3331.469946][T27733] ? genl_get_cmd+0x480/0x480 [ 3331.474634][T27733] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3331.480527][T27733] ? lock_release+0x710/0x710 [ 3331.485203][T27733] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3331.490496][T27733] netlink_rcv_skb+0x153/0x420 [ 3331.495267][T27733] ? genl_get_cmd+0x480/0x480 [ 3331.499949][T27733] ? netlink_ack+0xaa0/0xaa0 [ 3331.504524][T27733] genl_rcv+0x24/0x40 [ 3331.508483][T27733] netlink_unicast+0x533/0x7d0 [ 3331.513234][T27733] ? netlink_attachskb+0x810/0x810 [ 3331.518324][T27733] ? __phys_addr_symbol+0x2c/0x70 [ 3331.523321][T27733] ? __check_object_size+0x171/0x3f0 [ 3331.528583][T27733] netlink_sendmsg+0x856/0xd90 [ 3331.533323][T27733] ? netlink_unicast+0x7d0/0x7d0 [ 3331.538243][T27733] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3331.543506][T27733] ? netlink_unicast+0x7d0/0x7d0 [ 3331.548418][T27733] sock_sendmsg+0xcf/0x120 [ 3331.552827][T27733] ____sys_sendmsg+0x6e8/0x810 [ 3331.557565][T27733] ? kernel_sendmsg+0x50/0x50 [ 3331.562212][T27733] ? do_recvmmsg+0x6c0/0x6c0 [ 3331.566779][T27733] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3331.572740][T27733] ___sys_sendmsg+0xf3/0x170 [ 3331.577305][T27733] ? sendmsg_copy_msghdr+0x160/0x160 [ 3331.582586][T27733] ? __fget_files+0x272/0x400 [ 3331.587254][T27733] ? lock_downgrade+0x6d0/0x6d0 [ 3331.592081][T27733] ? find_held_lock+0x2d/0x110 [ 3331.596824][T27733] ? __fget_files+0x294/0x400 [ 3331.601503][T27733] ? __fget_light+0xea/0x280 [ 3331.606099][T27733] __sys_sendmsg+0xe5/0x1b0 [ 3331.610586][T27733] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3331.615583][T27733] ? __do_sys_futex+0x2a2/0x470 [ 3331.620417][T27733] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3331.626285][T27733] do_syscall_64+0x2d/0x70 [ 3331.630673][T27733] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3331.636543][T27733] RIP: 0033:0x45deb9 [ 3331.640412][T27733] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3331.659988][T27733] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3331.668384][T27733] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3331.676421][T27733] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3331.684479][T27733] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3331.692424][T27733] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3331.700370][T27733] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:18 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x15, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x38}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:18 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x6, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x48000000}, 0x0) 15:53:18 executing program 3: r0 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00') sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="f76502d0", @ANYRES16=r0, @ANYBLOB="040025bd7000ffdbdf250c00000008003400040000000a000900000000000000000008000b0008000000050038000100000005002a0000000000"], 0x40}}, 0x4000000) r1 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x0, 0x0, @mcast1, 0xffff8001}, {0xa, 0x4e23, 0x0, @empty}, 0x0, [0x0, 0x0, 0x2000]}, 0x5c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) r3 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0), 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000200)={0xe3, 0x2, 0x6, 0x0, 0x0, [{{r1}, 0x5}, {{r3}, 0xffffffff}, {{r1}, 0x101}, {{r1}}, {{r4}, 0x9}, {{r1}, 0xfffffffffffffff7}]}) 15:53:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x1000000}, 0x0) [ 3334.722050][T27816] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3334.776183][T27821] IPVS: ftp: loaded support on port[0] = 21 [ 3334.786668][T27818] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3334.835420][T27818] CPU: 0 PID: 27818 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3334.844198][T27818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3334.854248][T27818] Call Trace: [ 3334.857542][T27818] dump_stack+0x107/0x163 [ 3334.861873][T27818] sysfs_warn_dup.cold+0x1c/0x29 [ 3334.866834][T27818] sysfs_do_create_link_sd+0x11e/0x140 [ 3334.872303][T27818] sysfs_create_link+0x5f/0xc0 [ 3334.877069][T27818] device_add+0x79a/0x1ce0 [ 3334.881488][T27818] ? devlink_add_symlinks+0x450/0x450 [ 3334.886865][T27818] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3334.892854][T27818] wiphy_register+0x1dfc/0x2900 [ 3334.897729][T27818] ? wiphy_unregister+0xbb0/0xbb0 [ 3334.902768][T27818] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3334.908833][T27818] ieee80211_register_hw+0x1b0f/0x3b00 [ 3334.914307][T27818] ? ieee80211_restart_hw+0x290/0x290 [ 3334.919688][T27818] ? debug_object_destroy+0x210/0x210 [ 3334.925155][T27818] ? memset+0x20/0x40 [ 3334.929138][T27818] ? __hrtimer_init+0x136/0x280 15:53:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x39}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3a}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3334.933995][T27818] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3334.939740][T27818] ? hwsim_virtio_rx_work+0x350/0x350 [ 3334.945122][T27818] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3334.950677][T27818] ? memcpy+0x39/0x60 [ 3334.954663][T27818] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3334.959776][T27818] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3334.965691][T27818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3334.973076][T27818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3334.980369][T27818] genl_family_rcv_msg_doit+0x228/0x320 [ 3334.985925][T27818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3334.993320][T27818] ? ns_capable+0xde/0x100 [ 3334.997744][T27818] genl_rcv_msg+0x328/0x580 [ 3335.002268][T27818] ? genl_get_cmd+0x480/0x480 [ 3335.006949][T27818] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3335.012842][T27818] ? lock_release+0x710/0x710 [ 3335.017518][T27818] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3335.022808][T27818] netlink_rcv_skb+0x153/0x420 [ 3335.027567][T27818] ? genl_get_cmd+0x480/0x480 15:53:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3b}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3335.032240][T27818] ? netlink_ack+0xaa0/0xaa0 [ 3335.036844][T27818] genl_rcv+0x24/0x40 [ 3335.040827][T27818] netlink_unicast+0x533/0x7d0 [ 3335.045599][T27818] ? netlink_attachskb+0x810/0x810 [ 3335.050707][T27818] ? __phys_addr_symbol+0x2c/0x70 [ 3335.055728][T27818] ? __check_object_size+0x171/0x3f0 [ 3335.061025][T27818] netlink_sendmsg+0x856/0xd90 [ 3335.065800][T27818] ? netlink_unicast+0x7d0/0x7d0 [ 3335.070767][T27818] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3335.076048][T27818] ? netlink_unicast+0x7d0/0x7d0 [ 3335.080981][T27818] sock_sendmsg+0xcf/0x120 [ 3335.085404][T27818] ____sys_sendmsg+0x6e8/0x810 [ 3335.090278][T27818] ? kernel_sendmsg+0x50/0x50 [ 3335.094950][T27818] ? do_recvmmsg+0x6c0/0x6c0 [ 3335.099551][T27818] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3335.105544][T27818] ___sys_sendmsg+0xf3/0x170 [ 3335.110140][T27818] ? sendmsg_copy_msghdr+0x160/0x160 [ 3335.115431][T27818] ? __fget_files+0x272/0x400 [ 3335.120107][T27818] ? lock_downgrade+0x6d0/0x6d0 [ 3335.124959][T27818] ? find_held_lock+0x2d/0x110 [ 3335.129738][T27818] ? __fget_files+0x294/0x400 [ 3335.134417][T27818] ? __fget_light+0xea/0x280 [ 3335.139007][T27818] __sys_sendmsg+0xe5/0x1b0 [ 3335.143518][T27818] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3335.148539][T27818] ? __do_sys_futex+0x2a2/0x470 [ 3335.153413][T27818] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3335.159307][T27818] do_syscall_64+0x2d/0x70 [ 3335.163724][T27818] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3335.169609][T27818] RIP: 0033:0x45deb9 [ 3335.173498][T27818] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3335.193093][T27818] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3335.201500][T27818] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3335.209465][T27818] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3335.217432][T27818] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3335.225415][T27818] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3335.233473][T27818] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x42}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3335.339064][T27816] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3335.444820][T27820] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3335.478628][T27820] CPU: 0 PID: 27820 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3335.487481][T27820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3335.497533][T27820] Call Trace: [ 3335.501449][T27820] dump_stack+0x107/0x163 [ 3335.505803][T27820] sysfs_warn_dup.cold+0x1c/0x29 [ 3335.510749][T27820] sysfs_do_create_link_sd+0x11e/0x140 [ 3335.516691][T27820] sysfs_create_link+0x5f/0xc0 [ 3335.522144][T27820] device_add+0x79a/0x1ce0 [ 3335.526594][T27820] ? devlink_add_symlinks+0x450/0x450 [ 3335.531977][T27820] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3335.537973][T27820] wiphy_register+0x1dfc/0x2900 [ 3335.542817][T27820] ? wiphy_unregister+0xbb0/0xbb0 [ 3335.547829][T27820] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3335.553879][T27820] ieee80211_register_hw+0x1b0f/0x3b00 [ 3335.559321][T27820] ? ieee80211_restart_hw+0x290/0x290 [ 3335.564675][T27820] ? debug_object_destroy+0x210/0x210 [ 3335.570036][T27820] ? memset+0x20/0x40 [ 3335.574002][T27820] ? __hrtimer_init+0x136/0x280 [ 3335.578905][T27820] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3335.584631][T27820] ? hwsim_virtio_rx_work+0x350/0x350 [ 3335.589983][T27820] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3335.595506][T27820] ? memcpy+0x39/0x60 [ 3335.599468][T27820] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3335.604568][T27820] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3335.610446][T27820] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3335.617800][T27820] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3335.625152][T27820] genl_family_rcv_msg_doit+0x228/0x320 [ 3335.630678][T27820] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3335.638029][T27820] ? ns_capable+0xde/0x100 [ 3335.642421][T27820] genl_rcv_msg+0x328/0x580 [ 3335.646916][T27820] ? genl_get_cmd+0x480/0x480 [ 3335.651568][T27820] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3335.657439][T27820] ? lock_release+0x710/0x710 [ 3335.662093][T27820] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3335.667368][T27820] netlink_rcv_skb+0x153/0x420 [ 3335.672126][T27820] ? genl_get_cmd+0x480/0x480 [ 3335.676878][T27820] ? netlink_ack+0xaa0/0xaa0 [ 3335.681456][T27820] genl_rcv+0x24/0x40 [ 3335.685417][T27820] netlink_unicast+0x533/0x7d0 [ 3335.690277][T27820] ? netlink_attachskb+0x810/0x810 [ 3335.695373][T27820] ? __phys_addr_symbol+0x2c/0x70 [ 3335.700378][T27820] ? __check_object_size+0x171/0x3f0 [ 3335.705651][T27820] netlink_sendmsg+0x856/0xd90 [ 3335.710402][T27820] ? netlink_unicast+0x7d0/0x7d0 [ 3335.715345][T27820] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3335.720613][T27820] ? netlink_unicast+0x7d0/0x7d0 [ 3335.725531][T27820] sock_sendmsg+0xcf/0x120 [ 3335.729942][T27820] ____sys_sendmsg+0x6e8/0x810 [ 3335.734684][T27820] ? kernel_sendmsg+0x50/0x50 [ 3335.739335][T27820] ? do_recvmmsg+0x6c0/0x6c0 [ 3335.743911][T27820] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3335.749875][T27820] ___sys_sendmsg+0xf3/0x170 [ 3335.754445][T27820] ? sendmsg_copy_msghdr+0x160/0x160 [ 3335.759715][T27820] ? __fget_files+0x272/0x400 [ 3335.764370][T27820] ? lock_downgrade+0x6d0/0x6d0 [ 3335.769196][T27820] ? find_held_lock+0x2d/0x110 [ 3335.773958][T27820] ? __fget_files+0x294/0x400 [ 3335.778617][T27820] ? __fget_light+0xea/0x280 [ 3335.783190][T27820] __sys_sendmsg+0xe5/0x1b0 [ 3335.787756][T27820] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3335.792760][T27820] ? __do_sys_futex+0x2a2/0x470 [ 3335.797596][T27820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3335.803466][T27820] do_syscall_64+0x2d/0x70 [ 3335.807856][T27820] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3335.813721][T27820] RIP: 0033:0x45deb9 [ 3335.817594][T27820] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3335.837173][T27820] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 15:53:19 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x4c000000}, 0x0) [ 3335.845580][T27820] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3335.853531][T27820] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3335.861597][T27820] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3335.869544][T27820] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3335.877493][T27820] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3335.926186][T27850] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3335.942152][T27827] IPVS: ftp: loaded support on port[0] = 21 15:53:19 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x7, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3336.017224][T27850] CPU: 0 PID: 27850 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3336.026188][T27850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3336.036244][T27850] Call Trace: [ 3336.039546][T27850] dump_stack+0x107/0x163 [ 3336.043883][T27850] sysfs_warn_dup.cold+0x1c/0x29 [ 3336.048848][T27850] sysfs_do_create_link_sd+0x11e/0x140 [ 3336.054322][T27850] sysfs_create_link+0x5f/0xc0 [ 3336.059091][T27850] device_add+0x79a/0x1ce0 [ 3336.063517][T27850] ? devlink_add_symlinks+0x450/0x450 [ 3336.068902][T27850] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3336.074915][T27850] wiphy_register+0x1dfc/0x2900 [ 3336.079788][T27850] ? wiphy_unregister+0xbb0/0xbb0 [ 3336.084852][T27850] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3336.090938][T27850] ieee80211_register_hw+0x1b0f/0x3b00 [ 3336.096444][T27850] ? ieee80211_restart_hw+0x290/0x290 [ 3336.101832][T27850] ? debug_object_destroy+0x210/0x210 [ 3336.107216][T27850] ? memset+0x20/0x40 [ 3336.111206][T27850] ? __hrtimer_init+0x136/0x280 [ 3336.116078][T27850] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3336.121820][T27850] ? hwsim_virtio_rx_work+0x350/0x350 [ 3336.127194][T27850] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3336.132747][T27850] ? memcpy+0x39/0x60 [ 3336.136743][T27850] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3336.141867][T27850] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3336.147779][T27850] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3336.155156][T27850] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3336.162454][T27850] genl_family_rcv_msg_doit+0x228/0x320 [ 3336.168011][T27850] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3336.175402][T27850] ? ns_capable+0xde/0x100 [ 3336.179825][T27850] genl_rcv_msg+0x328/0x580 [ 3336.184335][T27850] ? genl_get_cmd+0x480/0x480 [ 3336.189025][T27850] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3336.194952][T27850] ? lock_release+0x710/0x710 [ 3336.199635][T27850] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3336.204935][T27850] netlink_rcv_skb+0x153/0x420 [ 3336.209703][T27850] ? genl_get_cmd+0x480/0x480 [ 3336.214382][T27850] ? netlink_ack+0xaa0/0xaa0 [ 3336.219262][T27850] genl_rcv+0x24/0x40 [ 3336.223748][T27850] netlink_unicast+0x533/0x7d0 [ 3336.228525][T27850] ? netlink_attachskb+0x810/0x810 [ 3336.234420][T27850] ? __phys_addr_symbol+0x2c/0x70 [ 3336.239449][T27850] ? __check_object_size+0x171/0x3f0 [ 3336.245042][T27850] netlink_sendmsg+0x856/0xd90 [ 3336.249824][T27850] ? netlink_unicast+0x7d0/0x7d0 [ 3336.255252][T27850] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3336.261057][T27850] ? netlink_unicast+0x7d0/0x7d0 [ 3336.266005][T27850] sock_sendmsg+0xcf/0x120 [ 3336.270435][T27850] ____sys_sendmsg+0x6e8/0x810 [ 3336.275206][T27850] ? kernel_sendmsg+0x50/0x50 [ 3336.279881][T27850] ? do_recvmmsg+0x6c0/0x6c0 [ 3336.284480][T27850] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3336.290466][T27850] ___sys_sendmsg+0xf3/0x170 [ 3336.295066][T27850] ? sendmsg_copy_msghdr+0x160/0x160 [ 3336.300489][T27850] ? __fget_files+0x272/0x400 [ 3336.305170][T27850] ? lock_downgrade+0x6d0/0x6d0 [ 3336.310023][T27850] ? find_held_lock+0x2d/0x110 [ 3336.314803][T27850] ? __fget_files+0x294/0x400 [ 3336.319504][T27850] ? __fget_light+0xea/0x280 [ 3336.324105][T27850] __sys_sendmsg+0xe5/0x1b0 [ 3336.328612][T27850] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3336.334507][T27850] ? __do_sys_futex+0x2a2/0x470 [ 3336.339558][T27850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3336.345493][T27850] do_syscall_64+0x2d/0x70 [ 3336.350288][T27850] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3336.356747][T27850] RIP: 0033:0x45deb9 [ 3336.360639][T27850] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3336.380473][T27850] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3336.389322][T27850] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3336.397848][T27850] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3336.406384][T27850] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3336.415356][T27850] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3336.423329][T27850] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3336.458221][T27865] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3336.522057][T27863] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3336.552478][T27863] CPU: 0 PID: 27863 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3336.561354][T27863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3336.571836][T27863] Call Trace: [ 3336.575133][T27863] dump_stack+0x107/0x163 [ 3336.579999][T27863] sysfs_warn_dup.cold+0x1c/0x29 [ 3336.584951][T27863] sysfs_do_create_link_sd+0x11e/0x140 [ 3336.590416][T27863] sysfs_create_link+0x5f/0xc0 [ 3336.595183][T27863] device_add+0x79a/0x1ce0 [ 3336.599612][T27863] ? devlink_add_symlinks+0x450/0x450 [ 3336.604994][T27863] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3336.610985][T27863] wiphy_register+0x1dfc/0x2900 [ 3336.615857][T27863] ? wiphy_unregister+0xbb0/0xbb0 [ 3336.620900][T27863] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3336.629738][T27863] ieee80211_register_hw+0x1b0f/0x3b00 [ 3336.635219][T27863] ? ieee80211_restart_hw+0x290/0x290 [ 3336.641313][T27863] ? debug_object_destroy+0x210/0x210 [ 3336.647493][T27863] ? memset+0x20/0x40 [ 3336.651482][T27863] ? __hrtimer_init+0x136/0x280 [ 3336.656342][T27863] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3336.662072][T27863] ? hwsim_virtio_rx_work+0x350/0x350 [ 3336.667433][T27863] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3336.672964][T27863] ? memcpy+0x39/0x60 [ 3336.676948][T27863] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3336.682063][T27863] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3336.687971][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3336.695353][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3336.702754][T27863] genl_family_rcv_msg_doit+0x228/0x320 [ 3336.708299][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3336.715884][T27863] ? ns_capable+0xde/0x100 [ 3336.720306][T27863] genl_rcv_msg+0x328/0x580 [ 3336.724818][T27863] ? genl_get_cmd+0x480/0x480 [ 3336.730262][T27863] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3336.736154][T27863] ? lock_release+0x710/0x710 [ 3336.740826][T27863] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3336.746419][T27863] netlink_rcv_skb+0x153/0x420 [ 3336.751185][T27863] ? genl_get_cmd+0x480/0x480 [ 3336.756453][T27863] ? netlink_ack+0xaa0/0xaa0 [ 3336.761059][T27863] genl_rcv+0x24/0x40 [ 3336.765038][T27863] netlink_unicast+0x533/0x7d0 [ 3336.769832][T27863] ? netlink_attachskb+0x810/0x810 [ 3336.775034][T27863] ? __phys_addr_symbol+0x2c/0x70 [ 3336.780063][T27863] ? __check_object_size+0x171/0x3f0 [ 3336.785351][T27863] netlink_sendmsg+0x856/0xd90 [ 3336.790119][T27863] ? netlink_unicast+0x7d0/0x7d0 [ 3336.795068][T27863] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3336.800353][T27863] ? netlink_unicast+0x7d0/0x7d0 [ 3336.806292][T27863] sock_sendmsg+0xcf/0x120 [ 3336.810713][T27863] ____sys_sendmsg+0x6e8/0x810 [ 3336.816157][T27863] ? kernel_sendmsg+0x50/0x50 [ 3336.820827][T27863] ? do_recvmmsg+0x6c0/0x6c0 [ 3336.826263][T27863] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3336.832252][T27863] ___sys_sendmsg+0xf3/0x170 [ 3336.836839][T27863] ? sendmsg_copy_msghdr+0x160/0x160 [ 3336.842115][T27863] ? __fget_files+0x272/0x400 [ 3336.846770][T27863] ? lock_downgrade+0x6d0/0x6d0 [ 3336.851594][T27863] ? find_held_lock+0x2d/0x110 [ 3336.856342][T27863] ? __fget_files+0x294/0x400 [ 3336.860996][T27863] ? __fget_light+0xea/0x280 [ 3336.865571][T27863] __sys_sendmsg+0xe5/0x1b0 [ 3336.870057][T27863] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3336.875061][T27863] ? __do_sys_futex+0x2a2/0x470 [ 3336.879902][T27863] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3336.885778][T27863] do_syscall_64+0x2d/0x70 [ 3336.890178][T27863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3336.896053][T27863] RIP: 0033:0x45deb9 [ 3336.899928][T27863] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3336.919511][T27863] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3336.927902][T27863] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3336.935855][T27863] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3336.943817][T27863] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3336.951766][T27863] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3336.959716][T27863] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3337.022639][T27885] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3337.260763][T27863] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3337.273417][T27863] CPU: 1 PID: 27863 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3337.282181][T27863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3337.292516][T27863] Call Trace: [ 3337.295816][T27863] dump_stack+0x107/0x163 [ 3337.301171][T27863] sysfs_warn_dup.cold+0x1c/0x29 [ 3337.306128][T27863] sysfs_do_create_link_sd+0x11e/0x140 [ 3337.312607][T27863] sysfs_create_link+0x5f/0xc0 [ 3337.318005][T27863] device_add+0x79a/0x1ce0 [ 3337.322427][T27863] ? devlink_add_symlinks+0x450/0x450 [ 3337.327806][T27863] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3337.333797][T27863] wiphy_register+0x1dfc/0x2900 [ 3337.338658][T27863] ? wiphy_unregister+0xbb0/0xbb0 [ 3337.344369][T27863] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3337.350551][T27863] ieee80211_register_hw+0x1b0f/0x3b00 [ 3337.356851][T27863] ? ieee80211_restart_hw+0x290/0x290 [ 3337.362228][T27863] ? debug_object_destroy+0x210/0x210 [ 3337.369264][T27863] ? memset+0x20/0x40 [ 3337.373996][T27863] ? __hrtimer_init+0x136/0x280 [ 3337.379068][T27863] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3337.386205][T27863] ? hwsim_virtio_rx_work+0x350/0x350 [ 3337.392297][T27863] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3337.399366][T27863] ? memcpy+0x39/0x60 [ 3337.404987][T27863] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3337.410166][T27863] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3337.416468][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3337.423867][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3337.431321][T27863] genl_family_rcv_msg_doit+0x228/0x320 [ 3337.437516][T27863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3337.445800][T27863] ? ns_capable+0xde/0x100 [ 3337.450649][T27863] genl_rcv_msg+0x328/0x580 [ 3337.455486][T27863] ? genl_get_cmd+0x480/0x480 [ 3337.460605][T27863] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3337.467718][T27863] ? lock_release+0x710/0x710 [ 3337.472526][T27863] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3337.478608][T27863] netlink_rcv_skb+0x153/0x420 [ 3337.483467][T27863] ? genl_get_cmd+0x480/0x480 [ 3337.489514][T27863] ? netlink_ack+0xaa0/0xaa0 [ 3337.494536][T27863] genl_rcv+0x24/0x40 [ 3337.499306][T27863] netlink_unicast+0x533/0x7d0 [ 3337.504264][T27863] ? netlink_attachskb+0x810/0x810 [ 3337.509775][T27863] ? __phys_addr_symbol+0x2c/0x70 [ 3337.515692][T27863] ? __check_object_size+0x171/0x3f0 [ 3337.522610][T27863] netlink_sendmsg+0x856/0xd90 [ 3337.527964][T27863] ? netlink_unicast+0x7d0/0x7d0 [ 3337.532909][T27863] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3337.538188][T27863] ? netlink_unicast+0x7d0/0x7d0 [ 3337.543126][T27863] sock_sendmsg+0xcf/0x120 [ 3337.547944][T27863] ____sys_sendmsg+0x6e8/0x810 [ 3337.552916][T27863] ? kernel_sendmsg+0x50/0x50 [ 3337.558110][T27863] ? do_recvmmsg+0x6c0/0x6c0 [ 3337.562914][T27863] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3337.570378][T27863] ___sys_sendmsg+0xf3/0x170 [ 3337.575489][T27863] ? sendmsg_copy_msghdr+0x160/0x160 [ 3337.580787][T27863] ? __fget_files+0x272/0x400 [ 3337.585835][T27863] ? lock_downgrade+0x6d0/0x6d0 [ 3337.590872][T27863] ? find_held_lock+0x2d/0x110 [ 3337.595869][T27863] ? __fget_files+0x294/0x400 [ 3337.601058][T27863] ? __fget_light+0xea/0x280 [ 3337.606454][T27863] __sys_sendmsg+0xe5/0x1b0 [ 3337.610952][T27863] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3337.616619][T27863] ? __do_sys_futex+0x2a2/0x470 [ 3337.622438][T27863] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3337.629636][T27863] do_syscall_64+0x2d/0x70 [ 3337.634388][T27863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3337.640806][T27863] RIP: 0033:0x45deb9 [ 3337.646524][T27863] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3337.666406][T27863] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3337.675017][T27863] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3337.684516][T27863] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3337.694011][T27863] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3337.703616][T27863] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3337.712812][T27863] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:24 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x1b, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:24 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2000000}, 0x0) 15:53:24 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x62}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:24 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r0}, 0x8) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r1, r0, 0x0, 0x100000001) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0x9, 0x4) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000100)={0x0, "b4849038b95b1bed16aa80aa522a6f60"}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000001100)={r2, 0x6b2, 0x4}) r3 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:53:24 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x8, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:24 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x60000000}, 0x0) [ 3340.746274][T27957] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3340.791919][T27957] CPU: 0 PID: 27957 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3340.800794][T27957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3340.810841][T27957] Call Trace: [ 3340.814135][T27957] dump_stack+0x107/0x163 [ 3340.818469][T27957] sysfs_warn_dup.cold+0x1c/0x29 [ 3340.823421][T27957] sysfs_do_create_link_sd+0x11e/0x140 [ 3340.828655][T27969] IPVS: ftp: loaded support on port[0] = 21 [ 3340.828886][T27957] sysfs_create_link+0x5f/0xc0 [ 3340.839495][T27957] device_add+0x79a/0x1ce0 [ 3340.843916][T27957] ? devlink_add_symlinks+0x450/0x450 [ 3340.849292][T27957] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3340.855287][T27957] wiphy_register+0x1dfc/0x2900 [ 3340.860152][T27957] ? wiphy_unregister+0xbb0/0xbb0 [ 3340.865335][T27957] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3340.871440][T27957] ieee80211_register_hw+0x1b0f/0x3b00 [ 3340.876910][T27957] ? ieee80211_restart_hw+0x290/0x290 [ 3340.882284][T27957] ? debug_object_destroy+0x210/0x210 [ 3340.887666][T27957] ? memset+0x20/0x40 [ 3340.891643][T27957] ? __hrtimer_init+0x136/0x280 [ 3340.896888][T27957] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3340.902628][T27957] ? hwsim_virtio_rx_work+0x350/0x350 [ 3340.908669][T27957] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3340.914217][T27957] ? memcpy+0x39/0x60 [ 3340.918887][T27957] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3340.924006][T27957] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3340.929912][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3340.937287][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3340.944568][T27957] genl_family_rcv_msg_doit+0x228/0x320 [ 3340.950408][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3340.957783][T27957] ? ns_capable+0xde/0x100 [ 3340.962209][T27957] genl_rcv_msg+0x328/0x580 [ 3340.966986][T27957] ? genl_get_cmd+0x480/0x480 [ 3340.971665][T27957] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3340.978169][T27957] ? lock_release+0x710/0x710 [ 3340.982843][T27957] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3340.988501][T27957] netlink_rcv_skb+0x153/0x420 [ 3340.993262][T27957] ? genl_get_cmd+0x480/0x480 [ 3340.997935][T27957] ? netlink_ack+0xaa0/0xaa0 [ 3341.002564][T27957] genl_rcv+0x24/0x40 [ 3341.006543][T27957] netlink_unicast+0x533/0x7d0 [ 3341.011312][T27957] ? netlink_attachskb+0x810/0x810 [ 3341.016421][T27957] ? __phys_addr_symbol+0x2c/0x70 [ 3341.021440][T27957] ? __check_object_size+0x171/0x3f0 [ 3341.026734][T27957] netlink_sendmsg+0x856/0xd90 [ 3341.031513][T27957] ? netlink_unicast+0x7d0/0x7d0 [ 3341.036456][T27957] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3341.041734][T27957] ? netlink_unicast+0x7d0/0x7d0 [ 3341.047365][T27957] sock_sendmsg+0xcf/0x120 [ 3341.051784][T27957] ____sys_sendmsg+0x6e8/0x810 [ 3341.057099][T27957] ? kernel_sendmsg+0x50/0x50 [ 3341.061771][T27957] ? do_recvmmsg+0x6c0/0x6c0 [ 3341.067096][T27957] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3341.073086][T27957] ___sys_sendmsg+0xf3/0x170 [ 3341.077693][T27957] ? sendmsg_copy_msghdr+0x160/0x160 [ 3341.083071][T27957] ? __fget_files+0x272/0x400 [ 3341.087751][T27957] ? lock_downgrade+0x6d0/0x6d0 [ 3341.092602][T27957] ? find_held_lock+0x2d/0x110 [ 3341.097745][T27957] ? __fget_files+0x294/0x400 [ 3341.102456][T27957] ? __fget_light+0xea/0x280 [ 3341.107740][T27957] __sys_sendmsg+0xe5/0x1b0 [ 3341.112243][T27957] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3341.117269][T27957] ? __do_sys_futex+0x2a2/0x470 [ 3341.122144][T27957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3341.128866][T27957] do_syscall_64+0x2d/0x70 [ 3341.133283][T27957] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3341.139560][T27957] RIP: 0033:0x45deb9 [ 3341.144158][T27957] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3341.164090][T27957] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3341.172500][T27957] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3341.180465][T27957] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3341.188427][T27957] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3341.197313][T27957] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3341.205774][T27957] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3341.223725][T27965] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3341.285164][T27964] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3341.311911][T27964] CPU: 0 PID: 27964 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3341.320774][T27964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3341.330819][T27964] Call Trace: 15:53:24 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e22, 0x0, @mcast1}, {0xa, 0x400, 0x0, @empty}}, 0x5c) [ 3341.334112][T27964] dump_stack+0x107/0x163 [ 3341.338464][T27964] sysfs_warn_dup.cold+0x1c/0x29 [ 3341.343406][T27964] sysfs_do_create_link_sd+0x11e/0x140 [ 3341.348880][T27964] sysfs_create_link+0x5f/0xc0 [ 3341.353648][T27964] device_add+0x79a/0x1ce0 [ 3341.358073][T27964] ? devlink_add_symlinks+0x450/0x450 [ 3341.363472][T27964] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3341.369464][T27964] wiphy_register+0x1dfc/0x2900 [ 3341.374327][T27964] ? wiphy_unregister+0xbb0/0xbb0 [ 3341.379366][T27964] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3341.385441][T27964] ieee80211_register_hw+0x1b0f/0x3b00 [ 3341.390917][T27964] ? ieee80211_restart_hw+0x290/0x290 [ 3341.396294][T27964] ? debug_object_destroy+0x210/0x210 [ 3341.401671][T27964] ? memset+0x20/0x40 [ 3341.405662][T27964] ? __hrtimer_init+0x136/0x280 [ 3341.410523][T27964] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3341.416259][T27964] ? hwsim_virtio_rx_work+0x350/0x350 [ 3341.421639][T27964] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3341.427191][T27964] ? memcpy+0x39/0x60 [ 3341.431177][T27964] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3341.436289][T27964] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3341.442191][T27964] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3341.449557][T27964] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3341.456840][T27964] genl_family_rcv_msg_doit+0x228/0x320 [ 3341.462384][T27964] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3341.469761][T27964] ? ns_capable+0xde/0x100 [ 3341.474257][T27964] genl_rcv_msg+0x328/0x580 [ 3341.478759][T27964] ? genl_get_cmd+0x480/0x480 [ 3341.483524][T27964] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3341.489415][T27964] ? lock_release+0x710/0x710 [ 3341.494259][T27964] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3341.499542][T27964] netlink_rcv_skb+0x153/0x420 [ 3341.504300][T27964] ? genl_get_cmd+0x480/0x480 [ 3341.508974][T27964] ? netlink_ack+0xaa0/0xaa0 [ 3341.513577][T27964] genl_rcv+0x24/0x40 [ 3341.517555][T27964] netlink_unicast+0x533/0x7d0 [ 3341.522319][T27964] ? netlink_attachskb+0x810/0x810 [ 3341.527435][T27964] ? __phys_addr_symbol+0x2c/0x70 [ 3341.532458][T27964] ? __check_object_size+0x171/0x3f0 [ 3341.537741][T27964] netlink_sendmsg+0x856/0xd90 [ 3341.542508][T27964] ? netlink_unicast+0x7d0/0x7d0 [ 3341.547452][T27964] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3341.552734][T27964] ? netlink_unicast+0x7d0/0x7d0 [ 3341.557670][T27964] sock_sendmsg+0xcf/0x120 [ 3341.562081][T27964] ____sys_sendmsg+0x6e8/0x810 [ 3341.566846][T27964] ? kernel_sendmsg+0x50/0x50 [ 3341.571521][T27964] ? do_recvmmsg+0x6c0/0x6c0 [ 3341.576123][T27964] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3341.582110][T27964] ___sys_sendmsg+0xf3/0x170 [ 3341.586700][T27964] ? sendmsg_copy_msghdr+0x160/0x160 [ 3341.592001][T27964] ? __fget_files+0x272/0x400 [ 3341.596671][T27964] ? lock_downgrade+0x6d0/0x6d0 [ 3341.601523][T27964] ? find_held_lock+0x2d/0x110 [ 3341.607112][T27964] ? __fget_files+0x294/0x400 [ 3341.611800][T27964] ? __fget_light+0xea/0x280 [ 3341.616776][T27964] __sys_sendmsg+0xe5/0x1b0 [ 3341.621282][T27964] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3341.626305][T27964] ? __do_sys_futex+0x2a2/0x470 [ 3341.631173][T27964] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3341.637070][T27964] do_syscall_64+0x2d/0x70 [ 3341.641493][T27964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3341.647619][T27964] RIP: 0033:0x45deb9 [ 3341.651508][T27964] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3341.671103][T27964] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3341.679512][T27964] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3341.687494][T27964] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3341.696116][T27964] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3341.704709][T27964] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3341.712699][T27964] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3341.750195][T27971] IPVS: ftp: loaded support on port[0] = 21 15:53:25 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x9, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:25 executing program 3: getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000001100)={'nat\x00', 0x0, 0x3, 0x1000, [], 0x1, &(0x7f0000000000)=[{}], &(0x7f0000000100)=""/4096}, &(0x7f0000000040)=0x78) r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) getsockname$tipc(r2, &(0x7f0000001180)=@id, &(0x7f00000011c0)=0x10) sendfile(r2, r1, 0x0, 0x100000001) 15:53:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x6e}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3341.795546][T27967] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3341.872933][T27967] CPU: 0 PID: 27967 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3341.881709][T27967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3341.891764][T27967] Call Trace: [ 3341.895065][T27967] dump_stack+0x107/0x163 [ 3341.899402][T27967] sysfs_warn_dup.cold+0x1c/0x29 [ 3341.904345][T27967] sysfs_do_create_link_sd+0x11e/0x140 [ 3341.909807][T27967] sysfs_create_link+0x5f/0xc0 [ 3341.914570][T27967] device_add+0x79a/0x1ce0 [ 3341.918999][T27967] ? devlink_add_symlinks+0x450/0x450 [ 3341.924395][T27967] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3341.930388][T27967] wiphy_register+0x1dfc/0x2900 [ 3341.935259][T27967] ? wiphy_unregister+0xbb0/0xbb0 [ 3341.940316][T27967] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3341.946392][T27967] ieee80211_register_hw+0x1b0f/0x3b00 [ 3341.951870][T27967] ? ieee80211_restart_hw+0x290/0x290 [ 3341.957253][T27967] ? debug_object_destroy+0x210/0x210 [ 3341.962632][T27967] ? memset+0x20/0x40 [ 3341.966623][T27967] ? __hrtimer_init+0x136/0x280 [ 3341.971483][T27967] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3341.977228][T27967] ? hwsim_virtio_rx_work+0x350/0x350 [ 3341.982603][T27967] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3341.988151][T27967] ? memcpy+0x39/0x60 [ 3341.992143][T27967] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3341.997259][T27967] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3342.003170][T27967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3342.010560][T27967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3342.017852][T27967] genl_family_rcv_msg_doit+0x228/0x320 [ 3342.023399][T27967] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3342.030778][T27967] ? ns_capable+0xde/0x100 [ 3342.035201][T27967] genl_rcv_msg+0x328/0x580 [ 3342.039700][T27967] ? genl_get_cmd+0x480/0x480 [ 3342.044376][T27967] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3342.050270][T27967] ? lock_release+0x710/0x710 [ 3342.055033][T27967] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3342.060331][T27967] netlink_rcv_skb+0x153/0x420 [ 3342.065187][T27967] ? genl_get_cmd+0x480/0x480 [ 3342.069884][T27967] ? netlink_ack+0xaa0/0xaa0 [ 3342.074505][T27967] genl_rcv+0x24/0x40 [ 3342.078489][T27967] netlink_unicast+0x533/0x7d0 [ 3342.083263][T27967] ? netlink_attachskb+0x810/0x810 [ 3342.088379][T27967] ? __phys_addr_symbol+0x2c/0x70 [ 3342.093413][T27967] ? __check_object_size+0x171/0x3f0 [ 3342.098709][T27967] netlink_sendmsg+0x856/0xd90 [ 3342.103482][T27967] ? netlink_unicast+0x7d0/0x7d0 [ 3342.108706][T27967] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3342.113992][T27967] ? netlink_unicast+0x7d0/0x7d0 [ 3342.119650][T27967] sock_sendmsg+0xcf/0x120 [ 3342.124068][T27967] ____sys_sendmsg+0x6e8/0x810 [ 3342.129660][T27967] ? kernel_sendmsg+0x50/0x50 [ 3342.134647][T27967] ? do_recvmmsg+0x6c0/0x6c0 [ 3342.139549][T27967] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3342.146055][T27967] ___sys_sendmsg+0xf3/0x170 [ 3342.150647][T27967] ? sendmsg_copy_msghdr+0x160/0x160 [ 3342.156377][T27967] ? __fget_files+0x272/0x400 [ 3342.161056][T27967] ? lock_downgrade+0x6d0/0x6d0 [ 3342.165953][T27967] ? find_held_lock+0x2d/0x110 [ 3342.170732][T27967] ? __fget_files+0x294/0x400 [ 3342.176081][T27967] ? __fget_light+0xea/0x280 [ 3342.180684][T27967] __sys_sendmsg+0xe5/0x1b0 [ 3342.185341][T27967] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3342.190368][T27967] ? __do_sys_futex+0x2a2/0x470 [ 3342.195242][T27967] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3342.201258][T27967] do_syscall_64+0x2d/0x70 [ 3342.206572][T27967] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3342.212483][T27967] RIP: 0033:0x45deb9 [ 3342.216377][T27967] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3342.236337][T27967] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3342.245548][T27967] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3342.253614][T27967] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3342.261579][T27967] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3342.269547][T27967] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3342.278161][T27967] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3342.341623][T28013] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3342.399051][T27957] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3342.420034][T27957] CPU: 0 PID: 27957 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3342.428802][T27957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3342.439177][T27957] Call Trace: [ 3342.443050][T27957] dump_stack+0x107/0x163 [ 3342.447389][T27957] sysfs_warn_dup.cold+0x1c/0x29 [ 3342.452338][T27957] sysfs_do_create_link_sd+0x11e/0x140 [ 3342.457800][T27957] sysfs_create_link+0x5f/0xc0 [ 3342.463276][T27957] device_add+0x79a/0x1ce0 [ 3342.467731][T27957] ? devlink_add_symlinks+0x450/0x450 [ 3342.473105][T27957] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3342.479093][T27957] wiphy_register+0x1dfc/0x2900 [ 3342.483959][T27957] ? wiphy_unregister+0xbb0/0xbb0 [ 3342.488998][T27957] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3342.495856][T27957] ieee80211_register_hw+0x1b0f/0x3b00 [ 3342.501336][T27957] ? ieee80211_restart_hw+0x290/0x290 [ 3342.506894][T27957] ? debug_object_destroy+0x210/0x210 [ 3342.512268][T27957] ? memset+0x20/0x40 [ 3342.516394][T27957] ? __hrtimer_init+0x136/0x280 [ 3342.521248][T27957] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3342.527253][T27957] ? hwsim_virtio_rx_work+0x350/0x350 [ 3342.532628][T27957] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3342.538181][T27957] ? memcpy+0x39/0x60 [ 3342.542170][T27957] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3342.547281][T27957] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3342.553183][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3342.560549][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3342.567837][T27957] genl_family_rcv_msg_doit+0x228/0x320 [ 3342.574001][T27957] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3342.581383][T27957] ? ns_capable+0xde/0x100 [ 3342.586802][T27957] genl_rcv_msg+0x328/0x580 [ 3342.591312][T27957] ? genl_get_cmd+0x480/0x480 [ 3342.596249][T27957] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3342.602146][T27957] ? lock_release+0x710/0x710 [ 3342.607599][T27957] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3342.612890][T27957] netlink_rcv_skb+0x153/0x420 [ 3342.617653][T27957] ? genl_get_cmd+0x480/0x480 [ 3342.622325][T27957] ? netlink_ack+0xaa0/0xaa0 [ 3342.626930][T27957] genl_rcv+0x24/0x40 [ 3342.631016][T27957] netlink_unicast+0x533/0x7d0 [ 3342.636179][T27957] ? netlink_attachskb+0x810/0x810 [ 3342.641289][T27957] ? __phys_addr_symbol+0x2c/0x70 [ 3342.646940][T27957] ? __check_object_size+0x171/0x3f0 [ 3342.652242][T27957] netlink_sendmsg+0x856/0xd90 [ 3342.657786][T27957] ? netlink_unicast+0x7d0/0x7d0 [ 3342.662731][T27957] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3342.668410][T27957] ? netlink_unicast+0x7d0/0x7d0 [ 3342.673344][T27957] sock_sendmsg+0xcf/0x120 [ 3342.678535][T27957] ____sys_sendmsg+0x6e8/0x810 [ 3342.683314][T27957] ? kernel_sendmsg+0x50/0x50 [ 3342.688275][T27957] ? do_recvmmsg+0x6c0/0x6c0 [ 3342.692871][T27957] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3342.699362][T27957] ___sys_sendmsg+0xf3/0x170 [ 3342.704473][T27957] ? sendmsg_copy_msghdr+0x160/0x160 [ 3342.709771][T27957] ? __fget_files+0x272/0x400 [ 3342.714776][T27957] ? lock_downgrade+0x6d0/0x6d0 [ 3342.719950][T27957] ? find_held_lock+0x2d/0x110 [ 3342.725592][T27957] ? __fget_files+0x294/0x400 [ 3342.730274][T27957] ? __fget_light+0xea/0x280 [ 3342.734888][T27957] __sys_sendmsg+0xe5/0x1b0 [ 3342.739531][T27957] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3342.744570][T27957] ? __do_sys_futex+0x2a2/0x470 [ 3342.749449][T27957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3342.755706][T27957] do_syscall_64+0x2d/0x70 [ 3342.760130][T27957] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3342.766029][T27957] RIP: 0033:0x45deb9 [ 3342.769921][T27957] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3342.789801][T27957] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 15:53:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x68000000}, 0x0) [ 3342.799169][T27957] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3342.807892][T27957] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3342.815864][T27957] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3342.824025][T27957] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3342.831992][T27957] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3342.915260][T28014] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3342.978855][T28014] CPU: 1 PID: 28014 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3342.987735][T28014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3342.997786][T28014] Call Trace: [ 3343.001086][T28014] dump_stack+0x107/0x163 [ 3343.005443][T28014] sysfs_warn_dup.cold+0x1c/0x29 [ 3343.010388][T28014] sysfs_do_create_link_sd+0x11e/0x140 [ 3343.015859][T28014] sysfs_create_link+0x5f/0xc0 [ 3343.020637][T28014] device_add+0x79a/0x1ce0 [ 3343.025073][T28014] ? devlink_add_symlinks+0x450/0x450 [ 3343.030462][T28014] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3343.036446][T28014] wiphy_register+0x1dfc/0x2900 [ 3343.041306][T28014] ? wiphy_unregister+0xbb0/0xbb0 [ 3343.046344][T28014] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3343.052422][T28014] ieee80211_register_hw+0x1b0f/0x3b00 [ 3343.057899][T28014] ? ieee80211_restart_hw+0x290/0x290 [ 3343.063277][T28014] ? debug_object_destroy+0x210/0x210 [ 3343.068685][T28014] ? memset+0x20/0x40 [ 3343.072673][T28014] ? __hrtimer_init+0x136/0x280 [ 3343.077535][T28014] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3343.083281][T28014] ? hwsim_virtio_rx_work+0x350/0x350 [ 3343.088650][T28014] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3343.094197][T28014] ? memcpy+0x39/0x60 [ 3343.098193][T28014] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3343.103311][T28014] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3343.109227][T28014] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3343.116603][T28014] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3343.123900][T28014] genl_family_rcv_msg_doit+0x228/0x320 [ 3343.129449][T28014] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3343.136838][T28014] ? ns_capable+0xde/0x100 [ 3343.141256][T28014] genl_rcv_msg+0x328/0x580 [ 3343.145765][T28014] ? genl_get_cmd+0x480/0x480 [ 3343.150446][T28014] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3343.156341][T28014] ? lock_release+0x710/0x710 [ 3343.161013][T28014] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3343.166298][T28014] netlink_rcv_skb+0x153/0x420 [ 3343.171850][T28014] ? genl_get_cmd+0x480/0x480 [ 3343.176536][T28014] ? netlink_ack+0xaa0/0xaa0 [ 3343.181911][T28014] genl_rcv+0x24/0x40 [ 3343.186693][T28014] netlink_unicast+0x533/0x7d0 [ 3343.192114][T28014] ? netlink_attachskb+0x810/0x810 [ 3343.197944][T28014] ? __phys_addr_symbol+0x2c/0x70 [ 3343.203767][T28014] ? __check_object_size+0x171/0x3f0 [ 3343.209791][T28014] netlink_sendmsg+0x856/0xd90 [ 3343.215395][T28014] ? netlink_unicast+0x7d0/0x7d0 [ 3343.220352][T28014] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3343.225918][T28014] ? netlink_unicast+0x7d0/0x7d0 [ 3343.231720][T28014] sock_sendmsg+0xcf/0x120 [ 3343.236319][T28014] ____sys_sendmsg+0x6e8/0x810 [ 3343.241681][T28014] ? kernel_sendmsg+0x50/0x50 [ 3343.246525][T28014] ? do_recvmmsg+0x6c0/0x6c0 [ 3343.251125][T28014] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3343.257126][T28014] ___sys_sendmsg+0xf3/0x170 [ 3343.262096][T28014] ? sendmsg_copy_msghdr+0x160/0x160 [ 3343.268324][T28014] ? __fget_files+0x272/0x400 [ 3343.273008][T28014] ? lock_downgrade+0x6d0/0x6d0 [ 3343.278457][T28014] ? find_held_lock+0x2d/0x110 [ 3343.284094][T28014] ? __fget_files+0x294/0x400 [ 3343.288891][T28014] ? __fget_light+0xea/0x280 [ 3343.293495][T28014] __sys_sendmsg+0xe5/0x1b0 [ 3343.298052][T28014] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3343.303079][T28014] ? __do_sys_futex+0x2a2/0x470 [ 3343.308955][T28014] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3343.315024][T28014] do_syscall_64+0x2d/0x70 [ 3343.319596][T28014] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3343.326352][T28014] RIP: 0033:0x45deb9 [ 3343.330734][T28014] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3343.350332][T28014] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3343.359122][T28014] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3343.367607][T28014] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:53:27 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xa, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3343.376252][T28014] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3343.384457][T28014] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3343.393069][T28014] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3343.457742][T28051] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3343.537175][T28038] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3343.565856][T28038] CPU: 0 PID: 28038 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3343.575278][T28038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3343.585907][T28038] Call Trace: [ 3343.590004][T28038] dump_stack+0x107/0x163 [ 3343.594779][T28038] sysfs_warn_dup.cold+0x1c/0x29 [ 3343.599726][T28038] sysfs_do_create_link_sd+0x11e/0x140 [ 3343.606039][T28038] sysfs_create_link+0x5f/0xc0 [ 3343.610808][T28038] device_add+0x79a/0x1ce0 [ 3343.615991][T28038] ? devlink_add_symlinks+0x450/0x450 [ 3343.621370][T28038] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3343.627389][T28038] wiphy_register+0x1dfc/0x2900 [ 3343.632266][T28038] ? wiphy_unregister+0xbb0/0xbb0 [ 3343.637470][T28038] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3343.643546][T28038] ieee80211_register_hw+0x1b0f/0x3b00 [ 3343.649034][T28038] ? ieee80211_restart_hw+0x290/0x290 [ 3343.654415][T28038] ? debug_object_destroy+0x210/0x210 [ 3343.659926][T28038] ? memset+0x20/0x40 [ 3343.663912][T28038] ? __hrtimer_init+0x136/0x280 [ 3343.669114][T28038] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3343.674872][T28038] ? hwsim_virtio_rx_work+0x350/0x350 [ 3343.680249][T28038] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3343.685798][T28038] ? memcpy+0x39/0x60 [ 3343.689791][T28038] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3343.695859][T28038] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3343.701782][T28038] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3343.709233][T28038] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3343.716525][T28038] genl_family_rcv_msg_doit+0x228/0x320 [ 3343.722080][T28038] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3343.729469][T28038] ? ns_capable+0xde/0x100 [ 3343.734735][T28038] genl_rcv_msg+0x328/0x580 [ 3343.739248][T28038] ? genl_get_cmd+0x480/0x480 [ 3343.743922][T28038] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3343.749816][T28038] ? lock_release+0x710/0x710 [ 3343.755423][T28038] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3343.760716][T28038] netlink_rcv_skb+0x153/0x420 [ 3343.766390][T28038] ? genl_get_cmd+0x480/0x480 [ 3343.771065][T28038] ? netlink_ack+0xaa0/0xaa0 [ 3343.776567][T28038] genl_rcv+0x24/0x40 [ 3343.780554][T28038] netlink_unicast+0x533/0x7d0 [ 3343.785976][T28038] ? netlink_attachskb+0x810/0x810 [ 3343.791085][T28038] ? __phys_addr_symbol+0x2c/0x70 [ 3343.796421][T28038] ? __check_object_size+0x171/0x3f0 [ 3343.801708][T28038] netlink_sendmsg+0x856/0xd90 [ 3343.807169][T28038] ? netlink_unicast+0x7d0/0x7d0 [ 3343.812118][T28038] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3343.818139][T28038] ? netlink_unicast+0x7d0/0x7d0 [ 3343.823075][T28038] sock_sendmsg+0xcf/0x120 [ 3343.827726][T28038] ____sys_sendmsg+0x6e8/0x810 [ 3343.832489][T28038] ? kernel_sendmsg+0x50/0x50 [ 3343.837285][T28038] ? do_recvmmsg+0x6c0/0x6c0 [ 3343.841890][T28038] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3343.848486][T28038] ___sys_sendmsg+0xf3/0x170 [ 3343.853075][T28038] ? sendmsg_copy_msghdr+0x160/0x160 [ 3343.858682][T28038] ? __fget_files+0x272/0x400 [ 3343.863361][T28038] ? lock_downgrade+0x6d0/0x6d0 [ 3343.868206][T28038] ? find_held_lock+0x2d/0x110 [ 3343.872978][T28038] ? __fget_files+0x294/0x400 [ 3343.877999][T28038] ? __fget_light+0xea/0x280 [ 3343.882592][T28038] __sys_sendmsg+0xe5/0x1b0 [ 3343.887619][T28038] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3343.892644][T28038] ? __do_sys_futex+0x2a2/0x470 [ 3343.897899][T28038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3343.904571][T28038] do_syscall_64+0x2d/0x70 [ 3343.908981][T28038] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3343.914994][T28038] RIP: 0033:0x45deb9 [ 3343.919254][T28038] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3343.938851][T28038] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3343.947815][T28038] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3343.956087][T28038] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3343.964055][T28038] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3343.972019][T28038] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3343.979982][T28038] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3344.069353][T28051] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:29 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x1c, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:29 executing program 3: socket$inet6(0xa, 0x3, 0x3a) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r0}, 0x8) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r1, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f0000000200)={@none, 0x8000, 0x8, 0x6fb4, 0x7, 0x4, "7f07e29966bd6c48e172dc01728e15c16f62abd4553e1e517148d161e3db3cc29386faa709dadbbc98e3117b10714eacd11459afb3e201db262ceec1d99b38e8dd713afc9ba53d931ab15a26072ab48851154473c1243085e5c4e5ff7133ddd7b068e3398d4da7f1fcaf3c6232108e2721c566100c966dbed0162bdb5e9bc479"}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r3, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_SET_POWER_SAVE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, r5, 0x1, 0x0, 0x0, {{0x1b}, {@void, @val={0xc}}}}, 0x20}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r3, &(0x7f0000001240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001200)={&(0x7f0000000100)={0x14, r5, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x0) bind$packet(r1, &(0x7f0000000040)={0x11, 0x1b, 0x0, 0x1, 0x31, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000180)={{0xa, 0x0, 0x0, @mcast1, 0x8000000}, {0xa, 0x0, 0x8, @empty, 0x40000000}, 0x400, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000]}, 0x5c) 15:53:29 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x3000000}, 0x0) 15:53:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x6f}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:29 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x6c000000}, 0x0) 15:53:29 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3346.199869][T28114] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3346.237736][T28115] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3346.256669][T28125] IPVS: ftp: loaded support on port[0] = 21 [ 3346.270486][T28115] CPU: 0 PID: 28115 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3346.279255][T28115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3346.289303][T28115] Call Trace: [ 3346.292605][T28115] dump_stack+0x107/0x163 [ 3346.297200][T28115] sysfs_warn_dup.cold+0x1c/0x29 [ 3346.302151][T28115] sysfs_do_create_link_sd+0x11e/0x140 [ 3346.307625][T28115] sysfs_create_link+0x5f/0xc0 [ 3346.312402][T28115] device_add+0x79a/0x1ce0 [ 3346.316831][T28115] ? devlink_add_symlinks+0x450/0x450 [ 3346.322227][T28115] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3346.328811][T28115] wiphy_register+0x1dfc/0x2900 [ 3346.333683][T28115] ? wiphy_unregister+0xbb0/0xbb0 [ 3346.338843][T28115] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3346.345655][T28115] ieee80211_register_hw+0x1b0f/0x3b00 [ 3346.351136][T28115] ? ieee80211_restart_hw+0x290/0x290 [ 3346.357099][T28115] ? debug_object_destroy+0x210/0x210 [ 3346.362482][T28115] ? memset+0x20/0x40 [ 3346.366768][T28115] ? __hrtimer_init+0x136/0x280 [ 3346.371638][T28115] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3346.377380][T28115] ? hwsim_virtio_rx_work+0x350/0x350 [ 3346.383383][T28115] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3346.389161][T28115] ? memcpy+0x39/0x60 [ 3346.393150][T28115] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3346.398380][T28115] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3346.404647][T28115] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3346.412018][T28115] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3346.419685][T28115] genl_family_rcv_msg_doit+0x228/0x320 [ 3346.425951][T28115] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3346.433611][T28115] ? ns_capable+0xde/0x100 [ 3346.438097][T28115] genl_rcv_msg+0x328/0x580 [ 3346.442600][T28115] ? genl_get_cmd+0x480/0x480 [ 3346.447275][T28115] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3346.453167][T28115] ? lock_release+0x710/0x710 [ 3346.458347][T28115] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3346.464287][T28115] netlink_rcv_skb+0x153/0x420 [ 3346.469053][T28115] ? genl_get_cmd+0x480/0x480 [ 3346.473730][T28115] ? netlink_ack+0xaa0/0xaa0 [ 3346.478337][T28115] genl_rcv+0x24/0x40 [ 3346.482313][T28115] netlink_unicast+0x533/0x7d0 [ 3346.487461][T28115] ? netlink_attachskb+0x810/0x810 [ 3346.493298][T28115] ? __phys_addr_symbol+0x2c/0x70 [ 3346.499015][T28115] ? __check_object_size+0x171/0x3f0 [ 3346.504795][T28115] netlink_sendmsg+0x856/0xd90 [ 3346.509591][T28115] ? netlink_unicast+0x7d0/0x7d0 [ 3346.515198][T28115] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3346.520485][T28115] ? netlink_unicast+0x7d0/0x7d0 [ 3346.525624][T28115] sock_sendmsg+0xcf/0x120 [ 3346.530042][T28115] ____sys_sendmsg+0x6e8/0x810 [ 3346.534803][T28115] ? kernel_sendmsg+0x50/0x50 [ 3346.539489][T28115] ? do_recvmmsg+0x6c0/0x6c0 [ 3346.544079][T28115] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3346.550347][T28115] ___sys_sendmsg+0xf3/0x170 [ 3346.555239][T28115] ? sendmsg_copy_msghdr+0x160/0x160 [ 3346.560529][T28115] ? __fget_files+0x272/0x400 [ 3346.565211][T28115] ? lock_downgrade+0x6d0/0x6d0 [ 3346.570063][T28115] ? find_held_lock+0x2d/0x110 [ 3346.575395][T28115] ? __fget_files+0x294/0x400 [ 3346.580088][T28115] ? __fget_light+0xea/0x280 [ 3346.585450][T28115] __sys_sendmsg+0xe5/0x1b0 [ 3346.589963][T28115] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3346.594997][T28115] ? __do_sys_futex+0x2a2/0x470 [ 3346.599943][T28115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3346.605847][T28115] do_syscall_64+0x2d/0x70 [ 3346.610267][T28115] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3346.616691][T28115] RIP: 0033:0x45deb9 [ 3346.620578][T28115] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3346.640171][T28115] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3346.648576][T28115] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3346.656530][T28115] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3346.664496][T28115] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3346.672460][T28115] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3346.680415][T28115] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3346.713011][T28114] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3346.778030][T28118] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3346.815607][T28118] CPU: 0 PID: 28118 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 15:53:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x74000000}, 0x0) [ 3346.824376][T28118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3346.834424][T28118] Call Trace: [ 3346.837715][T28118] dump_stack+0x107/0x163 [ 3346.842049][T28118] sysfs_warn_dup.cold+0x1c/0x29 [ 3346.846995][T28118] sysfs_do_create_link_sd+0x11e/0x140 [ 3346.852458][T28118] sysfs_create_link+0x5f/0xc0 [ 3346.857232][T28118] device_add+0x79a/0x1ce0 [ 3346.861659][T28118] ? devlink_add_symlinks+0x450/0x450 [ 3346.867036][T28118] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3346.873023][T28118] wiphy_register+0x1dfc/0x2900 [ 3346.877891][T28118] ? wiphy_unregister+0xbb0/0xbb0 [ 3346.882928][T28118] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3346.888997][T28118] ieee80211_register_hw+0x1b0f/0x3b00 [ 3346.894477][T28118] ? ieee80211_restart_hw+0x290/0x290 [ 3346.899850][T28118] ? debug_object_destroy+0x210/0x210 [ 3346.905230][T28118] ? memset+0x20/0x40 [ 3346.909219][T28118] ? __hrtimer_init+0x136/0x280 [ 3346.914078][T28118] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3346.919815][T28118] ? hwsim_virtio_rx_work+0x350/0x350 [ 3346.925188][T28118] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3346.930742][T28118] ? memcpy+0x39/0x60 [ 3346.934739][T28118] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3346.939877][T28118] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3346.945788][T28118] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3346.953166][T28118] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3346.960449][T28118] genl_family_rcv_msg_doit+0x228/0x320 [ 3346.966000][T28118] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3346.973388][T28118] ? ns_capable+0xde/0x100 [ 3346.977806][T28118] genl_rcv_msg+0x328/0x580 [ 3346.982311][T28118] ? genl_get_cmd+0x480/0x480 [ 3346.986984][T28118] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3346.992875][T28118] ? lock_release+0x710/0x710 [ 3346.997549][T28118] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3347.002839][T28118] netlink_rcv_skb+0x153/0x420 [ 3347.007602][T28118] ? genl_get_cmd+0x480/0x480 [ 3347.012281][T28118] ? netlink_ack+0xaa0/0xaa0 [ 3347.016890][T28118] genl_rcv+0x24/0x40 [ 3347.020874][T28118] netlink_unicast+0x533/0x7d0 [ 3347.025660][T28118] ? netlink_attachskb+0x810/0x810 [ 3347.030771][T28118] ? __phys_addr_symbol+0x2c/0x70 [ 3347.035818][T28118] ? __check_object_size+0x171/0x3f0 [ 3347.041105][T28118] netlink_sendmsg+0x856/0xd90 [ 3347.045876][T28118] ? netlink_unicast+0x7d0/0x7d0 [ 3347.050828][T28118] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3347.056108][T28118] ? netlink_unicast+0x7d0/0x7d0 [ 3347.061042][T28118] sock_sendmsg+0xcf/0x120 [ 3347.065460][T28118] ____sys_sendmsg+0x6e8/0x810 [ 3347.070227][T28118] ? kernel_sendmsg+0x50/0x50 [ 3347.074917][T28118] ? do_recvmmsg+0x6c0/0x6c0 [ 3347.079529][T28118] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3347.085518][T28118] ___sys_sendmsg+0xf3/0x170 [ 3347.090112][T28118] ? sendmsg_copy_msghdr+0x160/0x160 [ 3347.095404][T28118] ? __fget_files+0x272/0x400 [ 3347.100085][T28118] ? lock_downgrade+0x6d0/0x6d0 [ 3347.104933][T28118] ? find_held_lock+0x2d/0x110 [ 3347.109715][T28118] ? __fget_files+0x294/0x400 [ 3347.114404][T28118] ? __fget_light+0xea/0x280 [ 3347.119004][T28118] __sys_sendmsg+0xe5/0x1b0 [ 3347.123501][T28118] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3347.128619][T28118] ? __do_sys_futex+0x2a2/0x470 [ 3347.133480][T28118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3347.139387][T28118] do_syscall_64+0x2d/0x70 [ 3347.143795][T28118] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3347.149675][T28118] RIP: 0033:0x45deb9 [ 3347.153572][T28118] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3347.173174][T28118] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3347.181592][T28118] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3347.189694][T28118] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3347.197659][T28118] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3347.205620][T28118] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3347.213578][T28118] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3347.258763][T28120] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3347.308595][T28120] CPU: 0 PID: 28120 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3347.317517][T28120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3347.327568][T28120] Call Trace: [ 3347.330860][T28120] dump_stack+0x107/0x163 [ 3347.335190][T28120] sysfs_warn_dup.cold+0x1c/0x29 [ 3347.340877][T28120] sysfs_do_create_link_sd+0x11e/0x140 [ 3347.346343][T28120] sysfs_create_link+0x5f/0xc0 [ 3347.351117][T28120] device_add+0x79a/0x1ce0 15:53:31 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xe, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3347.355543][T28120] ? devlink_add_symlinks+0x450/0x450 [ 3347.360928][T28120] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3347.366925][T28120] wiphy_register+0x1dfc/0x2900 [ 3347.372108][T28120] ? wiphy_unregister+0xbb0/0xbb0 [ 3347.377147][T28120] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3347.383954][T28120] ieee80211_register_hw+0x1b0f/0x3b00 [ 3347.389430][T28120] ? ieee80211_restart_hw+0x290/0x290 [ 3347.394821][T28120] ? debug_object_destroy+0x210/0x210 [ 3347.400215][T28120] ? memset+0x20/0x40 [ 3347.404197][T28120] ? __hrtimer_init+0x136/0x280 [ 3347.409384][T28120] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3347.415543][T28120] ? hwsim_virtio_rx_work+0x350/0x350 [ 3347.420923][T28120] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3347.426473][T28120] ? memcpy+0x39/0x60 [ 3347.430462][T28120] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3347.435582][T28120] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3347.441483][T28120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3347.448847][T28120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3347.456130][T28120] genl_family_rcv_msg_doit+0x228/0x320 [ 3347.461716][T28120] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3347.469103][T28120] ? ns_capable+0xde/0x100 [ 3347.473521][T28120] genl_rcv_msg+0x328/0x580 [ 3347.478100][T28120] ? genl_get_cmd+0x480/0x480 [ 3347.483039][T28120] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3347.488939][T28120] ? lock_release+0x710/0x710 [ 3347.493613][T28120] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3347.498927][T28120] netlink_rcv_skb+0x153/0x420 [ 3347.503690][T28120] ? genl_get_cmd+0x480/0x480 [ 3347.508371][T28120] ? netlink_ack+0xaa0/0xaa0 [ 3347.512975][T28120] genl_rcv+0x24/0x40 [ 3347.516957][T28120] netlink_unicast+0x533/0x7d0 [ 3347.521738][T28120] ? netlink_attachskb+0x810/0x810 [ 3347.526865][T28120] ? __phys_addr_symbol+0x2c/0x70 [ 3347.532123][T28120] ? __check_object_size+0x171/0x3f0 [ 3347.537416][T28120] netlink_sendmsg+0x856/0xd90 [ 3347.543192][T28120] ? netlink_unicast+0x7d0/0x7d0 [ 3347.548975][T28120] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3347.555003][T28120] ? netlink_unicast+0x7d0/0x7d0 [ 3347.559951][T28120] sock_sendmsg+0xcf/0x120 [ 3347.565277][T28120] ____sys_sendmsg+0x6e8/0x810 [ 3347.570047][T28120] ? kernel_sendmsg+0x50/0x50 [ 3347.574721][T28120] ? do_recvmmsg+0x6c0/0x6c0 [ 3347.579473][T28120] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3347.585474][T28120] ___sys_sendmsg+0xf3/0x170 [ 3347.590973][T28120] ? sendmsg_copy_msghdr+0x160/0x160 [ 3347.596274][T28120] ? __fget_files+0x272/0x400 [ 3347.602140][T28120] ? lock_downgrade+0x6d0/0x6d0 [ 3347.608183][T28120] ? find_held_lock+0x2d/0x110 [ 3347.612980][T28120] ? __fget_files+0x294/0x400 [ 3347.617679][T28120] ? __fget_light+0xea/0x280 [ 3347.622285][T28120] __sys_sendmsg+0xe5/0x1b0 [ 3347.626794][T28120] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3347.632054][T28120] ? __do_sys_futex+0x2a2/0x470 [ 3347.636931][T28120] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3347.642845][T28120] do_syscall_64+0x2d/0x70 [ 3347.647269][T28120] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3347.653156][T28120] RIP: 0033:0x45deb9 [ 3347.657051][T28120] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3347.676929][T28120] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3347.685350][T28120] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3347.693958][T28120] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3347.701923][T28120] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:53:31 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x71}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3347.709888][T28120] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3347.718269][T28120] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3347.784104][T28163] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3347.793275][T28129] IPVS: ftp: loaded support on port[0] = 21 [ 3347.847277][T28146] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3347.880949][T28146] CPU: 1 PID: 28146 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3347.889709][T28146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3347.899783][T28146] Call Trace: [ 3347.903752][T28146] dump_stack+0x107/0x163 [ 3347.908516][T28146] sysfs_warn_dup.cold+0x1c/0x29 [ 3347.914201][T28146] sysfs_do_create_link_sd+0x11e/0x140 [ 3347.920261][T28146] sysfs_create_link+0x5f/0xc0 [ 3347.925034][T28146] device_add+0x79a/0x1ce0 [ 3347.929466][T28146] ? devlink_add_symlinks+0x450/0x450 [ 3347.935260][T28146] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3347.941248][T28146] wiphy_register+0x1dfc/0x2900 [ 3347.946984][T28146] ? wiphy_unregister+0xbb0/0xbb0 [ 3347.952026][T28146] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3347.958103][T28146] ieee80211_register_hw+0x1b0f/0x3b00 [ 3347.964104][T28146] ? ieee80211_restart_hw+0x290/0x290 [ 3347.970272][T28146] ? debug_object_destroy+0x210/0x210 [ 3347.976495][T28146] ? memset+0x20/0x40 [ 3347.981199][T28146] ? __hrtimer_init+0x136/0x280 [ 3347.986070][T28146] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3347.992089][T28146] ? hwsim_virtio_rx_work+0x350/0x350 [ 3347.997848][T28146] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3348.004053][T28146] ? memcpy+0x39/0x60 [ 3348.008599][T28146] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3348.014653][T28146] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3348.020766][T28146] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3348.028566][T28146] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3348.036164][T28146] genl_family_rcv_msg_doit+0x228/0x320 [ 3348.042108][T28146] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3348.049851][T28146] ? ns_capable+0xde/0x100 [ 3348.054271][T28146] genl_rcv_msg+0x328/0x580 [ 3348.058992][T28146] ? genl_get_cmd+0x480/0x480 [ 3348.063685][T28146] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3348.069827][T28146] ? lock_release+0x710/0x710 [ 3348.074502][T28146] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3348.080212][T28146] netlink_rcv_skb+0x153/0x420 [ 3348.085035][T28146] ? genl_get_cmd+0x480/0x480 [ 3348.089723][T28146] ? netlink_ack+0xaa0/0xaa0 [ 3348.095242][T28146] genl_rcv+0x24/0x40 [ 3348.099856][T28146] netlink_unicast+0x533/0x7d0 [ 3348.104623][T28146] ? netlink_attachskb+0x810/0x810 [ 3348.110377][T28146] ? __phys_addr_symbol+0x2c/0x70 [ 3348.116026][T28146] ? __check_object_size+0x171/0x3f0 [ 3348.121793][T28146] netlink_sendmsg+0x856/0xd90 [ 3348.126580][T28146] ? netlink_unicast+0x7d0/0x7d0 [ 3348.131530][T28146] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3348.137594][T28146] ? netlink_unicast+0x7d0/0x7d0 [ 3348.142541][T28146] sock_sendmsg+0xcf/0x120 [ 3348.147159][T28146] ____sys_sendmsg+0x6e8/0x810 [ 3348.151926][T28146] ? kernel_sendmsg+0x50/0x50 [ 3348.156705][T28146] ? do_recvmmsg+0x6c0/0x6c0 [ 3348.161473][T28146] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3348.167769][T28146] ___sys_sendmsg+0xf3/0x170 [ 3348.172364][T28146] ? sendmsg_copy_msghdr+0x160/0x160 [ 3348.178283][T28146] ? __fget_files+0x272/0x400 [ 3348.182961][T28146] ? lock_downgrade+0x6d0/0x6d0 [ 3348.187813][T28146] ? find_held_lock+0x2d/0x110 [ 3348.193463][T28146] ? __fget_files+0x294/0x400 [ 3348.198480][T28146] ? __fget_light+0xea/0x280 [ 3348.203179][T28146] __sys_sendmsg+0xe5/0x1b0 [ 3348.208107][T28146] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3348.213993][T28146] ? __do_sys_futex+0x2a2/0x470 [ 3348.218859][T28146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3348.224769][T28146] do_syscall_64+0x2d/0x70 [ 3348.229546][T28146] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3348.235954][T28146] RIP: 0033:0x45deb9 [ 3348.240397][T28146] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3348.259997][T28146] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3348.268594][T28146] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3348.276562][T28146] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3348.285390][T28146] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3348.293563][T28146] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3348.301561][T28146] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x7a000000}, 0x0) [ 3348.359096][T28163] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x4000000}, 0x0) [ 3348.453121][T28169] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3348.478365][T28169] CPU: 0 PID: 28169 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3348.487390][T28169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3348.497489][T28169] Call Trace: [ 3348.500787][T28169] dump_stack+0x107/0x163 [ 3348.505144][T28169] sysfs_warn_dup.cold+0x1c/0x29 [ 3348.510094][T28169] sysfs_do_create_link_sd+0x11e/0x140 [ 3348.515566][T28169] sysfs_create_link+0x5f/0xc0 [ 3348.520949][T28169] device_add+0x79a/0x1ce0 [ 3348.525467][T28169] ? devlink_add_symlinks+0x450/0x450 [ 3348.530847][T28169] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3348.536840][T28169] wiphy_register+0x1dfc/0x2900 [ 3348.541702][T28169] ? wiphy_unregister+0xbb0/0xbb0 [ 3348.546743][T28169] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3348.552820][T28169] ieee80211_register_hw+0x1b0f/0x3b00 [ 3348.558292][T28169] ? ieee80211_restart_hw+0x290/0x290 [ 3348.563673][T28169] ? debug_object_destroy+0x210/0x210 [ 3348.569055][T28169] ? memset+0x20/0x40 [ 3348.573038][T28169] ? __hrtimer_init+0x136/0x280 [ 3348.577980][T28169] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3348.583719][T28169] ? hwsim_virtio_rx_work+0x350/0x350 [ 3348.589092][T28169] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3348.595441][T28169] ? memcpy+0x39/0x60 [ 3348.600144][T28169] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3348.605269][T28169] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3348.611171][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3348.618655][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3348.625925][T28169] genl_family_rcv_msg_doit+0x228/0x320 [ 3348.631455][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3348.638815][T28169] ? ns_capable+0xde/0x100 [ 3348.643216][T28169] genl_rcv_msg+0x328/0x580 [ 3348.647703][T28169] ? genl_get_cmd+0x480/0x480 [ 3348.652359][T28169] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3348.658345][T28169] ? lock_release+0x710/0x710 [ 3348.662999][T28169] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3348.668278][T28169] netlink_rcv_skb+0x153/0x420 [ 3348.673033][T28169] ? genl_get_cmd+0x480/0x480 [ 3348.677690][T28169] ? netlink_ack+0xaa0/0xaa0 [ 3348.682303][T28169] genl_rcv+0x24/0x40 [ 3348.686269][T28169] netlink_unicast+0x533/0x7d0 [ 3348.691017][T28169] ? netlink_attachskb+0x810/0x810 [ 3348.696102][T28169] ? __phys_addr_symbol+0x2c/0x70 [ 3348.701113][T28169] ? __check_object_size+0x171/0x3f0 [ 3348.706394][T28169] netlink_sendmsg+0x856/0xd90 [ 3348.711149][T28169] ? netlink_unicast+0x7d0/0x7d0 [ 3348.716081][T28169] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3348.721356][T28169] ? netlink_unicast+0x7d0/0x7d0 [ 3348.726276][T28169] sock_sendmsg+0xcf/0x120 [ 3348.730681][T28169] ____sys_sendmsg+0x6e8/0x810 [ 3348.735425][T28169] ? kernel_sendmsg+0x50/0x50 [ 3348.740076][T28169] ? do_recvmmsg+0x6c0/0x6c0 [ 3348.744651][T28169] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3348.750609][T28169] ___sys_sendmsg+0xf3/0x170 [ 3348.755178][T28169] ? sendmsg_copy_msghdr+0x160/0x160 [ 3348.760446][T28169] ? __fget_files+0x272/0x400 [ 3348.765105][T28169] ? lock_downgrade+0x6d0/0x6d0 [ 3348.769942][T28169] ? find_held_lock+0x2d/0x110 [ 3348.774688][T28169] ? __fget_files+0x294/0x400 [ 3348.779342][T28169] ? __fget_light+0xea/0x280 [ 3348.783912][T28169] __sys_sendmsg+0xe5/0x1b0 [ 3348.788389][T28169] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3348.793405][T28169] ? __do_sys_futex+0x2a2/0x470 [ 3348.798251][T28169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3348.804123][T28169] do_syscall_64+0x2d/0x70 [ 3348.808516][T28169] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3348.814381][T28169] RIP: 0033:0x45deb9 [ 3348.818250][T28169] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3348.837827][T28169] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3348.846216][T28169] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3348.854161][T28169] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3348.862108][T28169] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3348.870051][T28169] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3348.877997][T28169] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:53:32 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3349.142659][T28203] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3349.190523][T28203] CPU: 1 PID: 28203 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3349.199296][T28203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3349.209433][T28203] Call Trace: [ 3349.212737][T28203] dump_stack+0x107/0x163 [ 3349.217075][T28203] sysfs_warn_dup.cold+0x1c/0x29 [ 3349.222032][T28203] sysfs_do_create_link_sd+0x11e/0x140 [ 3349.228173][T28203] sysfs_create_link+0x5f/0xc0 [ 3349.232944][T28203] device_add+0x79a/0x1ce0 [ 3349.237609][T28203] ? devlink_add_symlinks+0x450/0x450 [ 3349.242983][T28203] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3349.248969][T28203] wiphy_register+0x1dfc/0x2900 [ 3349.253828][T28203] ? wiphy_unregister+0xbb0/0xbb0 [ 3349.258865][T28203] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3349.264946][T28203] ieee80211_register_hw+0x1b0f/0x3b00 [ 3349.271388][T28203] ? ieee80211_restart_hw+0x290/0x290 [ 3349.277320][T28203] ? debug_object_destroy+0x210/0x210 [ 3349.282794][T28203] ? memset+0x20/0x40 [ 3349.286776][T28203] ? __hrtimer_init+0x136/0x280 [ 3349.291646][T28203] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3349.298188][T28203] ? hwsim_virtio_rx_work+0x350/0x350 [ 3349.303572][T28203] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3349.309131][T28203] ? memcpy+0x39/0x60 [ 3349.313129][T28203] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3349.318246][T28203] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3349.324159][T28203] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3349.331543][T28203] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3349.338826][T28203] genl_family_rcv_msg_doit+0x228/0x320 [ 3349.344369][T28203] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3349.352556][T28203] ? ns_capable+0xde/0x100 [ 3349.356978][T28203] genl_rcv_msg+0x328/0x580 [ 3349.361487][T28203] ? genl_get_cmd+0x480/0x480 [ 3349.366167][T28203] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3349.372065][T28203] ? lock_release+0x710/0x710 [ 3349.377277][T28203] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3349.382752][T28203] netlink_rcv_skb+0x153/0x420 [ 3349.387519][T28203] ? genl_get_cmd+0x480/0x480 [ 3349.392198][T28203] ? netlink_ack+0xaa0/0xaa0 [ 3349.396799][T28203] genl_rcv+0x24/0x40 [ 3349.401419][T28203] netlink_unicast+0x533/0x7d0 [ 3349.406487][T28203] ? netlink_attachskb+0x810/0x810 [ 3349.411601][T28203] ? __phys_addr_symbol+0x2c/0x70 [ 3349.416623][T28203] ? __check_object_size+0x171/0x3f0 [ 3349.422002][T28203] netlink_sendmsg+0x856/0xd90 [ 3349.427091][T28203] ? netlink_unicast+0x7d0/0x7d0 [ 3349.432046][T28203] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3349.437337][T28203] ? netlink_unicast+0x7d0/0x7d0 [ 3349.443268][T28203] sock_sendmsg+0xcf/0x120 [ 3349.448390][T28203] ____sys_sendmsg+0x6e8/0x810 [ 3349.453165][T28203] ? kernel_sendmsg+0x50/0x50 [ 3349.457841][T28203] ? do_recvmmsg+0x6c0/0x6c0 [ 3349.462446][T28203] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3349.468441][T28203] ___sys_sendmsg+0xf3/0x170 [ 3349.473864][T28203] ? sendmsg_copy_msghdr+0x160/0x160 [ 3349.479155][T28203] ? __fget_files+0x272/0x400 [ 3349.484755][T28203] ? lock_downgrade+0x6d0/0x6d0 [ 3349.489612][T28203] ? find_held_lock+0x2d/0x110 [ 3349.495268][T28203] ? __fget_files+0x294/0x400 [ 3349.500108][T28203] ? __fget_light+0xea/0x280 [ 3349.504712][T28203] __sys_sendmsg+0xe5/0x1b0 [ 3349.509221][T28203] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3349.514256][T28203] ? __do_sys_futex+0x2a2/0x470 [ 3349.519957][T28203] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3349.526306][T28203] do_syscall_64+0x2d/0x70 [ 3349.530724][T28203] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3349.536615][T28203] RIP: 0033:0x45deb9 [ 3349.540508][T28203] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3349.561140][T28203] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3349.569563][T28203] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3349.577523][T28203] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3349.585574][T28203] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3349.593545][T28203] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3349.601512][T28203] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3350.021571][T28218] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3350.063423][T28225] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3350.099734][T28205] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3350.166398][T28205] CPU: 1 PID: 28205 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3350.175172][T28205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3350.185224][T28205] Call Trace: [ 3350.188522][T28205] dump_stack+0x107/0x163 [ 3350.192849][T28205] sysfs_warn_dup.cold+0x1c/0x29 [ 3350.197787][T28205] sysfs_do_create_link_sd+0x11e/0x140 [ 3350.203247][T28205] sysfs_create_link+0x5f/0xc0 [ 3350.208014][T28205] device_add+0x79a/0x1ce0 [ 3350.212438][T28205] ? devlink_add_symlinks+0x450/0x450 [ 3350.217810][T28205] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3350.223789][T28205] wiphy_register+0x1dfc/0x2900 [ 3350.228655][T28205] ? wiphy_unregister+0xbb0/0xbb0 [ 3350.233685][T28205] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3350.239753][T28205] ieee80211_register_hw+0x1b0f/0x3b00 [ 3350.245229][T28205] ? ieee80211_restart_hw+0x290/0x290 [ 3350.250601][T28205] ? debug_object_destroy+0x210/0x210 [ 3350.255994][T28205] ? memset+0x20/0x40 [ 3350.259986][T28205] ? __hrtimer_init+0x136/0x280 [ 3350.264843][T28205] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3350.270597][T28205] ? hwsim_virtio_rx_work+0x350/0x350 [ 3350.275965][T28205] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3350.281522][T28205] ? memcpy+0x39/0x60 [ 3350.285518][T28205] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3350.290638][T28205] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3350.296548][T28205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3350.304525][T28205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3350.311819][T28205] genl_family_rcv_msg_doit+0x228/0x320 [ 3350.317373][T28205] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3350.324766][T28205] ? ns_capable+0xde/0x100 [ 3350.329184][T28205] genl_rcv_msg+0x328/0x580 [ 3350.333678][T28205] ? genl_get_cmd+0x480/0x480 [ 3350.338354][T28205] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3350.344251][T28205] ? lock_release+0x710/0x710 [ 3350.348924][T28205] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3350.354208][T28205] netlink_rcv_skb+0x153/0x420 [ 3350.358965][T28205] ? genl_get_cmd+0x480/0x480 [ 3350.363638][T28205] ? netlink_ack+0xaa0/0xaa0 [ 3350.368247][T28205] genl_rcv+0x24/0x40 [ 3350.372205][T28205] netlink_unicast+0x533/0x7d0 [ 3350.376945][T28205] ? netlink_attachskb+0x810/0x810 [ 3350.382029][T28205] ? __phys_addr_symbol+0x2c/0x70 [ 3350.387029][T28205] ? __check_object_size+0x171/0x3f0 [ 3350.392290][T28205] netlink_sendmsg+0x856/0xd90 [ 3350.397033][T28205] ? netlink_unicast+0x7d0/0x7d0 [ 3350.401949][T28205] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3350.407215][T28205] ? netlink_unicast+0x7d0/0x7d0 [ 3350.412138][T28205] sock_sendmsg+0xcf/0x120 [ 3350.416529][T28205] ____sys_sendmsg+0x6e8/0x810 [ 3350.421281][T28205] ? kernel_sendmsg+0x50/0x50 [ 3350.425950][T28205] ? do_recvmmsg+0x6c0/0x6c0 [ 3350.430535][T28205] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3350.436493][T28205] ___sys_sendmsg+0xf3/0x170 [ 3350.441054][T28205] ? sendmsg_copy_msghdr+0x160/0x160 [ 3350.446313][T28205] ? __fget_files+0x272/0x400 [ 3350.450963][T28205] ? lock_downgrade+0x6d0/0x6d0 [ 3350.455789][T28205] ? find_held_lock+0x2d/0x110 [ 3350.460555][T28205] ? __fget_files+0x294/0x400 [ 3350.465211][T28205] ? __fget_light+0xea/0x280 [ 3350.469778][T28205] __sys_sendmsg+0xe5/0x1b0 [ 3350.474253][T28205] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3350.479252][T28205] ? __do_sys_futex+0x2a2/0x470 [ 3350.484088][T28205] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3350.489958][T28205] do_syscall_64+0x2d/0x70 [ 3350.494473][T28205] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3350.500347][T28205] RIP: 0033:0x45deb9 [ 3350.504217][T28205] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3350.523806][T28205] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3350.532212][T28205] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3350.540191][T28205] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3350.548138][T28205] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3350.556089][T28205] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3350.564085][T28205] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3350.619263][T28169] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3350.642513][T28169] CPU: 1 PID: 28169 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3350.651372][T28169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3350.661852][T28169] Call Trace: [ 3350.665600][T28169] dump_stack+0x107/0x163 [ 3350.670056][T28169] sysfs_warn_dup.cold+0x1c/0x29 [ 3350.675013][T28169] sysfs_do_create_link_sd+0x11e/0x140 [ 3350.680486][T28169] sysfs_create_link+0x5f/0xc0 [ 3350.685255][T28169] device_add+0x79a/0x1ce0 [ 3350.690026][T28169] ? devlink_add_symlinks+0x450/0x450 [ 3350.695411][T28169] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3350.701408][T28169] wiphy_register+0x1dfc/0x2900 [ 3350.706493][T28169] ? wiphy_unregister+0xbb0/0xbb0 [ 3350.711536][T28169] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3350.717693][T28169] ieee80211_register_hw+0x1b0f/0x3b00 [ 3350.723660][T28169] ? ieee80211_restart_hw+0x290/0x290 [ 3350.729046][T28169] ? debug_object_destroy+0x210/0x210 [ 3350.734421][T28169] ? memset+0x20/0x40 [ 3350.738409][T28169] ? __hrtimer_init+0x136/0x280 [ 3350.743271][T28169] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3350.749504][T28169] ? hwsim_virtio_rx_work+0x350/0x350 [ 3350.754893][T28169] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3350.760451][T28169] ? memcpy+0x39/0x60 [ 3350.764754][T28169] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3350.769877][T28169] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3350.776255][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3350.784012][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3350.791526][T28169] genl_family_rcv_msg_doit+0x228/0x320 [ 3350.797075][T28169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3350.804845][T28169] ? ns_capable+0xde/0x100 [ 3350.809272][T28169] genl_rcv_msg+0x328/0x580 [ 3350.813775][T28169] ? genl_get_cmd+0x480/0x480 [ 3350.818542][T28169] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3350.825465][T28169] ? lock_release+0x710/0x710 [ 3350.830673][T28169] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3350.836089][T28169] netlink_rcv_skb+0x153/0x420 [ 3350.841405][T28169] ? genl_get_cmd+0x480/0x480 [ 3350.846912][T28169] ? netlink_ack+0xaa0/0xaa0 [ 3350.852111][T28169] genl_rcv+0x24/0x40 [ 3350.856381][T28169] netlink_unicast+0x533/0x7d0 [ 3350.861491][T28169] ? netlink_attachskb+0x810/0x810 [ 3350.867090][T28169] ? __phys_addr_symbol+0x2c/0x70 [ 3350.872474][T28169] ? __check_object_size+0x171/0x3f0 [ 3350.878175][T28169] netlink_sendmsg+0x856/0xd90 [ 3350.883765][T28169] ? netlink_unicast+0x7d0/0x7d0 [ 3350.889423][T28169] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3350.894813][T28169] ? netlink_unicast+0x7d0/0x7d0 [ 3350.900214][T28169] sock_sendmsg+0xcf/0x120 [ 3350.904631][T28169] ____sys_sendmsg+0x6e8/0x810 [ 3350.910034][T28169] ? kernel_sendmsg+0x50/0x50 [ 3350.915251][T28169] ? do_recvmmsg+0x6c0/0x6c0 [ 3350.920655][T28169] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3350.927606][T28169] ___sys_sendmsg+0xf3/0x170 [ 3350.933025][T28169] ? sendmsg_copy_msghdr+0x160/0x160 [ 3350.938601][T28169] ? __fget_files+0x272/0x400 [ 3350.943714][T28169] ? lock_downgrade+0x6d0/0x6d0 [ 3350.949417][T28169] ? find_held_lock+0x2d/0x110 [ 3350.954195][T28169] ? __fget_files+0x294/0x400 [ 3350.959727][T28169] ? __fget_light+0xea/0x280 [ 3350.965088][T28169] __sys_sendmsg+0xe5/0x1b0 [ 3350.970322][T28169] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3350.975614][T28169] ? __do_sys_futex+0x2a2/0x470 [ 3350.981024][T28169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3350.987452][T28169] do_syscall_64+0x2d/0x70 [ 3350.992576][T28169] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3350.999311][T28169] RIP: 0033:0x45deb9 [ 3351.003209][T28169] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3351.023618][T28169] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3351.032034][T28169] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3351.039998][T28169] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3351.048133][T28169] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3351.056210][T28169] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3351.064604][T28169] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:53:36 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x24, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:36 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x800, 0x0, @private2={0xfc, 0x2, [], 0x3f}}}, 0x5c) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000002300)=@assoc_value={0x0, 0x9}, &(0x7f0000002340)=0x8) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x2c, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010100}, @in6={0xa, 0x4e21, 0x0, @dev, 0x6}]}, &(0x7f0000000180)=0x10) r3 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={r4, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x326}, 0x9c) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000002480)=[{&(0x7f0000000000)=@in6={0xa, 0x4e23, 0x4d9f, @mcast1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000100)="4099ab4fa3b7779d68dbbc4b401341d1da609e4b19fd636ed6d7978fc3d6a6ac56d0a43cc48910661f339e1bda449b6b6a943d62befed75f829fb9de825d196f5381fc9910798164ae4299a38100ef46f3fce37a402d50623f144d89bc066b044f186cce6c5f43a6a785354cd4ce912baaf24ea7d6f9f5db2da32db7ebd91cc0d892dccd639c", 0x86}, {&(0x7f00000001c0)="a3c5bdcaa7dcf44a90cde57e4a15c9ea9c488fc672703343e100bab83778818511c61934d4f6393fe63eb78cb43a1f429c43896e122922984bdf55be7c9a8c9da9ed9c936a837657ae54e3d165c975fae233ec6b86edb6e2bd2b4021d8e2d963f1fcc1314dc5e8fed5a931bc6d41bb72a1508c8622482c582734e3defb92affb3a17345dceae8073e71d43ee82b7f4fc1edb7209d48afe120272325603f7eef38064a69474c641ba35", 0xa9}, {&(0x7f0000000040)="4942a290e3c130c73b00d693d9102442918e52ea3d6d21a7362326d5", 0x1c}, {&(0x7f0000000280)="801a1017892891ae707be19443582800747f1517b52c0ad20058994f56181d5baf137f3bd042daf8416c58d9daec5b42caf31c7c753df3cdeb5f84222908b947014d60d809a9f6c95476f329312b615f868b0172b93371ab81a57fb0977eebca9abaabc9eaddd72701e9ca1d0191f70ea8d9d6096c1681944119c21ef9009c29a4c2bb9e8e0b92aeb904b6e34f8f5e8e68e9181cf7df953e2a9a", 0x9a}, {&(0x7f0000000340)="b985400d878aa1fab764f8725dd07922aee75ea773af075cf0be47023e1c55bcf9073e2b6520acf294b66d194e1b2a19291cde7a8b15b6d33769102bc62c238b6c8fe34a97d16c79bf6b6dc0b4bf7bc86cefe0828e5b6d139472d687667608ac297c52c71a2e6a908801622ea4bc63", 0x6f}, {&(0x7f00000003c0)="ad52f7b879f34674d2c1b14dbbf5e1a342fdd7edebef4dbbcea8a605f020fa54e2e5c07a9f6e6f5db53cdcd8c36e174e1a41a2539f1b2e1c752b05ced8a426a1cac183b20f1ba24c78ca43bde62515a6a18cd6ed408706bc2eb2edaacfc9034d5729de61534f2029acf69315750f5038ce089db503ac99ce6d6e5dd99ab1d6cdffc6b6ea644253c95c5696f800741c75ddd87db203b93f6f5cb19bcd4afc70743d77850910b3c0d098cc6997105f60667313e292f2a4a0792c592b61b5a09b4ec6bac5f2bd55e03149d89cc473d86d0cee4344", 0xd3}, {&(0x7f00000004c0)="0624d596187c0fe0b7adb0bb2c70345e76809cbb869cbe50719eab4ec44ace0f6420f9f8cf93cf30e10c5b4d59c929a5a7bc5f30dc24304bddc4c22f09ecb497ceb97da64cb05fbd6813fa45f5c6e16b54f350426fe8bf256d5a712b27630b822fa025f13db26b9d7f3c90abcff53edc8850c3ac4e2ba35cadc121e4d19b3c37ac50bcf3abd8003f4e151a20a2eea36d92d9bc864b3c00e7", 0x98}], 0x7, 0x0, 0x0, 0x8000}, {&(0x7f0000000600)=@in6={0xa, 0x4e23, 0x6, @loopback, 0x1}, 0x1c, &(0x7f0000000700)=[{&(0x7f0000000640)="a36b", 0x2}, {&(0x7f0000000680)="278ff30d381d1dd34ac02a2cd57bfb68daf06b362aebf102304b64c9e73a0ff8234ff4ed8be8d282978698a1566f0e4de9ebfe082535bb451c4a5ab53cc5f388756480c8e78fea4d8e80130237", 0x4d}], 0x2, &(0x7f0000000740)=[@authinfo={0x18, 0x84, 0x6, {0xfff9}}, @sndrcv={0x30, 0x84, 0x1, {0x1f, 0x400, 0x4, 0x3, 0x800, 0x6, 0x0, 0x3f}}], 0x48, 0x40091}, {&(0x7f00000007c0)=@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000940)=[{&(0x7f0000000800)="f505278b67465e9419d104aada3985c6deea7e6868b1eb24305b13199d4a8e82ab7f126e4167cde1e39013f20e8dddf0286082638b3c5cfb3bc944bde64788a1f3de5547f013da08af84d3a515c435595d1592be9acb24294535df520036aa955ab0e8619030e53fd27608d2561b7772f3599edeac001568173f64ed59769e141737df65970c96e8da2578ac02ec9898d692a3181fb6fc31833c8caa72daa6", 0x9f}, {&(0x7f00000008c0)="e581468ff4307814d4f28a5f1a395e8bf6e93de8305c3da46f404256812abb5b3b5d919c5f20d3abe327b1f06f4738fa044e99cac5eb17fedafdb22b5b9cefa4ed7272be", 0x44}], 0x2, &(0x7f0000000980)=[@dstaddrv6={0x20, 0x84, 0x8, @private0}, @dstaddrv4={0x18, 0x84, 0x7, @broadcast}], 0x38, 0x4000}, {&(0x7f00000009c0)=@in6={0xa, 0x4e23, 0x1, @mcast1}, 0x1c, &(0x7f0000001c40)=[{&(0x7f0000000a00)="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", 0xfe}, {&(0x7f0000000b00)="3a602d73f20fe09a6c", 0x9}, {&(0x7f0000000b40)="85e227131c6e00ae5fd8358d6331c23b4358eb6662cbf264852740d0ddc53de43c206dfacd5b6d7281536fed6af890d0f3977da5dcfc77771833ac7d019790c0be6aa437d858f1c92b48eb0adc20197ea828892a92d563582dfd80b7fb7cbf1ad7f885e6fb077253c468dfa5389eeab16a", 0x71}, {&(0x7f0000000bc0)="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", 0x1000}, {&(0x7f0000001bc0)="300833644362be69a1fa15995d0235b43b593ddf3a3033b1ec2bf13b28298a3838d036f13451e672d5113bca8fcefec6f3d0a131a5c52cfca9214ecf1498beb2d37b7ff240b0be5d9ffb6115949629cae376ee62f48272fbcc54b329be0432ddd3ed1fd606c776d8119c613a5eafb41b8e827ae94cc9", 0x76}], 0x5, &(0x7f0000001cc0)=[@init={0x18, 0x84, 0x0, {0x1000, 0xff00, 0x4, 0x4}}], 0x18, 0x40081}, {&(0x7f0000001d00)=@in={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f0000001e40)=[{&(0x7f0000001d40)="1e1c44df8cea83d2a71f058c0c4d28240995b19a157d238b765b5c94819865a5b86964c0de813608e93214d9f4ce1ace15e6c174cda080a96a8089c4f9110d69fe10fef42d71672a59e84ec1185a9ce838fc41e5c0daa323c3d5dbc515b9b8d052d4471bd14ee36a46cf3c40eceb1710bd7c6939cffa47668487f5d1fb70275b5a64", 0x82}, {&(0x7f0000001e00)="ba946de5c43e322140be96", 0xb}], 0x2, 0x0, 0x0, 0x44}, {&(0x7f0000001e80)=@in={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f0000002200)=[{&(0x7f0000001ec0)="2300d207802d758d13c666c083217fede0d1e956229e0c38a15f58c072d961390b5203a1e665d91441678bdf87bb72dc060095200a6ff17878a6ce8bd42d49f141621a314eb94d8a033e721ea5a72f0ee45464e8ff627e61efc4030129091e8688879a29d844ba9b5474e6fcd0e9cdaec8ff87f0efaaa9d7725ef820fa2e1b631ca18f5318fe5ed1f8385a8e543192ec3d23df96272dac0383330065ec3c53ebc3c439d9de67", 0xa6}, {&(0x7f0000001f80)="29835c2e3c0db28837839fc260cb16f3e683ecf76d4997d8da6ae98ed3f6003b6b4f72c386b9411c9e2895385565f1b529f87088a280dc5927359df0b471e4b72792f5c7f5e67aa387f2590ac5ccd9fbaf1ed8302ab81a822a6c344c915d0275cee02f83224491e27d3eb241b16127793eb7a1e8acacb726b108db8a73857f0eb29b234f41d8272cdbf43547ab92d5be63b55bf3207924b082808760ba2e4e187308e31f6b5713d5b8507c26d12c485658f19cdda9da0ce1d2733aeec6d956728c253e60d8bd", 0xc6}, {&(0x7f0000002080)="018375a142e473154b50", 0xa}, {&(0x7f00000020c0)="3a67179c908df3321adb081f811c6e80b80a57cc6cf4e2eb8b10c0966ab7b4b5931481ee96410c6af0e21ddb435b18ccea930a26d4526085b1a0a5b66ddf01e32db71543d1c7e66961c78efc010f82e4a5f46d5c024f348b6065fb4ad1a9cb70eb55f693f6af066a4cb229f799f1320d00661d2046aa5ab382e2ab55045df24ecfc965a04df6f2fdc9", 0x89}, {&(0x7f0000002180)="f87b54ee8ef5474025ed1ce3324990a02f13ed6914cd22692aca526edd90b30eb2e84f3133acf7ad7803e6ceea5332be55b7bc279d665ffc35f3ddb4728d7e9631ef98719b5d808baf27f98e0319ae9a28f2fb127a14a8c0d0aa9b5e3f0ebc1874bd5c97bbdecb2895d9fbff7ab6cb", 0x6f}], 0x5, &(0x7f0000002380)=[@sndinfo={0x20, 0x84, 0x2, {0x6, 0x200, 0xfffffff8, 0x3f}}, @sndinfo={0x20, 0x84, 0x2, {0x800, 0x800f, 0x700, 0x2, r1}}, @init={0x18, 0x84, 0x0, {0x7e, 0x401, 0x3f, 0x6}}, @sndinfo={0x20, 0x84, 0x2, {0x2, 0x0, 0x8000, 0x1, r4}}, @sndrcv={0x30, 0x84, 0x1, {0x8000, 0x6, 0x6, 0xffff, 0x7, 0x6, 0x8}}, @dstaddrv4={0x18, 0x84, 0x7, @multicast2}, @dstaddrv6={0x20, 0x84, 0x8, @local}, @authinfo={0x18, 0x84, 0x6, {0xfff}}], 0xf8, 0x4850}], 0x6, 0x80) 15:53:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x80c46f2a}, 0x0) 15:53:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x5000000}, 0x0) 15:53:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x12, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x75}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3352.463979][T28270] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3352.496672][T28270] CPU: 0 PID: 28270 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3352.505475][T28270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3352.515003][T28279] IPVS: ftp: loaded support on port[0] = 21 [ 3352.515527][T28270] Call Trace: [ 3352.515554][T28270] dump_stack+0x107/0x163 [ 3352.515577][T28270] sysfs_warn_dup.cold+0x1c/0x29 [ 3352.515598][T28270] sysfs_do_create_link_sd+0x11e/0x140 [ 3352.515620][T28270] sysfs_create_link+0x5f/0xc0 [ 3352.546302][T28270] device_add+0x79a/0x1ce0 [ 3352.550891][T28270] ? devlink_add_symlinks+0x450/0x450 [ 3352.556270][T28270] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3352.562757][T28270] wiphy_register+0x1dfc/0x2900 [ 3352.567644][T28270] ? wiphy_unregister+0xbb0/0xbb0 [ 3352.572695][T28270] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3352.578773][T28270] ieee80211_register_hw+0x1b0f/0x3b00 [ 3352.584573][T28270] ? ieee80211_restart_hw+0x290/0x290 [ 3352.589952][T28270] ? debug_object_destroy+0x210/0x210 [ 3352.595763][T28270] ? memset+0x20/0x40 [ 3352.599831][T28270] ? __hrtimer_init+0x136/0x280 [ 3352.604692][T28270] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3352.610425][T28270] ? hwsim_virtio_rx_work+0x350/0x350 [ 3352.615784][T28270] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3352.621312][T28270] ? memcpy+0x39/0x60 [ 3352.625281][T28270] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3352.630378][T28270] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3352.636430][T28270] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3352.643817][T28270] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3352.651101][T28270] genl_family_rcv_msg_doit+0x228/0x320 [ 3352.656649][T28270] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3352.664134][T28270] ? ns_capable+0xde/0x100 [ 3352.668543][T28270] genl_rcv_msg+0x328/0x580 [ 3352.673047][T28270] ? genl_get_cmd+0x480/0x480 [ 3352.677708][T28270] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3352.683586][T28270] ? lock_release+0x710/0x710 [ 3352.688253][T28270] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3352.693530][T28270] netlink_rcv_skb+0x153/0x420 [ 3352.698276][T28270] ? genl_get_cmd+0x480/0x480 [ 3352.702928][T28270] ? netlink_ack+0xaa0/0xaa0 [ 3352.707548][T28270] genl_rcv+0x24/0x40 [ 3352.711514][T28270] netlink_unicast+0x533/0x7d0 [ 3352.716287][T28270] ? netlink_attachskb+0x810/0x810 [ 3352.721387][T28270] ? __phys_addr_symbol+0x2c/0x70 [ 3352.726395][T28270] ? __check_object_size+0x171/0x3f0 [ 3352.731659][T28270] netlink_sendmsg+0x856/0xd90 [ 3352.736408][T28270] ? netlink_unicast+0x7d0/0x7d0 [ 3352.741327][T28270] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3352.746592][T28270] ? netlink_unicast+0x7d0/0x7d0 [ 3352.751507][T28270] sock_sendmsg+0xcf/0x120 [ 3352.755902][T28270] ____sys_sendmsg+0x6e8/0x810 [ 3352.760645][T28270] ? kernel_sendmsg+0x50/0x50 [ 3352.765311][T28270] ? do_recvmmsg+0x6c0/0x6c0 [ 3352.769907][T28270] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3352.775900][T28270] ___sys_sendmsg+0xf3/0x170 [ 3352.780471][T28270] ? sendmsg_copy_msghdr+0x160/0x160 [ 3352.785749][T28270] ? __fget_files+0x272/0x400 [ 3352.790408][T28270] ? lock_downgrade+0x6d0/0x6d0 [ 3352.795235][T28270] ? find_held_lock+0x2d/0x110 [ 3352.800010][T28270] ? __fget_files+0x294/0x400 [ 3352.804692][T28270] ? __fget_light+0xea/0x280 [ 3352.809276][T28270] __sys_sendmsg+0xe5/0x1b0 [ 3352.813756][T28270] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3352.818756][T28270] ? __do_sys_futex+0x2a2/0x470 [ 3352.823594][T28270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3352.829468][T28270] do_syscall_64+0x2d/0x70 [ 3352.833859][T28270] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3352.839735][T28270] RIP: 0033:0x45deb9 [ 3352.843619][T28270] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3352.863201][T28270] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3352.871605][T28270] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3352.879549][T28270] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3352.887497][T28270] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3352.895458][T28270] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3352.903411][T28270] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3352.927083][T28271] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3352.965522][T28275] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:53:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x880f0000}, 0x0) [ 3353.013735][T28275] CPU: 0 PID: 28275 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3353.022510][T28275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3353.032557][T28275] Call Trace: [ 3353.035863][T28275] dump_stack+0x107/0x163 [ 3353.040213][T28275] sysfs_warn_dup.cold+0x1c/0x29 [ 3353.045163][T28275] sysfs_do_create_link_sd+0x11e/0x140 [ 3353.050630][T28275] sysfs_create_link+0x5f/0xc0 [ 3353.055406][T28275] device_add+0x79a/0x1ce0 [ 3353.059836][T28275] ? devlink_add_symlinks+0x450/0x450 [ 3353.065220][T28275] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3353.071363][T28275] wiphy_register+0x1dfc/0x2900 [ 3353.076238][T28275] ? wiphy_unregister+0xbb0/0xbb0 [ 3353.081296][T28275] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3353.087375][T28275] ieee80211_register_hw+0x1b0f/0x3b00 [ 3353.092960][T28275] ? ieee80211_restart_hw+0x290/0x290 [ 3353.098347][T28275] ? debug_object_destroy+0x210/0x210 [ 3353.103755][T28275] ? memset+0x20/0x40 [ 3353.107752][T28275] ? __hrtimer_init+0x136/0x280 [ 3353.112624][T28275] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3353.118372][T28275] ? hwsim_virtio_rx_work+0x350/0x350 [ 3353.123750][T28275] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3353.129305][T28275] ? memcpy+0x39/0x60 [ 3353.133301][T28275] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3353.138420][T28275] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3353.144337][T28275] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3353.151710][T28275] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3353.159000][T28275] genl_family_rcv_msg_doit+0x228/0x320 [ 3353.164557][T28275] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3353.171948][T28275] ? ns_capable+0xde/0x100 [ 3353.176378][T28275] genl_rcv_msg+0x328/0x580 [ 3353.180892][T28275] ? genl_get_cmd+0x480/0x480 [ 3353.185575][T28275] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3353.191478][T28275] ? lock_release+0x710/0x710 [ 3353.196173][T28275] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3353.201470][T28275] netlink_rcv_skb+0x153/0x420 [ 3353.206240][T28275] ? genl_get_cmd+0x480/0x480 [ 3353.210922][T28275] ? netlink_ack+0xaa0/0xaa0 [ 3353.215524][T28275] genl_rcv+0x24/0x40 [ 3353.219505][T28275] netlink_unicast+0x533/0x7d0 [ 3353.224291][T28275] ? netlink_attachskb+0x810/0x810 [ 3353.229392][T28275] ? __phys_addr_symbol+0x2c/0x70 [ 3353.234406][T28275] ? __check_object_size+0x171/0x3f0 [ 3353.239689][T28275] netlink_sendmsg+0x856/0xd90 [ 3353.244467][T28275] ? netlink_unicast+0x7d0/0x7d0 [ 3353.249417][T28275] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3353.254700][T28275] ? netlink_unicast+0x7d0/0x7d0 [ 3353.259635][T28275] sock_sendmsg+0xcf/0x120 [ 3353.264057][T28275] ____sys_sendmsg+0x6e8/0x810 [ 3353.268828][T28275] ? kernel_sendmsg+0x50/0x50 [ 3353.273508][T28275] ? do_recvmmsg+0x6c0/0x6c0 [ 3353.278108][T28275] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3353.284091][T28275] ___sys_sendmsg+0xf3/0x170 [ 3353.288679][T28275] ? sendmsg_copy_msghdr+0x160/0x160 [ 3353.293973][T28275] ? __fget_files+0x272/0x400 [ 3353.298654][T28275] ? lock_downgrade+0x6d0/0x6d0 [ 3353.303505][T28275] ? find_held_lock+0x2d/0x110 [ 3353.308292][T28275] ? __fget_files+0x294/0x400 [ 3353.312978][T28275] ? __fget_light+0xea/0x280 [ 3353.317561][T28275] __sys_sendmsg+0xe5/0x1b0 [ 3353.322058][T28275] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3353.327082][T28275] ? __do_sys_futex+0x2a2/0x470 [ 3353.331949][T28275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3353.337966][T28275] do_syscall_64+0x2d/0x70 [ 3353.342377][T28275] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3353.348265][T28275] RIP: 0033:0x45deb9 [ 3353.352154][T28275] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3353.371754][T28275] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3353.380164][T28275] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3353.388140][T28275] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3353.396957][T28275] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3353.404934][T28275] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3353.412919][T28275] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3353.451457][T28278] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3353.452328][T28281] IPVS: ftp: loaded support on port[0] = 21 15:53:37 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3353.495331][T28278] CPU: 0 PID: 28278 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3353.504094][T28278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3353.514133][T28278] Call Trace: [ 3353.517430][T28278] dump_stack+0x107/0x163 [ 3353.521764][T28278] sysfs_warn_dup.cold+0x1c/0x29 [ 3353.526716][T28278] sysfs_do_create_link_sd+0x11e/0x140 [ 3353.532175][T28278] sysfs_create_link+0x5f/0xc0 [ 3353.536936][T28278] device_add+0x79a/0x1ce0 15:53:37 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x800, @dev={0xfe, 0x80, [], 0x30}}, 0x1c) [ 3353.541353][T28278] ? devlink_add_symlinks+0x450/0x450 [ 3353.546733][T28278] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3353.552722][T28278] wiphy_register+0x1dfc/0x2900 [ 3353.557584][T28278] ? wiphy_unregister+0xbb0/0xbb0 [ 3353.562620][T28278] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3353.568694][T28278] ieee80211_register_hw+0x1b0f/0x3b00 [ 3353.574169][T28278] ? ieee80211_restart_hw+0x290/0x290 [ 3353.579568][T28278] ? debug_object_destroy+0x210/0x210 [ 3353.584954][T28278] ? memset+0x20/0x40 [ 3353.588945][T28278] ? __hrtimer_init+0x136/0x280 [ 3353.593799][T28278] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3353.599535][T28278] ? hwsim_virtio_rx_work+0x350/0x350 [ 3353.604909][T28278] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3353.610457][T28278] ? memcpy+0x39/0x60 [ 3353.614440][T28278] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3353.619553][T28278] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3353.625463][T28278] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3353.632831][T28278] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3353.640999][T28278] genl_family_rcv_msg_doit+0x228/0x320 [ 3353.646676][T28278] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3353.654736][T28278] ? ns_capable+0xde/0x100 [ 3353.659234][T28278] genl_rcv_msg+0x328/0x580 [ 3353.664056][T28278] ? genl_get_cmd+0x480/0x480 [ 3353.668733][T28278] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3353.674803][T28278] ? lock_release+0x710/0x710 [ 3353.679493][T28278] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3353.685019][T28278] netlink_rcv_skb+0x153/0x420 [ 3353.689785][T28278] ? genl_get_cmd+0x480/0x480 [ 3353.694616][T28278] ? netlink_ack+0xaa0/0xaa0 [ 3353.699219][T28278] genl_rcv+0x24/0x40 [ 3353.703757][T28278] netlink_unicast+0x533/0x7d0 [ 3353.708527][T28278] ? netlink_attachskb+0x810/0x810 [ 3353.713636][T28278] ? __phys_addr_symbol+0x2c/0x70 [ 3353.719308][T28278] ? __check_object_size+0x171/0x3f0 [ 3353.725189][T28278] netlink_sendmsg+0x856/0xd90 [ 3353.729961][T28278] ? netlink_unicast+0x7d0/0x7d0 [ 3353.734933][T28278] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3353.740222][T28278] ? netlink_unicast+0x7d0/0x7d0 [ 3353.745160][T28278] sock_sendmsg+0xcf/0x120 [ 3353.749577][T28278] ____sys_sendmsg+0x6e8/0x810 [ 3353.754338][T28278] ? kernel_sendmsg+0x50/0x50 [ 3353.759005][T28278] ? do_recvmmsg+0x6c0/0x6c0 [ 3353.763698][T28278] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3353.769683][T28278] ___sys_sendmsg+0xf3/0x170 [ 3353.774275][T28278] ? sendmsg_copy_msghdr+0x160/0x160 [ 3353.779560][T28278] ? __fget_files+0x272/0x400 [ 3353.784423][T28278] ? lock_downgrade+0x6d0/0x6d0 [ 3353.789277][T28278] ? find_held_lock+0x2d/0x110 [ 3353.794051][T28278] ? __fget_files+0x294/0x400 [ 3353.798735][T28278] ? __fget_light+0xea/0x280 [ 3353.803845][T28278] __sys_sendmsg+0xe5/0x1b0 [ 3353.808347][T28278] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3353.813370][T28278] ? __do_sys_futex+0x2a2/0x470 [ 3353.818245][T28278] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3353.824263][T28278] do_syscall_64+0x2d/0x70 [ 3353.829083][T28278] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3353.834979][T28278] RIP: 0033:0x45deb9 [ 3353.838881][T28278] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3353.858480][T28278] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3353.866891][T28278] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3353.874990][T28278] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3353.883002][T28278] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:53:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x78}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3353.890973][T28278] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3353.898937][T28278] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3354.011662][T28315] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3354.067477][T28296] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3354.112213][T28296] CPU: 1 PID: 28296 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3354.120981][T28296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3354.131046][T28296] Call Trace: [ 3354.134966][T28296] dump_stack+0x107/0x163 [ 3354.139311][T28296] sysfs_warn_dup.cold+0x1c/0x29 [ 3354.144255][T28296] sysfs_do_create_link_sd+0x11e/0x140 [ 3354.150123][T28296] sysfs_create_link+0x5f/0xc0 [ 3354.155149][T28296] device_add+0x79a/0x1ce0 [ 3354.159575][T28296] ? devlink_add_symlinks+0x450/0x450 [ 3354.164956][T28296] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3354.170952][T28296] wiphy_register+0x1dfc/0x2900 [ 3354.176171][T28296] ? wiphy_unregister+0xbb0/0xbb0 [ 3354.181238][T28296] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3354.187401][T28296] ieee80211_register_hw+0x1b0f/0x3b00 [ 3354.192884][T28296] ? ieee80211_restart_hw+0x290/0x290 [ 3354.198259][T28296] ? debug_object_destroy+0x210/0x210 [ 3354.203680][T28296] ? memset+0x20/0x40 [ 3354.207671][T28296] ? __hrtimer_init+0x136/0x280 [ 3354.212534][T28296] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3354.218670][T28296] ? hwsim_virtio_rx_work+0x350/0x350 [ 3354.224827][T28296] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3354.230428][T28296] ? memcpy+0x39/0x60 [ 3354.234422][T28296] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3354.239543][T28296] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3354.245460][T28296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3354.253692][T28296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3354.261360][T28296] genl_family_rcv_msg_doit+0x228/0x320 [ 3354.267407][T28296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3354.275501][T28296] ? ns_capable+0xde/0x100 [ 3354.279928][T28296] genl_rcv_msg+0x328/0x580 [ 3354.285209][T28296] ? genl_get_cmd+0x480/0x480 [ 3354.290798][T28296] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3354.296862][T28296] ? lock_release+0x710/0x710 [ 3354.301542][T28296] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3354.307450][T28296] netlink_rcv_skb+0x153/0x420 [ 3354.312265][T28296] ? genl_get_cmd+0x480/0x480 [ 3354.316947][T28296] ? netlink_ack+0xaa0/0xaa0 [ 3354.322423][T28296] genl_rcv+0x24/0x40 [ 3354.326981][T28296] netlink_unicast+0x533/0x7d0 [ 3354.332568][T28296] ? netlink_attachskb+0x810/0x810 [ 3354.338379][T28296] ? __phys_addr_symbol+0x2c/0x70 [ 3354.344277][T28296] ? __check_object_size+0x171/0x3f0 [ 3354.350224][T28296] netlink_sendmsg+0x856/0xd90 [ 3354.355850][T28296] ? netlink_unicast+0x7d0/0x7d0 [ 3354.361346][T28296] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3354.367096][T28296] ? netlink_unicast+0x7d0/0x7d0 [ 3354.372388][T28296] sock_sendmsg+0xcf/0x120 [ 3354.377725][T28296] ____sys_sendmsg+0x6e8/0x810 [ 3354.383060][T28296] ? kernel_sendmsg+0x50/0x50 [ 3354.387904][T28296] ? do_recvmmsg+0x6c0/0x6c0 [ 3354.393018][T28296] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3354.399896][T28296] ___sys_sendmsg+0xf3/0x170 [ 3354.405007][T28296] ? sendmsg_copy_msghdr+0x160/0x160 [ 3354.410525][T28296] ? __fget_files+0x272/0x400 [ 3354.416003][T28296] ? lock_downgrade+0x6d0/0x6d0 [ 3354.421307][T28296] ? find_held_lock+0x2d/0x110 [ 3354.426797][T28296] ? __fget_files+0x294/0x400 [ 3354.432073][T28296] ? __fget_light+0xea/0x280 [ 3354.437601][T28296] __sys_sendmsg+0xe5/0x1b0 [ 3354.442216][T28296] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3354.447942][T28296] ? __do_sys_futex+0x2a2/0x470 [ 3354.453505][T28296] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3354.460113][T28296] do_syscall_64+0x2d/0x70 [ 3354.465334][T28296] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3354.471225][T28296] RIP: 0033:0x45deb9 [ 3354.476050][T28296] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3354.496380][T28296] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3354.504790][T28296] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 15:53:38 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x6000000}, 0x0) [ 3354.513565][T28296] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3354.521807][T28296] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3354.529965][T28296] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3354.538120][T28296] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:38 executing program 3: socket$netlink(0x10, 0x3, 0x4) r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3354.593178][T28340] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3354.663592][T28321] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3354.717815][T28321] CPU: 1 PID: 28321 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3354.726595][T28321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3354.736650][T28321] Call Trace: [ 3354.739965][T28321] dump_stack+0x107/0x163 [ 3354.744319][T28321] sysfs_warn_dup.cold+0x1c/0x29 [ 3354.749268][T28321] sysfs_do_create_link_sd+0x11e/0x140 [ 3354.754748][T28321] sysfs_create_link+0x5f/0xc0 [ 3354.759514][T28321] device_add+0x79a/0x1ce0 [ 3354.763934][T28321] ? devlink_add_symlinks+0x450/0x450 [ 3354.769312][T28321] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3354.775305][T28321] wiphy_register+0x1dfc/0x2900 [ 3354.780180][T28321] ? wiphy_unregister+0xbb0/0xbb0 [ 3354.785317][T28321] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3354.791379][T28321] ieee80211_register_hw+0x1b0f/0x3b00 [ 3354.796827][T28321] ? ieee80211_restart_hw+0x290/0x290 [ 3354.802186][T28321] ? debug_object_destroy+0x210/0x210 [ 3354.807540][T28321] ? memset+0x20/0x40 [ 3354.811504][T28321] ? __hrtimer_init+0x136/0x280 [ 3354.816344][T28321] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3354.822053][T28321] ? hwsim_virtio_rx_work+0x350/0x350 [ 3354.827404][T28321] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3354.832932][T28321] ? memcpy+0x39/0x60 [ 3354.836890][T28321] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3354.841984][T28321] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3354.847867][T28321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3354.855216][T28321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3354.862493][T28321] genl_family_rcv_msg_doit+0x228/0x320 [ 3354.868013][T28321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3354.875381][T28321] ? ns_capable+0xde/0x100 [ 3354.879779][T28321] genl_rcv_msg+0x328/0x580 [ 3354.884273][T28321] ? genl_get_cmd+0x480/0x480 [ 3354.888928][T28321] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3354.894804][T28321] ? lock_release+0x710/0x710 [ 3354.899460][T28321] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3354.904727][T28321] netlink_rcv_skb+0x153/0x420 [ 3354.909469][T28321] ? genl_get_cmd+0x480/0x480 [ 3354.914124][T28321] ? netlink_ack+0xaa0/0xaa0 [ 3354.918701][T28321] genl_rcv+0x24/0x40 [ 3354.922656][T28321] netlink_unicast+0x533/0x7d0 [ 3354.927404][T28321] ? netlink_attachskb+0x810/0x810 [ 3354.932495][T28321] ? __phys_addr_symbol+0x2c/0x70 [ 3354.937492][T28321] ? __check_object_size+0x171/0x3f0 [ 3354.942753][T28321] netlink_sendmsg+0x856/0xd90 [ 3354.947520][T28321] ? netlink_unicast+0x7d0/0x7d0 [ 3354.952528][T28321] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3354.957786][T28321] ? netlink_unicast+0x7d0/0x7d0 [ 3354.962708][T28321] sock_sendmsg+0xcf/0x120 [ 3354.967104][T28321] ____sys_sendmsg+0x6e8/0x810 [ 3354.971856][T28321] ? kernel_sendmsg+0x50/0x50 [ 3354.976511][T28321] ? do_recvmmsg+0x6c0/0x6c0 [ 3354.981084][T28321] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3354.987046][T28321] ___sys_sendmsg+0xf3/0x170 [ 3354.991630][T28321] ? sendmsg_copy_msghdr+0x160/0x160 [ 3354.996911][T28321] ? __fget_files+0x272/0x400 [ 3355.001572][T28321] ? lock_downgrade+0x6d0/0x6d0 [ 3355.006400][T28321] ? find_held_lock+0x2d/0x110 [ 3355.011154][T28321] ? __fget_files+0x294/0x400 [ 3355.015820][T28321] ? __fget_light+0xea/0x280 [ 3355.020400][T28321] __sys_sendmsg+0xe5/0x1b0 [ 3355.024905][T28321] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3355.029910][T28321] ? __do_sys_futex+0x2a2/0x470 [ 3355.034763][T28321] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3355.040636][T28321] do_syscall_64+0x2d/0x70 [ 3355.045058][T28321] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3355.050934][T28321] RIP: 0033:0x45deb9 [ 3355.054819][T28321] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3355.074416][T28321] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3355.082804][T28321] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3355.090755][T28321] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3355.098701][T28321] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3355.106648][T28321] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3355.114597][T28321] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3355.224197][T28363] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3355.288899][T28363] CPU: 0 PID: 28363 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3355.297679][T28363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3355.307843][T28363] Call Trace: [ 3355.311147][T28363] dump_stack+0x107/0x163 [ 3355.315490][T28363] sysfs_warn_dup.cold+0x1c/0x29 [ 3355.320445][T28363] sysfs_do_create_link_sd+0x11e/0x140 [ 3355.326017][T28363] sysfs_create_link+0x5f/0xc0 [ 3355.330794][T28363] device_add+0x79a/0x1ce0 [ 3355.335230][T28363] ? devlink_add_symlinks+0x450/0x450 [ 3355.340609][T28363] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3355.346597][T28363] wiphy_register+0x1dfc/0x2900 [ 3355.351465][T28363] ? wiphy_unregister+0xbb0/0xbb0 [ 3355.356521][T28363] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3355.362624][T28363] ieee80211_register_hw+0x1b0f/0x3b00 [ 3355.368103][T28363] ? ieee80211_restart_hw+0x290/0x290 [ 3355.373475][T28363] ? debug_object_destroy+0x210/0x210 [ 3355.378845][T28363] ? memset+0x20/0x40 [ 3355.382827][T28363] ? __hrtimer_init+0x136/0x280 [ 3355.387688][T28363] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3355.393428][T28363] ? hwsim_virtio_rx_work+0x350/0x350 [ 3355.398801][T28363] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3355.404350][T28363] ? memcpy+0x39/0x60 [ 3355.408338][T28363] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3355.414195][T28363] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3355.420101][T28363] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3355.427464][T28363] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3355.435675][T28363] genl_family_rcv_msg_doit+0x228/0x320 [ 3355.441227][T28363] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3355.449017][T28363] ? ns_capable+0xde/0x100 [ 3355.454149][T28363] genl_rcv_msg+0x328/0x580 [ 3355.458650][T28363] ? genl_get_cmd+0x480/0x480 [ 3355.464035][T28363] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3355.470597][T28363] ? lock_release+0x710/0x710 [ 3355.476246][T28363] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3355.481533][T28363] netlink_rcv_skb+0x153/0x420 [ 3355.486298][T28363] ? genl_get_cmd+0x480/0x480 [ 3355.491152][T28363] ? netlink_ack+0xaa0/0xaa0 [ 3355.496534][T28363] genl_rcv+0x24/0x40 [ 3355.500527][T28363] netlink_unicast+0x533/0x7d0 [ 3355.505293][T28363] ? netlink_attachskb+0x810/0x810 [ 3355.510391][T28363] ? __phys_addr_symbol+0x2c/0x70 [ 3355.515395][T28363] ? __check_object_size+0x171/0x3f0 [ 3355.520663][T28363] netlink_sendmsg+0x856/0xd90 [ 3355.525517][T28363] ? netlink_unicast+0x7d0/0x7d0 [ 3355.530439][T28363] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3355.535705][T28363] ? netlink_unicast+0x7d0/0x7d0 [ 3355.540631][T28363] sock_sendmsg+0xcf/0x120 [ 3355.545028][T28363] ____sys_sendmsg+0x6e8/0x810 [ 3355.549772][T28363] ? kernel_sendmsg+0x50/0x50 [ 3355.554419][T28363] ? do_recvmmsg+0x6c0/0x6c0 [ 3355.559000][T28363] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3355.564967][T28363] ___sys_sendmsg+0xf3/0x170 [ 3355.569535][T28363] ? sendmsg_copy_msghdr+0x160/0x160 [ 3355.574799][T28363] ? __fget_files+0x272/0x400 [ 3355.579459][T28363] ? lock_downgrade+0x6d0/0x6d0 [ 3355.584301][T28363] ? find_held_lock+0x2d/0x110 [ 3355.589061][T28363] ? __fget_files+0x294/0x400 [ 3355.593715][T28363] ? __fget_light+0xea/0x280 [ 3355.598323][T28363] __sys_sendmsg+0xe5/0x1b0 [ 3355.602801][T28363] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3355.607799][T28363] ? __do_sys_futex+0x2a2/0x470 [ 3355.612634][T28363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3355.618506][T28363] do_syscall_64+0x2d/0x70 [ 3355.622895][T28363] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3355.628761][T28363] RIP: 0033:0x45deb9 [ 3355.632630][T28363] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3355.652210][T28363] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3355.660597][T28363] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3355.668541][T28363] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3355.676507][T28363] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3355.684454][T28363] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3355.692430][T28363] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:41 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x2a, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x89400000}, 0x0) 15:53:41 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x48, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:41 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0xfffc, 0x0, @private0={0xfc, 0x0, [], 0x1}}}, 0x1) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000000)={0x0, @adiantum}) 15:53:41 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x88}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x7000000}, 0x0) [ 3358.063601][T28417] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3358.094564][T28423] IPVS: ftp: loaded support on port[0] = 21 [ 3358.119030][T28421] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3358.140293][T28421] CPU: 0 PID: 28421 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3358.149073][T28421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3358.159139][T28421] Call Trace: [ 3358.162430][T28421] dump_stack+0x107/0x163 [ 3358.166787][T28421] sysfs_warn_dup.cold+0x1c/0x29 [ 3358.171729][T28421] sysfs_do_create_link_sd+0x11e/0x140 [ 3358.177249][T28421] sysfs_create_link+0x5f/0xc0 [ 3358.182016][T28421] device_add+0x79a/0x1ce0 [ 3358.186431][T28421] ? devlink_add_symlinks+0x450/0x450 [ 3358.191815][T28421] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3358.198652][T28421] wiphy_register+0x1dfc/0x2900 [ 3358.203523][T28421] ? wiphy_unregister+0xbb0/0xbb0 [ 3358.208562][T28421] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3358.214636][T28421] ieee80211_register_hw+0x1b0f/0x3b00 [ 3358.220108][T28421] ? ieee80211_restart_hw+0x290/0x290 [ 3358.225589][T28421] ? debug_object_destroy+0x210/0x210 [ 3358.231487][T28421] ? memset+0x20/0x40 [ 3358.236385][T28421] ? __hrtimer_init+0x136/0x280 [ 3358.241945][T28421] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3358.248185][T28421] ? hwsim_virtio_rx_work+0x350/0x350 [ 3358.254496][T28421] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3358.260678][T28421] ? memcpy+0x39/0x60 [ 3358.265678][T28421] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3358.271674][T28421] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3358.277573][T28421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3358.284930][T28421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3358.293124][T28421] genl_family_rcv_msg_doit+0x228/0x320 [ 3358.298673][T28421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3358.306048][T28421] ? ns_capable+0xde/0x100 [ 3358.311104][T28421] genl_rcv_msg+0x328/0x580 [ 3358.315614][T28421] ? genl_get_cmd+0x480/0x480 [ 3358.320297][T28421] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3358.326191][T28421] ? lock_release+0x710/0x710 [ 3358.330858][T28421] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3358.336818][T28421] netlink_rcv_skb+0x153/0x420 [ 3358.341581][T28421] ? genl_get_cmd+0x480/0x480 [ 3358.346259][T28421] ? netlink_ack+0xaa0/0xaa0 [ 3358.350859][T28421] genl_rcv+0x24/0x40 [ 3358.354910][T28421] netlink_unicast+0x533/0x7d0 [ 3358.359684][T28421] ? netlink_attachskb+0x810/0x810 [ 3358.364839][T28421] ? __phys_addr_symbol+0x2c/0x70 [ 3358.369878][T28421] ? __check_object_size+0x171/0x3f0 [ 3358.375159][T28421] netlink_sendmsg+0x856/0xd90 [ 3358.380215][T28421] ? netlink_unicast+0x7d0/0x7d0 [ 3358.385164][T28421] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3358.390442][T28421] ? netlink_unicast+0x7d0/0x7d0 [ 3358.395380][T28421] sock_sendmsg+0xcf/0x120 [ 3358.399787][T28421] ____sys_sendmsg+0x6e8/0x810 [ 3358.405515][T28421] ? kernel_sendmsg+0x50/0x50 [ 3358.410449][T28421] ? do_recvmmsg+0x6c0/0x6c0 [ 3358.415060][T28421] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3358.421420][T28421] ___sys_sendmsg+0xf3/0x170 [ 3358.426005][T28421] ? sendmsg_copy_msghdr+0x160/0x160 [ 3358.431293][T28421] ? __fget_files+0x272/0x400 [ 3358.436283][T28421] ? lock_downgrade+0x6d0/0x6d0 [ 3358.441256][T28421] ? find_held_lock+0x2d/0x110 [ 3358.446026][T28421] ? __fget_files+0x294/0x400 [ 3358.450769][T28421] ? __fget_light+0xea/0x280 [ 3358.455457][T28421] __sys_sendmsg+0xe5/0x1b0 [ 3358.459957][T28421] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3358.465504][T28421] ? __do_sys_futex+0x2a2/0x470 [ 3358.470381][T28421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3358.476397][T28421] do_syscall_64+0x2d/0x70 [ 3358.480809][T28421] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3358.486787][T28421] RIP: 0033:0x45deb9 [ 3358.491089][T28421] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3358.510685][T28421] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3358.519082][T28421] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3358.527043][T28421] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3358.535869][T28421] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3358.544659][T28421] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3358.553367][T28421] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3358.593319][T28417] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3358.661004][T28422] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3358.695492][T28422] CPU: 0 PID: 28422 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3358.704268][T28422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3358.714320][T28422] Call Trace: [ 3358.717617][T28422] dump_stack+0x107/0x163 [ 3358.721949][T28422] sysfs_warn_dup.cold+0x1c/0x29 [ 3358.726895][T28422] sysfs_do_create_link_sd+0x11e/0x140 [ 3358.732366][T28422] sysfs_create_link+0x5f/0xc0 [ 3358.737137][T28422] device_add+0x79a/0x1ce0 [ 3358.741563][T28422] ? devlink_add_symlinks+0x450/0x450 [ 3358.746944][T28422] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3358.752952][T28422] wiphy_register+0x1dfc/0x2900 [ 3358.757818][T28422] ? wiphy_unregister+0xbb0/0xbb0 [ 3358.762860][T28422] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3358.768934][T28422] ieee80211_register_hw+0x1b0f/0x3b00 [ 3358.774406][T28422] ? ieee80211_restart_hw+0x290/0x290 [ 3358.779784][T28422] ? debug_object_destroy+0x210/0x210 [ 3358.785163][T28422] ? memset+0x20/0x40 [ 3358.789153][T28422] ? __hrtimer_init+0x136/0x280 [ 3358.794013][T28422] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3358.799753][T28422] ? hwsim_virtio_rx_work+0x350/0x350 [ 3358.805300][T28422] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3358.810847][T28422] ? memcpy+0x39/0x60 [ 3358.814837][T28422] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3358.819971][T28422] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3358.825876][T28422] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3358.833249][T28422] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3358.840531][T28422] genl_family_rcv_msg_doit+0x228/0x320 [ 3358.846079][T28422] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3358.853484][T28422] ? ns_capable+0xde/0x100 [ 3358.857897][T28422] genl_rcv_msg+0x328/0x580 [ 3358.862515][T28422] ? genl_get_cmd+0x480/0x480 [ 3358.867191][T28422] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3358.873072][T28422] ? lock_release+0x710/0x710 [ 3358.877724][T28422] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3358.882996][T28422] netlink_rcv_skb+0x153/0x420 [ 3358.887747][T28422] ? genl_get_cmd+0x480/0x480 [ 3358.892414][T28422] ? netlink_ack+0xaa0/0xaa0 [ 3358.896989][T28422] genl_rcv+0x24/0x40 [ 3358.900963][T28422] netlink_unicast+0x533/0x7d0 [ 3358.905724][T28422] ? netlink_attachskb+0x810/0x810 [ 3358.910819][T28422] ? __phys_addr_symbol+0x2c/0x70 [ 3358.915821][T28422] ? __check_object_size+0x171/0x3f0 [ 3358.921087][T28422] netlink_sendmsg+0x856/0xd90 [ 3358.925835][T28422] ? netlink_unicast+0x7d0/0x7d0 [ 3358.930978][T28422] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3358.936245][T28422] ? netlink_unicast+0x7d0/0x7d0 [ 3358.941164][T28422] sock_sendmsg+0xcf/0x120 [ 3358.945564][T28422] ____sys_sendmsg+0x6e8/0x810 [ 3358.950400][T28422] ? kernel_sendmsg+0x50/0x50 [ 3358.955055][T28422] ? do_recvmmsg+0x6c0/0x6c0 [ 3358.959633][T28422] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3358.965607][T28422] ___sys_sendmsg+0xf3/0x170 [ 3358.970178][T28422] ? sendmsg_copy_msghdr+0x160/0x160 [ 3358.975450][T28422] ? __fget_files+0x272/0x400 [ 3358.980108][T28422] ? lock_downgrade+0x6d0/0x6d0 [ 3358.984970][T28422] ? find_held_lock+0x2d/0x110 [ 3358.989726][T28422] ? __fget_files+0x294/0x400 [ 3358.994386][T28422] ? __fget_light+0xea/0x280 [ 3358.998961][T28422] __sys_sendmsg+0xe5/0x1b0 [ 3359.003443][T28422] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3359.008446][T28422] ? __do_sys_futex+0x2a2/0x470 [ 3359.013285][T28422] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3359.019160][T28422] do_syscall_64+0x2d/0x70 [ 3359.023560][T28422] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3359.029429][T28422] RIP: 0033:0x45deb9 [ 3359.033301][T28422] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3359.052877][T28422] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 15:53:42 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x1, @local, 0x81}, 0x1c) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000040)=""/13, &(0x7f0000000100)=0xd) r2 = socket$inet(0x2, 0x4, 0x2) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, &(0x7f0000000580)={'HL\x00'}, &(0x7f00000005c0)=0x1e) 15:53:42 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x89}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3359.061266][T28422] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3359.069214][T28422] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3359.077251][T28422] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3359.085207][T28422] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3359.093157][T28422] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3359.173271][T28432] IPVS: ftp: loaded support on port[0] = 21 [ 3359.216925][T28420] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3359.252645][T28420] CPU: 0 PID: 28420 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 15:53:42 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x4a, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3359.261420][T28420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3359.271558][T28420] Call Trace: [ 3359.274871][T28420] dump_stack+0x107/0x163 [ 3359.279215][T28420] sysfs_warn_dup.cold+0x1c/0x29 [ 3359.284182][T28420] sysfs_do_create_link_sd+0x11e/0x140 [ 3359.289651][T28420] sysfs_create_link+0x5f/0xc0 [ 3359.294430][T28420] device_add+0x79a/0x1ce0 [ 3359.298868][T28420] ? devlink_add_symlinks+0x450/0x450 [ 3359.304259][T28420] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3359.310258][T28420] wiphy_register+0x1dfc/0x2900 [ 3359.315124][T28420] ? wiphy_unregister+0xbb0/0xbb0 [ 3359.320155][T28420] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3359.326218][T28420] ieee80211_register_hw+0x1b0f/0x3b00 [ 3359.331694][T28420] ? ieee80211_restart_hw+0x290/0x290 [ 3359.337073][T28420] ? debug_object_destroy+0x210/0x210 [ 3359.342926][T28420] ? memset+0x20/0x40 [ 3359.346917][T28420] ? __hrtimer_init+0x136/0x280 [ 3359.352609][T28420] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3359.359049][T28420] ? hwsim_virtio_rx_work+0x350/0x350 [ 3359.364421][T28420] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3359.369970][T28420] ? memcpy+0x39/0x60 [ 3359.373960][T28420] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3359.379075][T28420] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3359.385396][T28420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3359.392766][T28420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3359.400052][T28420] genl_family_rcv_msg_doit+0x228/0x320 [ 3359.405608][T28420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3359.412990][T28420] ? ns_capable+0xde/0x100 [ 3359.417410][T28420] genl_rcv_msg+0x328/0x580 [ 3359.422660][T28420] ? genl_get_cmd+0x480/0x480 [ 3359.427338][T28420] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3359.433231][T28420] ? lock_release+0x710/0x710 [ 3359.437904][T28420] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3359.443386][T28420] netlink_rcv_skb+0x153/0x420 [ 3359.448148][T28420] ? genl_get_cmd+0x480/0x480 [ 3359.453117][T28420] ? netlink_ack+0xaa0/0xaa0 [ 3359.457720][T28420] genl_rcv+0x24/0x40 [ 3359.461809][T28420] netlink_unicast+0x533/0x7d0 [ 3359.466759][T28420] ? netlink_attachskb+0x810/0x810 [ 3359.471874][T28420] ? __phys_addr_symbol+0x2c/0x70 [ 3359.476896][T28420] ? __check_object_size+0x171/0x3f0 [ 3359.482187][T28420] netlink_sendmsg+0x856/0xd90 [ 3359.487827][T28420] ? netlink_unicast+0x7d0/0x7d0 [ 3359.492770][T28420] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3359.498057][T28420] ? netlink_unicast+0x7d0/0x7d0 [ 3359.502994][T28420] sock_sendmsg+0xcf/0x120 [ 3359.507506][T28420] ____sys_sendmsg+0x6e8/0x810 [ 3359.512268][T28420] ? kernel_sendmsg+0x50/0x50 [ 3359.516941][T28420] ? do_recvmmsg+0x6c0/0x6c0 [ 3359.521547][T28420] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3359.527563][T28420] ___sys_sendmsg+0xf3/0x170 [ 3359.532830][T28420] ? sendmsg_copy_msghdr+0x160/0x160 [ 3359.538119][T28420] ? __fget_files+0x272/0x400 [ 3359.542797][T28420] ? lock_downgrade+0x6d0/0x6d0 [ 3359.547647][T28420] ? find_held_lock+0x2d/0x110 [ 3359.552505][T28420] ? __fget_files+0x294/0x400 [ 3359.557196][T28420] ? __fget_light+0xea/0x280 [ 3359.562257][T28420] __sys_sendmsg+0xe5/0x1b0 [ 3359.566765][T28420] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3359.571791][T28420] ? __do_sys_futex+0x2a2/0x470 [ 3359.576692][T28420] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3359.582612][T28420] do_syscall_64+0x2d/0x70 [ 3359.587026][T28420] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3359.592914][T28420] RIP: 0033:0x45deb9 [ 3359.597568][T28420] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3359.617981][T28420] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3359.627152][T28420] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3359.635915][T28420] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3359.644042][T28420] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3359.652009][T28420] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3359.659973][T28420] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3359.697219][T28476] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3359.784678][T28447] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3359.828529][T28447] CPU: 0 PID: 28447 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3359.837293][T28447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3359.847328][T28447] Call Trace: [ 3359.850600][T28447] dump_stack+0x107/0x163 [ 3359.854915][T28447] sysfs_warn_dup.cold+0x1c/0x29 [ 3359.859837][T28447] sysfs_do_create_link_sd+0x11e/0x140 [ 3359.865278][T28447] sysfs_create_link+0x5f/0xc0 [ 3359.870023][T28447] device_add+0x79a/0x1ce0 [ 3359.874420][T28447] ? devlink_add_symlinks+0x450/0x450 [ 3359.879778][T28447] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3359.885743][T28447] wiphy_register+0x1dfc/0x2900 [ 3359.890619][T28447] ? wiphy_unregister+0xbb0/0xbb0 [ 3359.895650][T28447] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3359.901719][T28447] ieee80211_register_hw+0x1b0f/0x3b00 [ 3359.907176][T28447] ? ieee80211_restart_hw+0x290/0x290 [ 3359.912531][T28447] ? debug_object_destroy+0x210/0x210 [ 3359.917884][T28447] ? memset+0x20/0x40 [ 3359.921847][T28447] ? __hrtimer_init+0x136/0x280 [ 3359.926683][T28447] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3359.932393][T28447] ? hwsim_virtio_rx_work+0x350/0x350 [ 3359.937738][T28447] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3359.943261][T28447] ? memcpy+0x39/0x60 [ 3359.947225][T28447] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3359.952316][T28447] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3359.958298][T28447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3359.965649][T28447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3359.972918][T28447] genl_family_rcv_msg_doit+0x228/0x320 [ 3359.978465][T28447] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3359.985828][T28447] ? ns_capable+0xde/0x100 [ 3359.990230][T28447] genl_rcv_msg+0x328/0x580 [ 3359.994731][T28447] ? genl_get_cmd+0x480/0x480 [ 3359.999391][T28447] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3360.005270][T28447] ? lock_release+0x710/0x710 [ 3360.009925][T28447] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3360.015192][T28447] netlink_rcv_skb+0x153/0x420 [ 3360.019938][T28447] ? genl_get_cmd+0x480/0x480 [ 3360.024596][T28447] ? netlink_ack+0xaa0/0xaa0 [ 3360.029178][T28447] genl_rcv+0x24/0x40 [ 3360.033139][T28447] netlink_unicast+0x533/0x7d0 [ 3360.037908][T28447] ? netlink_attachskb+0x810/0x810 [ 3360.043002][T28447] ? __phys_addr_symbol+0x2c/0x70 [ 3360.048094][T28447] ? __check_object_size+0x171/0x3f0 [ 3360.053371][T28447] netlink_sendmsg+0x856/0xd90 [ 3360.058123][T28447] ? netlink_unicast+0x7d0/0x7d0 [ 3360.063046][T28447] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3360.068309][T28447] ? netlink_unicast+0x7d0/0x7d0 [ 3360.073225][T28447] sock_sendmsg+0xcf/0x120 [ 3360.077619][T28447] ____sys_sendmsg+0x6e8/0x810 [ 3360.082367][T28447] ? kernel_sendmsg+0x50/0x50 [ 3360.087024][T28447] ? do_recvmmsg+0x6c0/0x6c0 [ 3360.091596][T28447] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3360.097560][T28447] ___sys_sendmsg+0xf3/0x170 [ 3360.102130][T28447] ? sendmsg_copy_msghdr+0x160/0x160 [ 3360.107397][T28447] ? __fget_files+0x272/0x400 [ 3360.112057][T28447] ? lock_downgrade+0x6d0/0x6d0 [ 3360.116903][T28447] ? find_held_lock+0x2d/0x110 [ 3360.121656][T28447] ? __fget_files+0x294/0x400 [ 3360.126335][T28447] ? __fget_light+0xea/0x280 [ 3360.130910][T28447] __sys_sendmsg+0xe5/0x1b0 [ 3360.135392][T28447] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3360.140393][T28447] ? __do_sys_futex+0x2a2/0x470 [ 3360.145234][T28447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3360.151117][T28447] do_syscall_64+0x2d/0x70 [ 3360.155517][T28447] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3360.161389][T28447] RIP: 0033:0x45deb9 [ 3360.165276][T28447] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3360.184890][T28447] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3360.193294][T28447] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3360.201246][T28447] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3360.209199][T28447] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3360.217149][T28447] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3360.225106][T28447] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 15:53:44 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8cfe1300}, 0x0) [ 3360.323766][T28496] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:44 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000100)={0x0, 0x2, 0x5}) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000180)={0x0, 0x10bb, 0xa443}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3360.432909][T28452] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:53:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8000000}, 0x0) [ 3360.489512][T28452] CPU: 0 PID: 28452 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3360.498321][T28452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3360.508369][T28452] Call Trace: [ 3360.511662][T28452] dump_stack+0x107/0x163 [ 3360.515996][T28452] sysfs_warn_dup.cold+0x1c/0x29 [ 3360.520933][T28452] sysfs_do_create_link_sd+0x11e/0x140 [ 3360.526401][T28452] sysfs_create_link+0x5f/0xc0 [ 3360.531173][T28452] device_add+0x79a/0x1ce0 [ 3360.535599][T28452] ? devlink_add_symlinks+0x450/0x450 [ 3360.540979][T28452] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3360.546970][T28452] wiphy_register+0x1dfc/0x2900 [ 3360.551834][T28452] ? wiphy_unregister+0xbb0/0xbb0 [ 3360.556876][T28452] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3360.562957][T28452] ieee80211_register_hw+0x1b0f/0x3b00 [ 3360.568432][T28452] ? ieee80211_restart_hw+0x290/0x290 [ 3360.573807][T28452] ? debug_object_destroy+0x210/0x210 [ 3360.579177][T28452] ? memset+0x20/0x40 [ 3360.583160][T28452] ? __hrtimer_init+0x136/0x280 [ 3360.588019][T28452] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3360.593773][T28452] ? hwsim_virtio_rx_work+0x350/0x350 [ 3360.599147][T28452] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3360.604693][T28452] ? memcpy+0x39/0x60 [ 3360.608680][T28452] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3360.613794][T28452] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3360.619696][T28452] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3360.627062][T28452] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3360.634344][T28452] genl_family_rcv_msg_doit+0x228/0x320 [ 3360.639889][T28452] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3360.647263][T28452] ? ns_capable+0xde/0x100 [ 3360.651681][T28452] genl_rcv_msg+0x328/0x580 [ 3360.656184][T28452] ? genl_get_cmd+0x480/0x480 [ 3360.660860][T28452] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3360.666757][T28452] ? lock_release+0x710/0x710 [ 3360.671835][T28452] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3360.677701][T28452] netlink_rcv_skb+0x153/0x420 [ 3360.682464][T28452] ? genl_get_cmd+0x480/0x480 [ 3360.687244][T28452] ? netlink_ack+0xaa0/0xaa0 [ 3360.692641][T28452] genl_rcv+0x24/0x40 [ 3360.697067][T28452] netlink_unicast+0x533/0x7d0 [ 3360.701842][T28452] ? netlink_attachskb+0x810/0x810 [ 3360.707744][T28452] ? __phys_addr_symbol+0x2c/0x70 [ 3360.713083][T28452] ? __check_object_size+0x171/0x3f0 [ 3360.718388][T28452] netlink_sendmsg+0x856/0xd90 [ 3360.723649][T28452] ? netlink_unicast+0x7d0/0x7d0 [ 3360.728640][T28452] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3360.733921][T28452] ? netlink_unicast+0x7d0/0x7d0 [ 3360.738867][T28452] sock_sendmsg+0xcf/0x120 [ 3360.743274][T28452] ____sys_sendmsg+0x6e8/0x810 [ 3360.748037][T28452] ? kernel_sendmsg+0x50/0x50 [ 3360.752780][T28452] ? do_recvmmsg+0x6c0/0x6c0 [ 3360.757431][T28452] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3360.763413][T28452] ___sys_sendmsg+0xf3/0x170 [ 3360.768000][T28452] ? sendmsg_copy_msghdr+0x160/0x160 [ 3360.773913][T28452] ? __fget_files+0x272/0x400 [ 3360.778589][T28452] ? lock_downgrade+0x6d0/0x6d0 [ 3360.783434][T28452] ? find_held_lock+0x2d/0x110 [ 3360.788206][T28452] ? __fget_files+0x294/0x400 [ 3360.793523][T28452] ? __fget_light+0xea/0x280 [ 3360.798118][T28452] __sys_sendmsg+0xe5/0x1b0 [ 3360.802617][T28452] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3360.808228][T28452] ? __do_sys_futex+0x2a2/0x470 [ 3360.813444][T28452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3360.819340][T28452] do_syscall_64+0x2d/0x70 [ 3360.823915][T28452] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3360.829803][T28452] RIP: 0033:0x45deb9 [ 3360.834176][T28452] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3360.853778][T28452] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3360.862211][T28452] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3360.870179][T28452] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3360.878141][T28452] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3360.886356][T28452] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3360.894529][T28452] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3361.007584][T28511] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3361.054385][T28511] CPU: 0 PID: 28511 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3361.063252][T28511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3361.074084][T28511] Call Trace: [ 3361.077416][T28511] dump_stack+0x107/0x163 [ 3361.082167][T28511] sysfs_warn_dup.cold+0x1c/0x29 [ 3361.087121][T28511] sysfs_do_create_link_sd+0x11e/0x140 [ 3361.093082][T28511] sysfs_create_link+0x5f/0xc0 [ 3361.098037][T28511] device_add+0x79a/0x1ce0 [ 3361.102937][T28511] ? devlink_add_symlinks+0x450/0x450 [ 3361.108319][T28511] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3361.114635][T28511] wiphy_register+0x1dfc/0x2900 [ 3361.119845][T28511] ? wiphy_unregister+0xbb0/0xbb0 [ 3361.124909][T28511] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3361.131771][T28511] ieee80211_register_hw+0x1b0f/0x3b00 [ 3361.137260][T28511] ? ieee80211_restart_hw+0x290/0x290 [ 3361.142651][T28511] ? debug_object_destroy+0x210/0x210 [ 3361.148039][T28511] ? memset+0x20/0x40 [ 3361.152035][T28511] ? __hrtimer_init+0x136/0x280 [ 3361.157336][T28511] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3361.163074][T28511] ? hwsim_virtio_rx_work+0x350/0x350 [ 3361.168446][T28511] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3361.174067][T28511] ? memcpy+0x39/0x60 [ 3361.178664][T28511] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3361.184028][T28511] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3361.189942][T28511] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3361.197910][T28511] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3361.205204][T28511] genl_family_rcv_msg_doit+0x228/0x320 [ 3361.210754][T28511] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3361.218650][T28511] ? ns_capable+0xde/0x100 [ 3361.223473][T28511] genl_rcv_msg+0x328/0x580 [ 3361.228496][T28511] ? genl_get_cmd+0x480/0x480 [ 3361.233959][T28511] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3361.239854][T28511] ? lock_release+0x710/0x710 [ 3361.245549][T28511] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3361.250850][T28511] netlink_rcv_skb+0x153/0x420 [ 3361.256070][T28511] ? genl_get_cmd+0x480/0x480 [ 3361.260755][T28511] ? netlink_ack+0xaa0/0xaa0 [ 3361.266815][T28511] genl_rcv+0x24/0x40 [ 3361.270800][T28511] netlink_unicast+0x533/0x7d0 [ 3361.275773][T28511] ? netlink_attachskb+0x810/0x810 [ 3361.280892][T28511] ? __phys_addr_symbol+0x2c/0x70 [ 3361.285932][T28511] ? __check_object_size+0x171/0x3f0 [ 3361.291227][T28511] netlink_sendmsg+0x856/0xd90 [ 3361.296423][T28511] ? netlink_unicast+0x7d0/0x7d0 [ 3361.301376][T28511] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3361.306930][T28511] ? netlink_unicast+0x7d0/0x7d0 [ 3361.311877][T28511] sock_sendmsg+0xcf/0x120 [ 3361.316690][T28511] ____sys_sendmsg+0x6e8/0x810 [ 3361.322181][T28511] ? kernel_sendmsg+0x50/0x50 [ 3361.326883][T28511] ? do_recvmmsg+0x6c0/0x6c0 [ 3361.331482][T28511] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3361.337485][T28511] ___sys_sendmsg+0xf3/0x170 [ 3361.342076][T28511] ? sendmsg_copy_msghdr+0x160/0x160 [ 3361.347859][T28511] ? __fget_files+0x272/0x400 [ 3361.352634][T28511] ? lock_downgrade+0x6d0/0x6d0 [ 3361.358125][T28511] ? find_held_lock+0x2d/0x110 [ 3361.362923][T28511] ? __fget_files+0x294/0x400 [ 3361.367606][T28511] ? __fget_light+0xea/0x280 [ 3361.372200][T28511] __sys_sendmsg+0xe5/0x1b0 [ 3361.376699][T28511] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3361.381720][T28511] ? __do_sys_futex+0x2a2/0x470 [ 3361.387260][T28511] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3361.393151][T28511] do_syscall_64+0x2d/0x70 [ 3361.397563][T28511] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3361.403687][T28511] RIP: 0033:0x45deb9 [ 3361.407580][T28511] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3361.427922][T28511] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3361.437218][T28511] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3361.445206][T28511] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3361.453581][T28511] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3361.461551][T28511] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3361.469519][T28511] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3361.559360][T28514] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3361.591558][T28514] CPU: 0 PID: 28514 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3361.600471][T28514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3361.611388][T28514] Call Trace: [ 3361.614689][T28514] dump_stack+0x107/0x163 [ 3361.619178][T28514] sysfs_warn_dup.cold+0x1c/0x29 [ 3361.625039][T28514] sysfs_do_create_link_sd+0x11e/0x140 [ 3361.630517][T28514] sysfs_create_link+0x5f/0xc0 [ 3361.635779][T28514] device_add+0x79a/0x1ce0 [ 3361.640287][T28514] ? devlink_add_symlinks+0x450/0x450 [ 3361.646407][T28514] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3361.652402][T28514] wiphy_register+0x1dfc/0x2900 [ 3361.657392][T28514] ? wiphy_unregister+0xbb0/0xbb0 [ 3361.662543][T28514] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3361.669610][T28514] ieee80211_register_hw+0x1b0f/0x3b00 [ 3361.675100][T28514] ? ieee80211_restart_hw+0x290/0x290 [ 3361.680491][T28514] ? debug_object_destroy+0x210/0x210 [ 3361.685883][T28514] ? memset+0x20/0x40 [ 3361.689904][T28514] ? __hrtimer_init+0x136/0x280 [ 3361.695065][T28514] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3361.701461][T28514] ? hwsim_virtio_rx_work+0x350/0x350 [ 3361.706841][T28514] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3361.712514][T28514] ? memcpy+0x39/0x60 [ 3361.717334][T28514] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3361.723169][T28514] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3361.729079][T28514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3361.736817][T28514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3361.744109][T28514] genl_family_rcv_msg_doit+0x228/0x320 [ 3361.749750][T28514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3361.757138][T28514] ? ns_capable+0xde/0x100 [ 3361.761564][T28514] genl_rcv_msg+0x328/0x580 [ 3361.766087][T28514] ? genl_get_cmd+0x480/0x480 [ 3361.770766][T28514] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3361.776697][T28514] ? lock_release+0x710/0x710 [ 3361.781372][T28514] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3361.786687][T28514] netlink_rcv_skb+0x153/0x420 [ 3361.791909][T28514] ? genl_get_cmd+0x480/0x480 [ 3361.796585][T28514] ? netlink_ack+0xaa0/0xaa0 [ 3361.801306][T28514] genl_rcv+0x24/0x40 [ 3361.806200][T28514] netlink_unicast+0x533/0x7d0 [ 3361.810978][T28514] ? netlink_attachskb+0x810/0x810 [ 3361.816712][T28514] ? __phys_addr_symbol+0x2c/0x70 [ 3361.821738][T28514] ? __check_object_size+0x171/0x3f0 [ 3361.827027][T28514] netlink_sendmsg+0x856/0xd90 [ 3361.832637][T28514] ? netlink_unicast+0x7d0/0x7d0 [ 3361.837913][T28514] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3361.843488][T28514] ? netlink_unicast+0x7d0/0x7d0 [ 3361.849162][T28514] sock_sendmsg+0xcf/0x120 [ 3361.854252][T28514] ____sys_sendmsg+0x6e8/0x810 [ 3361.859592][T28514] ? kernel_sendmsg+0x50/0x50 [ 3361.865079][T28514] ? do_recvmmsg+0x6c0/0x6c0 [ 3361.870439][T28514] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3361.876424][T28514] ___sys_sendmsg+0xf3/0x170 [ 3361.881576][T28514] ? sendmsg_copy_msghdr+0x160/0x160 [ 3361.886864][T28514] ? __fget_files+0x272/0x400 [ 3361.891543][T28514] ? lock_downgrade+0x6d0/0x6d0 [ 3361.897060][T28514] ? find_held_lock+0x2d/0x110 [ 3361.901847][T28514] ? __fget_files+0x294/0x400 [ 3361.906792][T28514] ? __fget_light+0xea/0x280 [ 3361.911397][T28514] __sys_sendmsg+0xe5/0x1b0 [ 3361.916744][T28514] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3361.921916][T28514] ? __do_sys_futex+0x2a2/0x470 [ 3361.927400][T28514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3361.933298][T28514] do_syscall_64+0x2d/0x70 [ 3361.938498][T28514] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3361.944949][T28514] RIP: 0033:0x45deb9 [ 3361.949168][T28514] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3361.969319][T28514] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3361.977883][T28514] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3361.985865][T28514] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3361.994080][T28514] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3362.002047][T28514] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3362.010618][T28514] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:47 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0x30, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:47 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x4c, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:47 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xb4}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:47 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8dfe1300}, 0x0) 15:53:47 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0xa, 0x0, 0x0, @mcast2}, 0x0, [0x0, 0x0, 0x0, 0x40]}, 0x5c) 15:53:47 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9000000}, 0x0) [ 3363.907253][T28570] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3363.946125][T28579] IPVS: ftp: loaded support on port[0] = 21 [ 3363.960753][T28570] CPU: 0 PID: 28570 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3363.970348][T28570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3363.980410][T28570] Call Trace: [ 3363.983705][T28570] dump_stack+0x107/0x163 [ 3363.988045][T28570] sysfs_warn_dup.cold+0x1c/0x29 [ 3363.993015][T28570] sysfs_do_create_link_sd+0x11e/0x140 [ 3363.998480][T28570] sysfs_create_link+0x5f/0xc0 [ 3364.003253][T28570] device_add+0x79a/0x1ce0 [ 3364.007695][T28570] ? devlink_add_symlinks+0x450/0x450 [ 3364.013171][T28570] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3364.019151][T28570] wiphy_register+0x1dfc/0x2900 [ 3364.024032][T28570] ? wiphy_unregister+0xbb0/0xbb0 [ 3364.029095][T28570] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3364.035176][T28570] ieee80211_register_hw+0x1b0f/0x3b00 [ 3364.040653][T28570] ? ieee80211_restart_hw+0x290/0x290 [ 3364.046043][T28570] ? debug_object_destroy+0x210/0x210 [ 3364.051444][T28570] ? memset+0x20/0x40 [ 3364.055434][T28570] ? __hrtimer_init+0x136/0x280 [ 3364.060299][T28570] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3364.066057][T28570] ? hwsim_virtio_rx_work+0x350/0x350 [ 3364.071430][T28570] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3364.076972][T28570] ? memcpy+0x39/0x60 [ 3364.080958][T28570] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3364.086083][T28570] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3364.091990][T28570] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3364.099470][T28570] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3364.106756][T28570] genl_family_rcv_msg_doit+0x228/0x320 [ 3364.112313][T28570] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3364.119697][T28570] ? ns_capable+0xde/0x100 [ 3364.124123][T28570] genl_rcv_msg+0x328/0x580 [ 3364.128630][T28570] ? genl_get_cmd+0x480/0x480 [ 3364.133310][T28570] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3364.139213][T28570] ? lock_release+0x710/0x710 [ 3364.143881][T28570] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3364.149164][T28570] netlink_rcv_skb+0x153/0x420 [ 3364.153928][T28570] ? genl_get_cmd+0x480/0x480 [ 3364.158608][T28570] ? netlink_ack+0xaa0/0xaa0 [ 3364.163214][T28570] genl_rcv+0x24/0x40 [ 3364.167209][T28570] netlink_unicast+0x533/0x7d0 [ 3364.171977][T28570] ? netlink_attachskb+0x810/0x810 [ 3364.177086][T28570] ? __phys_addr_symbol+0x2c/0x70 [ 3364.182100][T28570] ? __check_object_size+0x171/0x3f0 [ 3364.187385][T28570] netlink_sendmsg+0x856/0xd90 [ 3364.192151][T28570] ? netlink_unicast+0x7d0/0x7d0 [ 3364.197102][T28570] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3364.202377][T28570] ? netlink_unicast+0x7d0/0x7d0 [ 3364.207309][T28570] sock_sendmsg+0xcf/0x120 [ 3364.211723][T28570] ____sys_sendmsg+0x6e8/0x810 [ 3364.216478][T28570] ? kernel_sendmsg+0x50/0x50 [ 3364.221142][T28570] ? do_recvmmsg+0x6c0/0x6c0 [ 3364.225739][T28570] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3364.231725][T28570] ___sys_sendmsg+0xf3/0x170 [ 3364.236312][T28570] ? sendmsg_copy_msghdr+0x160/0x160 [ 3364.241598][T28570] ? __fget_files+0x272/0x400 [ 3364.246270][T28570] ? lock_downgrade+0x6d0/0x6d0 [ 3364.251119][T28570] ? find_held_lock+0x2d/0x110 [ 3364.255893][T28570] ? __fget_files+0x294/0x400 [ 3364.260578][T28570] ? __fget_light+0xea/0x280 [ 3364.265170][T28570] __sys_sendmsg+0xe5/0x1b0 [ 3364.269668][T28570] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3364.274684][T28570] ? __do_sys_futex+0x2a2/0x470 [ 3364.279541][T28570] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3364.285434][T28570] do_syscall_64+0x2d/0x70 [ 3364.289846][T28570] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3364.295730][T28570] RIP: 0033:0x45deb9 [ 3364.299624][T28570] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3364.319220][T28570] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3364.327632][T28570] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3364.335602][T28570] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3364.343569][T28570] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3364.351529][T28570] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:53:48 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa4d}}, 0x20}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000dc0)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001000010400"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0xffffffff, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, 0xa4d}}, 0x20}}, 0x800) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000dc0)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001000010400"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r8, 0xa4d}}, 0x20}}, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in=@local, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@private2}}, &(0x7f0000000040)=0xe8) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x128, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x4}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x8001}, 0x880) [ 3364.359494][T28570] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3364.398069][T28578] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3364.444500][T28571] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3364.514858][T28571] CPU: 0 PID: 28571 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3364.523646][T28571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3364.533691][T28571] Call Trace: [ 3364.537071][T28571] dump_stack+0x107/0x163 [ 3364.541404][T28571] sysfs_warn_dup.cold+0x1c/0x29 [ 3364.546347][T28571] sysfs_do_create_link_sd+0x11e/0x140 [ 3364.551817][T28571] sysfs_create_link+0x5f/0xc0 [ 3364.556576][T28571] device_add+0x79a/0x1ce0 [ 3364.561006][T28571] ? devlink_add_symlinks+0x450/0x450 [ 3364.566388][T28571] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3364.572375][T28571] wiphy_register+0x1dfc/0x2900 [ 3364.577219][T28571] ? wiphy_unregister+0xbb0/0xbb0 [ 3364.582246][T28571] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3364.588318][T28571] ieee80211_register_hw+0x1b0f/0x3b00 [ 3364.593791][T28571] ? ieee80211_restart_hw+0x290/0x290 [ 3364.599163][T28571] ? debug_object_destroy+0x210/0x210 [ 3364.604623][T28571] ? memset+0x20/0x40 [ 3364.608608][T28571] ? __hrtimer_init+0x136/0x280 [ 3364.613462][T28571] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3364.619199][T28571] ? hwsim_virtio_rx_work+0x350/0x350 [ 3364.624569][T28571] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3364.630126][T28571] ? memcpy+0x39/0x60 [ 3364.634113][T28571] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3364.639224][T28571] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3364.645484][T28571] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3364.652947][T28571] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3364.660231][T28571] genl_family_rcv_msg_doit+0x228/0x320 [ 3364.666682][T28571] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3364.674219][T28571] ? ns_capable+0xde/0x100 [ 3364.678654][T28571] genl_rcv_msg+0x328/0x580 [ 3364.683726][T28571] ? genl_get_cmd+0x480/0x480 [ 3364.688402][T28571] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3364.694293][T28571] ? lock_release+0x710/0x710 [ 3364.698963][T28571] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3364.704781][T28571] netlink_rcv_skb+0x153/0x420 [ 3364.710053][T28571] ? genl_get_cmd+0x480/0x480 [ 3364.715614][T28571] ? netlink_ack+0xaa0/0xaa0 [ 3364.720235][T28571] genl_rcv+0x24/0x40 [ 3364.725083][T28571] netlink_unicast+0x533/0x7d0 [ 3364.730671][T28571] ? netlink_attachskb+0x810/0x810 [ 3364.735791][T28571] ? __phys_addr_symbol+0x2c/0x70 [ 3364.741038][T28571] ? __check_object_size+0x171/0x3f0 [ 3364.746692][T28571] netlink_sendmsg+0x856/0xd90 [ 3364.752122][T28571] ? netlink_unicast+0x7d0/0x7d0 [ 3364.757648][T28571] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3364.763032][T28571] ? netlink_unicast+0x7d0/0x7d0 [ 3364.768524][T28571] sock_sendmsg+0xcf/0x120 [ 3364.773452][T28571] ____sys_sendmsg+0x6e8/0x810 [ 3364.778217][T28571] ? kernel_sendmsg+0x50/0x50 [ 3364.782890][T28571] ? do_recvmmsg+0x6c0/0x6c0 [ 3364.788205][T28571] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3364.795128][T28571] ___sys_sendmsg+0xf3/0x170 [ 3364.799724][T28571] ? sendmsg_copy_msghdr+0x160/0x160 [ 3364.805245][T28571] ? __fget_files+0x272/0x400 [ 3364.809926][T28571] ? lock_downgrade+0x6d0/0x6d0 [ 3364.814774][T28571] ? find_held_lock+0x2d/0x110 [ 3364.819554][T28571] ? __fget_files+0x294/0x400 [ 3364.824280][T28571] ? __fget_light+0xea/0x280 [ 3364.829106][T28571] __sys_sendmsg+0xe5/0x1b0 [ 3364.833714][T28571] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3364.838740][T28571] ? __do_sys_futex+0x2a2/0x470 [ 3364.844191][T28571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3364.850843][T28571] do_syscall_64+0x2d/0x70 [ 3364.855350][T28571] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3364.861244][T28571] RIP: 0033:0x45deb9 [ 3364.865912][T28571] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3364.885522][T28571] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3364.894597][T28571] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3364.902903][T28571] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:53:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xc0}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3364.911862][T28571] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3364.919832][T28571] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3364.928209][T28571] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:48 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x60, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3364.981103][T28605] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3365.009519][T28580] IPVS: ftp: loaded support on port[0] = 21 15:53:48 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8efe1300}, 0x0) [ 3365.096714][T28575] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3365.149118][T28575] CPU: 0 PID: 28575 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3365.157876][T28575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3365.167925][T28575] Call Trace: [ 3365.171224][T28575] dump_stack+0x107/0x163 [ 3365.175566][T28575] sysfs_warn_dup.cold+0x1c/0x29 [ 3365.180514][T28575] sysfs_do_create_link_sd+0x11e/0x140 [ 3365.185983][T28575] sysfs_create_link+0x5f/0xc0 [ 3365.190755][T28575] device_add+0x79a/0x1ce0 [ 3365.195183][T28575] ? devlink_add_symlinks+0x450/0x450 [ 3365.200568][T28575] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3365.206557][T28575] wiphy_register+0x1dfc/0x2900 [ 3365.211418][T28575] ? wiphy_unregister+0xbb0/0xbb0 [ 3365.216464][T28575] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3365.222537][T28575] ieee80211_register_hw+0x1b0f/0x3b00 [ 3365.228013][T28575] ? ieee80211_restart_hw+0x290/0x290 [ 3365.233392][T28575] ? debug_object_destroy+0x210/0x210 [ 3365.238856][T28575] ? memset+0x20/0x40 [ 3365.242925][T28575] ? __hrtimer_init+0x136/0x280 [ 3365.247785][T28575] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3365.253522][T28575] ? hwsim_virtio_rx_work+0x350/0x350 [ 3365.258894][T28575] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3365.264452][T28575] ? memcpy+0x39/0x60 [ 3365.268441][T28575] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3365.273550][T28575] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3365.279454][T28575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3365.286821][T28575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3365.294228][T28575] genl_family_rcv_msg_doit+0x228/0x320 [ 3365.299782][T28575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3365.307178][T28575] ? ns_capable+0xde/0x100 [ 3365.311613][T28575] genl_rcv_msg+0x328/0x580 [ 3365.316128][T28575] ? genl_get_cmd+0x480/0x480 [ 3365.320808][T28575] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3365.326793][T28575] ? lock_release+0x710/0x710 [ 3365.331468][T28575] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3365.336770][T28575] netlink_rcv_skb+0x153/0x420 [ 3365.341532][T28575] ? genl_get_cmd+0x480/0x480 [ 3365.346209][T28575] ? netlink_ack+0xaa0/0xaa0 [ 3365.350813][T28575] genl_rcv+0x24/0x40 [ 3365.354788][T28575] netlink_unicast+0x533/0x7d0 [ 3365.359565][T28575] ? netlink_attachskb+0x810/0x810 [ 3365.364679][T28575] ? __phys_addr_symbol+0x2c/0x70 [ 3365.369704][T28575] ? __check_object_size+0x171/0x3f0 [ 3365.374993][T28575] netlink_sendmsg+0x856/0xd90 [ 3365.379762][T28575] ? netlink_unicast+0x7d0/0x7d0 [ 3365.384703][T28575] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3365.389983][T28575] ? netlink_unicast+0x7d0/0x7d0 [ 3365.394917][T28575] sock_sendmsg+0xcf/0x120 [ 3365.399332][T28575] ____sys_sendmsg+0x6e8/0x810 [ 3365.404094][T28575] ? kernel_sendmsg+0x50/0x50 [ 3365.408764][T28575] ? do_recvmmsg+0x6c0/0x6c0 [ 3365.413354][T28575] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3365.419337][T28575] ___sys_sendmsg+0xf3/0x170 [ 3365.423947][T28575] ? sendmsg_copy_msghdr+0x160/0x160 [ 3365.429250][T28575] ? __fget_files+0x272/0x400 [ 3365.433923][T28575] ? lock_downgrade+0x6d0/0x6d0 [ 3365.438765][T28575] ? find_held_lock+0x2d/0x110 [ 3365.443539][T28575] ? __fget_files+0x294/0x400 [ 3365.448231][T28575] ? __fget_light+0xea/0x280 [ 3365.452830][T28575] __sys_sendmsg+0xe5/0x1b0 [ 3365.457334][T28575] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3365.462366][T28575] ? __do_sys_futex+0x2a2/0x470 [ 3365.467247][T28575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3365.473146][T28575] do_syscall_64+0x2d/0x70 [ 3365.477565][T28575] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3365.483452][T28575] RIP: 0033:0x45deb9 [ 3365.487342][T28575] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3365.506939][T28575] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3365.515357][T28575] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3365.523331][T28575] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3365.531303][T28575] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3365.539273][T28575] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:53:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xd1}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3365.547246][T28575] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3365.797882][T28621] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:53:49 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r1, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x2c, &(0x7f0000000080)=[@in={0x2, 0x4e21, @private=0xa010100}, @in6={0xa, 0x4e21, 0x0, @dev, 0x6}]}, &(0x7f0000000180)=0x10) r3 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000300)={r4, @in={{0x2, 0x4e23, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x326}, 0x9c) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000000)={r4, 0x1c, "329f9b05306b2cc9dd2f91708644d0db49a115bb068b2020a3931e26"}, &(0x7f0000000040)=0x24) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3365.883479][T28623] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3365.922476][T28623] CPU: 1 PID: 28623 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3365.931246][T28623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3365.941294][T28623] Call Trace: [ 3365.944591][T28623] dump_stack+0x107/0x163 [ 3365.948953][T28623] sysfs_warn_dup.cold+0x1c/0x29 [ 3365.953899][T28623] sysfs_do_create_link_sd+0x11e/0x140 [ 3365.959376][T28623] sysfs_create_link+0x5f/0xc0 [ 3365.964153][T28623] device_add+0x79a/0x1ce0 [ 3365.968580][T28623] ? devlink_add_symlinks+0x450/0x450 [ 3365.973958][T28623] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3365.980504][T28623] wiphy_register+0x1dfc/0x2900 [ 3365.985376][T28623] ? wiphy_unregister+0xbb0/0xbb0 [ 3365.990420][T28623] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3365.996498][T28623] ieee80211_register_hw+0x1b0f/0x3b00 [ 3366.001974][T28623] ? ieee80211_restart_hw+0x290/0x290 [ 3366.007366][T28623] ? debug_object_destroy+0x210/0x210 [ 3366.012746][T28623] ? memset+0x20/0x40 [ 3366.017299][T28623] ? __hrtimer_init+0x136/0x280 [ 3366.022302][T28623] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3366.028068][T28623] ? hwsim_virtio_rx_work+0x350/0x350 [ 3366.033445][T28623] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3366.039005][T28623] ? memcpy+0x39/0x60 [ 3366.042995][T28623] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3366.048114][T28623] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3366.054026][T28623] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3366.061395][T28623] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3366.068675][T28623] genl_family_rcv_msg_doit+0x228/0x320 [ 3366.074224][T28623] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3366.081711][T28623] ? ns_capable+0xde/0x100 [ 3366.086672][T28623] genl_rcv_msg+0x328/0x580 [ 3366.091184][T28623] ? genl_get_cmd+0x480/0x480 [ 3366.095866][T28623] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3366.101762][T28623] ? lock_release+0x710/0x710 [ 3366.106436][T28623] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3366.111744][T28623] netlink_rcv_skb+0x153/0x420 [ 3366.116513][T28623] ? genl_get_cmd+0x480/0x480 [ 3366.121184][T28623] ? netlink_ack+0xaa0/0xaa0 [ 3366.125772][T28623] genl_rcv+0x24/0x40 [ 3366.129733][T28623] netlink_unicast+0x533/0x7d0 [ 3366.134476][T28623] ? netlink_attachskb+0x810/0x810 [ 3366.139564][T28623] ? __phys_addr_symbol+0x2c/0x70 [ 3366.144565][T28623] ? __check_object_size+0x171/0x3f0 [ 3366.149830][T28623] netlink_sendmsg+0x856/0xd90 [ 3366.154578][T28623] ? netlink_unicast+0x7d0/0x7d0 [ 3366.159505][T28623] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3366.164766][T28623] ? netlink_unicast+0x7d0/0x7d0 [ 3366.169680][T28623] sock_sendmsg+0xcf/0x120 [ 3366.174074][T28623] ____sys_sendmsg+0x6e8/0x810 [ 3366.178818][T28623] ? kernel_sendmsg+0x50/0x50 [ 3366.183472][T28623] ? do_recvmmsg+0x6c0/0x6c0 [ 3366.188049][T28623] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3366.194130][T28623] ___sys_sendmsg+0xf3/0x170 [ 3366.198737][T28623] ? sendmsg_copy_msghdr+0x160/0x160 [ 3366.204000][T28623] ? __fget_files+0x272/0x400 [ 3366.208654][T28623] ? lock_downgrade+0x6d0/0x6d0 [ 3366.213480][T28623] ? find_held_lock+0x2d/0x110 [ 3366.218235][T28623] ? __fget_files+0x294/0x400 [ 3366.222896][T28623] ? __fget_light+0xea/0x280 [ 3366.227469][T28623] __sys_sendmsg+0xe5/0x1b0 [ 3366.231946][T28623] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3366.236949][T28623] ? __do_sys_futex+0x2a2/0x470 [ 3366.241785][T28623] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3366.247656][T28623] do_syscall_64+0x2d/0x70 [ 3366.252049][T28623] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3366.257924][T28623] RIP: 0033:0x45deb9 [ 3366.261795][T28623] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3366.281486][T28623] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3366.289873][T28623] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3366.297833][T28623] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3366.305780][T28623] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3366.313731][T28623] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3366.321687][T28623] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3366.466610][T28659] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3366.549822][T28627] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3366.571587][T28627] CPU: 1 PID: 28627 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3366.580359][T28627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3366.590503][T28627] Call Trace: [ 3366.593807][T28627] dump_stack+0x107/0x163 [ 3366.599039][T28627] sysfs_warn_dup.cold+0x1c/0x29 [ 3366.603988][T28627] sysfs_do_create_link_sd+0x11e/0x140 [ 3366.609461][T28627] sysfs_create_link+0x5f/0xc0 [ 3366.614227][T28627] device_add+0x79a/0x1ce0 [ 3366.618652][T28627] ? devlink_add_symlinks+0x450/0x450 [ 3366.624041][T28627] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3366.630045][T28627] wiphy_register+0x1dfc/0x2900 [ 3366.635622][T28627] ? wiphy_unregister+0xbb0/0xbb0 [ 3366.640832][T28627] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3366.647320][T28627] ieee80211_register_hw+0x1b0f/0x3b00 [ 3366.653339][T28627] ? ieee80211_restart_hw+0x290/0x290 [ 3366.658767][T28627] ? debug_object_destroy+0x210/0x210 [ 3366.664810][T28627] ? memset+0x20/0x40 [ 3366.668818][T28627] ? __hrtimer_init+0x136/0x280 [ 3366.673830][T28627] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3366.680350][T28627] ? hwsim_virtio_rx_work+0x350/0x350 [ 3366.685735][T28627] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3366.691299][T28627] ? memcpy+0x39/0x60 [ 3366.695430][T28627] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3366.700560][T28627] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3366.706481][T28627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3366.713871][T28627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3366.721174][T28627] genl_family_rcv_msg_doit+0x228/0x320 [ 3366.726734][T28627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3366.734129][T28627] ? ns_capable+0xde/0x100 [ 3366.738718][T28627] genl_rcv_msg+0x328/0x580 [ 3366.743874][T28627] ? genl_get_cmd+0x480/0x480 [ 3366.749498][T28627] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3366.756136][T28627] ? lock_release+0x710/0x710 [ 3366.761515][T28627] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3366.766809][T28627] netlink_rcv_skb+0x153/0x420 [ 3366.771581][T28627] ? genl_get_cmd+0x480/0x480 [ 3366.776270][T28627] ? netlink_ack+0xaa0/0xaa0 [ 3366.780885][T28627] genl_rcv+0x24/0x40 [ 3366.785210][T28627] netlink_unicast+0x533/0x7d0 [ 3366.790963][T28627] ? netlink_attachskb+0x810/0x810 [ 3366.796927][T28627] ? __phys_addr_symbol+0x2c/0x70 [ 3366.802599][T28627] ? __check_object_size+0x171/0x3f0 [ 3366.808589][T28627] netlink_sendmsg+0x856/0xd90 [ 3366.814123][T28627] ? netlink_unicast+0x7d0/0x7d0 [ 3366.819090][T28627] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3366.825935][T28627] ? netlink_unicast+0x7d0/0x7d0 [ 3366.831542][T28627] sock_sendmsg+0xcf/0x120 [ 3366.836034][T28627] ____sys_sendmsg+0x6e8/0x810 [ 3366.841586][T28627] ? kernel_sendmsg+0x50/0x50 [ 3366.846270][T28627] ? do_recvmmsg+0x6c0/0x6c0 [ 3366.851684][T28627] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3366.857873][T28627] ___sys_sendmsg+0xf3/0x170 [ 3366.862470][T28627] ? sendmsg_copy_msghdr+0x160/0x160 [ 3366.868469][T28627] ? __fget_files+0x272/0x400 [ 3366.873904][T28627] ? lock_downgrade+0x6d0/0x6d0 [ 3366.878766][T28627] ? find_held_lock+0x2d/0x110 [ 3366.884174][T28627] ? __fget_files+0x294/0x400 [ 3366.888945][T28627] ? __fget_light+0xea/0x280 [ 3366.894327][T28627] __sys_sendmsg+0xe5/0x1b0 [ 3366.899073][T28627] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3366.904729][T28627] ? __do_sys_futex+0x2a2/0x470 [ 3366.909601][T28627] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3366.915516][T28627] do_syscall_64+0x2d/0x70 [ 3366.919951][T28627] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3366.926104][T28627] RIP: 0033:0x45deb9 [ 3366.930284][T28627] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3366.950868][T28627] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3366.959848][T28627] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3366.967825][T28627] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3366.975803][T28627] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3366.984398][T28627] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3366.992375][T28627] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:53:52 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xc8, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xe000000}, 0x0) 15:53:52 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000000)={@empty, 0x5a}) 15:53:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x8ffe1300}, 0x0) 15:53:52 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xf0}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:52 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x62, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3369.341264][T28722] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3369.372042][T28722] CPU: 0 PID: 28722 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3369.380826][T28722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3369.381977][T28731] IPVS: ftp: loaded support on port[0] = 21 [ 3369.390882][T28722] Call Trace: [ 3369.390908][T28722] dump_stack+0x107/0x163 [ 3369.390929][T28722] sysfs_warn_dup.cold+0x1c/0x29 [ 3369.390951][T28722] sysfs_do_create_link_sd+0x11e/0x140 [ 3369.390971][T28722] sysfs_create_link+0x5f/0xc0 [ 3369.390994][T28722] device_add+0x79a/0x1ce0 [ 3369.391015][T28722] ? devlink_add_symlinks+0x450/0x450 [ 3369.391041][T28722] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3369.437625][T28722] wiphy_register+0x1dfc/0x2900 [ 3369.442501][T28722] ? wiphy_unregister+0xbb0/0xbb0 [ 3369.448076][T28722] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3369.454148][T28722] ieee80211_register_hw+0x1b0f/0x3b00 [ 3369.459620][T28722] ? ieee80211_restart_hw+0x290/0x290 [ 3369.465094][T28722] ? debug_object_destroy+0x210/0x210 [ 3369.470491][T28722] ? memset+0x20/0x40 [ 3369.474679][T28722] ? __hrtimer_init+0x136/0x280 [ 3369.479543][T28722] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3369.485292][T28722] ? hwsim_virtio_rx_work+0x350/0x350 [ 3369.490669][T28722] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3369.496737][T28722] ? memcpy+0x39/0x60 [ 3369.500729][T28722] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3369.505942][T28722] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3369.511899][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3369.519270][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3369.526867][T28722] genl_family_rcv_msg_doit+0x228/0x320 [ 3369.532986][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3369.540374][T28722] ? ns_capable+0xde/0x100 [ 3369.545179][T28722] genl_rcv_msg+0x328/0x580 [ 3369.549699][T28722] ? genl_get_cmd+0x480/0x480 [ 3369.555226][T28722] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3369.561130][T28722] ? lock_release+0x710/0x710 [ 3369.566077][T28722] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3369.572015][T28722] netlink_rcv_skb+0x153/0x420 [ 3369.576928][T28722] ? genl_get_cmd+0x480/0x480 [ 3369.581614][T28722] ? netlink_ack+0xaa0/0xaa0 [ 3369.586225][T28722] genl_rcv+0x24/0x40 [ 3369.590227][T28722] netlink_unicast+0x533/0x7d0 [ 3369.595011][T28722] ? netlink_attachskb+0x810/0x810 [ 3369.600137][T28722] ? __phys_addr_symbol+0x2c/0x70 [ 3369.606002][T28722] ? __check_object_size+0x171/0x3f0 [ 3369.611388][T28722] netlink_sendmsg+0x856/0xd90 [ 3369.616637][T28722] ? netlink_unicast+0x7d0/0x7d0 [ 3369.621599][T28722] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3369.627729][T28722] ? netlink_unicast+0x7d0/0x7d0 [ 3369.633502][T28722] sock_sendmsg+0xcf/0x120 [ 3369.638136][T28722] ____sys_sendmsg+0x6e8/0x810 [ 3369.643404][T28722] ? kernel_sendmsg+0x50/0x50 [ 3369.648261][T28722] ? do_recvmmsg+0x6c0/0x6c0 [ 3369.652881][T28722] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3369.658864][T28722] ___sys_sendmsg+0xf3/0x170 [ 3369.664400][T28722] ? sendmsg_copy_msghdr+0x160/0x160 [ 3369.669705][T28722] ? __fget_files+0x272/0x400 [ 3369.674390][T28722] ? lock_downgrade+0x6d0/0x6d0 [ 3369.679249][T28722] ? find_held_lock+0x2d/0x110 [ 3369.684240][T28722] ? __fget_files+0x294/0x400 [ 3369.688931][T28722] ? __fget_light+0xea/0x280 [ 3369.693636][T28722] __sys_sendmsg+0xe5/0x1b0 [ 3369.698396][T28722] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3369.703429][T28722] ? __do_sys_futex+0x2a2/0x470 [ 3369.708307][T28722] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3369.714822][T28722] do_syscall_64+0x2d/0x70 [ 3369.719287][T28722] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3369.725963][T28722] RIP: 0033:0x45deb9 [ 3369.729874][T28722] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3369.749479][T28722] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3369.757981][T28722] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3369.766384][T28722] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3369.774352][T28722] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3369.782313][T28722] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3369.790397][T28722] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3369.814595][T28730] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3369.854891][T28723] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3369.902852][T28723] CPU: 0 PID: 28723 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3369.911650][T28723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3369.921708][T28723] Call Trace: [ 3369.925018][T28723] dump_stack+0x107/0x163 [ 3369.929364][T28723] sysfs_warn_dup.cold+0x1c/0x29 [ 3369.934309][T28723] sysfs_do_create_link_sd+0x11e/0x140 [ 3369.939803][T28723] sysfs_create_link+0x5f/0xc0 [ 3369.944575][T28723] device_add+0x79a/0x1ce0 [ 3369.949000][T28723] ? devlink_add_symlinks+0x450/0x450 [ 3369.954380][T28723] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3369.960373][T28723] wiphy_register+0x1dfc/0x2900 [ 3369.965250][T28723] ? wiphy_unregister+0xbb0/0xbb0 [ 3369.970298][T28723] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3369.976378][T28723] ieee80211_register_hw+0x1b0f/0x3b00 [ 3369.981893][T28723] ? ieee80211_restart_hw+0x290/0x290 [ 3369.987286][T28723] ? debug_object_destroy+0x210/0x210 [ 3369.992668][T28723] ? memset+0x20/0x40 [ 3369.996654][T28723] ? __hrtimer_init+0x136/0x280 [ 3370.001516][T28723] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3370.007268][T28723] ? hwsim_virtio_rx_work+0x350/0x350 [ 3370.012659][T28723] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3370.018212][T28723] ? memcpy+0x39/0x60 [ 3370.022206][T28723] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3370.027328][T28723] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3370.033235][T28723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3370.040597][T28723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3370.047873][T28723] genl_family_rcv_msg_doit+0x228/0x320 [ 3370.053437][T28723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3370.060807][T28723] ? ns_capable+0xde/0x100 [ 3370.065215][T28723] genl_rcv_msg+0x328/0x580 [ 3370.069707][T28723] ? genl_get_cmd+0x480/0x480 [ 3370.074371][T28723] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3370.080378][T28723] ? lock_release+0x710/0x710 [ 3370.085094][T28723] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3370.090366][T28723] netlink_rcv_skb+0x153/0x420 [ 3370.095114][T28723] ? genl_get_cmd+0x480/0x480 [ 3370.099775][T28723] ? netlink_ack+0xaa0/0xaa0 [ 3370.104374][T28723] genl_rcv+0x24/0x40 [ 3370.108370][T28723] netlink_unicast+0x533/0x7d0 [ 3370.113119][T28723] ? netlink_attachskb+0x810/0x810 [ 3370.118224][T28723] ? __phys_addr_symbol+0x2c/0x70 [ 3370.123243][T28723] ? __check_object_size+0x171/0x3f0 [ 3370.128532][T28723] netlink_sendmsg+0x856/0xd90 [ 3370.133300][T28723] ? netlink_unicast+0x7d0/0x7d0 [ 3370.138234][T28723] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3370.143506][T28723] ? netlink_unicast+0x7d0/0x7d0 [ 3370.148450][T28723] sock_sendmsg+0xcf/0x120 [ 3370.152849][T28723] ____sys_sendmsg+0x6e8/0x810 [ 3370.157595][T28723] ? kernel_sendmsg+0x50/0x50 [ 3370.162251][T28723] ? do_recvmmsg+0x6c0/0x6c0 [ 3370.166824][T28723] ? __schedule+0x89b/0x2130 [ 3370.171404][T28723] ___sys_sendmsg+0xf3/0x170 [ 3370.175992][T28723] ? sendmsg_copy_msghdr+0x160/0x160 [ 3370.181350][T28723] ? __fget_files+0x272/0x400 [ 3370.186024][T28723] ? lock_downgrade+0x6d0/0x6d0 [ 3370.190865][T28723] ? __fget_files+0x294/0x400 [ 3370.195533][T28723] ? __fget_light+0xea/0x280 [ 3370.200117][T28723] __sys_sendmsg+0xe5/0x1b0 [ 3370.204690][T28723] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3370.209722][T28723] do_syscall_64+0x2d/0x70 [ 3370.214206][T28723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3370.220078][T28723] RIP: 0033:0x45deb9 [ 3370.223958][T28723] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3370.243634][T28723] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3370.252037][T28723] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3370.260007][T28723] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3370.268050][T28723] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3370.276035][T28723] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3370.283996][T28723] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:53:54 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e22, 0x0, @mcast1}, {0xa, 0x0, 0x80000, @empty}, 0x0, [0xfffffffc, 0x2]}, 0x5c) socketpair(0x1f, 0x6, 0x80000000, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$L2TP_CMD_TUNNEL_DELETE(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x1f}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4008004) [ 3370.318901][T28733] IPVS: ftp: loaded support on port[0] = 21 [ 3370.329914][T28729] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3370.360979][T28729] CPU: 1 PID: 28729 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3370.369748][T28729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3370.379801][T28729] Call Trace: [ 3370.383106][T28729] dump_stack+0x107/0x163 [ 3370.387453][T28729] sysfs_warn_dup.cold+0x1c/0x29 [ 3370.392399][T28729] sysfs_do_create_link_sd+0x11e/0x140 [ 3370.397866][T28729] sysfs_create_link+0x5f/0xc0 [ 3370.402636][T28729] device_add+0x79a/0x1ce0 [ 3370.407066][T28729] ? devlink_add_symlinks+0x450/0x450 [ 3370.412452][T28729] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3370.418439][T28729] wiphy_register+0x1dfc/0x2900 [ 3370.423310][T28729] ? wiphy_unregister+0xbb0/0xbb0 [ 3370.428360][T28729] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3370.435085][T28729] ieee80211_register_hw+0x1b0f/0x3b00 [ 3370.440882][T28729] ? ieee80211_restart_hw+0x290/0x290 [ 3370.446947][T28729] ? debug_object_destroy+0x210/0x210 [ 3370.452797][T28729] ? memset+0x20/0x40 [ 3370.457137][T28729] ? __hrtimer_init+0x136/0x280 [ 3370.462544][T28729] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3370.468380][T28729] ? hwsim_virtio_rx_work+0x350/0x350 [ 3370.473756][T28729] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3370.479303][T28729] ? memcpy+0x39/0x60 [ 3370.483752][T28729] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3370.488894][T28729] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3370.494885][T28729] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3370.502300][T28729] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3370.510331][T28729] genl_family_rcv_msg_doit+0x228/0x320 [ 3370.516426][T28729] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3370.524109][T28729] ? ns_capable+0xde/0x100 [ 3370.529122][T28729] genl_rcv_msg+0x328/0x580 [ 3370.533670][T28729] ? genl_get_cmd+0x480/0x480 [ 3370.538442][T28729] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3370.544446][T28729] ? lock_release+0x710/0x710 [ 3370.549141][T28729] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3370.554918][T28729] netlink_rcv_skb+0x153/0x420 [ 3370.559693][T28729] ? genl_get_cmd+0x480/0x480 [ 3370.564380][T28729] ? netlink_ack+0xaa0/0xaa0 [ 3370.569212][T28729] genl_rcv+0x24/0x40 [ 3370.573384][T28729] netlink_unicast+0x533/0x7d0 [ 3370.578182][T28729] ? netlink_attachskb+0x810/0x810 [ 3370.584108][T28729] ? __phys_addr_symbol+0x2c/0x70 [ 3370.590032][T28729] ? __check_object_size+0x171/0x3f0 [ 3370.596248][T28729] netlink_sendmsg+0x856/0xd90 [ 3370.601780][T28729] ? netlink_unicast+0x7d0/0x7d0 [ 3370.606760][T28729] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3370.612532][T28729] ? netlink_unicast+0x7d0/0x7d0 [ 3370.617477][T28729] sock_sendmsg+0xcf/0x120 [ 3370.622691][T28729] ____sys_sendmsg+0x6e8/0x810 [ 3370.627695][T28729] ? kernel_sendmsg+0x50/0x50 [ 3370.632372][T28729] ? do_recvmmsg+0x6c0/0x6c0 [ 3370.636976][T28729] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3370.642971][T28729] ___sys_sendmsg+0xf3/0x170 [ 3370.648850][T28729] ? sendmsg_copy_msghdr+0x160/0x160 [ 3370.654577][T28729] ? __fget_files+0x272/0x400 [ 3370.659257][T28729] ? lock_downgrade+0x6d0/0x6d0 [ 3370.664920][T28729] ? find_held_lock+0x2d/0x110 [ 3370.669717][T28729] ? __fget_files+0x294/0x400 [ 3370.675432][T28729] ? __fget_light+0xea/0x280 [ 3370.680070][T28729] __sys_sendmsg+0xe5/0x1b0 [ 3370.684680][T28729] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3370.690349][T28729] ? __do_sys_futex+0x2a2/0x470 [ 3370.695231][T28729] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3370.701138][T28729] do_syscall_64+0x2d/0x70 [ 3370.705737][T28729] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3370.712193][T28729] RIP: 0033:0x45deb9 [ 3370.716819][T28729] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3370.737027][T28729] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3370.746441][T28729] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3370.755330][T28729] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:53:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x1cf91300}, 0x0) [ 3370.764249][T28729] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3370.772438][T28729] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3370.780410][T28729] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3370.844404][T28761] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3370.894284][T28722] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3370.939717][T28722] CPU: 0 PID: 28722 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3370.948581][T28722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3370.958640][T28722] Call Trace: [ 3370.961944][T28722] dump_stack+0x107/0x163 [ 3370.966284][T28722] sysfs_warn_dup.cold+0x1c/0x29 [ 3370.971277][T28722] sysfs_do_create_link_sd+0x11e/0x140 [ 3370.976921][T28722] sysfs_create_link+0x5f/0xc0 [ 3370.981816][T28722] device_add+0x79a/0x1ce0 [ 3370.986243][T28722] ? devlink_add_symlinks+0x450/0x450 [ 3370.991626][T28722] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3370.997893][T28722] wiphy_register+0x1dfc/0x2900 [ 3371.002783][T28722] ? wiphy_unregister+0xbb0/0xbb0 [ 3371.007845][T28722] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3371.014241][T28722] ieee80211_register_hw+0x1b0f/0x3b00 [ 3371.019737][T28722] ? ieee80211_restart_hw+0x290/0x290 [ 3371.025225][T28722] ? debug_object_destroy+0x210/0x210 [ 3371.030758][T28722] ? memset+0x20/0x40 [ 3371.035121][T28722] ? __hrtimer_init+0x136/0x280 15:53:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0xec0}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3371.040112][T28722] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3371.046396][T28722] ? hwsim_virtio_rx_work+0x350/0x350 [ 3371.052491][T28722] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3371.058045][T28722] ? memcpy+0x39/0x60 [ 3371.062643][T28722] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3371.067796][T28722] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3371.074526][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3371.082224][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3371.090370][T28722] genl_family_rcv_msg_doit+0x228/0x320 [ 3371.096719][T28722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3371.104401][T28722] ? ns_capable+0xde/0x100 [ 3371.109331][T28722] genl_rcv_msg+0x328/0x580 [ 3371.113840][T28722] ? genl_get_cmd+0x480/0x480 [ 3371.118520][T28722] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3371.124551][T28722] ? lock_release+0x710/0x710 [ 3371.129232][T28722] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3371.135353][T28722] netlink_rcv_skb+0x153/0x420 [ 3371.140142][T28722] ? genl_get_cmd+0x480/0x480 [ 3371.144972][T28722] ? netlink_ack+0xaa0/0xaa0 [ 3371.149585][T28722] genl_rcv+0x24/0x40 [ 3371.154019][T28722] netlink_unicast+0x533/0x7d0 [ 3371.158847][T28722] ? netlink_attachskb+0x810/0x810 [ 3371.163965][T28722] ? __phys_addr_symbol+0x2c/0x70 [ 3371.169009][T28722] ? __check_object_size+0x171/0x3f0 [ 3371.174628][T28722] netlink_sendmsg+0x856/0xd90 [ 3371.179406][T28722] ? netlink_unicast+0x7d0/0x7d0 [ 3371.184358][T28722] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3371.189649][T28722] ? netlink_unicast+0x7d0/0x7d0 [ 3371.194631][T28722] sock_sendmsg+0xcf/0x120 [ 3371.199051][T28722] ____sys_sendmsg+0x6e8/0x810 [ 3371.203911][T28722] ? kernel_sendmsg+0x50/0x50 [ 3371.208590][T28722] ? do_recvmmsg+0x6c0/0x6c0 [ 3371.213203][T28722] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3371.219203][T28722] ___sys_sendmsg+0xf3/0x170 [ 3371.223809][T28722] ? sendmsg_copy_msghdr+0x160/0x160 [ 3371.229100][T28722] ? __fget_files+0x272/0x400 [ 3371.233845][T28722] ? lock_downgrade+0x6d0/0x6d0 [ 3371.238722][T28722] ? find_held_lock+0x2d/0x110 [ 3371.243512][T28722] ? __fget_files+0x294/0x400 [ 3371.248205][T28722] ? __fget_light+0xea/0x280 [ 3371.252805][T28722] __sys_sendmsg+0xe5/0x1b0 [ 3371.257316][T28722] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3371.262349][T28722] ? __do_sys_futex+0x2a2/0x470 [ 3371.267227][T28722] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3371.273137][T28722] do_syscall_64+0x2d/0x70 [ 3371.277560][T28722] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3371.283456][T28722] RIP: 0033:0x45deb9 [ 3371.287360][T28722] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3371.307094][T28722] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3371.315526][T28722] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3371.323589][T28722] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3371.331646][T28722] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3371.339626][T28722] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3371.347604][T28722] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3371.405251][T28766] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3371.436984][T28766] CPU: 1 PID: 28766 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3371.445848][T28766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3371.455929][T28766] Call Trace: [ 3371.459235][T28766] dump_stack+0x107/0x163 [ 3371.463582][T28766] sysfs_warn_dup.cold+0x1c/0x29 [ 3371.468542][T28766] sysfs_do_create_link_sd+0x11e/0x140 [ 3371.474019][T28766] sysfs_create_link+0x5f/0xc0 [ 3371.478796][T28766] device_add+0x79a/0x1ce0 [ 3371.483232][T28766] ? devlink_add_symlinks+0x450/0x450 [ 3371.488628][T28766] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3371.494628][T28766] wiphy_register+0x1dfc/0x2900 [ 3371.499507][T28766] ? wiphy_unregister+0xbb0/0xbb0 [ 3371.504565][T28766] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3371.510657][T28766] ieee80211_register_hw+0x1b0f/0x3b00 [ 3371.516144][T28766] ? ieee80211_restart_hw+0x290/0x290 [ 3371.521528][T28766] ? debug_object_destroy+0x210/0x210 [ 3371.526913][T28766] ? memset+0x20/0x40 [ 3371.530922][T28766] ? __hrtimer_init+0x136/0x280 [ 3371.535794][T28766] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3371.541544][T28766] ? hwsim_virtio_rx_work+0x350/0x350 [ 3371.546924][T28766] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3371.552605][T28766] ? memcpy+0x39/0x60 [ 3371.556608][T28766] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3371.561859][T28766] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3371.567777][T28766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3371.575156][T28766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3371.582920][T28766] genl_family_rcv_msg_doit+0x228/0x320 [ 3371.588474][T28766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3371.595862][T28766] ? ns_capable+0xde/0x100 [ 3371.600285][T28766] genl_rcv_msg+0x328/0x580 [ 3371.604935][T28766] ? genl_get_cmd+0x480/0x480 [ 3371.609624][T28766] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3371.616382][T28766] ? lock_release+0x710/0x710 [ 3371.621656][T28766] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3371.627727][T28766] netlink_rcv_skb+0x153/0x420 [ 3371.633691][T28766] ? genl_get_cmd+0x480/0x480 [ 3371.638401][T28766] ? netlink_ack+0xaa0/0xaa0 [ 3371.643023][T28766] genl_rcv+0x24/0x40 [ 3371.647296][T28766] netlink_unicast+0x533/0x7d0 [ 3371.652895][T28766] ? netlink_attachskb+0x810/0x810 [ 3371.658455][T28766] ? __phys_addr_symbol+0x2c/0x70 [ 3371.664462][T28766] ? __check_object_size+0x171/0x3f0 [ 3371.670474][T28766] netlink_sendmsg+0x856/0xd90 [ 3371.676176][T28766] ? netlink_unicast+0x7d0/0x7d0 [ 3371.681711][T28766] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3371.687643][T28766] ? netlink_unicast+0x7d0/0x7d0 [ 3371.693273][T28766] sock_sendmsg+0xcf/0x120 [ 3371.697697][T28766] ____sys_sendmsg+0x6e8/0x810 [ 3371.703231][T28766] ? kernel_sendmsg+0x50/0x50 [ 3371.707919][T28766] ? do_recvmmsg+0x6c0/0x6c0 [ 3371.712877][T28766] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3371.718972][T28766] ___sys_sendmsg+0xf3/0x170 [ 3371.723579][T28766] ? sendmsg_copy_msghdr+0x160/0x160 [ 3371.729081][T28766] ? __fget_files+0x272/0x400 [ 3371.734417][T28766] ? lock_downgrade+0x6d0/0x6d0 [ 3371.740135][T28766] ? find_held_lock+0x2d/0x110 [ 3371.745074][T28766] ? __fget_files+0x294/0x400 [ 3371.750603][T28766] ? __fget_light+0xea/0x280 [ 3371.756064][T28766] __sys_sendmsg+0xe5/0x1b0 [ 3371.761478][T28766] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3371.766512][T28766] ? __do_sys_futex+0x2a2/0x470 [ 3371.771788][T28766] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3371.777707][T28766] do_syscall_64+0x2d/0x70 [ 3371.782343][T28766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3371.788321][T28766] RIP: 0033:0x45deb9 [ 3371.792527][T28766] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3371.812137][T28766] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3371.821543][T28766] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3371.829525][T28766] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3371.837715][T28766] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3371.845795][T28766] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:53:55 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x90fe1300}, 0x0) 15:53:55 executing program 3: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0x400, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x9}, 0x1c) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000dc0)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001000010400"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0xa4d}}, 0x20}}, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @qipcrtr={0x2a, 0x2, 0x3fff}, @nfc={0x27, 0x1, 0x0, 0x2}, @xdp={0x2c, 0x1, r3, 0x2f}, 0x5edb, 0x0, 0x0, 0x0, 0x1f, &(0x7f0000000040)='batadv0\x00', 0x4, 0x5, 0x100}) setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1, 0x4}, {0xa, 0x0, 0x4, @empty}}, 0x5c) 15:53:55 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x68, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3371.854043][T28766] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3371.976711][T28808] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3372.020197][T28811] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3372.075837][T28786] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3372.114011][T28786] CPU: 1 PID: 28786 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3372.122898][T28786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3372.132947][T28786] Call Trace: [ 3372.136224][T28786] dump_stack+0x107/0x163 [ 3372.140550][T28786] sysfs_warn_dup.cold+0x1c/0x29 [ 3372.145481][T28786] sysfs_do_create_link_sd+0x11e/0x140 [ 3372.150927][T28786] sysfs_create_link+0x5f/0xc0 [ 3372.155678][T28786] device_add+0x79a/0x1ce0 [ 3372.160081][T28786] ? devlink_add_symlinks+0x450/0x450 [ 3372.165450][T28786] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3372.171411][T28786] wiphy_register+0x1dfc/0x2900 [ 3372.176261][T28786] ? wiphy_unregister+0xbb0/0xbb0 [ 3372.181282][T28786] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3372.187343][T28786] ieee80211_register_hw+0x1b0f/0x3b00 [ 3372.192818][T28786] ? ieee80211_restart_hw+0x290/0x290 [ 3372.198175][T28786] ? debug_object_destroy+0x210/0x210 [ 3372.203534][T28786] ? memset+0x20/0x40 [ 3372.207495][T28786] ? __hrtimer_init+0x136/0x280 [ 3372.212330][T28786] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3372.218121][T28786] ? hwsim_virtio_rx_work+0x350/0x350 [ 3372.223471][T28786] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3372.228992][T28786] ? memcpy+0x39/0x60 [ 3372.232948][T28786] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3372.238033][T28786] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3372.243906][T28786] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3372.251256][T28786] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3372.258527][T28786] genl_family_rcv_msg_doit+0x228/0x320 [ 3372.264046][T28786] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3372.271409][T28786] ? ns_capable+0xde/0x100 [ 3372.275825][T28786] genl_rcv_msg+0x328/0x580 [ 3372.280331][T28786] ? genl_get_cmd+0x480/0x480 [ 3372.285011][T28786] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3372.290895][T28786] ? lock_release+0x710/0x710 [ 3372.295549][T28786] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3372.300818][T28786] netlink_rcv_skb+0x153/0x420 [ 3372.305567][T28786] ? genl_get_cmd+0x480/0x480 [ 3372.310224][T28786] ? netlink_ack+0xaa0/0xaa0 [ 3372.314809][T28786] genl_rcv+0x24/0x40 [ 3372.318768][T28786] netlink_unicast+0x533/0x7d0 [ 3372.323525][T28786] ? netlink_attachskb+0x810/0x810 [ 3372.328622][T28786] ? __phys_addr_symbol+0x2c/0x70 [ 3372.333629][T28786] ? __check_object_size+0x171/0x3f0 [ 3372.338987][T28786] netlink_sendmsg+0x856/0xd90 [ 3372.343750][T28786] ? netlink_unicast+0x7d0/0x7d0 [ 3372.348682][T28786] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3372.354026][T28786] ? netlink_unicast+0x7d0/0x7d0 [ 3372.358937][T28786] sock_sendmsg+0xcf/0x120 [ 3372.363341][T28786] ____sys_sendmsg+0x6e8/0x810 [ 3372.368085][T28786] ? kernel_sendmsg+0x50/0x50 [ 3372.372745][T28786] ? do_recvmmsg+0x6c0/0x6c0 [ 3372.377344][T28786] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3372.383315][T28786] ___sys_sendmsg+0xf3/0x170 [ 3372.387881][T28786] ? sendmsg_copy_msghdr+0x160/0x160 [ 3372.393141][T28786] ? __fget_files+0x272/0x400 [ 3372.397795][T28786] ? lock_downgrade+0x6d0/0x6d0 [ 3372.402641][T28786] ? find_held_lock+0x2d/0x110 [ 3372.407388][T28786] ? __fget_files+0x294/0x400 [ 3372.412055][T28786] ? __fget_light+0xea/0x280 [ 3372.416671][T28786] __sys_sendmsg+0xe5/0x1b0 [ 3372.421169][T28786] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3372.426282][T28786] ? __do_sys_futex+0x2a2/0x470 [ 3372.431129][T28786] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3372.436997][T28786] do_syscall_64+0x2d/0x70 [ 3372.441385][T28786] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3372.447247][T28786] RIP: 0033:0x45deb9 [ 3372.451113][T28786] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3372.470706][T28786] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3372.479101][T28786] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3372.487046][T28786] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3372.494997][T28786] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3372.502943][T28786] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3372.510893][T28786] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3372.554649][T28808] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 3372.599577][T28807] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3372.619412][T28807] CPU: 0 PID: 28807 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3372.628172][T28807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3372.638407][T28807] Call Trace: [ 3372.641698][T28807] dump_stack+0x107/0x163 [ 3372.646067][T28807] sysfs_warn_dup.cold+0x1c/0x29 [ 3372.651018][T28807] sysfs_do_create_link_sd+0x11e/0x140 [ 3372.656482][T28807] sysfs_create_link+0x5f/0xc0 [ 3372.661748][T28807] device_add+0x79a/0x1ce0 [ 3372.666981][T28807] ? devlink_add_symlinks+0x450/0x450 [ 3372.672451][T28807] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3372.679944][T28807] wiphy_register+0x1dfc/0x2900 [ 3372.685389][T28807] ? wiphy_unregister+0xbb0/0xbb0 [ 3372.690681][T28807] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3372.697505][T28807] ieee80211_register_hw+0x1b0f/0x3b00 [ 3372.703747][T28807] ? ieee80211_restart_hw+0x290/0x290 [ 3372.709474][T28807] ? debug_object_destroy+0x210/0x210 [ 3372.715033][T28807] ? memset+0x20/0x40 [ 3372.719273][T28807] ? __hrtimer_init+0x136/0x280 [ 3372.724647][T28807] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3372.730386][T28807] ? hwsim_virtio_rx_work+0x350/0x350 [ 3372.735896][T28807] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3372.741460][T28807] ? memcpy+0x39/0x60 [ 3372.745621][T28807] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3372.751527][T28807] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3372.757429][T28807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3372.765641][T28807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3372.772932][T28807] genl_family_rcv_msg_doit+0x228/0x320 [ 3372.778480][T28807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3372.786171][T28807] ? ns_capable+0xde/0x100 [ 3372.791204][T28807] genl_rcv_msg+0x328/0x580 [ 3372.795712][T28807] ? genl_get_cmd+0x480/0x480 [ 3372.800571][T28807] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3372.807163][T28807] ? lock_release+0x710/0x710 [ 3372.812230][T28807] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3372.818026][T28807] netlink_rcv_skb+0x153/0x420 [ 3372.823307][T28807] ? genl_get_cmd+0x480/0x480 [ 3372.827993][T28807] ? netlink_ack+0xaa0/0xaa0 [ 3372.833103][T28807] genl_rcv+0x24/0x40 [ 3372.837208][T28807] netlink_unicast+0x533/0x7d0 [ 3372.842340][T28807] ? netlink_attachskb+0x810/0x810 [ 3372.847801][T28807] ? __phys_addr_symbol+0x2c/0x70 [ 3372.852951][T28807] ? __check_object_size+0x171/0x3f0 [ 3372.858271][T28807] netlink_sendmsg+0x856/0xd90 [ 3372.863668][T28807] ? netlink_unicast+0x7d0/0x7d0 [ 3372.868613][T28807] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3372.874090][T28807] ? netlink_unicast+0x7d0/0x7d0 [ 3372.879731][T28807] sock_sendmsg+0xcf/0x120 [ 3372.884749][T28807] ____sys_sendmsg+0x6e8/0x810 [ 3372.890087][T28807] ? kernel_sendmsg+0x50/0x50 [ 3372.895346][T28807] ? do_recvmmsg+0x6c0/0x6c0 [ 3372.900568][T28807] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3372.907129][T28807] ___sys_sendmsg+0xf3/0x170 [ 3372.912282][T28807] ? sendmsg_copy_msghdr+0x160/0x160 [ 3372.917737][T28807] ? __fget_files+0x272/0x400 [ 3372.923153][T28807] ? lock_downgrade+0x6d0/0x6d0 [ 3372.928001][T28807] ? find_held_lock+0x2d/0x110 [ 3372.932771][T28807] ? __fget_files+0x294/0x400 [ 3372.937452][T28807] ? __fget_light+0xea/0x280 [ 3372.942050][T28807] __sys_sendmsg+0xe5/0x1b0 [ 3372.947033][T28807] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3372.952453][T28807] ? __do_sys_futex+0x2a2/0x470 [ 3372.957641][T28807] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3372.964000][T28807] do_syscall_64+0x2d/0x70 [ 3372.968411][T28807] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3372.974717][T28807] RIP: 0033:0x45deb9 [ 3372.978605][T28807] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3372.998198][T28807] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3373.007133][T28807] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3373.015105][T28807] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3373.023427][T28807] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3373.031402][T28807] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3373.039821][T28807] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:53:58 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xc9, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:53:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x1df91300}, 0x0) 15:53:58 executing program 3: ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000100)) r0 = socket$inet6(0xa, 0x3, 0x3a) socketpair(0x4, 0x6, 0x7, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r1, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, 0x0, 0x801, 0x70bd26, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4850}, 0x20000084) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e20, 0x0, @local, 0x63}, {0xa, 0xfffd, 0x0, @private2={0xfc, 0x2, [], 0x3}, 0x20}, 0x0, [0x0, 0x0, 0x0, 0x8000, 0xf5, 0x3]}, 0x5c) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0xabae, 0x3ff}, 0x8) r2 = socket$nl_sock_diag(0x10, 0x3, 0x4) setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0x5, &(0x7f0000000300)=0x1, 0x4) getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000180)=0x14) sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x84, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}]}, 0x84}}, 0x4144) 15:53:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x33fe0}, 0x1, 0xffffff7f0e000000}, 0x0) 15:53:58 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x6c, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:53:58 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x91fe1300}, 0x0) [ 3375.263640][T28887] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3375.288901][T28894] IPVS: ftp: loaded support on port[0] = 21 [ 3375.319447][T28890] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3375.337370][T28890] CPU: 1 PID: 28890 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3375.346142][T28890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3375.356202][T28890] Call Trace: [ 3375.359500][T28890] dump_stack+0x107/0x163 [ 3375.363953][T28890] sysfs_warn_dup.cold+0x1c/0x29 [ 3375.368887][T28890] sysfs_do_create_link_sd+0x11e/0x140 [ 3375.374329][T28890] sysfs_create_link+0x5f/0xc0 [ 3375.379084][T28890] device_add+0x79a/0x1ce0 [ 3375.383490][T28890] ? devlink_add_symlinks+0x450/0x450 [ 3375.388855][T28890] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3375.394825][T28890] wiphy_register+0x1dfc/0x2900 [ 3375.399673][T28890] ? wiphy_unregister+0xbb0/0xbb0 [ 3375.404694][T28890] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3375.410758][T28890] ieee80211_register_hw+0x1b0f/0x3b00 [ 3375.416275][T28890] ? ieee80211_restart_hw+0x290/0x290 [ 3375.421637][T28890] ? debug_object_destroy+0x210/0x210 [ 3375.426984][T28890] ? memset+0x20/0x40 [ 3375.430941][T28890] ? __hrtimer_init+0x136/0x280 [ 3375.435772][T28890] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3375.441476][T28890] ? hwsim_virtio_rx_work+0x350/0x350 [ 3375.446825][T28890] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3375.452345][T28890] ? memcpy+0x39/0x60 [ 3375.456300][T28890] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3375.461388][T28890] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3375.467261][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3375.474601][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3375.481872][T28890] genl_family_rcv_msg_doit+0x228/0x320 [ 3375.487403][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3375.494750][T28890] ? ns_capable+0xde/0x100 [ 3375.499144][T28890] genl_rcv_msg+0x328/0x580 [ 3375.503623][T28890] ? genl_get_cmd+0x480/0x480 [ 3375.508274][T28890] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3375.514419][T28890] ? lock_release+0x710/0x710 [ 3375.519069][T28890] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3375.524345][T28890] netlink_rcv_skb+0x153/0x420 [ 3375.529082][T28890] ? genl_get_cmd+0x480/0x480 [ 3375.533738][T28890] ? netlink_ack+0xaa0/0xaa0 [ 3375.538312][T28890] genl_rcv+0x24/0x40 [ 3375.542270][T28890] netlink_unicast+0x533/0x7d0 [ 3375.547029][T28890] ? netlink_attachskb+0x810/0x810 [ 3375.552117][T28890] ? __phys_addr_symbol+0x2c/0x70 [ 3375.557123][T28890] ? __check_object_size+0x171/0x3f0 [ 3375.562389][T28890] netlink_sendmsg+0x856/0xd90 [ 3375.567132][T28890] ? netlink_unicast+0x7d0/0x7d0 [ 3375.572063][T28890] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3375.577365][T28890] ? netlink_unicast+0x7d0/0x7d0 [ 3375.582304][T28890] sock_sendmsg+0xcf/0x120 [ 3375.586828][T28890] ____sys_sendmsg+0x6e8/0x810 [ 3375.591584][T28890] ? kernel_sendmsg+0x50/0x50 [ 3375.596282][T28890] ? do_recvmmsg+0x6c0/0x6c0 [ 3375.600873][T28890] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3375.606855][T28890] ___sys_sendmsg+0xf3/0x170 [ 3375.611436][T28890] ? sendmsg_copy_msghdr+0x160/0x160 [ 3375.616699][T28890] ? __fget_files+0x272/0x400 [ 3375.621360][T28890] ? lock_downgrade+0x6d0/0x6d0 [ 3375.626192][T28890] ? find_held_lock+0x2d/0x110 [ 3375.630939][T28890] ? __fget_files+0x294/0x400 [ 3375.635596][T28890] ? __fget_light+0xea/0x280 [ 3375.640165][T28890] __sys_sendmsg+0xe5/0x1b0 [ 3375.644643][T28890] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3375.649642][T28890] ? __do_sys_futex+0x2a2/0x470 [ 3375.654473][T28890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3375.660340][T28890] do_syscall_64+0x2d/0x70 [ 3375.664735][T28890] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3375.670607][T28890] RIP: 0033:0x45deb9 [ 3375.674483][T28890] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3375.694064][T28890] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3375.702480][T28890] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3375.710436][T28890] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3375.718399][T28890] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3375.726347][T28890] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3375.734293][T28890] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3375.783118][T28906] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3375.866075][T28892] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3375.885358][T28892] CPU: 0 PID: 28892 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3375.894126][T28892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3375.904171][T28892] Call Trace: [ 3375.907466][T28892] dump_stack+0x107/0x163 [ 3375.911799][T28892] sysfs_warn_dup.cold+0x1c/0x29 [ 3375.916730][T28892] sysfs_do_create_link_sd+0x11e/0x140 [ 3375.922207][T28892] sysfs_create_link+0x5f/0xc0 [ 3375.927004][T28892] device_add+0x79a/0x1ce0 [ 3375.931913][T28892] ? devlink_add_symlinks+0x450/0x450 [ 3375.937287][T28892] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3375.943274][T28892] wiphy_register+0x1dfc/0x2900 [ 3375.948143][T28892] ? wiphy_unregister+0xbb0/0xbb0 [ 3375.953158][T28892] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3375.959226][T28892] ieee80211_register_hw+0x1b0f/0x3b00 [ 3375.964697][T28892] ? ieee80211_restart_hw+0x290/0x290 [ 3375.970425][T28892] ? debug_object_destroy+0x210/0x210 [ 3375.977607][T28892] ? memset+0x20/0x40 [ 3375.981590][T28892] ? __hrtimer_init+0x136/0x280 [ 3375.986443][T28892] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3375.992185][T28892] ? hwsim_virtio_rx_work+0x350/0x350 [ 3375.998252][T28892] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3376.004636][T28892] ? memcpy+0x39/0x60 [ 3376.008620][T28892] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3376.013730][T28892] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3376.019632][T28892] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3376.027009][T28892] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3376.034453][T28892] genl_family_rcv_msg_doit+0x228/0x320 [ 3376.039990][T28892] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3376.047504][T28892] ? ns_capable+0xde/0x100 [ 3376.051917][T28892] genl_rcv_msg+0x328/0x580 [ 3376.056414][T28892] ? genl_get_cmd+0x480/0x480 [ 3376.061079][T28892] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3376.066961][T28892] ? lock_release+0x710/0x710 [ 3376.071631][T28892] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3376.076910][T28892] netlink_rcv_skb+0x153/0x420 [ 3376.081669][T28892] ? genl_get_cmd+0x480/0x480 [ 3376.086337][T28892] ? netlink_ack+0xaa0/0xaa0 [ 3376.092493][T28892] genl_rcv+0x24/0x40 [ 3376.096507][T28892] netlink_unicast+0x533/0x7d0 [ 3376.102189][T28892] ? netlink_attachskb+0x810/0x810 [ 3376.107313][T28892] ? __phys_addr_symbol+0x2c/0x70 [ 3376.112333][T28892] ? __check_object_size+0x171/0x3f0 [ 3376.117617][T28892] netlink_sendmsg+0x856/0xd90 [ 3376.122388][T28892] ? netlink_unicast+0x7d0/0x7d0 [ 3376.127727][T28892] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3376.133012][T28892] ? netlink_unicast+0x7d0/0x7d0 [ 3376.138032][T28892] sock_sendmsg+0xcf/0x120 [ 3376.142455][T28892] ____sys_sendmsg+0x6e8/0x810 [ 3376.147221][T28892] ? kernel_sendmsg+0x50/0x50 [ 3376.151887][T28892] ? do_recvmmsg+0x6c0/0x6c0 [ 3376.156468][T28892] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3376.162496][T28892] ___sys_sendmsg+0xf3/0x170 [ 3376.167089][T28892] ? sendmsg_copy_msghdr+0x160/0x160 [ 3376.172380][T28892] ? __fget_files+0x272/0x400 [ 3376.177063][T28892] ? lock_downgrade+0x6d0/0x6d0 [ 3376.181900][T28892] ? find_held_lock+0x2d/0x110 [ 3376.186660][T28892] ? __fget_files+0x294/0x400 [ 3376.191327][T28892] ? __fget_light+0xea/0x280 [ 3376.195909][T28892] __sys_sendmsg+0xe5/0x1b0 [ 3376.200657][T28892] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3376.205946][T28892] ? __do_sys_futex+0x2a2/0x470 [ 3376.210830][T28892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3376.216726][T28892] do_syscall_64+0x2d/0x70 [ 3376.221131][T28892] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3376.227018][T28892] RIP: 0033:0x45deb9 [ 3376.230904][T28892] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3376.250608][T28892] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3376.259017][T28892] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3376.266976][T28892] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3376.275946][T28892] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3376.284989][T28892] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3376.292971][T28892] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3376.341949][T28902] IPVS: ftp: loaded support on port[0] = 21 [ 3376.351498][T28891] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:00 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x72, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:00 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @private0, 0x7}, 0x0, [0x0, 0x5]}, 0x5c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syzkaller1\x00', 0x10) [ 3376.438568][T28891] CPU: 0 PID: 28891 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3376.447346][T28891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3376.457396][T28891] Call Trace: [ 3376.460693][T28891] dump_stack+0x107/0x163 [ 3376.465121][T28891] sysfs_warn_dup.cold+0x1c/0x29 [ 3376.470074][T28891] sysfs_do_create_link_sd+0x11e/0x140 [ 3376.475543][T28891] sysfs_create_link+0x5f/0xc0 [ 3376.480315][T28891] device_add+0x79a/0x1ce0 [ 3376.484738][T28891] ? devlink_add_symlinks+0x450/0x450 [ 3376.490118][T28891] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3376.496166][T28891] wiphy_register+0x1dfc/0x2900 [ 3376.501034][T28891] ? wiphy_unregister+0xbb0/0xbb0 [ 3376.506081][T28891] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3376.512165][T28891] ieee80211_register_hw+0x1b0f/0x3b00 [ 3376.517640][T28891] ? ieee80211_restart_hw+0x290/0x290 [ 3376.523033][T28891] ? debug_object_destroy+0x210/0x210 [ 3376.528413][T28891] ? memset+0x20/0x40 [ 3376.532482][T28891] ? __hrtimer_init+0x136/0x280 [ 3376.537340][T28891] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3376.543183][T28891] ? hwsim_virtio_rx_work+0x350/0x350 [ 3376.548561][T28891] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3376.554115][T28891] ? memcpy+0x39/0x60 [ 3376.558110][T28891] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3376.563236][T28891] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3376.569149][T28891] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3376.576601][T28891] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3376.583891][T28891] genl_family_rcv_msg_doit+0x228/0x320 [ 3376.589441][T28891] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3376.597606][T28891] ? ns_capable+0xde/0x100 [ 3376.602597][T28891] genl_rcv_msg+0x328/0x580 [ 3376.607109][T28891] ? genl_get_cmd+0x480/0x480 [ 3376.612528][T28891] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3376.618429][T28891] ? lock_release+0x710/0x710 [ 3376.623890][T28891] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3376.629183][T28891] netlink_rcv_skb+0x153/0x420 [ 3376.633941][T28891] ? genl_get_cmd+0x480/0x480 [ 3376.638618][T28891] ? netlink_ack+0xaa0/0xaa0 [ 3376.643298][T28891] genl_rcv+0x24/0x40 [ 3376.647275][T28891] netlink_unicast+0x533/0x7d0 [ 3376.652756][T28891] ? netlink_attachskb+0x810/0x810 [ 3376.657867][T28891] ? __phys_addr_symbol+0x2c/0x70 [ 3376.663059][T28891] ? __check_object_size+0x171/0x3f0 [ 3376.668357][T28891] netlink_sendmsg+0x856/0xd90 [ 3376.673168][T28891] ? netlink_unicast+0x7d0/0x7d0 [ 3376.678151][T28891] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3376.683441][T28891] ? netlink_unicast+0x7d0/0x7d0 [ 3376.688384][T28891] sock_sendmsg+0xcf/0x120 [ 3376.693267][T28891] ____sys_sendmsg+0x6e8/0x810 [ 3376.698038][T28891] ? kernel_sendmsg+0x50/0x50 [ 3376.703555][T28891] ? do_recvmmsg+0x6c0/0x6c0 [ 3376.708168][T28891] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3376.714160][T28891] ___sys_sendmsg+0xf3/0x170 [ 3376.718767][T28891] ? sendmsg_copy_msghdr+0x160/0x160 [ 3376.724051][T28891] ? __fget_files+0x272/0x400 [ 3376.728727][T28891] ? lock_downgrade+0x6d0/0x6d0 [ 3376.733635][T28891] ? find_held_lock+0x2d/0x110 [ 3376.738414][T28891] ? __fget_files+0x294/0x400 [ 3376.743138][T28891] ? __fget_light+0xea/0x280 [ 3376.747740][T28891] __sys_sendmsg+0xe5/0x1b0 [ 3376.752627][T28891] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3376.757662][T28891] ? __do_sys_futex+0x2a2/0x470 [ 3376.762549][T28891] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3376.768451][T28891] do_syscall_64+0x2d/0x70 [ 3376.773370][T28891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3376.779256][T28891] RIP: 0033:0x45deb9 [ 3376.783162][T28891] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3376.803797][T28891] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3376.813126][T28891] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3376.821430][T28891] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3376.829401][T28891] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:54:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x1ef91300}, 0x0) [ 3376.837447][T28891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3376.845922][T28891] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3376.912490][T28933] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:54:00 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x92fe1300}, 0x0) [ 3376.963730][T28890] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3376.990589][T28890] CPU: 0 PID: 28890 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3376.999360][T28890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3377.009406][T28890] Call Trace: [ 3377.012696][T28890] dump_stack+0x107/0x163 [ 3377.017033][T28890] sysfs_warn_dup.cold+0x1c/0x29 [ 3377.021977][T28890] sysfs_do_create_link_sd+0x11e/0x140 [ 3377.027443][T28890] sysfs_create_link+0x5f/0xc0 [ 3377.032213][T28890] device_add+0x79a/0x1ce0 [ 3377.036723][T28890] ? devlink_add_symlinks+0x450/0x450 [ 3377.042119][T28890] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3377.048137][T28890] wiphy_register+0x1dfc/0x2900 [ 3377.052996][T28890] ? wiphy_unregister+0xbb0/0xbb0 [ 3377.058032][T28890] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3377.064110][T28890] ieee80211_register_hw+0x1b0f/0x3b00 [ 3377.069582][T28890] ? ieee80211_restart_hw+0x290/0x290 [ 3377.074961][T28890] ? debug_object_destroy+0x210/0x210 [ 3377.080341][T28890] ? memset+0x20/0x40 [ 3377.084335][T28890] ? __hrtimer_init+0x136/0x280 [ 3377.089192][T28890] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3377.094942][T28890] ? hwsim_virtio_rx_work+0x350/0x350 [ 3377.100309][T28890] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3377.105861][T28890] ? memcpy+0x39/0x60 [ 3377.109849][T28890] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3377.114967][T28890] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3377.120873][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3377.128239][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3377.135536][T28890] genl_family_rcv_msg_doit+0x228/0x320 [ 3377.141084][T28890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3377.148469][T28890] ? ns_capable+0xde/0x100 [ 3377.152888][T28890] genl_rcv_msg+0x328/0x580 [ 3377.157394][T28890] ? genl_get_cmd+0x480/0x480 [ 3377.162069][T28890] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3377.167999][T28890] ? lock_release+0x710/0x710 [ 3377.172766][T28890] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3377.178057][T28890] netlink_rcv_skb+0x153/0x420 [ 3377.182855][T28890] ? genl_get_cmd+0x480/0x480 [ 3377.187533][T28890] ? netlink_ack+0xaa0/0xaa0 [ 3377.192149][T28890] genl_rcv+0x24/0x40 [ 3377.196840][T28890] netlink_unicast+0x533/0x7d0 [ 3377.201994][T28890] ? netlink_attachskb+0x810/0x810 [ 3377.207112][T28890] ? __phys_addr_symbol+0x2c/0x70 [ 3377.212136][T28890] ? __check_object_size+0x171/0x3f0 [ 3377.218273][T28890] netlink_sendmsg+0x856/0xd90 [ 3377.223943][T28890] ? netlink_unicast+0x7d0/0x7d0 [ 3377.228891][T28890] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3377.235106][T28890] ? netlink_unicast+0x7d0/0x7d0 [ 3377.240044][T28890] sock_sendmsg+0xcf/0x120 [ 3377.244477][T28890] ____sys_sendmsg+0x6e8/0x810 [ 3377.249240][T28890] ? kernel_sendmsg+0x50/0x50 [ 3377.253908][T28890] ? do_recvmmsg+0x6c0/0x6c0 [ 3377.258528][T28890] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3377.264761][T28890] ___sys_sendmsg+0xf3/0x170 [ 3377.269358][T28890] ? sendmsg_copy_msghdr+0x160/0x160 [ 3377.274983][T28890] ? __fget_files+0x272/0x400 [ 3377.279668][T28890] ? lock_downgrade+0x6d0/0x6d0 [ 3377.284719][T28890] ? find_held_lock+0x2d/0x110 [ 3377.289501][T28890] ? __fget_files+0x294/0x400 [ 3377.294923][T28890] ? __fget_light+0xea/0x280 [ 3377.300332][T28890] __sys_sendmsg+0xe5/0x1b0 [ 3377.305276][T28890] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3377.310311][T28890] ? __do_sys_futex+0x2a2/0x470 [ 3377.315591][T28890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3377.321921][T28890] do_syscall_64+0x2d/0x70 [ 3377.326947][T28890] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3377.333222][T28890] RIP: 0033:0x45deb9 [ 3377.337546][T28890] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3377.357147][T28890] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3377.366156][T28890] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3377.374682][T28890] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3377.383181][T28890] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3377.391164][T28890] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3377.399131][T28890] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3377.469241][T28950] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:01 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:01 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x74, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3377.541611][T28950] CPU: 1 PID: 28950 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3377.550512][T28950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3377.560563][T28950] Call Trace: [ 3377.563874][T28950] dump_stack+0x107/0x163 [ 3377.568198][T28950] sysfs_warn_dup.cold+0x1c/0x29 [ 3377.573135][T28950] sysfs_do_create_link_sd+0x11e/0x140 [ 3377.578599][T28950] sysfs_create_link+0x5f/0xc0 [ 3377.583366][T28950] device_add+0x79a/0x1ce0 [ 3377.587785][T28950] ? devlink_add_symlinks+0x450/0x450 [ 3377.593156][T28950] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3377.599149][T28950] wiphy_register+0x1dfc/0x2900 [ 3377.604026][T28950] ? wiphy_unregister+0xbb0/0xbb0 [ 3377.609062][T28950] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3377.615260][T28950] ieee80211_register_hw+0x1b0f/0x3b00 [ 3377.620831][T28950] ? ieee80211_restart_hw+0x290/0x290 [ 3377.626225][T28950] ? debug_object_destroy+0x210/0x210 [ 3377.631999][T28950] ? memset+0x20/0x40 [ 3377.635997][T28950] ? __hrtimer_init+0x136/0x280 [ 3377.640962][T28950] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3377.646699][T28950] ? hwsim_virtio_rx_work+0x350/0x350 [ 3377.652071][T28950] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3377.657615][T28950] ? memcpy+0x39/0x60 [ 3377.661880][T28950] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3377.667004][T28950] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3377.673169][T28950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3377.680630][T28950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3377.688879][T28950] genl_family_rcv_msg_doit+0x228/0x320 [ 3377.695052][T28950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3377.702448][T28950] ? ns_capable+0xde/0x100 [ 3377.706879][T28950] genl_rcv_msg+0x328/0x580 [ 3377.711390][T28950] ? genl_get_cmd+0x480/0x480 [ 3377.716081][T28950] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3377.721981][T28950] ? lock_release+0x710/0x710 [ 3377.726660][T28950] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3377.731947][T28950] netlink_rcv_skb+0x153/0x420 [ 3377.736772][T28950] ? genl_get_cmd+0x480/0x480 [ 3377.741655][T28950] ? netlink_ack+0xaa0/0xaa0 [ 3377.746249][T28950] genl_rcv+0x24/0x40 [ 3377.750313][T28950] netlink_unicast+0x533/0x7d0 [ 3377.755063][T28950] ? netlink_attachskb+0x810/0x810 [ 3377.760159][T28950] ? __phys_addr_symbol+0x2c/0x70 [ 3377.765274][T28950] ? __check_object_size+0x171/0x3f0 [ 3377.770547][T28950] netlink_sendmsg+0x856/0xd90 [ 3377.775301][T28950] ? netlink_unicast+0x7d0/0x7d0 [ 3377.780248][T28950] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3377.785516][T28950] ? netlink_unicast+0x7d0/0x7d0 [ 3377.790433][T28950] sock_sendmsg+0xcf/0x120 [ 3377.794836][T28950] ____sys_sendmsg+0x6e8/0x810 [ 3377.799596][T28950] ? kernel_sendmsg+0x50/0x50 [ 3377.804247][T28950] ? do_recvmmsg+0x6c0/0x6c0 [ 3377.808821][T28950] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3377.814792][T28950] ___sys_sendmsg+0xf3/0x170 [ 3377.819364][T28950] ? sendmsg_copy_msghdr+0x160/0x160 [ 3377.824633][T28950] ? __fget_files+0x272/0x400 [ 3377.829287][T28950] ? lock_downgrade+0x6d0/0x6d0 [ 3377.834116][T28950] ? find_held_lock+0x2d/0x110 [ 3377.838872][T28950] ? __fget_files+0x294/0x400 [ 3377.843541][T28950] ? __fget_light+0xea/0x280 [ 3377.848124][T28950] __sys_sendmsg+0xe5/0x1b0 [ 3377.852611][T28950] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3377.857618][T28950] ? __do_sys_futex+0x2a2/0x470 [ 3377.862468][T28950] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3377.868435][T28950] do_syscall_64+0x2d/0x70 [ 3377.872833][T28950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3377.878701][T28950] RIP: 0033:0x45deb9 [ 3377.882579][T28950] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3377.902167][T28950] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3377.910564][T28950] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3377.918516][T28950] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3377.926471][T28950] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3377.934436][T28950] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3377.942390][T28950] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3378.022409][T28980] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3378.082667][T28962] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3378.113053][T28962] CPU: 1 PID: 28962 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3378.121822][T28962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3378.131873][T28962] Call Trace: [ 3378.136138][T28962] dump_stack+0x107/0x163 [ 3378.140479][T28962] sysfs_warn_dup.cold+0x1c/0x29 [ 3378.146221][T28962] sysfs_do_create_link_sd+0x11e/0x140 [ 3378.151823][T28962] sysfs_create_link+0x5f/0xc0 [ 3378.157343][T28962] device_add+0x79a/0x1ce0 [ 3378.162660][T28962] ? devlink_add_symlinks+0x450/0x450 [ 3378.168756][T28962] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3378.174817][T28962] wiphy_register+0x1dfc/0x2900 [ 3378.180575][T28962] ? wiphy_unregister+0xbb0/0xbb0 [ 3378.185638][T28962] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3378.192383][T28962] ieee80211_register_hw+0x1b0f/0x3b00 [ 3378.198075][T28962] ? ieee80211_restart_hw+0x290/0x290 [ 3378.203752][T28962] ? debug_object_destroy+0x210/0x210 [ 3378.209424][T28962] ? memset+0x20/0x40 [ 3378.213608][T28962] ? __hrtimer_init+0x136/0x280 [ 3378.219102][T28962] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3378.225007][T28962] ? hwsim_virtio_rx_work+0x350/0x350 [ 3378.230610][T28962] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3378.236302][T28962] ? memcpy+0x39/0x60 [ 3378.240390][T28962] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3378.246266][T28962] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3378.252271][T28962] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3378.259693][T28962] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3378.267390][T28962] genl_family_rcv_msg_doit+0x228/0x320 [ 3378.273112][T28962] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3378.280499][T28962] ? ns_capable+0xde/0x100 [ 3378.285295][T28962] genl_rcv_msg+0x328/0x580 [ 3378.289878][T28962] ? genl_get_cmd+0x480/0x480 [ 3378.294707][T28962] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3378.300895][T28962] ? lock_release+0x710/0x710 [ 3378.305627][T28962] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3378.311842][T28962] netlink_rcv_skb+0x153/0x420 [ 3378.316811][T28962] ? genl_get_cmd+0x480/0x480 [ 3378.321492][T28962] ? netlink_ack+0xaa0/0xaa0 [ 3378.326105][T28962] genl_rcv+0x24/0x40 [ 3378.330161][T28962] netlink_unicast+0x533/0x7d0 [ 3378.335891][T28962] ? netlink_attachskb+0x810/0x810 [ 3378.341518][T28962] ? __phys_addr_symbol+0x2c/0x70 [ 3378.346558][T28962] ? __check_object_size+0x171/0x3f0 [ 3378.352126][T28962] netlink_sendmsg+0x856/0xd90 [ 3378.356898][T28962] ? netlink_unicast+0x7d0/0x7d0 [ 3378.362505][T28962] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3378.368514][T28962] ? netlink_unicast+0x7d0/0x7d0 [ 3378.374185][T28962] sock_sendmsg+0xcf/0x120 [ 3378.378598][T28962] ____sys_sendmsg+0x6e8/0x810 [ 3378.384201][T28962] ? kernel_sendmsg+0x50/0x50 [ 3378.389121][T28962] ? do_recvmmsg+0x6c0/0x6c0 [ 3378.393718][T28962] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3378.399702][T28962] ___sys_sendmsg+0xf3/0x170 [ 3378.404524][T28962] ? sendmsg_copy_msghdr+0x160/0x160 [ 3378.410530][T28962] ? __fget_files+0x272/0x400 [ 3378.415744][T28962] ? lock_downgrade+0x6d0/0x6d0 [ 3378.421262][T28962] ? find_held_lock+0x2d/0x110 [ 3378.426054][T28962] ? __fget_files+0x294/0x400 [ 3378.431351][T28962] ? __fget_light+0xea/0x280 [ 3378.435953][T28962] __sys_sendmsg+0xe5/0x1b0 [ 3378.441163][T28962] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3378.447145][T28962] ? __do_sys_futex+0x2a2/0x470 [ 3378.452431][T28962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3378.458332][T28962] do_syscall_64+0x2d/0x70 [ 3378.463504][T28962] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3378.469394][T28962] RIP: 0033:0x45deb9 [ 3378.473459][T28962] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3378.493061][T28962] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3378.501857][T28962] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3378.509829][T28962] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3378.517810][T28962] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3378.526686][T28962] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3378.535089][T28962] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3378.602587][T28980] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3378.654460][T28976] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3378.686146][T28976] CPU: 0 PID: 28976 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3378.694945][T28976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3378.705005][T28976] Call Trace: [ 3378.708303][T28976] dump_stack+0x107/0x163 [ 3378.713028][T28976] sysfs_warn_dup.cold+0x1c/0x29 [ 3378.718781][T28976] sysfs_do_create_link_sd+0x11e/0x140 [ 3378.724250][T28976] sysfs_create_link+0x5f/0xc0 [ 3378.729017][T28976] device_add+0x79a/0x1ce0 [ 3378.733447][T28976] ? devlink_add_symlinks+0x450/0x450 [ 3378.738928][T28976] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3378.744939][T28976] wiphy_register+0x1dfc/0x2900 [ 3378.749809][T28976] ? wiphy_unregister+0xbb0/0xbb0 [ 3378.754999][T28976] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3378.761078][T28976] ieee80211_register_hw+0x1b0f/0x3b00 [ 3378.766556][T28976] ? ieee80211_restart_hw+0x290/0x290 [ 3378.771928][T28976] ? debug_object_destroy+0x210/0x210 [ 3378.777303][T28976] ? memset+0x20/0x40 [ 3378.781319][T28976] ? __hrtimer_init+0x136/0x280 [ 3378.786177][T28976] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3378.792017][T28976] ? hwsim_virtio_rx_work+0x350/0x350 [ 3378.797399][T28976] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3378.802954][T28976] ? memcpy+0x39/0x60 [ 3378.806950][T28976] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3378.812066][T28976] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3378.817975][T28976] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3378.825926][T28976] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3378.833517][T28976] genl_family_rcv_msg_doit+0x228/0x320 [ 3378.839679][T28976] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3378.847918][T28976] ? ns_capable+0xde/0x100 [ 3378.852511][T28976] genl_rcv_msg+0x328/0x580 [ 3378.857016][T28976] ? genl_get_cmd+0x480/0x480 [ 3378.861690][T28976] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3378.867594][T28976] ? lock_release+0x710/0x710 [ 3378.872956][T28976] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3378.878328][T28976] netlink_rcv_skb+0x153/0x420 [ 3378.883589][T28976] ? genl_get_cmd+0x480/0x480 [ 3378.888266][T28976] ? netlink_ack+0xaa0/0xaa0 [ 3378.893659][T28976] genl_rcv+0x24/0x40 [ 3378.897639][T28976] netlink_unicast+0x533/0x7d0 [ 3378.902908][T28976] ? netlink_attachskb+0x810/0x810 [ 3378.908023][T28976] ? __phys_addr_symbol+0x2c/0x70 [ 3378.913041][T28976] ? __check_object_size+0x171/0x3f0 [ 3378.919607][T28976] netlink_sendmsg+0x856/0xd90 [ 3378.925034][T28976] ? netlink_unicast+0x7d0/0x7d0 [ 3378.931626][T28976] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3378.937143][T28976] ? netlink_unicast+0x7d0/0x7d0 [ 3378.942819][T28976] sock_sendmsg+0xcf/0x120 [ 3378.947347][T28976] ____sys_sendmsg+0x6e8/0x810 [ 3378.952117][T28976] ? kernel_sendmsg+0x50/0x50 [ 3378.957316][T28976] ? do_recvmmsg+0x6c0/0x6c0 [ 3378.962741][T28976] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3378.968735][T28976] ___sys_sendmsg+0xf3/0x170 [ 3378.973332][T28976] ? sendmsg_copy_msghdr+0x160/0x160 [ 3378.978921][T28976] ? __fget_files+0x272/0x400 [ 3378.984287][T28976] ? lock_downgrade+0x6d0/0x6d0 [ 3378.989142][T28976] ? find_held_lock+0x2d/0x110 [ 3378.994791][T28976] ? __fget_files+0x294/0x400 [ 3378.999568][T28976] ? __fget_light+0xea/0x280 [ 3379.005036][T28976] __sys_sendmsg+0xe5/0x1b0 [ 3379.009543][T28976] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3379.014560][T28976] ? __do_sys_futex+0x2a2/0x470 [ 3379.020212][T28976] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3379.026163][T28976] do_syscall_64+0x2d/0x70 [ 3379.030581][T28976] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3379.036525][T28976] RIP: 0033:0x45deb9 [ 3379.040476][T28976] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3379.060325][T28976] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3379.068742][T28976] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3379.076940][T28976] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3379.084926][T28976] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3379.093422][T28976] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3379.101703][T28976] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 15:54:04 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xca, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x2000003c}, 0x1, 0xffffff7f0e000000}, 0x0) 15:54:04 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x93fe1300}, 0x0) 15:54:04 executing program 3: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000740)={{{@in=@broadcast, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xe8) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x34, 0x26, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r1}, @typed={0x8, 0x82, 0x0, 0x0, @ipv4=@local}, @typed={0xf, 0x1d, 0x0, 0x0, @str='}}-\xd6]{&$!\x8f\x00'}]}, 0x34}, 0x1, 0xffffff7f0e000000}, 0x84) ioctl$TUNSETOWNER(0xffffffffffffffff, 0x400454cc, r1) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000500)={0xffffffffffffffff, r1, 0xee01}, 0xc) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@private0, @in=@multicast2, 0x4e22, 0x0, 0x4e22, 0x6, 0x2, 0x20, 0x80, 0x2b, 0x0, r1}, {0x36, 0x1f, 0x0, 0x7, 0x3, 0x40, 0x2, 0x8}, {0x9363, 0x9, 0xfffffffffffffffe, 0x101}, 0x6c, 0x6e6bb3, 0x1, 0x1, 0x3, 0x2}, {{@in6=@ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xc}}, 0x4d3, 0x33}, 0xa, @in6=@ipv4={[], [], @rand_addr=0x64010100}, 0x3505, 0x0, 0x1, 0x80, 0x7fffffff, 0xad17, 0x5}}, 0xe8) r3 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:04 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x78, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:04 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x1ff91300}, 0x0) [ 3381.239611][T29050] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3381.274678][T29050] CPU: 1 PID: 29050 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3381.283540][T29050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3381.284565][T29059] IPVS: ftp: loaded support on port[0] = 21 [ 3381.293778][T29050] Call Trace: [ 3381.293803][T29050] dump_stack+0x107/0x163 [ 3381.293824][T29050] sysfs_warn_dup.cold+0x1c/0x29 [ 3381.293843][T29050] sysfs_do_create_link_sd+0x11e/0x140 [ 3381.293863][T29050] sysfs_create_link+0x5f/0xc0 [ 3381.293880][T29050] device_add+0x79a/0x1ce0 [ 3381.293900][T29050] ? devlink_add_symlinks+0x450/0x450 [ 3381.332378][T29050] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3381.338370][T29050] wiphy_register+0x1dfc/0x2900 [ 3381.343233][T29050] ? wiphy_unregister+0xbb0/0xbb0 [ 3381.349010][T29050] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3381.355105][T29050] ieee80211_register_hw+0x1b0f/0x3b00 [ 3381.361017][T29050] ? ieee80211_restart_hw+0x290/0x290 [ 3381.366394][T29050] ? debug_object_destroy+0x210/0x210 [ 3381.371770][T29050] ? memset+0x20/0x40 [ 3381.375881][T29050] ? __hrtimer_init+0x136/0x280 [ 3381.380789][T29050] mac80211_hwsim_new_radio+0x2044/0x4830 15:54:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x7ffff000}, 0x1, 0xffffff7f0e000000}, 0x0) [ 3381.387184][T29050] ? hwsim_virtio_rx_work+0x350/0x350 [ 3381.393103][T29050] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3381.398868][T29050] ? memcpy+0x39/0x60 [ 3381.403241][T29050] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3381.409205][T29050] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3381.415115][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3381.422930][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3381.430280][T29050] genl_family_rcv_msg_doit+0x228/0x320 [ 3381.435830][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3381.443219][T29050] ? ns_capable+0xde/0x100 [ 3381.447658][T29050] genl_rcv_msg+0x328/0x580 [ 3381.452158][T29050] ? genl_get_cmd+0x480/0x480 [ 3381.456832][T29050] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3381.462731][T29050] ? lock_release+0x710/0x710 [ 3381.467405][T29050] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3381.472694][T29050] netlink_rcv_skb+0x153/0x420 [ 3381.477458][T29050] ? genl_get_cmd+0x480/0x480 [ 3381.482146][T29050] ? netlink_ack+0xaa0/0xaa0 [ 3381.486752][T29050] genl_rcv+0x24/0x40 15:54:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x2, 0xffffff7f0e000000}, 0x0) [ 3381.490779][T29050] netlink_unicast+0x533/0x7d0 [ 3381.495553][T29050] ? netlink_attachskb+0x810/0x810 [ 3381.500673][T29050] ? __phys_addr_symbol+0x2c/0x70 [ 3381.505701][T29050] ? __check_object_size+0x171/0x3f0 [ 3381.510979][T29050] netlink_sendmsg+0x856/0xd90 [ 3381.515727][T29050] ? netlink_unicast+0x7d0/0x7d0 [ 3381.520663][T29050] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3381.525946][T29050] ? netlink_unicast+0x7d0/0x7d0 [ 3381.530866][T29050] sock_sendmsg+0xcf/0x120 [ 3381.535265][T29050] ____sys_sendmsg+0x6e8/0x810 [ 3381.540110][T29050] ? kernel_sendmsg+0x50/0x50 [ 3381.544778][T29050] ? do_recvmmsg+0x6c0/0x6c0 [ 3381.549356][T29050] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3381.555327][T29050] ___sys_sendmsg+0xf3/0x170 [ 3381.559928][T29050] ? sendmsg_copy_msghdr+0x160/0x160 [ 3381.565218][T29050] ? __fget_files+0x272/0x400 [ 3381.569971][T29050] ? lock_downgrade+0x6d0/0x6d0 [ 3381.574827][T29050] ? find_held_lock+0x2d/0x110 [ 3381.579617][T29050] ? __fget_files+0x294/0x400 [ 3381.584298][T29050] ? __fget_light+0xea/0x280 [ 3381.588896][T29050] __sys_sendmsg+0xe5/0x1b0 [ 3381.593398][T29050] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3381.598401][T29050] ? __do_sys_futex+0x2a2/0x470 [ 3381.603238][T29050] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3381.609121][T29050] do_syscall_64+0x2d/0x70 [ 3381.613533][T29050] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3381.619417][T29050] RIP: 0033:0x45deb9 [ 3381.623300][T29050] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3381.642899][T29050] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3381.651287][T29050] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3381.659244][T29050] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3381.667211][T29050] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3381.675157][T29050] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3381.683115][T29050] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3381.733071][T29058] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3381.766239][T29052] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3381.789619][T29052] CPU: 0 PID: 29052 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3381.798490][T29052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3381.808536][T29052] Call Trace: [ 3381.811830][T29052] dump_stack+0x107/0x163 [ 3381.816225][T29052] sysfs_warn_dup.cold+0x1c/0x29 [ 3381.821884][T29052] sysfs_do_create_link_sd+0x11e/0x140 [ 3381.827358][T29052] sysfs_create_link+0x5f/0xc0 [ 3381.832303][T29052] device_add+0x79a/0x1ce0 [ 3381.836728][T29052] ? devlink_add_symlinks+0x450/0x450 [ 3381.842108][T29052] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3381.848110][T29052] wiphy_register+0x1dfc/0x2900 [ 3381.852973][T29052] ? wiphy_unregister+0xbb0/0xbb0 [ 3381.858295][T29052] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3381.864385][T29052] ieee80211_register_hw+0x1b0f/0x3b00 [ 3381.869860][T29052] ? ieee80211_restart_hw+0x290/0x290 [ 3381.875777][T29052] ? debug_object_destroy+0x210/0x210 [ 3381.881158][T29052] ? memset+0x20/0x40 [ 3381.885141][T29052] ? __hrtimer_init+0x136/0x280 [ 3381.890685][T29052] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3381.896425][T29052] ? hwsim_virtio_rx_work+0x350/0x350 [ 3381.901799][T29052] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3381.907348][T29052] ? memcpy+0x39/0x60 [ 3381.911883][T29052] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3381.917010][T29052] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3381.922931][T29052] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3381.930299][T29052] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3381.937581][T29052] genl_family_rcv_msg_doit+0x228/0x320 [ 3381.943138][T29052] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3381.950692][T29052] ? ns_capable+0xde/0x100 [ 3381.955117][T29052] genl_rcv_msg+0x328/0x580 [ 3381.959779][T29052] ? genl_get_cmd+0x480/0x480 [ 3381.964451][T29052] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3381.970346][T29052] ? lock_release+0x710/0x710 [ 3381.975066][T29052] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3381.980363][T29052] netlink_rcv_skb+0x153/0x420 [ 3381.985122][T29052] ? genl_get_cmd+0x480/0x480 [ 3381.989797][T29052] ? netlink_ack+0xaa0/0xaa0 [ 3381.994790][T29052] genl_rcv+0x24/0x40 [ 3381.999105][T29052] netlink_unicast+0x533/0x7d0 [ 3382.003876][T29052] ? netlink_attachskb+0x810/0x810 [ 3382.008990][T29052] ? __phys_addr_symbol+0x2c/0x70 [ 3382.014006][T29052] ? __check_object_size+0x171/0x3f0 [ 3382.019289][T29052] netlink_sendmsg+0x856/0xd90 [ 3382.024140][T29052] ? netlink_unicast+0x7d0/0x7d0 [ 3382.029087][T29052] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3382.034623][T29052] ? netlink_unicast+0x7d0/0x7d0 [ 3382.039563][T29052] sock_sendmsg+0xcf/0x120 [ 3382.043979][T29052] ____sys_sendmsg+0x6e8/0x810 [ 3382.048745][T29052] ? kernel_sendmsg+0x50/0x50 [ 3382.053423][T29052] ? do_recvmmsg+0x6c0/0x6c0 [ 3382.058276][T29052] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3382.065080][T29052] ___sys_sendmsg+0xf3/0x170 [ 3382.069683][T29052] ? sendmsg_copy_msghdr+0x160/0x160 [ 3382.074971][T29052] ? __fget_files+0x272/0x400 [ 3382.080385][T29052] ? lock_downgrade+0x6d0/0x6d0 [ 3382.085658][T29052] ? find_held_lock+0x2d/0x110 [ 3382.090433][T29052] ? __fget_files+0x294/0x400 [ 3382.095117][T29052] ? __fget_light+0xea/0x280 [ 3382.099715][T29052] __sys_sendmsg+0xe5/0x1b0 [ 3382.104920][T29052] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3382.111733][T29052] ? __do_sys_futex+0x2a2/0x470 [ 3382.116836][T29052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3382.122973][T29052] do_syscall_64+0x2d/0x70 [ 3382.127387][T29052] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3382.133341][T29052] RIP: 0033:0x45deb9 [ 3382.138059][T29052] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3382.157660][T29052] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3382.166367][T29052] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3382.174425][T29052] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3382.183183][T29052] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3382.191650][T29052] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3382.199617][T29052] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3382.244191][T29066] IPVS: ftp: loaded support on port[0] = 21 [ 3382.250689][T29065] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3382.279796][T29065] CPU: 0 PID: 29065 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3382.288685][T29065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3382.299716][T29065] Call Trace: [ 3382.304905][T29065] dump_stack+0x107/0x163 [ 3382.310238][T29065] sysfs_warn_dup.cold+0x1c/0x29 [ 3382.315190][T29065] sysfs_do_create_link_sd+0x11e/0x140 [ 3382.320677][T29065] sysfs_create_link+0x5f/0xc0 [ 3382.326118][T29065] device_add+0x79a/0x1ce0 [ 3382.332110][T29065] ? devlink_add_symlinks+0x450/0x450 [ 3382.337487][T29065] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3382.343486][T29065] wiphy_register+0x1dfc/0x2900 [ 3382.348351][T29065] ? wiphy_unregister+0xbb0/0xbb0 [ 3382.354403][T29065] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3382.360477][T29065] ieee80211_register_hw+0x1b0f/0x3b00 [ 3382.365961][T29065] ? ieee80211_restart_hw+0x290/0x290 [ 3382.371344][T29065] ? debug_object_destroy+0x210/0x210 [ 3382.376720][T29065] ? memset+0x20/0x40 [ 3382.380813][T29065] ? __hrtimer_init+0x136/0x280 [ 3382.386026][T29065] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3382.392918][T29065] ? hwsim_virtio_rx_work+0x350/0x350 [ 3382.398283][T29065] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3382.404652][T29065] ? memcpy+0x39/0x60 [ 3382.408810][T29065] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3382.414756][T29065] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3382.420663][T29065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3382.428578][T29065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3382.436902][T29065] genl_family_rcv_msg_doit+0x228/0x320 [ 3382.442453][T29065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3382.449842][T29065] ? ns_capable+0xde/0x100 [ 3382.454645][T29065] genl_rcv_msg+0x328/0x580 [ 3382.460619][T29065] ? genl_get_cmd+0x480/0x480 [ 3382.466789][T29065] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3382.472683][T29065] ? lock_release+0x710/0x710 [ 3382.477356][T29065] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3382.484118][T29065] netlink_rcv_skb+0x153/0x420 [ 3382.488884][T29065] ? genl_get_cmd+0x480/0x480 [ 3382.494122][T29065] ? netlink_ack+0xaa0/0xaa0 [ 3382.500151][T29065] genl_rcv+0x24/0x40 [ 3382.504148][T29065] netlink_unicast+0x533/0x7d0 [ 3382.509808][T29065] ? netlink_attachskb+0x810/0x810 [ 3382.515207][T29065] ? __phys_addr_symbol+0x2c/0x70 [ 3382.521158][T29065] ? __check_object_size+0x171/0x3f0 [ 3382.526961][T29065] netlink_sendmsg+0x856/0xd90 [ 3382.531727][T29065] ? netlink_unicast+0x7d0/0x7d0 [ 3382.537329][T29065] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3382.543079][T29065] ? netlink_unicast+0x7d0/0x7d0 [ 3382.548980][T29065] sock_sendmsg+0xcf/0x120 [ 3382.553393][T29065] ____sys_sendmsg+0x6e8/0x810 [ 3382.558158][T29065] ? kernel_sendmsg+0x50/0x50 [ 3382.563264][T29065] ? do_recvmmsg+0x6c0/0x6c0 [ 3382.568788][T29065] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3382.574815][T29065] ___sys_sendmsg+0xf3/0x170 [ 3382.581355][T29065] ? sendmsg_copy_msghdr+0x160/0x160 [ 3382.587655][T29065] ? lock_downgrade+0x6d0/0x6d0 [ 3382.592494][T29065] ? find_held_lock+0x2d/0x110 [ 3382.597912][T29065] ? __fget_files+0x294/0x400 [ 3382.602993][T29065] ? __fget_light+0xea/0x280 [ 3382.607590][T29065] __sys_sendmsg+0xe5/0x1b0 [ 3382.612084][T29065] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3382.617107][T29065] ? __do_sys_futex+0x2a2/0x470 [ 3382.623078][T29065] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3382.628982][T29065] do_syscall_64+0x2d/0x70 [ 3382.633389][T29065] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3382.639271][T29065] RIP: 0033:0x45deb9 [ 3382.643465][T29065] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3382.663467][T29065] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3382.671880][T29065] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3382.680187][T29065] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:54:06 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x20000000}, 0x0) [ 3382.688995][T29065] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3382.696966][T29065] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3382.705626][T29065] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3382.769712][T29080] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:54:06 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3, 0xffffff7f0e000000}, 0x0) [ 3382.859614][T29050] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3382.914348][T29050] CPU: 1 PID: 29050 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3382.923201][T29050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3382.933243][T29050] Call Trace: [ 3382.936531][T29050] dump_stack+0x107/0x163 [ 3382.940864][T29050] sysfs_warn_dup.cold+0x1c/0x29 [ 3382.945808][T29050] sysfs_do_create_link_sd+0x11e/0x140 [ 3382.951274][T29050] sysfs_create_link+0x5f/0xc0 [ 3382.956048][T29050] device_add+0x79a/0x1ce0 [ 3382.960459][T29050] ? devlink_add_symlinks+0x450/0x450 [ 3382.965835][T29050] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3382.971824][T29050] wiphy_register+0x1dfc/0x2900 [ 3382.976691][T29050] ? wiphy_unregister+0xbb0/0xbb0 [ 3382.981736][T29050] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3382.987899][T29050] ieee80211_register_hw+0x1b0f/0x3b00 [ 3382.993371][T29050] ? ieee80211_restart_hw+0x290/0x290 [ 3382.998746][T29050] ? debug_object_destroy+0x210/0x210 [ 3383.004118][T29050] ? memset+0x20/0x40 [ 3383.008098][T29050] ? __hrtimer_init+0x136/0x280 [ 3383.012949][T29050] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3383.018688][T29050] ? hwsim_virtio_rx_work+0x350/0x350 [ 3383.024065][T29050] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3383.029615][T29050] ? memcpy+0x39/0x60 [ 3383.033592][T29050] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3383.038692][T29050] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3383.044585][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3383.051945][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3383.059217][T29050] genl_family_rcv_msg_doit+0x228/0x320 [ 3383.064771][T29050] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3383.072142][T29050] ? ns_capable+0xde/0x100 [ 3383.076546][T29050] genl_rcv_msg+0x328/0x580 [ 3383.081072][T29050] ? genl_get_cmd+0x480/0x480 [ 3383.085734][T29050] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3383.091639][T29050] ? lock_release+0x710/0x710 [ 3383.096298][T29050] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3383.101576][T29050] netlink_rcv_skb+0x153/0x420 [ 3383.106339][T29050] ? genl_get_cmd+0x480/0x480 [ 3383.110991][T29050] ? netlink_ack+0xaa0/0xaa0 [ 3383.115574][T29050] genl_rcv+0x24/0x40 [ 3383.119567][T29050] netlink_unicast+0x533/0x7d0 [ 3383.124313][T29050] ? netlink_attachskb+0x810/0x810 [ 3383.129409][T29050] ? __phys_addr_symbol+0x2c/0x70 [ 3383.134405][T29050] ? __check_object_size+0x171/0x3f0 [ 3383.139678][T29050] netlink_sendmsg+0x856/0xd90 [ 3383.144433][T29050] ? netlink_unicast+0x7d0/0x7d0 [ 3383.149350][T29050] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3383.154608][T29050] ? netlink_unicast+0x7d0/0x7d0 [ 3383.159523][T29050] sock_sendmsg+0xcf/0x120 [ 3383.163913][T29050] ____sys_sendmsg+0x6e8/0x810 [ 3383.168664][T29050] ? kernel_sendmsg+0x50/0x50 [ 3383.173320][T29050] ? do_recvmmsg+0x6c0/0x6c0 [ 3383.177889][T29050] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3383.183880][T29050] ___sys_sendmsg+0xf3/0x170 [ 3383.188461][T29050] ? sendmsg_copy_msghdr+0x160/0x160 [ 3383.193733][T29050] ? __fget_files+0x272/0x400 [ 3383.198404][T29050] ? lock_downgrade+0x6d0/0x6d0 [ 3383.203245][T29050] ? find_held_lock+0x2d/0x110 [ 3383.208000][T29050] ? __fget_files+0x294/0x400 [ 3383.212660][T29050] ? __fget_light+0xea/0x280 [ 3383.217237][T29050] __sys_sendmsg+0xe5/0x1b0 [ 3383.221742][T29050] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3383.226754][T29050] ? __do_sys_futex+0x2a2/0x470 [ 3383.231600][T29050] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3383.237492][T29050] do_syscall_64+0x2d/0x70 [ 3383.241930][T29050] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3383.247810][T29050] RIP: 0033:0x45deb9 [ 3383.251676][T29050] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3383.271338][T29050] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3383.279848][T29050] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3383.287798][T29050] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3383.295749][T29050] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3383.303700][T29050] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3383.311666][T29050] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:07 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x7a, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:07 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x94fe1300}, 0x0) [ 3383.376769][T29095] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3383.442687][T29095] CPU: 1 PID: 29095 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3383.451573][T29095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3383.461629][T29095] Call Trace: [ 3383.464933][T29095] dump_stack+0x107/0x163 [ 3383.469274][T29095] sysfs_warn_dup.cold+0x1c/0x29 [ 3383.474217][T29095] sysfs_do_create_link_sd+0x11e/0x140 [ 3383.479686][T29095] sysfs_create_link+0x5f/0xc0 [ 3383.484460][T29095] device_add+0x79a/0x1ce0 [ 3383.488903][T29095] ? devlink_add_symlinks+0x450/0x450 [ 3383.494278][T29095] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3383.500266][T29095] wiphy_register+0x1dfc/0x2900 [ 3383.505139][T29095] ? wiphy_unregister+0xbb0/0xbb0 [ 3383.510180][T29095] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3383.516250][T29095] ieee80211_register_hw+0x1b0f/0x3b00 [ 3383.521733][T29095] ? ieee80211_restart_hw+0x290/0x290 [ 3383.527114][T29095] ? debug_object_destroy+0x210/0x210 [ 3383.532489][T29095] ? memset+0x20/0x40 [ 3383.536478][T29095] ? __hrtimer_init+0x136/0x280 [ 3383.541354][T29095] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3383.547088][T29095] ? hwsim_virtio_rx_work+0x350/0x350 [ 3383.552474][T29095] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3383.558029][T29095] ? memcpy+0x39/0x60 [ 3383.562007][T29095] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3383.567104][T29095] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3383.572986][T29095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3383.580431][T29095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3383.587696][T29095] genl_family_rcv_msg_doit+0x228/0x320 [ 3383.593221][T29095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3383.600587][T29095] ? ns_capable+0xde/0x100 [ 3383.604989][T29095] genl_rcv_msg+0x328/0x580 [ 3383.609479][T29095] ? genl_get_cmd+0x480/0x480 [ 3383.614138][T29095] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3383.620012][T29095] ? lock_release+0x710/0x710 [ 3383.624668][T29095] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3383.629933][T29095] netlink_rcv_skb+0x153/0x420 [ 3383.634672][T29095] ? genl_get_cmd+0x480/0x480 [ 3383.639335][T29095] ? netlink_ack+0xaa0/0xaa0 [ 3383.643921][T29095] genl_rcv+0x24/0x40 [ 3383.647984][T29095] netlink_unicast+0x533/0x7d0 [ 3383.652728][T29095] ? netlink_attachskb+0x810/0x810 [ 3383.657817][T29095] ? __phys_addr_symbol+0x2c/0x70 [ 3383.662820][T29095] ? __check_object_size+0x171/0x3f0 [ 3383.668087][T29095] netlink_sendmsg+0x856/0xd90 [ 3383.672834][T29095] ? netlink_unicast+0x7d0/0x7d0 [ 3383.677758][T29095] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3383.683020][T29095] ? netlink_unicast+0x7d0/0x7d0 [ 3383.687945][T29095] sock_sendmsg+0xcf/0x120 [ 3383.692339][T29095] ____sys_sendmsg+0x6e8/0x810 [ 3383.697081][T29095] ? kernel_sendmsg+0x50/0x50 [ 3383.701729][T29095] ? do_recvmmsg+0x6c0/0x6c0 [ 3383.706303][T29095] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3383.712261][T29095] ___sys_sendmsg+0xf3/0x170 [ 3383.716828][T29095] ? sendmsg_copy_msghdr+0x160/0x160 [ 3383.722089][T29095] ? __fget_files+0x272/0x400 [ 3383.726763][T29095] ? lock_downgrade+0x6d0/0x6d0 [ 3383.731604][T29095] ? find_held_lock+0x2d/0x110 [ 3383.736358][T29095] ? __fget_files+0x294/0x400 [ 3383.741016][T29095] ? __fget_light+0xea/0x280 [ 3383.745591][T29095] __sys_sendmsg+0xe5/0x1b0 [ 3383.750081][T29095] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3383.755084][T29095] ? __do_sys_futex+0x2a2/0x470 [ 3383.759924][T29095] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3383.765802][T29095] do_syscall_64+0x2d/0x70 [ 3383.770198][T29095] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3383.776065][T29095] RIP: 0033:0x45deb9 [ 3383.779934][T29095] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3383.799516][T29095] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3383.807901][T29095] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3383.815847][T29095] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3383.823794][T29095] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3383.831746][T29095] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3383.839693][T29095] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3384.010273][T29132] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3384.107489][T29107] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3384.130132][T29107] CPU: 0 PID: 29107 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3384.138901][T29107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3384.148967][T29107] Call Trace: [ 3384.152261][T29107] dump_stack+0x107/0x163 [ 3384.156602][T29107] sysfs_warn_dup.cold+0x1c/0x29 [ 3384.161566][T29107] sysfs_do_create_link_sd+0x11e/0x140 [ 3384.167028][T29107] sysfs_create_link+0x5f/0xc0 [ 3384.171796][T29107] device_add+0x79a/0x1ce0 [ 3384.176227][T29107] ? devlink_add_symlinks+0x450/0x450 [ 3384.181610][T29107] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3384.187618][T29107] wiphy_register+0x1dfc/0x2900 [ 3384.192491][T29107] ? wiphy_unregister+0xbb0/0xbb0 [ 3384.197552][T29107] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3384.203631][T29107] ieee80211_register_hw+0x1b0f/0x3b00 [ 3384.209105][T29107] ? ieee80211_restart_hw+0x290/0x290 [ 3384.214484][T29107] ? debug_object_destroy+0x210/0x210 [ 3384.219858][T29107] ? memset+0x20/0x40 [ 3384.223845][T29107] ? __hrtimer_init+0x136/0x280 [ 3384.228713][T29107] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3384.234538][T29107] ? hwsim_virtio_rx_work+0x350/0x350 [ 3384.239917][T29107] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3384.245470][T29107] ? memcpy+0x39/0x60 [ 3384.249677][T29107] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3384.254787][T29107] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3384.260697][T29107] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3384.268069][T29107] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3384.275360][T29107] genl_family_rcv_msg_doit+0x228/0x320 [ 3384.280907][T29107] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3384.288289][T29107] ? ns_capable+0xde/0x100 [ 3384.293005][T29107] genl_rcv_msg+0x328/0x580 [ 3384.297519][T29107] ? genl_get_cmd+0x480/0x480 [ 3384.302199][T29107] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3384.308100][T29107] ? lock_release+0x710/0x710 [ 3384.312783][T29107] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3384.318075][T29107] netlink_rcv_skb+0x153/0x420 [ 3384.322842][T29107] ? genl_get_cmd+0x480/0x480 [ 3384.327541][T29107] ? netlink_ack+0xaa0/0xaa0 [ 3384.332169][T29107] genl_rcv+0x24/0x40 [ 3384.336154][T29107] netlink_unicast+0x533/0x7d0 [ 3384.341317][T29107] ? netlink_attachskb+0x810/0x810 [ 3384.346433][T29107] ? __phys_addr_symbol+0x2c/0x70 [ 3384.351456][T29107] ? __check_object_size+0x171/0x3f0 [ 3384.356743][T29107] netlink_sendmsg+0x856/0xd90 [ 3384.361531][T29107] ? netlink_unicast+0x7d0/0x7d0 [ 3384.366817][T29107] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3384.372101][T29107] ? netlink_unicast+0x7d0/0x7d0 [ 3384.377037][T29107] sock_sendmsg+0xcf/0x120 [ 3384.382137][T29107] ____sys_sendmsg+0x6e8/0x810 [ 3384.386905][T29107] ? kernel_sendmsg+0x50/0x50 [ 3384.391576][T29107] ? do_recvmmsg+0x6c0/0x6c0 [ 3384.396171][T29107] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3384.402157][T29107] ___sys_sendmsg+0xf3/0x170 [ 3384.407106][T29107] ? sendmsg_copy_msghdr+0x160/0x160 [ 3384.412396][T29107] ? find_held_lock+0x2d/0x110 [ 3384.417169][T29107] ? __fget_files+0x294/0x400 [ 3384.421851][T29107] ? __fget_light+0xea/0x280 [ 3384.426446][T29107] __sys_sendmsg+0xe5/0x1b0 [ 3384.430950][T29107] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3384.435992][T29107] ? __do_sys_futex+0x2a2/0x470 [ 3384.440857][T29107] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3384.446756][T29107] do_syscall_64+0x2d/0x70 [ 3384.451171][T29107] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3384.457066][T29107] RIP: 0033:0x45deb9 [ 3384.461804][T29107] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3384.481404][T29107] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3384.490128][T29107] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3384.498096][T29107] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3384.506069][T29107] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3384.514029][T29107] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3384.522000][T29107] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3384.553705][T29161] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3384.616980][T29133] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3384.651335][T29133] CPU: 0 PID: 29133 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3384.660098][T29133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3384.670145][T29133] Call Trace: [ 3384.673555][T29133] dump_stack+0x107/0x163 [ 3384.677900][T29133] sysfs_warn_dup.cold+0x1c/0x29 [ 3384.682885][T29133] sysfs_do_create_link_sd+0x11e/0x140 [ 3384.689162][T29133] sysfs_create_link+0x5f/0xc0 [ 3384.693927][T29133] device_add+0x79a/0x1ce0 [ 3384.698342][T29133] ? devlink_add_symlinks+0x450/0x450 [ 3384.703713][T29133] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3384.709727][T29133] wiphy_register+0x1dfc/0x2900 [ 3384.716128][T29133] ? wiphy_unregister+0xbb0/0xbb0 [ 3384.721320][T29133] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3384.727402][T29133] ieee80211_register_hw+0x1b0f/0x3b00 [ 3384.732963][T29133] ? ieee80211_restart_hw+0x290/0x290 [ 3384.739817][T29133] ? debug_object_destroy+0x210/0x210 [ 3384.745222][T29133] ? memset+0x20/0x40 [ 3384.749218][T29133] ? __hrtimer_init+0x136/0x280 [ 3384.754143][T29133] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3384.761464][T29133] ? hwsim_virtio_rx_work+0x350/0x350 [ 3384.766857][T29133] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3384.772402][T29133] ? memcpy+0x39/0x60 [ 3384.776733][T29133] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3384.783457][T29133] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3384.789364][T29133] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3384.797422][T29133] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3384.804818][T29133] genl_family_rcv_msg_doit+0x228/0x320 [ 3384.810379][T29133] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3384.819305][T29133] ? ns_capable+0xde/0x100 [ 3384.824136][T29133] genl_rcv_msg+0x328/0x580 [ 3384.828643][T29133] ? genl_get_cmd+0x480/0x480 [ 3384.833315][T29133] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3384.839321][T29133] ? lock_release+0x710/0x710 [ 3384.843995][T29133] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3384.849281][T29133] netlink_rcv_skb+0x153/0x420 [ 3384.854699][T29133] ? genl_get_cmd+0x480/0x480 [ 3384.859782][T29133] ? netlink_ack+0xaa0/0xaa0 [ 3384.864626][T29133] genl_rcv+0x24/0x40 [ 3384.868605][T29133] netlink_unicast+0x533/0x7d0 [ 3384.873369][T29133] ? netlink_attachskb+0x810/0x810 [ 3384.878478][T29133] ? __phys_addr_symbol+0x2c/0x70 [ 3384.883498][T29133] ? __check_object_size+0x171/0x3f0 [ 3384.888790][T29133] netlink_sendmsg+0x856/0xd90 [ 3384.893887][T29133] ? netlink_unicast+0x7d0/0x7d0 [ 3384.900010][T29133] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3384.905431][T29133] ? netlink_unicast+0x7d0/0x7d0 [ 3384.910368][T29133] sock_sendmsg+0xcf/0x120 [ 3384.914790][T29133] ____sys_sendmsg+0x6e8/0x810 [ 3384.919555][T29133] ? kernel_sendmsg+0x50/0x50 [ 3384.924226][T29133] ? do_recvmmsg+0x6c0/0x6c0 [ 3384.928917][T29133] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3384.934928][T29133] ___sys_sendmsg+0xf3/0x170 [ 3384.939521][T29133] ? sendmsg_copy_msghdr+0x160/0x160 [ 3384.944837][T29133] ? __fget_files+0x272/0x400 [ 3384.950231][T29133] ? lock_downgrade+0x6d0/0x6d0 [ 3384.956119][T29133] ? find_held_lock+0x2d/0x110 [ 3384.960896][T29133] ? __fget_files+0x294/0x400 [ 3384.965584][T29133] ? __fget_light+0xea/0x280 [ 3384.970180][T29133] __sys_sendmsg+0xe5/0x1b0 [ 3384.974680][T29133] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3384.979700][T29133] ? __do_sys_futex+0x2a2/0x470 [ 3384.984836][T29133] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3384.992294][T29133] do_syscall_64+0x2d/0x70 [ 3384.996716][T29133] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3385.002603][T29133] RIP: 0033:0x45deb9 [ 3385.006509][T29133] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3385.026218][T29133] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3385.034630][T29133] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3385.042592][T29133] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3385.050670][T29133] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3385.058648][T29133] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3385.066819][T29133] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x4, 0xffffff7f0e000000}, 0x0) 15:54:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x20f91300}, 0x0) 15:54:11 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x7c, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:11 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x95fe1300}, 0x0) 15:54:11 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xcb, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:11 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@multicast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@private}}, &(0x7f00000007c0)=0x12d) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000700)={0x0, 0x0, 0x0}, &(0x7f0000000740)=0xc) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000780)={0xffffffffffffffff, r1, r2}, 0xc) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000005680)={&(0x7f0000005640)='./file0\x00', 0x0, 0x8}, 0x10) r4 = accept4$x25(0xffffffffffffffff, &(0x7f00000056c0), &(0x7f0000005700)=0x12, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') r7 = getpid() sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000250000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008b00", @ANYRES32=r7, @ANYBLOB="d194c47c80cfd66786f71d4d8a8d7a6353f622017058df3d44ef825927ec49bb1e31507a694d34a5ac3ee804fbadfb8774a5f2f28b3506fa99e3a6101ebddacdcb85a7dddf2a575c1fcf753061caff6c711e86a2886b18c058efbb9dc306ffeca58a67cd1e2954c6a822022c121699ceb5cb9b234235dcaa3e843676d09b5a8517311be824c4109e91346334b1bc3e520eb9588ef3febc6ec0c7f9c4a49fcca5d1cc76941f31bb6b5eb942787078bd8a937ac6"], 0x3c}}, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000740)={{{@in=@broadcast, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xe8) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="340000002600290800000000000000000400000008000c00", @ANYRES32=r8, @ANYBLOB="08008200ac260421050000000000000000000000000000f8"], 0x34}, 0x1, 0xffffff7f0e000000}, 0x84) ioctl$TUNSETOWNER(0xffffffffffffffff, 0x400454cc, r8) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000500)={0xffffffffffffffff, r8, 0xee01}, 0xc) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@multicast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@private}}, &(0x7f00000007c0)=0x12d) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000700)={0x0, 0x0, 0x0}, &(0x7f0000000740)=0xc) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000780)={0xffffffffffffffff, r10, r11}, 0xc) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006c80)=[{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000100)="8fe5d2f9", 0x4}, {&(0x7f0000000140)="499d03fb160430eec75c08fdf6b97313eb6008c7cf3036ccb53476101c3e0cc3b228c5845db6e8c8b757486c3b8fef928942b8e2dea3e53b56197de2a09e44fa0e30e32d196a554a82943a5e0612bfeb7e0a44e78d5d4af2d72ca1f9ee3922e4c730594b802a1ef0df575dd7e5062679887680cf3137675b0f4270a5543fd1915697f91f0742481b7bd00cee9071df815bc2abb99b10e6369200212117024ee1ff1b7a68816507325fea85d85fd11a02d5dbce263a3ce721bc49855ff734466adf03cbc85b5ca18405e01c58cb", 0xcd}, {&(0x7f0000000240)="f46b9b7fd73bed5149238932986ac9f4787fc252dd36090f312ca8d7a178fc259b9028543985cce48d787e66e94ecdb31897cee743c8af78409383be8c590460c0ab3caaef2a2fe1c826d28a15bc9c43a7d088da348de36528709aae4eb0e99c4eebbf0f08493f975294f50dd9edb3a7", 0x70}, {&(0x7f00000002c0)="ce60f9f0ccd1b53cfbec071127eba04838d1f2c9814d4cdef25d30ae2181fe5c6412ed", 0x23}, {&(0x7f0000000300)="bf077ffeadeafb8db8b04a9beddfcb4efcf9f9e35cc0f118543fb7c7a71b9cf307799b7b3c94be677131ce57b9022e5c81e52487de1541c3c2f73612cba6a3ae2ca4e11bd03ccccadf86cfdcd0", 0x4d}, {&(0x7f0000000380)="7bf68e8d6c9a8387dd44e96e493e3d4a79520c6e03601aec883f7e794d26a5175bb89289b3", 0x25}], 0x6, &(0x7f0000000480)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}], 0x60}, {&(0x7f0000000500)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002800)=[{&(0x7f0000000580)="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", 0x1000}, {&(0x7f0000001580)="09fdaadd9b87153767116e7b998180625c27c1c828435a05eae7b6283f1c1ad95f3d4214381757c23e84d1b62d9d2097bdcfc253fee7c6fe33516980d48b03718a208f035b5af6739b4782f8d2d93495b1dbd8dc08e5fe2d473eb0a20e97b7615ec86a7a5d71ba45a6b63c648d3b42eddd3d781ea30efb1942d7ca10541b6a6344f37fa9abdc1ebaa0d7a50360ec48d599675a67cfe334644007591f3e9bb08c76a67e1f41bc53284a50853943fb0ffa58945289caa1dab7a095a331e12c48c9ddf37b55205dd255563746a2d98129b4a2702005900a7e2e8833a28f5174", 0xde}, {&(0x7f0000001680)="cf2ace3ea96b449b79c11f81fbc227701e4d8554d67084d070a7564740c0759458d56bd7b36cb2038b9b050acea8dee591d39114b7101e10cbcfcb8f83", 0x3d}, {&(0x7f00000016c0)="522cb6b5c88009da2d361d159aa8e47e79c01183b12c09175cc360c6725b61628ad102e9582b10d980ff528879a29783e2b816ed7b10f87e8364e3f2d378f08e8f1816d2c9a0e8fe", 0x48}, {&(0x7f0000001740)="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", 0x1000}, {&(0x7f0000002740)="f6850beacba1fd4f46045bdb3f0a041be3a6845503c35693c18c41846ec62cf6f0120e204c020a3ed4f086be2198f8b444746053f02f726a7b359d48287a49036f227800dafefdf1659a1cd49cb8ca5450a572375732694e00c93a3a1b9c19a9d563e9e374633691ea401543e4312918a6e9029b28eecf20fa208359e435e9643bbb62e8e9eaf910bc94fee041fc95ab65fdf33127c406cb704f1e7dda09cc05f7c2c2dc2a77b76cf75cb90dc6a6e406", 0xb0}], 0x6, &(0x7f0000002880)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}], 0x20, 0x8000}, {&(0x7f00000028c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003c80)=[{&(0x7f0000002940)="4903b9a85288f1b362990e88bacd09f4fb927befabfbac69df12cbbffb34b0ae6a573ecd3cb4da2a5e2e976d77f29202e1034d076673f80810b172f958695faaad0043a34f36699b200597740d8e7e3e106f5e25ab66bb7518ded357c090cccc538726e7206414b57e03761024ea349969e2c9adf1acdbcfd41e7502fa", 0x7d}, {&(0x7f00000029c0)="1f02ab3cfa39ac36457b7dd85ed5056ae447265903ad682fcbbb53c2f8dd5ece0bd4b70eed2169f91f0dc9fa234c1d2552022f3a84d754d7c9796c965a0417c5478238730bee162740b66cabc462c5cf3552fd112fab187bf2f6f3dc666647b18e44b9aba5de1a71c2ec820061a34e27", 0x70}, {&(0x7f0000002a40)="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", 0x1000}, {&(0x7f0000003a40)="5b631bc3d2cdcd0971d1a8852437fadcffc4228c9c682f51d09a7b663e04e3e815314558a3409fd6e59fa51ce263255f388b1f5c70963c2f32ee6448a33ce112ee3f9679d6656476f1a05fb5e0ce10759378faa75a71704718312fc9fc2a1208886437ab5b9029a59a440199d923e69e8a94c76a13637e077c50759d0ae86d8c219398cd7046d9c20f97943f044ffdfca2cf634d9f653a499cdda4d6216a2bb8a541f02b4ee192af0f60b44c1930f8ac74911e4c", 0xb4}, {&(0x7f0000003b00)="3ac1b489cd56acf2e10f08b4bed68d2a0758f3de85760d4ed8140207879bf675178165f51d", 0x25}, {&(0x7f0000003b40)="9c2d", 0x2}, {&(0x7f0000003b80)="cb1de6e2f24de352e7b367526e78b668291807fc03ef4fe8b1c4c153333e8d1b473d8781713cb9c7957e1100be1470deac084f0ab5f2d1da072cfe8218e6d6fae1edeb4066c58948c084f5c7d7e33a145a961b211d99c39f00c4ecf97b103d7ed5487dbe9f51c1d6aa19e0eb9041a08c4f0c2dc458a321d849f1d2924d0b6b2b75e51844c81e0746f5e57027f238743692226444514d331461d21fb9d7a22dc375021d843f07ede631aff89a5baaffa34d7de24889c1ca42e2b8b57e68dc891a432d014279a7d0727199", 0xca}], 0x7, &(0x7f0000003d80)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}], 0x78, 0x1}, {&(0x7f0000003e00)=@abs={0x0, 0x0, 0x9}, 0x6e, &(0x7f00000053c0)=[{&(0x7f0000003e80)="6676d3452e6155931ce2153d7c87c2440119890b11f636949da1015401dd60010330d9fa68fc61013b7214e48e642c6dc566a4dc089fce3010249bd93514ad3f41dbd9372b4e83aa45391fccfc52fcda82b3ca7308635c735b0d0273db4395cbb4d6a590b8171d2d7f9c6c83ec07c94e6956192c9491df64e395d8489d150e55f3af1e1e4dd5c08d1205781259900df6052968118e1c9ab3e2c446e40d", 0x9d}, {&(0x7f0000003f40)="c12c05a835f3c7d4e9bb95fdd1668878927525711a4ff95bde1af269fddea604e45575d4ee58b9ac16906b9fabd7b14a4f96434c5ee88bf06acd2c673803e9b1b4b7d114ace9100639cafc978208777ef1aba77b71e22b03a7d24e5646fc005ad73b81f0a96a6949b0e896e83bb292a8d35fbfcc6fc20c3c2edc19357d472a668ce285c581f0ba33b54877d24754a08d7f9ad8182eee8786a6267d0d7dc2d572c505b4f3374a141a2061552c82af2d489e6ae0b1a504c04da10bd267d14323c987f893b982b524fff038f37dd508d76e08022434ed171fa2fb18c4530c14da68d1d379201bed8a1185ee", 0xea}, {&(0x7f0000004040)="56ab6fe2f7dcf88cc34ebe5f8dfe5d7a4b6280acfd7f961f7299cb71b6af597262912d21262ca3818e180019a5cc1c670ced4b5524d1e69f524c8e19d84dab481e", 0x41}, {&(0x7f00000040c0)="c2d1d1b083971aa242e8a3fbcb787d42caa9f2f2a8ef163e478f4a05f7bceb51a34c463ee54cd30cf27618031325d89744aa0faf9d0d5361680afa210e5e025ee5af5658a981a1f2b8b428852cbc2aa722eed4509a", 0x55}, {&(0x7f0000004140)="aee630a4034ba425394905bd5007b10673e1331e6b5e11884ac6787841d723f96f611978fa77e3140be427885f6ee1f542324e68984c94bf71b00e13fb97dd30b6484fef948824e31004a5afb84ac1a1f18cf55a3509db9fe1fd8d314f195a1410fd52b83982a0ce76af82c0e91d9a3621c722f7ee95ed4abc2f08460f6e94f87e59faaf7726e534767187fa7be5f4d9732a8b9d072e4503c7b6e5bb9ebb979c8529b924315b57a16f5165787eb72f23f121eac15774ea3674e11fa77011a91f1a55413409c27da6aadc370e8c5cd2da842b9c87f1", 0xd5}, {&(0x7f0000004240)="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", 0x1000}, {&(0x7f0000005240)="cf1f1dd0310e2acebb4c9b96d9d56d52ec2294614fef2020a41146c8ac73ae121dba9f3df364f4ce2e3fe8ec0906ab8743f6a55e732faa28924759de2ae693cc53f559cba8dd5c9ad880b64673d4dd5569ccd25bc4905712530a32b0de9888eae204dd41b36fcbdf226cd4efc5e50105ed0b26", 0x73}, {&(0x7f00000052c0)="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", 0xfe}], 0x8, &(0x7f0000005740)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r2}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r3, 0xffffffffffffffff, r0, r4]}}, @cred={{0x1c, 0x1, 0x2, {r7, r8, r11}}}], 0x118, 0x8000}, {&(0x7f0000005880)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000006bc0)=[{&(0x7f0000005900)="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", 0x1000}, {&(0x7f0000006900)="6d104e62c3089ca5b87a0a48444333e2fd3b338b663c08cefb8356f0c29f5a9266f3dea5399d8659d28e8caccc71384eb75ed46dabddfa9501646babde8125b01529c155d7115fe6623ef3dd803993c2850c028107ad7c1733318289b604029332fdff6d7f56c8925725f093eca57ca15131b91bb0660f6d23874f113f123feb151cf68ee65b3a1fb491c65b022b8d90f859c3c4a8890f097a9f8fc96203f349839780471567e8699269", 0xaa}, {&(0x7f00000069c0)="f9efcc0d3b9509f86d326e0729d564d6a84189667d83d9c66244ad4688d36cc65e72349e224d22e8e8c63a66212f718411808c8179e8297be1b5d1d0a3b8776e9229ee1473ae467e9ccdb1d360a36844ba57a3930169bbed6df7c2061bb72187570d37b40329dbedfbc00390cc5bfef4d8204b7ee33607668047f78c32fac394f7a8f160313f7542ca4de46dc963d05f3a5db337afec3e208e27e81dbb58b35efc40f3f4aeb62c07e062", 0xaa}, {&(0x7f0000006a80)="840a84a81627a639579ce52fc9730c987cae2d6a7da2ef5a5e932a1d8c6413958c524493471b6ae9ff424a53351b014417d4f62a14dafbddf1b12c7a9b87ae0c762eb53e4ad14623fed508defdd2281ec3f777aad70a6b870e19b1bc6760003422cfc32684840d98ffc2fde0bbc496a3cece6d94f0a72a193027146d6bf8b3da25f3", 0x82}, {&(0x7f0000006b40)="d08e41683e5660f75820ba0c4f19e159d59f18bbaffdfa65a23290dbee2b5c8bee0c6e144587195e39100e40841d739aee55376eb3706476a6b08136ee7ce0d9fda3654716e3ab3413", 0x49}], 0x5, &(0x7f0000006c40), 0x0, 0x10}], 0x5, 0x20044000) [ 3387.683565][T29211] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3387.693747][T29219] IPVS: ftp: loaded support on port[0] = 21 [ 3387.716846][T29211] CPU: 1 PID: 29211 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3387.725606][T29211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3387.735670][T29211] Call Trace: [ 3387.738975][T29211] dump_stack+0x107/0x163 [ 3387.743311][T29211] sysfs_warn_dup.cold+0x1c/0x29 [ 3387.748251][T29211] sysfs_do_create_link_sd+0x11e/0x140 [ 3387.753714][T29211] sysfs_create_link+0x5f/0xc0 [ 3387.758464][T29211] device_add+0x79a/0x1ce0 [ 3387.762861][T29211] ? devlink_add_symlinks+0x450/0x450 [ 3387.768223][T29211] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3387.774182][T29211] wiphy_register+0x1dfc/0x2900 [ 3387.779143][T29211] ? wiphy_unregister+0xbb0/0xbb0 [ 3387.784151][T29211] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3387.790347][T29211] ieee80211_register_hw+0x1b0f/0x3b00 [ 3387.795835][T29211] ? ieee80211_restart_hw+0x290/0x290 [ 3387.801201][T29211] ? debug_object_destroy+0x210/0x210 [ 3387.806549][T29211] ? memset+0x20/0x40 [ 3387.810515][T29211] ? __hrtimer_init+0x136/0x280 [ 3387.815352][T29211] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3387.821059][T29211] ? hwsim_virtio_rx_work+0x350/0x350 [ 3387.826403][T29211] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3387.831922][T29211] ? memcpy+0x39/0x60 [ 3387.835884][T29211] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3387.840985][T29211] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3387.846874][T29211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3387.854223][T29211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3387.861495][T29211] genl_family_rcv_msg_doit+0x228/0x320 [ 3387.867018][T29211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3387.874366][T29211] ? ns_capable+0xde/0x100 [ 3387.878760][T29211] genl_rcv_msg+0x328/0x580 [ 3387.883235][T29211] ? genl_get_cmd+0x480/0x480 [ 3387.887896][T29211] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3387.893777][T29211] ? lock_release+0x710/0x710 [ 3387.898426][T29211] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3387.903687][T29211] netlink_rcv_skb+0x153/0x420 [ 3387.908423][T29211] ? genl_get_cmd+0x480/0x480 [ 3387.913100][T29211] ? netlink_ack+0xaa0/0xaa0 [ 3387.917791][T29211] genl_rcv+0x24/0x40 [ 3387.921746][T29211] netlink_unicast+0x533/0x7d0 [ 3387.926489][T29211] ? netlink_attachskb+0x810/0x810 [ 3387.931582][T29211] ? __phys_addr_symbol+0x2c/0x70 [ 3387.936585][T29211] ? __check_object_size+0x171/0x3f0 [ 3387.941854][T29211] netlink_sendmsg+0x856/0xd90 [ 3387.946612][T29211] ? netlink_unicast+0x7d0/0x7d0 [ 3387.951542][T29211] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3387.956803][T29211] ? netlink_unicast+0x7d0/0x7d0 [ 3387.961717][T29211] sock_sendmsg+0xcf/0x120 [ 3387.966108][T29211] ____sys_sendmsg+0x6e8/0x810 [ 3387.970852][T29211] ? kernel_sendmsg+0x50/0x50 [ 3387.975532][T29211] ? do_recvmmsg+0x6c0/0x6c0 [ 3387.980116][T29211] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3387.986088][T29211] ___sys_sendmsg+0xf3/0x170 [ 3387.990659][T29211] ? sendmsg_copy_msghdr+0x160/0x160 [ 3387.995952][T29211] ? __fget_files+0x294/0x400 [ 3388.000621][T29211] ? __fget_light+0xea/0x280 [ 3388.005206][T29211] __sys_sendmsg+0xe5/0x1b0 [ 3388.009705][T29211] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3388.014710][T29211] ? __do_sys_futex+0x2a2/0x470 [ 3388.019555][T29211] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3388.025573][T29211] do_syscall_64+0x2d/0x70 [ 3388.029966][T29211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3388.035832][T29211] RIP: 0033:0x45deb9 [ 3388.039702][T29211] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3388.059283][T29211] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3388.067676][T29211] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3388.075633][T29211] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3388.083606][T29211] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3388.091727][T29211] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3388.099671][T29211] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3388.137573][T29213] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3388.195923][T29212] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x6, 0xffffff7f0e000000}, 0x0) [ 3388.239118][T29212] CPU: 1 PID: 29212 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3388.247880][T29212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3388.257930][T29212] Call Trace: [ 3388.261222][T29212] dump_stack+0x107/0x163 [ 3388.265564][T29212] sysfs_warn_dup.cold+0x1c/0x29 [ 3388.270535][T29212] sysfs_do_create_link_sd+0x11e/0x140 [ 3388.276013][T29212] sysfs_create_link+0x5f/0xc0 [ 3388.280802][T29212] device_add+0x79a/0x1ce0 [ 3388.285232][T29212] ? devlink_add_symlinks+0x450/0x450 [ 3388.290613][T29212] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3388.296720][T29212] wiphy_register+0x1dfc/0x2900 [ 3388.301600][T29212] ? wiphy_unregister+0xbb0/0xbb0 [ 3388.306653][T29212] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3388.312737][T29212] ieee80211_register_hw+0x1b0f/0x3b00 [ 3388.318229][T29212] ? ieee80211_restart_hw+0x290/0x290 [ 3388.323620][T29212] ? debug_object_destroy+0x210/0x210 [ 3388.328994][T29212] ? memset+0x20/0x40 [ 3388.332972][T29212] ? __hrtimer_init+0x136/0x280 [ 3388.337827][T29212] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3388.343562][T29212] ? hwsim_virtio_rx_work+0x350/0x350 [ 3388.349020][T29212] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3388.354567][T29212] ? memcpy+0x39/0x60 [ 3388.358554][T29212] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3388.363751][T29212] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3388.369753][T29212] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3388.377121][T29212] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3388.384403][T29212] genl_family_rcv_msg_doit+0x228/0x320 [ 3388.390031][T29212] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3388.397399][T29212] ? ns_capable+0xde/0x100 [ 3388.401813][T29212] genl_rcv_msg+0x328/0x580 [ 3388.406324][T29212] ? genl_get_cmd+0x480/0x480 [ 3388.410990][T29212] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3388.416861][T29212] ? lock_release+0x710/0x710 [ 3388.421523][T29212] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3388.426786][T29212] netlink_rcv_skb+0x153/0x420 [ 3388.431524][T29212] ? genl_get_cmd+0x480/0x480 [ 3388.436181][T29212] ? netlink_ack+0xaa0/0xaa0 [ 3388.440779][T29212] genl_rcv+0x24/0x40 [ 3388.444746][T29212] netlink_unicast+0x533/0x7d0 [ 3388.449485][T29212] ? netlink_attachskb+0x810/0x810 [ 3388.454572][T29212] ? __phys_addr_symbol+0x2c/0x70 [ 3388.459577][T29212] ? __check_object_size+0x171/0x3f0 [ 3388.464866][T29212] netlink_sendmsg+0x856/0xd90 [ 3388.469642][T29212] ? netlink_unicast+0x7d0/0x7d0 [ 3388.474562][T29212] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3388.479824][T29212] ? netlink_unicast+0x7d0/0x7d0 [ 3388.484736][T29212] sock_sendmsg+0xcf/0x120 [ 3388.489149][T29212] ____sys_sendmsg+0x6e8/0x810 [ 3388.493887][T29212] ? kernel_sendmsg+0x50/0x50 [ 3388.498538][T29212] ? do_recvmmsg+0x6c0/0x6c0 [ 3388.503111][T29212] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3388.509072][T29212] ___sys_sendmsg+0xf3/0x170 [ 3388.513637][T29212] ? sendmsg_copy_msghdr+0x160/0x160 [ 3388.518900][T29212] ? __fget_files+0x272/0x400 [ 3388.523552][T29212] ? lock_downgrade+0x6d0/0x6d0 [ 3388.528379][T29212] ? find_held_lock+0x2d/0x110 [ 3388.533819][T29212] ? __fget_files+0x294/0x400 [ 3388.538486][T29212] ? __fget_light+0xea/0x280 [ 3388.543054][T29212] __sys_sendmsg+0xe5/0x1b0 [ 3388.547533][T29212] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3388.552530][T29212] ? __do_sys_futex+0x2a2/0x470 [ 3388.557370][T29212] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3388.563243][T29212] do_syscall_64+0x2d/0x70 [ 3388.567635][T29212] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3388.573499][T29212] RIP: 0033:0x45deb9 [ 3388.577371][T29212] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3388.596950][T29212] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3388.605346][T29212] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3388.613293][T29212] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3388.621237][T29212] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3388.629181][T29212] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3388.637135][T29212] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3388.699197][T29240] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3388.753837][T29221] IPVS: ftp: loaded support on port[0] = 21 [ 3388.760284][T29214] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3388.786839][T29214] CPU: 0 PID: 29214 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3388.795727][T29214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3388.805968][T29214] Call Trace: [ 3388.809805][T29214] dump_stack+0x107/0x163 [ 3388.814185][T29214] sysfs_warn_dup.cold+0x1c/0x29 [ 3388.819857][T29214] sysfs_do_create_link_sd+0x11e/0x140 [ 3388.825453][T29214] sysfs_create_link+0x5f/0xc0 [ 3388.831059][T29214] device_add+0x79a/0x1ce0 [ 3388.835800][T29214] ? devlink_add_symlinks+0x450/0x450 [ 3388.841188][T29214] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3388.847179][T29214] wiphy_register+0x1dfc/0x2900 [ 3388.852440][T29214] ? wiphy_unregister+0xbb0/0xbb0 [ 3388.857498][T29214] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3388.863858][T29214] ieee80211_register_hw+0x1b0f/0x3b00 [ 3388.869541][T29214] ? ieee80211_restart_hw+0x290/0x290 [ 3388.874946][T29214] ? debug_object_destroy+0x210/0x210 [ 3388.880344][T29214] ? memset+0x20/0x40 [ 3388.884388][T29214] ? __hrtimer_init+0x136/0x280 [ 3388.889244][T29214] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3388.895009][T29214] ? hwsim_virtio_rx_work+0x350/0x350 [ 3388.900464][T29214] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3388.906014][T29214] ? memcpy+0x39/0x60 [ 3388.910450][T29214] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3388.915821][T29214] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3388.922303][T29214] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3388.930512][T29214] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3388.937811][T29214] genl_family_rcv_msg_doit+0x228/0x320 [ 3388.944138][T29214] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3388.951887][T29214] ? ns_capable+0xde/0x100 [ 3388.956304][T29214] genl_rcv_msg+0x328/0x580 [ 3388.961450][T29214] ? genl_get_cmd+0x480/0x480 [ 3388.966814][T29214] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3388.973512][T29214] ? lock_release+0x710/0x710 [ 3388.978960][T29214] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3388.984462][T29214] netlink_rcv_skb+0x153/0x420 [ 3388.990008][T29214] ? genl_get_cmd+0x480/0x480 [ 3388.995392][T29214] ? netlink_ack+0xaa0/0xaa0 [ 3389.000152][T29214] genl_rcv+0x24/0x40 [ 3389.004201][T29214] netlink_unicast+0x533/0x7d0 [ 3389.009807][T29214] ? netlink_attachskb+0x810/0x810 [ 3389.015152][T29214] ? __phys_addr_symbol+0x2c/0x70 [ 3389.020780][T29214] ? __check_object_size+0x171/0x3f0 [ 3389.026663][T29214] netlink_sendmsg+0x856/0xd90 [ 3389.032135][T29214] ? netlink_unicast+0x7d0/0x7d0 [ 3389.037085][T29214] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3389.042511][T29214] ? netlink_unicast+0x7d0/0x7d0 [ 3389.048240][T29214] sock_sendmsg+0xcf/0x120 [ 3389.053251][T29214] ____sys_sendmsg+0x6e8/0x810 [ 3389.058018][T29214] ? kernel_sendmsg+0x50/0x50 [ 3389.063470][T29214] ? do_recvmmsg+0x6c0/0x6c0 [ 3389.068829][T29214] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3389.075471][T29214] ___sys_sendmsg+0xf3/0x170 [ 3389.080796][T29214] ? sendmsg_copy_msghdr+0x160/0x160 [ 3389.086199][T29214] ? __fget_files+0x272/0x400 [ 3389.091552][T29214] ? lock_downgrade+0x6d0/0x6d0 [ 3389.096401][T29214] ? find_held_lock+0x2d/0x110 [ 3389.101259][T29214] ? __fget_files+0x294/0x400 [ 3389.106655][T29214] ? __fget_light+0xea/0x280 [ 3389.111723][T29214] __sys_sendmsg+0xe5/0x1b0 [ 3389.116339][T29214] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3389.121802][T29214] ? __do_sys_futex+0x2a2/0x470 [ 3389.126671][T29214] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3389.132973][T29214] do_syscall_64+0x2d/0x70 [ 3389.137470][T29214] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3389.143361][T29214] RIP: 0033:0x45deb9 [ 3389.147799][T29214] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3389.167418][T29214] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3389.175828][T29214] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3389.183972][T29214] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3389.192201][T29214] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3389.200441][T29214] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3389.208531][T29214] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:13 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x82, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3389.329839][T29238] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3389.379749][T29238] CPU: 1 PID: 29238 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3389.388516][T29238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3389.398561][T29238] Call Trace: [ 3389.401852][T29238] dump_stack+0x107/0x163 [ 3389.406272][T29238] sysfs_warn_dup.cold+0x1c/0x29 [ 3389.411212][T29238] sysfs_do_create_link_sd+0x11e/0x140 [ 3389.416670][T29238] sysfs_create_link+0x5f/0xc0 [ 3389.421434][T29238] device_add+0x79a/0x1ce0 [ 3389.425862][T29238] ? devlink_add_symlinks+0x450/0x450 [ 3389.431261][T29238] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3389.437257][T29238] wiphy_register+0x1dfc/0x2900 [ 3389.442117][T29238] ? wiphy_unregister+0xbb0/0xbb0 [ 3389.447169][T29238] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3389.453246][T29238] ieee80211_register_hw+0x1b0f/0x3b00 [ 3389.458718][T29238] ? ieee80211_restart_hw+0x290/0x290 [ 3389.464093][T29238] ? debug_object_destroy+0x210/0x210 [ 3389.469468][T29238] ? memset+0x20/0x40 [ 3389.473451][T29238] ? __hrtimer_init+0x136/0x280 [ 3389.478309][T29238] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3389.484044][T29238] ? hwsim_virtio_rx_work+0x350/0x350 [ 3389.489407][T29238] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3389.494978][T29238] ? memcpy+0x39/0x60 [ 3389.498977][T29238] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3389.504092][T29238] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3389.510021][T29238] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3389.517402][T29238] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3389.524692][T29238] genl_family_rcv_msg_doit+0x228/0x320 [ 3389.530238][T29238] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3389.537622][T29238] ? ns_capable+0xde/0x100 [ 3389.542045][T29238] genl_rcv_msg+0x328/0x580 [ 3389.546555][T29238] ? genl_get_cmd+0x480/0x480 [ 3389.551240][T29238] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3389.557138][T29238] ? lock_release+0x710/0x710 [ 3389.561817][T29238] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3389.567107][T29238] netlink_rcv_skb+0x153/0x420 [ 3389.571872][T29238] ? genl_get_cmd+0x480/0x480 [ 3389.576663][T29238] ? netlink_ack+0xaa0/0xaa0 [ 3389.581384][T29238] genl_rcv+0x24/0x40 [ 3389.585374][T29238] netlink_unicast+0x533/0x7d0 [ 3389.590143][T29238] ? netlink_attachskb+0x810/0x810 [ 3389.595260][T29238] ? __phys_addr_symbol+0x2c/0x70 [ 3389.600276][T29238] ? __check_object_size+0x171/0x3f0 [ 3389.605544][T29238] netlink_sendmsg+0x856/0xd90 [ 3389.610287][T29238] ? netlink_unicast+0x7d0/0x7d0 [ 3389.615229][T29238] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3389.620488][T29238] ? netlink_unicast+0x7d0/0x7d0 [ 3389.625413][T29238] sock_sendmsg+0xcf/0x120 [ 3389.629829][T29238] ____sys_sendmsg+0x6e8/0x810 [ 3389.635217][T29238] ? kernel_sendmsg+0x50/0x50 [ 3389.639995][T29238] ? do_recvmmsg+0x6c0/0x6c0 [ 3389.644588][T29238] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3389.650572][T29238] ___sys_sendmsg+0xf3/0x170 [ 3389.655849][T29238] ? sendmsg_copy_msghdr+0x160/0x160 [ 3389.661474][T29238] ? __fget_files+0x272/0x400 [ 3389.666147][T29238] ? lock_downgrade+0x6d0/0x6d0 [ 3389.671648][T29238] ? find_held_lock+0x2d/0x110 [ 3389.676424][T29238] ? __fget_files+0x294/0x400 [ 3389.681947][T29238] ? __fget_light+0xea/0x280 [ 3389.686621][T29238] __sys_sendmsg+0xe5/0x1b0 [ 3389.691122][T29238] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3389.696837][T29238] ? __do_sys_futex+0x2a2/0x470 [ 3389.702325][T29238] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3389.708221][T29238] do_syscall_64+0x2d/0x70 [ 3389.712668][T29238] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3389.718552][T29238] RIP: 0033:0x45deb9 [ 3389.722575][T29238] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3389.742216][T29238] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3389.750953][T29238] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3389.759415][T29238] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3389.767981][T29238] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 15:54:13 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x96fe1300}, 0x0) [ 3389.776731][T29238] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3389.784701][T29238] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 15:54:13 executing program 3: r0 = socket$inet6(0xa, 0x5, 0x3e) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000003c0)={r0, 0x1, 0x2, 0xf297}) connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x0, @dev={[], 0x22}, 'bridge_slave_1\x00'}}, 0x1e) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3389.844266][T29288] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3389.972314][T29242] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3390.016486][T29242] CPU: 0 PID: 29242 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3390.025268][T29242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3390.035323][T29242] Call Trace: [ 3390.038618][T29242] dump_stack+0x107/0x163 [ 3390.042958][T29242] sysfs_warn_dup.cold+0x1c/0x29 [ 3390.048235][T29242] sysfs_do_create_link_sd+0x11e/0x140 [ 3390.053696][T29242] sysfs_create_link+0x5f/0xc0 [ 3390.058465][T29242] device_add+0x79a/0x1ce0 [ 3390.063231][T29242] ? devlink_add_symlinks+0x450/0x450 [ 3390.068607][T29242] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3390.074820][T29242] wiphy_register+0x1dfc/0x2900 [ 3390.079687][T29242] ? wiphy_unregister+0xbb0/0xbb0 [ 3390.084830][T29242] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3390.090961][T29242] ieee80211_register_hw+0x1b0f/0x3b00 [ 3390.096639][T29242] ? ieee80211_restart_hw+0x290/0x290 [ 3390.102035][T29242] ? debug_object_destroy+0x210/0x210 [ 3390.107427][T29242] ? memset+0x20/0x40 [ 3390.111427][T29242] ? __hrtimer_init+0x136/0x280 [ 3390.116365][T29242] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3390.122111][T29242] ? hwsim_virtio_rx_work+0x350/0x350 [ 3390.127489][T29242] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3390.133052][T29242] ? memcpy+0x39/0x60 [ 3390.137060][T29242] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3390.142261][T29242] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3390.148169][T29242] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3390.156200][T29242] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3390.163484][T29242] genl_family_rcv_msg_doit+0x228/0x320 [ 3390.169031][T29242] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3390.176811][T29242] ? ns_capable+0xde/0x100 [ 3390.181226][T29242] genl_rcv_msg+0x328/0x580 [ 3390.185736][T29242] ? genl_get_cmd+0x480/0x480 [ 3390.190412][T29242] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3390.196415][T29242] ? lock_release+0x710/0x710 [ 3390.201970][T29242] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3390.207261][T29242] netlink_rcv_skb+0x153/0x420 [ 3390.212018][T29242] ? genl_get_cmd+0x480/0x480 [ 3390.216689][T29242] ? netlink_ack+0xaa0/0xaa0 [ 3390.221294][T29242] genl_rcv+0x24/0x40 [ 3390.225276][T29242] netlink_unicast+0x533/0x7d0 [ 3390.230049][T29242] ? netlink_attachskb+0x810/0x810 [ 3390.235165][T29242] ? __phys_addr_symbol+0x2c/0x70 [ 3390.240184][T29242] ? __check_object_size+0x171/0x3f0 [ 3390.245473][T29242] netlink_sendmsg+0x856/0xd90 [ 3390.250246][T29242] ? netlink_unicast+0x7d0/0x7d0 [ 3390.255202][T29242] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3390.261298][T29242] ? netlink_unicast+0x7d0/0x7d0 [ 3390.266245][T29242] sock_sendmsg+0xcf/0x120 [ 3390.270660][T29242] ____sys_sendmsg+0x6e8/0x810 [ 3390.275432][T29242] ? kernel_sendmsg+0x50/0x50 [ 3390.280468][T29242] ? do_recvmmsg+0x6c0/0x6c0 [ 3390.285071][T29242] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3390.291069][T29242] ___sys_sendmsg+0xf3/0x170 [ 3390.295666][T29242] ? sendmsg_copy_msghdr+0x160/0x160 [ 3390.300992][T29242] ? __fget_files+0x294/0x400 [ 3390.305885][T29242] ? __fget_light+0xea/0x280 [ 3390.310493][T29242] __sys_sendmsg+0xe5/0x1b0 [ 3390.315003][T29242] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3390.320546][T29242] ? __do_sys_futex+0x2a2/0x470 [ 3390.325424][T29242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3390.331324][T29242] do_syscall_64+0x2d/0x70 [ 3390.335742][T29242] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3390.341638][T29242] RIP: 0033:0x45deb9 [ 3390.346233][T29242] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:54:13 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x34}}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:14 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x21f91300}, 0x0) [ 3390.365837][T29242] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3390.374458][T29242] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3390.383056][T29242] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3390.391640][T29242] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3390.400460][T29242] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3390.408434][T29242] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3390.507983][T29316] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3390.559576][T29293] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3390.581484][T29293] CPU: 1 PID: 29293 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3390.590269][T29293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3390.600320][T29293] Call Trace: [ 3390.603609][T29293] dump_stack+0x107/0x163 [ 3390.607947][T29293] sysfs_warn_dup.cold+0x1c/0x29 [ 3390.612898][T29293] sysfs_do_create_link_sd+0x11e/0x140 [ 3390.618368][T29293] sysfs_create_link+0x5f/0xc0 [ 3390.623132][T29293] device_add+0x79a/0x1ce0 [ 3390.627557][T29293] ? devlink_add_symlinks+0x450/0x450 [ 3390.633067][T29293] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3390.639192][T29293] wiphy_register+0x1dfc/0x2900 [ 3390.644912][T29293] ? wiphy_unregister+0xbb0/0xbb0 [ 3390.649955][T29293] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3390.657044][T29293] ieee80211_register_hw+0x1b0f/0x3b00 [ 3390.662831][T29293] ? ieee80211_restart_hw+0x290/0x290 [ 3390.668761][T29293] ? debug_object_destroy+0x210/0x210 [ 3390.674382][T29293] ? memset+0x20/0x40 [ 3390.678580][T29293] ? __hrtimer_init+0x136/0x280 [ 3390.684037][T29293] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3390.689805][T29293] ? hwsim_virtio_rx_work+0x350/0x350 [ 3390.695592][T29293] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3390.701413][T29293] ? memcpy+0x39/0x60 [ 3390.705852][T29293] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3390.711839][T29293] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3390.717765][T29293] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3390.726006][T29293] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3390.734061][T29293] genl_family_rcv_msg_doit+0x228/0x320 [ 3390.739607][T29293] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3390.747721][T29293] ? ns_capable+0xde/0x100 [ 3390.752139][T29293] genl_rcv_msg+0x328/0x580 [ 3390.756641][T29293] ? genl_get_cmd+0x480/0x480 [ 3390.762181][T29293] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3390.768093][T29293] ? lock_release+0x710/0x710 [ 3390.773417][T29293] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3390.779095][T29293] netlink_rcv_skb+0x153/0x420 [ 3390.784659][T29293] ? genl_get_cmd+0x480/0x480 [ 3390.789432][T29293] ? netlink_ack+0xaa0/0xaa0 [ 3390.794132][T29293] genl_rcv+0x24/0x40 [ 3390.798478][T29293] netlink_unicast+0x533/0x7d0 [ 3390.803256][T29293] ? netlink_attachskb+0x810/0x810 [ 3390.808963][T29293] ? __phys_addr_symbol+0x2c/0x70 [ 3390.814564][T29293] ? __check_object_size+0x171/0x3f0 [ 3390.820348][T29293] netlink_sendmsg+0x856/0xd90 [ 3390.825977][T29293] ? netlink_unicast+0x7d0/0x7d0 [ 3390.831798][T29293] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3390.837474][T29293] ? netlink_unicast+0x7d0/0x7d0 [ 3390.842769][T29293] sock_sendmsg+0xcf/0x120 [ 3390.847179][T29293] ____sys_sendmsg+0x6e8/0x810 [ 3390.851945][T29293] ? kernel_sendmsg+0x50/0x50 [ 3390.856614][T29293] ? do_recvmmsg+0x6c0/0x6c0 15:54:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x7, 0xffffff7f0e000000}, 0x0) [ 3390.861214][T29293] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3390.867199][T29293] ___sys_sendmsg+0xf3/0x170 [ 3390.871786][T29293] ? sendmsg_copy_msghdr+0x160/0x160 [ 3390.877070][T29293] ? __fget_files+0x272/0x400 [ 3390.881745][T29293] ? lock_downgrade+0x6d0/0x6d0 [ 3390.886608][T29293] ? find_held_lock+0x2d/0x110 [ 3390.891368][T29293] ? __fget_files+0x294/0x400 [ 3390.896023][T29293] ? __fget_light+0xea/0x280 [ 3390.900602][T29293] __sys_sendmsg+0xe5/0x1b0 [ 3390.905081][T29293] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3390.910084][T29293] ? __do_sys_futex+0x2a2/0x470 [ 3390.914932][T29293] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3390.920801][T29293] do_syscall_64+0x2d/0x70 [ 3390.925192][T29293] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3390.931058][T29293] RIP: 0033:0x45deb9 [ 3390.934965][T29293] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3390.954698][T29293] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3390.963089][T29293] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3390.971034][T29293] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3390.979068][T29293] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3390.987026][T29293] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3390.994973][T29293] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:14 executing program 3: socket$inet6(0xa, 0x3, 0x3a) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r0, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) ioctl$SIOCRSGL2CALL(r0, 0x89e5, &(0x7f0000000000)=@bcast) [ 3391.055249][T29318] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3391.098760][T29318] CPU: 0 PID: 29318 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3391.107638][T29318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3391.117688][T29318] Call Trace: [ 3391.120980][T29318] dump_stack+0x107/0x163 [ 3391.125321][T29318] sysfs_warn_dup.cold+0x1c/0x29 [ 3391.130275][T29318] sysfs_do_create_link_sd+0x11e/0x140 [ 3391.135750][T29318] sysfs_create_link+0x5f/0xc0 [ 3391.140521][T29318] device_add+0x79a/0x1ce0 [ 3391.146656][T29318] ? devlink_add_symlinks+0x450/0x450 [ 3391.152034][T29318] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3391.158022][T29318] wiphy_register+0x1dfc/0x2900 [ 3391.164139][T29318] ? wiphy_unregister+0xbb0/0xbb0 [ 3391.169422][T29318] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3391.175844][T29318] ieee80211_register_hw+0x1b0f/0x3b00 [ 3391.181321][T29318] ? ieee80211_restart_hw+0x290/0x290 [ 3391.186833][T29318] ? debug_object_destroy+0x210/0x210 [ 3391.192282][T29318] ? memset+0x20/0x40 [ 3391.196581][T29318] ? __hrtimer_init+0x136/0x280 [ 3391.201456][T29318] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3391.207254][T29318] ? hwsim_virtio_rx_work+0x350/0x350 [ 3391.212674][T29318] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3391.218309][T29318] ? memcpy+0x39/0x60 [ 3391.222311][T29318] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3391.228074][T29318] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3391.234557][T29318] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3391.241925][T29318] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3391.249202][T29318] genl_family_rcv_msg_doit+0x228/0x320 [ 3391.254733][T29318] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3391.262098][T29318] ? ns_capable+0xde/0x100 [ 3391.266513][T29318] genl_rcv_msg+0x328/0x580 [ 3391.271524][T29318] ? genl_get_cmd+0x480/0x480 [ 3391.276723][T29318] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3391.283166][T29318] ? lock_release+0x710/0x710 [ 3391.288868][T29318] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3391.295606][T29318] netlink_rcv_skb+0x153/0x420 [ 3391.301176][T29318] ? genl_get_cmd+0x480/0x480 [ 3391.306855][T29318] ? netlink_ack+0xaa0/0xaa0 [ 3391.311466][T29318] genl_rcv+0x24/0x40 [ 3391.315741][T29318] netlink_unicast+0x533/0x7d0 [ 3391.321182][T29318] ? netlink_attachskb+0x810/0x810 [ 3391.326650][T29318] ? __phys_addr_symbol+0x2c/0x70 [ 3391.331670][T29318] ? __check_object_size+0x171/0x3f0 [ 3391.336956][T29318] netlink_sendmsg+0x856/0xd90 [ 3391.343191][T29318] ? netlink_unicast+0x7d0/0x7d0 [ 3391.348143][T29318] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3391.354105][T29318] ? netlink_unicast+0x7d0/0x7d0 [ 3391.359424][T29318] sock_sendmsg+0xcf/0x120 [ 3391.365582][T29318] ____sys_sendmsg+0x6e8/0x810 [ 3391.370352][T29318] ? kernel_sendmsg+0x50/0x50 [ 3391.375028][T29318] ? do_recvmmsg+0x6c0/0x6c0 [ 3391.380259][T29318] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3391.387168][T29318] ___sys_sendmsg+0xf3/0x170 [ 3391.391749][T29318] ? sendmsg_copy_msghdr+0x160/0x160 [ 3391.397037][T29318] ? __fget_files+0x272/0x400 [ 3391.402153][T29318] ? lock_downgrade+0x6d0/0x6d0 [ 3391.407819][T29318] ? find_held_lock+0x2d/0x110 [ 3391.413825][T29318] ? __fget_files+0x294/0x400 [ 3391.419932][T29318] ? __fget_light+0xea/0x280 [ 3391.424750][T29318] __sys_sendmsg+0xe5/0x1b0 [ 3391.429249][T29318] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3391.435060][T29318] ? __do_sys_futex+0x2a2/0x470 [ 3391.440930][T29318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3391.446860][T29318] do_syscall_64+0x2d/0x70 [ 3391.451269][T29318] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3391.457264][T29318] RIP: 0033:0x45deb9 [ 3391.461689][T29318] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3391.481434][T29318] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3391.490721][T29318] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 15:54:15 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x90, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:15 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x97fe1300}, 0x0) [ 3391.498789][T29318] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3391.507771][T29318] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3391.516530][T29318] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3391.524493][T29318] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3391.575667][T29332] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3391.615848][T29332] CPU: 0 PID: 29332 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3391.624632][T29332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3391.634680][T29332] Call Trace: [ 3391.637977][T29332] dump_stack+0x107/0x163 [ 3391.642316][T29332] sysfs_warn_dup.cold+0x1c/0x29 [ 3391.647258][T29332] sysfs_do_create_link_sd+0x11e/0x140 [ 3391.652723][T29332] sysfs_create_link+0x5f/0xc0 [ 3391.657491][T29332] device_add+0x79a/0x1ce0 [ 3391.661917][T29332] ? devlink_add_symlinks+0x450/0x450 [ 3391.667304][T29332] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3391.673292][T29332] wiphy_register+0x1dfc/0x2900 [ 3391.678166][T29332] ? wiphy_unregister+0xbb0/0xbb0 [ 3391.683214][T29332] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3391.689300][T29332] ieee80211_register_hw+0x1b0f/0x3b00 [ 3391.694772][T29332] ? ieee80211_restart_hw+0x290/0x290 [ 3391.700130][T29332] ? debug_object_destroy+0x210/0x210 [ 3391.705576][T29332] ? memset+0x20/0x40 [ 3391.709553][T29332] ? __hrtimer_init+0x136/0x280 [ 3391.714390][T29332] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3391.720111][T29332] ? hwsim_virtio_rx_work+0x350/0x350 [ 3391.725460][T29332] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3391.730986][T29332] ? memcpy+0x39/0x60 [ 3391.734959][T29332] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3391.740070][T29332] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3391.745991][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3391.753343][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3391.760609][T29332] genl_family_rcv_msg_doit+0x228/0x320 [ 3391.766146][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3391.773499][T29332] ? ns_capable+0xde/0x100 [ 3391.777905][T29332] genl_rcv_msg+0x328/0x580 [ 3391.782392][T29332] ? genl_get_cmd+0x480/0x480 [ 3391.787055][T29332] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3391.792926][T29332] ? lock_release+0x710/0x710 [ 3391.797599][T29332] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3391.802869][T29332] netlink_rcv_skb+0x153/0x420 [ 3391.807610][T29332] ? genl_get_cmd+0x480/0x480 [ 3391.812264][T29332] ? netlink_ack+0xaa0/0xaa0 [ 3391.816842][T29332] genl_rcv+0x24/0x40 [ 3391.820826][T29332] netlink_unicast+0x533/0x7d0 [ 3391.825605][T29332] ? netlink_attachskb+0x810/0x810 [ 3391.830699][T29332] ? __phys_addr_symbol+0x2c/0x70 [ 3391.835709][T29332] ? __check_object_size+0x171/0x3f0 [ 3391.840982][T29332] netlink_sendmsg+0x856/0xd90 [ 3391.845731][T29332] ? netlink_unicast+0x7d0/0x7d0 [ 3391.850653][T29332] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3391.855918][T29332] ? netlink_unicast+0x7d0/0x7d0 [ 3391.860859][T29332] sock_sendmsg+0xcf/0x120 [ 3391.865258][T29332] ____sys_sendmsg+0x6e8/0x810 [ 3391.870004][T29332] ? kernel_sendmsg+0x50/0x50 [ 3391.874655][T29332] ? do_recvmmsg+0x6c0/0x6c0 [ 3391.879231][T29332] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3391.885198][T29332] ___sys_sendmsg+0xf3/0x170 [ 3391.889769][T29332] ? sendmsg_copy_msghdr+0x160/0x160 [ 3391.895054][T29332] ? __fget_files+0x294/0x400 [ 3391.899717][T29332] ? __fget_light+0xea/0x280 [ 3391.904293][T29332] __sys_sendmsg+0xe5/0x1b0 [ 3391.908772][T29332] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3391.913977][T29332] ? __do_sys_futex+0x2a2/0x470 [ 3391.918823][T29332] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3391.924700][T29332] do_syscall_64+0x2d/0x70 [ 3391.929106][T29332] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3391.934973][T29332] RIP: 0033:0x45deb9 [ 3391.938852][T29332] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3391.958432][T29332] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3391.966824][T29332] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3391.974772][T29332] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3391.982719][T29332] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3391.990665][T29332] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3391.998614][T29332] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3392.032519][T29361] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3392.089997][T29360] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3392.111676][T29360] CPU: 1 PID: 29360 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3392.120803][T29360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3392.130855][T29360] Call Trace: [ 3392.134147][T29360] dump_stack+0x107/0x163 [ 3392.138482][T29360] sysfs_warn_dup.cold+0x1c/0x29 [ 3392.143554][T29360] sysfs_do_create_link_sd+0x11e/0x140 [ 3392.149019][T29360] sysfs_create_link+0x5f/0xc0 [ 3392.154050][T29360] device_add+0x79a/0x1ce0 [ 3392.158529][T29360] ? devlink_add_symlinks+0x450/0x450 [ 3392.163911][T29360] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3392.169903][T29360] wiphy_register+0x1dfc/0x2900 [ 3392.174775][T29360] ? wiphy_unregister+0xbb0/0xbb0 [ 3392.180880][T29360] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3392.186996][T29360] ieee80211_register_hw+0x1b0f/0x3b00 [ 3392.192480][T29360] ? ieee80211_restart_hw+0x290/0x290 [ 3392.198341][T29360] ? debug_object_destroy+0x210/0x210 [ 3392.204626][T29360] ? memset+0x20/0x40 [ 3392.208615][T29360] ? __hrtimer_init+0x136/0x280 [ 3392.213470][T29360] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3392.219207][T29360] ? hwsim_virtio_rx_work+0x350/0x350 [ 3392.224604][T29360] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3392.231107][T29360] ? memcpy+0x39/0x60 [ 3392.235101][T29360] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3392.240213][T29360] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3392.246433][T29360] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3392.253885][T29360] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3392.261171][T29360] genl_family_rcv_msg_doit+0x228/0x320 [ 3392.266724][T29360] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3392.274108][T29360] ? ns_capable+0xde/0x100 [ 3392.278526][T29360] genl_rcv_msg+0x328/0x580 [ 3392.283031][T29360] ? genl_get_cmd+0x480/0x480 [ 3392.288196][T29360] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3392.294740][T29360] ? lock_release+0x710/0x710 [ 3392.300221][T29360] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3392.305695][T29360] netlink_rcv_skb+0x153/0x420 [ 3392.311393][T29360] ? genl_get_cmd+0x480/0x480 [ 3392.317870][T29360] ? netlink_ack+0xaa0/0xaa0 [ 3392.323153][T29360] genl_rcv+0x24/0x40 [ 3392.327520][T29360] netlink_unicast+0x533/0x7d0 [ 3392.333535][T29360] ? netlink_attachskb+0x810/0x810 [ 3392.338970][T29360] ? __phys_addr_symbol+0x2c/0x70 [ 3392.344365][T29360] ? __check_object_size+0x171/0x3f0 [ 3392.349948][T29360] netlink_sendmsg+0x856/0xd90 [ 3392.355507][T29360] ? netlink_unicast+0x7d0/0x7d0 [ 3392.361088][T29360] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3392.366463][T29360] ? netlink_unicast+0x7d0/0x7d0 [ 3392.371566][T29360] sock_sendmsg+0xcf/0x120 [ 3392.376888][T29360] ____sys_sendmsg+0x6e8/0x810 [ 3392.382009][T29360] ? kernel_sendmsg+0x50/0x50 [ 3392.387190][T29360] ? do_recvmmsg+0x6c0/0x6c0 [ 3392.392367][T29360] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3392.400931][T29360] ___sys_sendmsg+0xf3/0x170 [ 3392.406149][T29360] ? sendmsg_copy_msghdr+0x160/0x160 [ 3392.411437][T29360] ? __fget_files+0x272/0x400 [ 3392.416427][T29360] ? lock_downgrade+0x6d0/0x6d0 [ 3392.421646][T29360] ? find_held_lock+0x2d/0x110 [ 3392.426875][T29360] ? __fget_files+0x294/0x400 [ 3392.431873][T29360] ? __fget_light+0xea/0x280 [ 3392.436978][T29360] __sys_sendmsg+0xe5/0x1b0 [ 3392.442007][T29360] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3392.447284][T29360] ? __do_sys_futex+0x2a2/0x470 [ 3392.452556][T29360] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3392.460198][T29360] do_syscall_64+0x2d/0x70 [ 3392.465176][T29360] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3392.471617][T29360] RIP: 0033:0x45deb9 [ 3392.476509][T29360] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3392.496347][T29360] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3392.505449][T29360] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3392.513420][T29360] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3392.521381][T29360] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3392.529347][T29360] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3392.537889][T29360] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3392.611162][T29381] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3392.648746][T29332] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3392.668973][T29332] CPU: 1 PID: 29332 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3392.677851][T29332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3392.687882][T29332] Call Trace: [ 3392.691152][T29332] dump_stack+0x107/0x163 [ 3392.695475][T29332] sysfs_warn_dup.cold+0x1c/0x29 [ 3392.700402][T29332] sysfs_do_create_link_sd+0x11e/0x140 [ 3392.705842][T29332] sysfs_create_link+0x5f/0xc0 [ 3392.710599][T29332] device_add+0x79a/0x1ce0 [ 3392.715003][T29332] ? devlink_add_symlinks+0x450/0x450 [ 3392.720361][T29332] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3392.726323][T29332] wiphy_register+0x1dfc/0x2900 [ 3392.731155][T29332] ? wiphy_unregister+0xbb0/0xbb0 [ 3392.736163][T29332] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3392.742245][T29332] ieee80211_register_hw+0x1b0f/0x3b00 [ 3392.747717][T29332] ? ieee80211_restart_hw+0x290/0x290 [ 3392.753071][T29332] ? debug_object_destroy+0x210/0x210 [ 3392.758421][T29332] ? memset+0x20/0x40 [ 3392.762401][T29332] ? __hrtimer_init+0x136/0x280 [ 3392.767240][T29332] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3392.772946][T29332] ? hwsim_virtio_rx_work+0x350/0x350 [ 3392.778295][T29332] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3392.783816][T29332] ? memcpy+0x39/0x60 [ 3392.787798][T29332] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3392.792910][T29332] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3392.798789][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3392.806136][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3392.813400][T29332] genl_family_rcv_msg_doit+0x228/0x320 [ 3392.819031][T29332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3392.826385][T29332] ? ns_capable+0xde/0x100 [ 3392.830791][T29332] genl_rcv_msg+0x328/0x580 [ 3392.835276][T29332] ? genl_get_cmd+0x480/0x480 [ 3392.839932][T29332] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3392.845807][T29332] ? lock_release+0x710/0x710 [ 3392.850465][T29332] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3392.855824][T29332] netlink_rcv_skb+0x153/0x420 [ 3392.860590][T29332] ? genl_get_cmd+0x480/0x480 [ 3392.865252][T29332] ? netlink_ack+0xaa0/0xaa0 [ 3392.869837][T29332] genl_rcv+0x24/0x40 [ 3392.873796][T29332] netlink_unicast+0x533/0x7d0 [ 3392.878552][T29332] ? netlink_attachskb+0x810/0x810 [ 3392.883643][T29332] ? __phys_addr_symbol+0x2c/0x70 [ 3392.888645][T29332] ? __check_object_size+0x171/0x3f0 [ 3392.893918][T29332] netlink_sendmsg+0x856/0xd90 [ 3392.898670][T29332] ? netlink_unicast+0x7d0/0x7d0 [ 3392.903609][T29332] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3392.908886][T29332] ? netlink_unicast+0x7d0/0x7d0 [ 3392.913805][T29332] sock_sendmsg+0xcf/0x120 [ 3392.918218][T29332] ____sys_sendmsg+0x6e8/0x810 [ 3392.922974][T29332] ? kernel_sendmsg+0x50/0x50 [ 3392.927642][T29332] ? do_recvmmsg+0x6c0/0x6c0 [ 3392.932221][T29332] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3392.938187][T29332] ___sys_sendmsg+0xf3/0x170 [ 3392.942762][T29332] ? sendmsg_copy_msghdr+0x160/0x160 [ 3392.948045][T29332] ? __fget_files+0x294/0x400 [ 3392.952713][T29332] ? __fget_light+0xea/0x280 [ 3392.957287][T29332] __sys_sendmsg+0xe5/0x1b0 [ 3392.961771][T29332] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3392.966791][T29332] ? __do_sys_futex+0x2a2/0x470 [ 3392.971636][T29332] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3392.977525][T29332] do_syscall_64+0x2d/0x70 [ 3392.981921][T29332] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3392.987788][T29332] RIP: 0033:0x45deb9 [ 3392.991662][T29332] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3393.011255][T29332] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3393.019649][T29332] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3393.027596][T29332] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3393.035546][T29332] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3393.043496][T29332] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3393.051444][T29332] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:54:18 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xcc, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:18 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) setsockopt$sock_int(r1, 0x1, 0x2f, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x97ffffff}, 0x0) 15:54:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x22f91300}, 0x0) 15:54:18 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xa2, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x8, 0xffffff7f0e000000}, 0x0) [ 3395.184847][T29413] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3395.223398][T29413] CPU: 1 PID: 29413 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3395.232166][T29413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3395.242212][T29413] Call Trace: [ 3395.245508][T29413] dump_stack+0x107/0x163 [ 3395.249851][T29413] sysfs_warn_dup.cold+0x1c/0x29 [ 3395.254796][T29413] sysfs_do_create_link_sd+0x11e/0x140 [ 3395.256060][T29422] IPVS: ftp: loaded support on port[0] = 21 [ 3395.260282][T29413] sysfs_create_link+0x5f/0xc0 [ 3395.260303][T29413] device_add+0x79a/0x1ce0 [ 3395.260335][T29413] ? devlink_add_symlinks+0x450/0x450 [ 3395.260355][T29413] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3395.260378][T29413] wiphy_register+0x1dfc/0x2900 [ 3395.260406][T29413] ? wiphy_unregister+0xbb0/0xbb0 [ 3395.260433][T29413] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3395.260459][T29413] ieee80211_register_hw+0x1b0f/0x3b00 [ 3395.260501][T29413] ? ieee80211_restart_hw+0x290/0x290 [ 3395.260540][T29413] ? debug_object_destroy+0x210/0x210 [ 3395.260562][T29413] ? memset+0x20/0x40 [ 3395.260582][T29413] ? __hrtimer_init+0x136/0x280 [ 3395.260605][T29413] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3395.260638][T29413] ? hwsim_virtio_rx_work+0x350/0x350 [ 3395.260655][T29413] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3395.260673][T29413] ? memcpy+0x39/0x60 [ 3395.260696][T29413] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3395.260716][T29413] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3395.260747][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3395.260765][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3395.260783][T29413] genl_family_rcv_msg_doit+0x228/0x320 [ 3395.260805][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3395.260846][T29413] ? ns_capable+0xde/0x100 [ 3395.260867][T29413] genl_rcv_msg+0x328/0x580 [ 3395.260886][T29413] ? genl_get_cmd+0x480/0x480 [ 3395.260905][T29413] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3395.260926][T29413] ? lock_release+0x710/0x710 [ 3395.260944][T29413] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3395.260965][T29413] netlink_rcv_skb+0x153/0x420 [ 3395.260998][T29413] ? genl_get_cmd+0x480/0x480 [ 3395.261017][T29413] ? netlink_ack+0xaa0/0xaa0 [ 3395.261067][T29413] genl_rcv+0x24/0x40 [ 3395.261081][T29413] netlink_unicast+0x533/0x7d0 [ 3395.261104][T29413] ? netlink_attachskb+0x810/0x810 [ 3395.261124][T29413] ? __phys_addr_symbol+0x2c/0x70 [ 3395.261141][T29413] ? __check_object_size+0x171/0x3f0 [ 3395.261163][T29413] netlink_sendmsg+0x856/0xd90 [ 3395.261190][T29413] ? netlink_unicast+0x7d0/0x7d0 [ 3395.261219][T29413] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3395.261237][T29413] ? netlink_unicast+0x7d0/0x7d0 [ 3395.261254][T29413] sock_sendmsg+0xcf/0x120 [ 3395.261272][T29413] ____sys_sendmsg+0x6e8/0x810 [ 3395.261292][T29413] ? kernel_sendmsg+0x50/0x50 [ 3395.261307][T29413] ? do_recvmmsg+0x6c0/0x6c0 [ 3395.261332][T29413] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3395.261357][T29413] ___sys_sendmsg+0xf3/0x170 [ 3395.261376][T29413] ? sendmsg_copy_msghdr+0x160/0x160 [ 3395.261400][T29413] ? __fget_files+0x272/0x400 [ 3395.261420][T29413] ? lock_downgrade+0x6d0/0x6d0 [ 3395.261437][T29413] ? find_held_lock+0x2d/0x110 [ 3395.261468][T29413] ? __fget_files+0x294/0x400 [ 3395.261496][T29413] ? __fget_light+0xea/0x280 [ 3395.261522][T29413] __sys_sendmsg+0xe5/0x1b0 [ 3395.261541][T29413] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3395.261561][T29413] ? __do_sys_futex+0x2a2/0x470 [ 3395.261593][T29413] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3395.261614][T29413] do_syscall_64+0x2d/0x70 [ 3395.261626][T29413] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3395.261639][T29413] RIP: 0033:0x45deb9 [ 3395.261661][T29413] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3395.261674][T29413] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3395.261695][T29413] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3395.261709][T29413] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3395.261722][T29413] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3395.261734][T29413] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3395.261747][T29413] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3395.670504][T29416] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3395.717030][T29417] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3395.747088][T29417] CPU: 0 PID: 29417 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3395.755858][T29417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3395.765906][T29417] Call Trace: [ 3395.769194][T29417] dump_stack+0x107/0x163 [ 3395.773521][T29417] sysfs_warn_dup.cold+0x1c/0x29 [ 3395.778476][T29417] sysfs_do_create_link_sd+0x11e/0x140 [ 3395.783930][T29417] sysfs_create_link+0x5f/0xc0 [ 3395.788693][T29417] device_add+0x79a/0x1ce0 [ 3395.793112][T29417] ? devlink_add_symlinks+0x450/0x450 [ 3395.798488][T29417] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3395.804475][T29417] wiphy_register+0x1dfc/0x2900 [ 3395.809335][T29417] ? wiphy_unregister+0xbb0/0xbb0 [ 3395.814367][T29417] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3395.820454][T29417] ieee80211_register_hw+0x1b0f/0x3b00 [ 3395.826145][T29417] ? ieee80211_restart_hw+0x290/0x290 [ 3395.831781][T29417] ? debug_object_destroy+0x210/0x210 [ 3395.837844][T29417] ? memset+0x20/0x40 [ 3395.842257][T29417] ? __hrtimer_init+0x136/0x280 [ 3395.847923][T29417] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3395.853785][T29417] ? hwsim_virtio_rx_work+0x350/0x350 [ 3395.859738][T29417] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3395.865708][T29417] ? memcpy+0x39/0x60 [ 3395.869932][T29417] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3395.875688][T29417] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3395.881598][T29417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3395.889178][T29417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3395.897073][T29417] genl_family_rcv_msg_doit+0x228/0x320 [ 3395.902900][T29417] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3395.910276][T29417] ? ns_capable+0xde/0x100 [ 3395.915599][T29417] genl_rcv_msg+0x328/0x580 [ 3395.920142][T29417] ? genl_get_cmd+0x480/0x480 [ 3395.924820][T29417] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3395.931556][T29417] ? lock_release+0x710/0x710 [ 3395.936231][T29417] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3395.941811][T29417] netlink_rcv_skb+0x153/0x420 [ 3395.947388][T29417] ? genl_get_cmd+0x480/0x480 [ 3395.952064][T29417] ? netlink_ack+0xaa0/0xaa0 [ 3395.957696][T29417] genl_rcv+0x24/0x40 [ 3395.961961][T29417] netlink_unicast+0x533/0x7d0 [ 3395.966765][T29417] ? netlink_attachskb+0x810/0x810 [ 3395.972608][T29417] ? __phys_addr_symbol+0x2c/0x70 [ 3395.978513][T29417] ? __check_object_size+0x171/0x3f0 [ 3395.983799][T29417] netlink_sendmsg+0x856/0xd90 [ 3395.988546][T29417] ? netlink_unicast+0x7d0/0x7d0 [ 3395.993465][T29417] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3395.998811][T29417] ? netlink_unicast+0x7d0/0x7d0 [ 3396.003726][T29417] sock_sendmsg+0xcf/0x120 [ 3396.008122][T29417] ____sys_sendmsg+0x6e8/0x810 [ 3396.012874][T29417] ? kernel_sendmsg+0x50/0x50 [ 3396.017524][T29417] ? do_recvmmsg+0x6c0/0x6c0 [ 3396.022099][T29417] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3396.028090][T29417] ___sys_sendmsg+0xf3/0x170 [ 3396.032655][T29417] ? sendmsg_copy_msghdr+0x160/0x160 [ 3396.037934][T29417] ? __fget_files+0x294/0x400 [ 3396.042595][T29417] ? __fget_light+0xea/0x280 [ 3396.047173][T29417] __sys_sendmsg+0xe5/0x1b0 [ 3396.051655][T29417] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3396.056656][T29417] ? __do_sys_futex+0x2a2/0x470 [ 3396.061499][T29417] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3396.067458][T29417] do_syscall_64+0x2d/0x70 [ 3396.071848][T29417] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3396.077718][T29417] RIP: 0033:0x45deb9 [ 3396.081593][T29417] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3396.101261][T29417] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3396.109652][T29417] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3396.117616][T29417] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3396.125575][T29417] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3396.133528][T29417] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3396.141494][T29417] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3396.187722][T29438] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3396.200759][T29427] IPVS: ftp: loaded support on port[0] = 21 [ 3396.235131][T29420] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3396.276846][T29420] CPU: 0 PID: 29420 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3396.286158][T29420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3396.296210][T29420] Call Trace: [ 3396.299624][T29420] dump_stack+0x107/0x163 [ 3396.304756][T29420] sysfs_warn_dup.cold+0x1c/0x29 [ 3396.309748][T29420] sysfs_do_create_link_sd+0x11e/0x140 [ 3396.315580][T29420] sysfs_create_link+0x5f/0xc0 [ 3396.321435][T29420] device_add+0x79a/0x1ce0 [ 3396.326152][T29420] ? devlink_add_symlinks+0x450/0x450 [ 3396.332424][T29420] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3396.338825][T29420] wiphy_register+0x1dfc/0x2900 [ 3396.343699][T29420] ? wiphy_unregister+0xbb0/0xbb0 [ 3396.349459][T29420] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3396.355759][T29420] ieee80211_register_hw+0x1b0f/0x3b00 [ 3396.361930][T29420] ? ieee80211_restart_hw+0x290/0x290 [ 3396.367822][T29420] ? debug_object_destroy+0x210/0x210 [ 3396.373642][T29420] ? memset+0x20/0x40 [ 3396.377980][T29420] ? __hrtimer_init+0x136/0x280 [ 3396.383572][T29420] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3396.389728][T29420] ? hwsim_virtio_rx_work+0x350/0x350 [ 3396.395598][T29420] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3396.401610][T29420] ? memcpy+0x39/0x60 [ 3396.406091][T29420] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3396.411820][T29420] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3396.417748][T29420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3396.426060][T29420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3396.434112][T29420] genl_family_rcv_msg_doit+0x228/0x320 [ 3396.439757][T29420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3396.447135][T29420] ? ns_capable+0xde/0x100 [ 3396.452227][T29420] genl_rcv_msg+0x328/0x580 [ 3396.456731][T29420] ? genl_get_cmd+0x480/0x480 [ 3396.461819][T29420] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3396.467766][T29420] ? lock_release+0x710/0x710 [ 3396.473003][T29420] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3396.478596][T29420] netlink_rcv_skb+0x153/0x420 [ 3396.483921][T29420] ? genl_get_cmd+0x480/0x480 [ 3396.488595][T29420] ? netlink_ack+0xaa0/0xaa0 [ 3396.493531][T29420] genl_rcv+0x24/0x40 [ 3396.498158][T29420] netlink_unicast+0x533/0x7d0 [ 3396.503554][T29420] ? netlink_attachskb+0x810/0x810 [ 3396.509187][T29420] ? __phys_addr_symbol+0x2c/0x70 [ 3396.514576][T29420] ? __check_object_size+0x171/0x3f0 [ 3396.520173][T29420] netlink_sendmsg+0x856/0xd90 [ 3396.525640][T29420] ? netlink_unicast+0x7d0/0x7d0 [ 3396.531143][T29420] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3396.536427][T29420] ? netlink_unicast+0x7d0/0x7d0 [ 3396.541369][T29420] sock_sendmsg+0xcf/0x120 [ 3396.545791][T29420] ____sys_sendmsg+0x6e8/0x810 [ 3396.550557][T29420] ? kernel_sendmsg+0x50/0x50 [ 3396.555230][T29420] ? do_recvmmsg+0x6c0/0x6c0 [ 3396.559835][T29420] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3396.565827][T29420] ___sys_sendmsg+0xf3/0x170 [ 3396.570419][T29420] ? sendmsg_copy_msghdr+0x160/0x160 [ 3396.575712][T29420] ? __fget_files+0x272/0x400 [ 3396.580399][T29420] ? lock_downgrade+0x6d0/0x6d0 [ 3396.585253][T29420] ? find_held_lock+0x2d/0x110 [ 3396.590038][T29420] ? __fget_files+0x294/0x400 [ 3396.594743][T29420] ? __fget_light+0xea/0x280 [ 3396.599338][T29420] __sys_sendmsg+0xe5/0x1b0 [ 3396.603839][T29420] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3396.608856][T29420] ? __do_sys_futex+0x2a2/0x470 [ 3396.613719][T29420] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3396.619612][T29420] do_syscall_64+0x2d/0x70 [ 3396.624027][T29420] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3396.629910][T29420] RIP: 0033:0x45deb9 [ 3396.633810][T29420] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3396.653495][T29420] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3396.661902][T29420] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3396.669862][T29420] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3396.677824][T29420] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3396.685790][T29420] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3396.693761][T29420] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:20 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xbe, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:20 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x1c, [0x0, 0x0, 0xfffffffd, 0x4]}, 0xffffffef) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x7, 0x1, 0x45, 0x7, 0x4}, 0xc) [ 3396.831006][T29413] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3396.869480][T29413] CPU: 0 PID: 29413 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3396.878248][T29413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3396.888297][T29413] Call Trace: [ 3396.891593][T29413] dump_stack+0x107/0x163 [ 3396.895936][T29413] sysfs_warn_dup.cold+0x1c/0x29 [ 3396.900882][T29413] sysfs_do_create_link_sd+0x11e/0x140 [ 3396.906349][T29413] sysfs_create_link+0x5f/0xc0 [ 3396.911113][T29413] device_add+0x79a/0x1ce0 [ 3396.915538][T29413] ? devlink_add_symlinks+0x450/0x450 [ 3396.920915][T29413] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3396.926902][T29413] wiphy_register+0x1dfc/0x2900 [ 3396.931762][T29413] ? wiphy_unregister+0xbb0/0xbb0 [ 3396.936799][T29413] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3396.942875][T29413] ieee80211_register_hw+0x1b0f/0x3b00 [ 3396.948366][T29413] ? ieee80211_restart_hw+0x290/0x290 [ 3396.953742][T29413] ? debug_object_destroy+0x210/0x210 [ 3396.959117][T29413] ? memset+0x20/0x40 [ 3396.963104][T29413] ? __hrtimer_init+0x136/0x280 [ 3396.967961][T29413] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3396.973696][T29413] ? hwsim_virtio_rx_work+0x350/0x350 [ 3396.979070][T29413] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3396.984620][T29413] ? memcpy+0x39/0x60 [ 3396.988614][T29413] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3396.993730][T29413] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3396.999637][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3397.007013][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3397.014301][T29413] genl_family_rcv_msg_doit+0x228/0x320 [ 3397.019855][T29413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3397.027231][T29413] ? ns_capable+0xde/0x100 [ 3397.031648][T29413] genl_rcv_msg+0x328/0x580 [ 3397.036152][T29413] ? genl_get_cmd+0x480/0x480 [ 3397.040827][T29413] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3397.046725][T29413] ? lock_release+0x710/0x710 [ 3397.051401][T29413] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3397.056795][T29413] netlink_rcv_skb+0x153/0x420 [ 3397.061559][T29413] ? genl_get_cmd+0x480/0x480 [ 3397.066230][T29413] ? netlink_ack+0xaa0/0xaa0 [ 3397.070830][T29413] genl_rcv+0x24/0x40 [ 3397.074807][T29413] netlink_unicast+0x533/0x7d0 [ 3397.079586][T29413] ? netlink_attachskb+0x810/0x810 [ 3397.084693][T29413] ? __phys_addr_symbol+0x2c/0x70 [ 3397.089712][T29413] ? __check_object_size+0x171/0x3f0 [ 3397.095749][T29413] netlink_sendmsg+0x856/0xd90 [ 3397.100559][T29413] ? netlink_unicast+0x7d0/0x7d0 [ 3397.106366][T29413] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3397.112270][T29413] ? netlink_unicast+0x7d0/0x7d0 [ 3397.117319][T29413] sock_sendmsg+0xcf/0x120 [ 3397.121844][T29413] ____sys_sendmsg+0x6e8/0x810 [ 3397.126609][T29413] ? kernel_sendmsg+0x50/0x50 [ 3397.131282][T29413] ? do_recvmmsg+0x6c0/0x6c0 [ 3397.136701][T29413] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3397.142781][T29413] ___sys_sendmsg+0xf3/0x170 [ 3397.147867][T29413] ? sendmsg_copy_msghdr+0x160/0x160 [ 3397.153601][T29413] ? __fget_files+0x272/0x400 [ 3397.158291][T29413] ? lock_downgrade+0x6d0/0x6d0 [ 3397.163953][T29413] ? find_held_lock+0x2d/0x110 [ 3397.168727][T29413] ? __fget_files+0x294/0x400 [ 3397.173412][T29413] ? __fget_light+0xea/0x280 [ 3397.178023][T29413] __sys_sendmsg+0xe5/0x1b0 [ 3397.182638][T29413] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3397.187665][T29413] ? __do_sys_futex+0x2a2/0x470 [ 3397.192531][T29413] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3397.198545][T29413] do_syscall_64+0x2d/0x70 [ 3397.203064][T29413] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3397.208947][T29413] RIP: 0033:0x45deb9 [ 3397.213135][T29413] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3397.232768][T29413] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3397.241558][T29413] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3397.250228][T29413] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3397.258816][T29413] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3397.267454][T29413] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3397.276228][T29413] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:20 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x98fe1300}, 0x0) [ 3397.308309][T29476] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:54:21 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x23f91300}, 0x0) [ 3397.396133][T29435] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3397.421086][T29435] CPU: 1 PID: 29435 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3397.429952][T29435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3397.440001][T29435] Call Trace: [ 3397.443293][T29435] dump_stack+0x107/0x163 [ 3397.447624][T29435] sysfs_warn_dup.cold+0x1c/0x29 [ 3397.452563][T29435] sysfs_do_create_link_sd+0x11e/0x140 [ 3397.458023][T29435] sysfs_create_link+0x5f/0xc0 [ 3397.462852][T29435] device_add+0x79a/0x1ce0 [ 3397.467659][T29435] ? devlink_add_symlinks+0x450/0x450 [ 3397.473482][T29435] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3397.479470][T29435] wiphy_register+0x1dfc/0x2900 [ 3397.484336][T29435] ? wiphy_unregister+0xbb0/0xbb0 [ 3397.489514][T29435] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3397.495642][T29435] ieee80211_register_hw+0x1b0f/0x3b00 [ 3397.501424][T29435] ? ieee80211_restart_hw+0x290/0x290 [ 3397.506807][T29435] ? debug_object_destroy+0x210/0x210 [ 3397.512188][T29435] ? memset+0x20/0x40 [ 3397.516176][T29435] ? __hrtimer_init+0x136/0x280 [ 3397.521461][T29435] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3397.527199][T29435] ? hwsim_virtio_rx_work+0x350/0x350 [ 3397.532567][T29435] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3397.538202][T29435] ? memcpy+0x39/0x60 [ 3397.542192][T29435] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3397.547309][T29435] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3397.553651][T29435] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3397.561019][T29435] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3397.568697][T29435] genl_family_rcv_msg_doit+0x228/0x320 [ 3397.574457][T29435] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3397.581925][T29435] ? ns_capable+0xde/0x100 [ 3397.586344][T29435] genl_rcv_msg+0x328/0x580 [ 3397.590847][T29435] ? genl_get_cmd+0x480/0x480 [ 3397.595738][T29435] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3397.601787][T29435] ? lock_release+0x710/0x710 [ 3397.606456][T29435] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3397.612417][T29435] netlink_rcv_skb+0x153/0x420 [ 3397.617232][T29435] ? genl_get_cmd+0x480/0x480 [ 3397.622918][T29435] ? netlink_ack+0xaa0/0xaa0 [ 3397.627544][T29435] genl_rcv+0x24/0x40 [ 3397.631539][T29435] netlink_unicast+0x533/0x7d0 [ 3397.637121][T29435] ? netlink_attachskb+0x810/0x810 [ 3397.642498][T29435] ? __phys_addr_symbol+0x2c/0x70 [ 3397.647873][T29435] ? __check_object_size+0x171/0x3f0 [ 3397.653245][T29435] netlink_sendmsg+0x856/0xd90 [ 3397.658718][T29435] ? netlink_unicast+0x7d0/0x7d0 [ 3397.664155][T29435] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3397.669999][T29435] ? netlink_unicast+0x7d0/0x7d0 [ 3397.675430][T29435] sock_sendmsg+0xcf/0x120 [ 3397.679938][T29435] ____sys_sendmsg+0x6e8/0x810 [ 3397.685171][T29435] ? kernel_sendmsg+0x50/0x50 [ 3397.690582][T29435] ? do_recvmmsg+0x6c0/0x6c0 [ 3397.696122][T29435] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3397.702982][T29435] ___sys_sendmsg+0xf3/0x170 [ 3397.707755][T29435] ? sendmsg_copy_msghdr+0x160/0x160 [ 3397.713181][T29435] ? __fget_files+0x294/0x400 [ 3397.717878][T29435] ? __fget_light+0xea/0x280 [ 3397.722475][T29435] __sys_sendmsg+0xe5/0x1b0 [ 3397.726996][T29435] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3397.732729][T29435] ? __do_sys_futex+0x2a2/0x470 [ 3397.738023][T29435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3397.743917][T29435] do_syscall_64+0x2d/0x70 [ 3397.749084][T29435] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3397.755857][T29435] RIP: 0033:0x45deb9 [ 3397.759896][T29435] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3397.779484][T29435] RSP: 002b:00007f3bb3c50c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3397.787871][T29435] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3397.795828][T29435] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3397.803786][T29435] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3397.811731][T29435] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3397.819679][T29435] R13: 00007ffc35384ebf R14: 00007f3bb3c519c0 R15: 000000000118bfd4 [ 3397.886323][T29488] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3397.924386][T29488] CPU: 1 PID: 29488 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3397.933144][T29488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3397.943198][T29488] Call Trace: [ 3397.946490][T29488] dump_stack+0x107/0x163 [ 3397.950832][T29488] sysfs_warn_dup.cold+0x1c/0x29 [ 3397.955784][T29488] sysfs_do_create_link_sd+0x11e/0x140 [ 3397.961251][T29488] sysfs_create_link+0x5f/0xc0 [ 3397.966021][T29488] device_add+0x79a/0x1ce0 [ 3397.970451][T29488] ? devlink_add_symlinks+0x450/0x450 [ 3397.975880][T29488] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3397.981988][T29488] wiphy_register+0x1dfc/0x2900 [ 3397.986854][T29488] ? wiphy_unregister+0xbb0/0xbb0 [ 3397.991893][T29488] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3397.997964][T29488] ieee80211_register_hw+0x1b0f/0x3b00 [ 3398.003537][T29488] ? ieee80211_restart_hw+0x290/0x290 [ 3398.008916][T29488] ? debug_object_destroy+0x210/0x210 [ 3398.014296][T29488] ? memset+0x20/0x40 [ 3398.018276][T29488] ? __hrtimer_init+0x136/0x280 [ 3398.023232][T29488] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3398.028969][T29488] ? hwsim_virtio_rx_work+0x350/0x350 [ 3398.034353][T29488] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3398.039898][T29488] ? memcpy+0x39/0x60 [ 3398.043895][T29488] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3398.049009][T29488] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3398.054934][T29488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3398.062843][T29488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3398.070133][T29488] genl_family_rcv_msg_doit+0x228/0x320 [ 3398.075696][T29488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3398.083085][T29488] ? ns_capable+0xde/0x100 [ 3398.087512][T29488] genl_rcv_msg+0x328/0x580 [ 3398.092017][T29488] ? genl_get_cmd+0x480/0x480 [ 3398.096691][T29488] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3398.102586][T29488] ? lock_release+0x710/0x710 [ 3398.107522][T29488] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3398.113203][T29488] netlink_rcv_skb+0x153/0x420 [ 3398.117961][T29488] ? genl_get_cmd+0x480/0x480 [ 3398.122778][T29488] ? netlink_ack+0xaa0/0xaa0 [ 3398.127383][T29488] genl_rcv+0x24/0x40 [ 3398.131361][T29488] netlink_unicast+0x533/0x7d0 [ 3398.136138][T29488] ? netlink_attachskb+0x810/0x810 [ 3398.141257][T29488] ? __phys_addr_symbol+0x2c/0x70 [ 3398.146973][T29488] ? __check_object_size+0x171/0x3f0 [ 3398.152635][T29488] netlink_sendmsg+0x856/0xd90 [ 3398.157419][T29488] ? netlink_unicast+0x7d0/0x7d0 [ 3398.162735][T29488] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3398.168017][T29488] ? netlink_unicast+0x7d0/0x7d0 [ 3398.172948][T29488] sock_sendmsg+0xcf/0x120 [ 3398.177956][T29488] ____sys_sendmsg+0x6e8/0x810 [ 3398.183369][T29488] ? kernel_sendmsg+0x50/0x50 [ 3398.188040][T29488] ? do_recvmmsg+0x6c0/0x6c0 [ 3398.192742][T29488] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3398.198729][T29488] ___sys_sendmsg+0xf3/0x170 [ 3398.203314][T29488] ? sendmsg_copy_msghdr+0x160/0x160 [ 3398.209146][T29488] ? __fget_files+0x272/0x400 [ 3398.213820][T29488] ? lock_downgrade+0x6d0/0x6d0 [ 3398.218666][T29488] ? find_held_lock+0x2d/0x110 [ 3398.223597][T29488] ? __fget_files+0x294/0x400 [ 3398.228283][T29488] ? __fget_light+0xea/0x280 [ 3398.232914][T29488] __sys_sendmsg+0xe5/0x1b0 [ 3398.237414][T29488] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3398.242432][T29488] ? __do_sys_futex+0x2a2/0x470 [ 3398.247294][T29488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3398.253185][T29488] do_syscall_64+0x2d/0x70 [ 3398.257597][T29488] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3398.264118][T29488] RIP: 0033:0x45deb9 [ 3398.268012][T29488] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:54:21 executing program 3: r0 = socket$inet6(0xa, 0x5, 0x60) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00') setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000100)={'mangle\x00', 0x2, [{}, {}]}, 0x48) [ 3398.287606][T29488] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3398.296306][T29488] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3398.304925][T29488] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3398.312900][T29488] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3398.321324][T29488] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3398.329293][T29488] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x9, 0xffffff7f0e000000}, 0x0) [ 3398.394050][T29507] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3398.474452][T29503] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3398.503383][T29503] CPU: 0 PID: 29503 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3398.512256][T29503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3398.522303][T29503] Call Trace: [ 3398.525748][T29503] dump_stack+0x107/0x163 [ 3398.530092][T29503] sysfs_warn_dup.cold+0x1c/0x29 [ 3398.535053][T29503] sysfs_do_create_link_sd+0x11e/0x140 [ 3398.540523][T29503] sysfs_create_link+0x5f/0xc0 [ 3398.545874][T29503] device_add+0x79a/0x1ce0 [ 3398.550321][T29503] ? devlink_add_symlinks+0x450/0x450 [ 3398.555747][T29503] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3398.561741][T29503] wiphy_register+0x1dfc/0x2900 [ 3398.567002][T29503] ? wiphy_unregister+0xbb0/0xbb0 [ 3398.572450][T29503] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3398.579377][T29503] ieee80211_register_hw+0x1b0f/0x3b00 [ 3398.585853][T29503] ? ieee80211_restart_hw+0x290/0x290 [ 3398.591491][T29503] ? debug_object_destroy+0x210/0x210 [ 3398.596878][T29503] ? memset+0x20/0x40 [ 3398.600870][T29503] ? __hrtimer_init+0x136/0x280 [ 3398.605736][T29503] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3398.611480][T29503] ? hwsim_virtio_rx_work+0x350/0x350 [ 3398.616843][T29503] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3398.622365][T29503] ? memcpy+0x39/0x60 [ 3398.626325][T29503] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3398.631409][T29503] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3398.637303][T29503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3398.644664][T29503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3398.651958][T29503] genl_family_rcv_msg_doit+0x228/0x320 [ 3398.657612][T29503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3398.665020][T29503] ? ns_capable+0xde/0x100 [ 3398.669414][T29503] genl_rcv_msg+0x328/0x580 [ 3398.673889][T29503] ? genl_get_cmd+0x480/0x480 [ 3398.678538][T29503] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3398.684433][T29503] ? lock_release+0x710/0x710 [ 3398.689096][T29503] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3398.694371][T29503] netlink_rcv_skb+0x153/0x420 [ 3398.699212][T29503] ? genl_get_cmd+0x480/0x480 [ 3398.704026][T29503] ? netlink_ack+0xaa0/0xaa0 [ 3398.708619][T29503] genl_rcv+0x24/0x40 [ 3398.712586][T29503] netlink_unicast+0x533/0x7d0 [ 3398.717327][T29503] ? netlink_attachskb+0x810/0x810 [ 3398.722416][T29503] ? __phys_addr_symbol+0x2c/0x70 [ 3398.727415][T29503] ? __check_object_size+0x171/0x3f0 [ 3398.732712][T29503] netlink_sendmsg+0x856/0xd90 [ 3398.737466][T29503] ? netlink_unicast+0x7d0/0x7d0 [ 3398.742403][T29503] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3398.747670][T29503] ? netlink_unicast+0x7d0/0x7d0 [ 3398.752579][T29503] sock_sendmsg+0xcf/0x120 [ 3398.756970][T29503] ____sys_sendmsg+0x6e8/0x810 [ 3398.761709][T29503] ? kernel_sendmsg+0x50/0x50 [ 3398.766354][T29503] ? do_recvmmsg+0x6c0/0x6c0 [ 3398.770920][T29503] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3398.776879][T29503] ___sys_sendmsg+0xf3/0x170 [ 3398.781455][T29503] ? sendmsg_copy_msghdr+0x160/0x160 [ 3398.786713][T29503] ? __fget_files+0x272/0x400 [ 3398.791360][T29503] ? lock_downgrade+0x6d0/0x6d0 [ 3398.796187][T29503] ? find_held_lock+0x2d/0x110 [ 3398.800973][T29503] ? __fget_files+0x294/0x400 [ 3398.805636][T29503] ? __fget_light+0xea/0x280 [ 3398.810207][T29503] __sys_sendmsg+0xe5/0x1b0 [ 3398.814688][T29503] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3398.819685][T29503] ? __do_sys_futex+0x2a2/0x470 [ 3398.824534][T29503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3398.830403][T29503] do_syscall_64+0x2d/0x70 [ 3398.834794][T29503] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3398.840672][T29503] RIP: 0033:0x45deb9 [ 3398.844587][T29503] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3398.864168][T29503] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3398.872573][T29503] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3398.880521][T29503] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3398.888464][T29503] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3398.896406][T29503] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3398.904347][T29503] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3398.949788][T29537] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3398.971264][T29537] CPU: 1 PID: 29537 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3398.980027][T29537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3398.990318][T29537] Call Trace: [ 3398.994000][T29537] dump_stack+0x107/0x163 [ 3398.999257][T29537] sysfs_warn_dup.cold+0x1c/0x29 [ 3399.004220][T29537] sysfs_do_create_link_sd+0x11e/0x140 [ 3399.009687][T29537] sysfs_create_link+0x5f/0xc0 [ 3399.014448][T29537] device_add+0x79a/0x1ce0 [ 3399.018868][T29537] ? devlink_add_symlinks+0x450/0x450 [ 3399.024246][T29537] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3399.030233][T29537] wiphy_register+0x1dfc/0x2900 [ 3399.035103][T29537] ? wiphy_unregister+0xbb0/0xbb0 [ 3399.040158][T29537] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3399.046235][T29537] ieee80211_register_hw+0x1b0f/0x3b00 [ 3399.051711][T29537] ? ieee80211_restart_hw+0x290/0x290 [ 3399.057095][T29537] ? debug_object_destroy+0x210/0x210 [ 3399.062474][T29537] ? memset+0x20/0x40 [ 3399.066458][T29537] ? __hrtimer_init+0x136/0x280 [ 3399.071306][T29537] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3399.077043][T29537] ? hwsim_virtio_rx_work+0x350/0x350 [ 3399.082412][T29537] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3399.088028][T29537] ? memcpy+0x39/0x60 [ 3399.092655][T29537] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3399.097861][T29537] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3399.104552][T29537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3399.112285][T29537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3399.119568][T29537] genl_family_rcv_msg_doit+0x228/0x320 [ 3399.125119][T29537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3399.132501][T29537] ? ns_capable+0xde/0x100 [ 3399.136923][T29537] genl_rcv_msg+0x328/0x580 [ 3399.141430][T29537] ? genl_get_cmd+0x480/0x480 [ 3399.146472][T29537] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3399.152371][T29537] ? lock_release+0x710/0x710 [ 3399.157048][T29537] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3399.162526][T29537] netlink_rcv_skb+0x153/0x420 [ 3399.167284][T29537] ? genl_get_cmd+0x480/0x480 [ 3399.171954][T29537] ? netlink_ack+0xaa0/0xaa0 [ 3399.176555][T29537] genl_rcv+0x24/0x40 [ 3399.180530][T29537] netlink_unicast+0x533/0x7d0 [ 3399.185294][T29537] ? netlink_attachskb+0x810/0x810 [ 3399.191208][T29537] ? __phys_addr_symbol+0x2c/0x70 [ 3399.196225][T29537] ? __check_object_size+0x171/0x3f0 [ 3399.201512][T29537] netlink_sendmsg+0x856/0xd90 [ 3399.206278][T29537] ? netlink_unicast+0x7d0/0x7d0 [ 3399.211227][T29537] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3399.216509][T29537] ? netlink_unicast+0x7d0/0x7d0 [ 3399.221454][T29537] sock_sendmsg+0xcf/0x120 [ 3399.225871][T29537] ____sys_sendmsg+0x6e8/0x810 [ 3399.230642][T29537] ? kernel_sendmsg+0x50/0x50 [ 3399.235445][T29537] ? do_recvmmsg+0x6c0/0x6c0 [ 3399.240040][T29537] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3399.246038][T29537] ___sys_sendmsg+0xf3/0x170 [ 3399.250627][T29537] ? sendmsg_copy_msghdr+0x160/0x160 [ 3399.255916][T29537] ? __fget_files+0x272/0x400 [ 3399.260592][T29537] ? lock_downgrade+0x6d0/0x6d0 [ 3399.265449][T29537] ? find_held_lock+0x2d/0x110 [ 3399.270234][T29537] ? __fget_files+0x294/0x400 [ 3399.275139][T29537] ? __fget_light+0xea/0x280 [ 3399.279734][T29537] __sys_sendmsg+0xe5/0x1b0 [ 3399.284233][T29537] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3399.289253][T29537] ? __do_sys_futex+0x2a2/0x470 [ 3399.295444][T29537] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3399.301351][T29537] do_syscall_64+0x2d/0x70 [ 3399.305775][T29537] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3399.311673][T29537] RIP: 0033:0x45deb9 [ 3399.315576][T29537] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3399.335303][T29537] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3399.343721][T29537] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3399.351685][T29537] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3399.359651][T29537] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3399.367620][T29537] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3399.375586][T29537] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:54:25 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xcd, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x99fe1300}, 0x0) 15:54:25 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xd2, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x24f91300}, 0x0) 15:54:25 executing program 3: setsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000000)=0x9, 0x4) r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}}, 0x5c) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040), &(0x7f0000000100)=0x4) 15:54:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xa, 0xffffff7f0e000000}, 0x0) [ 3401.536048][T29587] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3401.548149][T29587] CPU: 0 PID: 29587 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3401.556914][T29587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3401.566968][T29587] Call Trace: [ 3401.570269][T29587] dump_stack+0x107/0x163 [ 3401.574616][T29587] sysfs_warn_dup.cold+0x1c/0x29 [ 3401.579569][T29587] sysfs_do_create_link_sd+0x11e/0x140 [ 3401.585056][T29587] sysfs_create_link+0x5f/0xc0 [ 3401.589830][T29587] device_add+0x79a/0x1ce0 [ 3401.594357][T29587] ? devlink_add_symlinks+0x450/0x450 [ 3401.599739][T29587] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3401.605754][T29587] wiphy_register+0x1dfc/0x2900 [ 3401.610784][T29587] ? wiphy_unregister+0xbb0/0xbb0 [ 3401.616657][T29587] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3401.622824][T29587] ieee80211_register_hw+0x1b0f/0x3b00 [ 3401.628298][T29587] ? ieee80211_restart_hw+0x290/0x290 [ 3401.634251][T29587] ? debug_object_destroy+0x210/0x210 [ 3401.640537][T29587] ? memset+0x20/0x40 [ 3401.645343][T29587] ? __hrtimer_init+0x136/0x280 [ 3401.650210][T29587] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3401.655948][T29587] ? hwsim_virtio_rx_work+0x350/0x350 [ 3401.661320][T29587] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3401.666866][T29587] ? memcpy+0x39/0x60 [ 3401.670858][T29587] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3401.675981][T29587] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3401.681896][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3401.689264][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3401.696576][T29587] genl_family_rcv_msg_doit+0x228/0x320 [ 3401.702122][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3401.709517][T29587] ? ns_capable+0xde/0x100 [ 3401.714133][T29587] genl_rcv_msg+0x328/0x580 [ 3401.718638][T29587] ? genl_get_cmd+0x480/0x480 [ 3401.721555][T29598] IPVS: ftp: loaded support on port[0] = 21 [ 3401.723305][T29587] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3401.723325][T29587] ? lock_release+0x710/0x710 [ 3401.723340][T29587] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3401.723362][T29587] netlink_rcv_skb+0x153/0x420 [ 3401.750433][T29587] ? genl_get_cmd+0x480/0x480 [ 3401.756124][T29587] ? netlink_ack+0xaa0/0xaa0 [ 3401.761177][T29587] genl_rcv+0x24/0x40 [ 3401.765410][T29587] netlink_unicast+0x533/0x7d0 [ 3401.770181][T29587] ? netlink_attachskb+0x810/0x810 [ 3401.775708][T29587] ? __phys_addr_symbol+0x2c/0x70 [ 3401.781357][T29587] ? __check_object_size+0x171/0x3f0 [ 3401.787073][T29587] netlink_sendmsg+0x856/0xd90 [ 3401.791840][T29587] ? netlink_unicast+0x7d0/0x7d0 [ 3401.796791][T29587] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3401.802081][T29587] ? netlink_unicast+0x7d0/0x7d0 [ 3401.807018][T29587] sock_sendmsg+0xcf/0x120 [ 3401.811431][T29587] ____sys_sendmsg+0x6e8/0x810 [ 3401.816192][T29587] ? kernel_sendmsg+0x50/0x50 [ 3401.821639][T29587] ? do_recvmmsg+0x6c0/0x6c0 [ 3401.826234][T29587] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3401.832227][T29587] ___sys_sendmsg+0xf3/0x170 15:54:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x25f91300}, 0x0) [ 3401.836847][T29587] ? sendmsg_copy_msghdr+0x160/0x160 [ 3401.842778][T29587] ? __fget_files+0x272/0x400 [ 3401.847456][T29587] ? lock_downgrade+0x6d0/0x6d0 [ 3401.852917][T29587] ? find_held_lock+0x2d/0x110 [ 3401.858167][T29587] ? __fget_files+0x294/0x400 [ 3401.862850][T29587] ? __fget_light+0xea/0x280 [ 3401.868254][T29587] __sys_sendmsg+0xe5/0x1b0 [ 3401.872754][T29587] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3401.877775][T29587] ? __do_sys_futex+0x2a2/0x470 [ 3401.882640][T29587] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3401.888527][T29587] do_syscall_64+0x2d/0x70 [ 3401.892968][T29587] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3401.898832][T29587] RIP: 0033:0x45deb9 [ 3401.902712][T29587] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3401.922301][T29587] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3401.930701][T29587] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3401.938647][T29587] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3401.946598][T29587] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3401.954575][T29587] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3401.962543][T29587] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3401.989693][T29597] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3402.052883][T29588] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3402.082679][T29588] CPU: 0 PID: 29588 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3402.091544][T29588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 15:54:25 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r0, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x208b402}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="00010a0100020900010073790300000000000900010073797a3100"/41], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x20044050) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r1, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) tee(r1, r0, 0x1ff, 0x3) r2 = socket$inet6(0xa, 0x3, 0x3a) r3 = socket(0x1d, 0x1, 0x8001) sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000003b40)={&(0x7f0000003a80)={0x10, 0x0, 0x0, 0x4900400e}, 0xc, &(0x7f0000003b00)={&(0x7f0000003ac0)={0x38, 0x0, 0x20, 0x70bd2d, 0x25dfdbfb, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0xfacd}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x1}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @local}]}, 0x38}, 0x1, 0x0, 0x0, 0x40141}, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3402.101588][T29588] Call Trace: [ 3402.104875][T29588] dump_stack+0x107/0x163 [ 3402.109215][T29588] sysfs_warn_dup.cold+0x1c/0x29 [ 3402.114140][T29588] sysfs_do_create_link_sd+0x11e/0x140 [ 3402.119627][T29588] sysfs_create_link+0x5f/0xc0 [ 3402.124385][T29588] device_add+0x79a/0x1ce0 [ 3402.128814][T29588] ? devlink_add_symlinks+0x450/0x450 [ 3402.134301][T29588] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3402.140296][T29588] wiphy_register+0x1dfc/0x2900 [ 3402.145168][T29588] ? wiphy_unregister+0xbb0/0xbb0 [ 3402.150196][T29588] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3402.156244][T29588] ieee80211_register_hw+0x1b0f/0x3b00 [ 3402.161692][T29588] ? ieee80211_restart_hw+0x290/0x290 [ 3402.167043][T29588] ? debug_object_destroy+0x210/0x210 [ 3402.172496][T29588] ? memset+0x20/0x40 [ 3402.176457][T29588] ? __hrtimer_init+0x136/0x280 [ 3402.181302][T29588] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3402.187142][T29588] ? hwsim_virtio_rx_work+0x350/0x350 [ 3402.192503][T29588] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3402.198042][T29588] ? memcpy+0x39/0x60 [ 3402.202015][T29588] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3402.207101][T29588] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3402.212977][T29588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3402.220325][T29588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3402.227610][T29588] genl_family_rcv_msg_doit+0x228/0x320 [ 3402.233157][T29588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3402.240519][T29588] ? ns_capable+0xde/0x100 [ 3402.244935][T29588] genl_rcv_msg+0x328/0x580 [ 3402.249429][T29588] ? genl_get_cmd+0x480/0x480 [ 3402.254089][T29588] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3402.259985][T29588] ? lock_release+0x710/0x710 [ 3402.264647][T29588] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3402.269924][T29588] netlink_rcv_skb+0x153/0x420 [ 3402.274673][T29588] ? genl_get_cmd+0x480/0x480 [ 3402.279323][T29588] ? netlink_ack+0xaa0/0xaa0 [ 3402.283897][T29588] genl_rcv+0x24/0x40 [ 3402.287853][T29588] netlink_unicast+0x533/0x7d0 [ 3402.292595][T29588] ? netlink_attachskb+0x810/0x810 [ 3402.297691][T29588] ? __phys_addr_symbol+0x2c/0x70 [ 3402.302699][T29588] ? __check_object_size+0x171/0x3f0 [ 3402.307980][T29588] netlink_sendmsg+0x856/0xd90 [ 3402.312744][T29588] ? netlink_unicast+0x7d0/0x7d0 [ 3402.317716][T29588] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3402.323006][T29588] ? netlink_unicast+0x7d0/0x7d0 [ 3402.327942][T29588] sock_sendmsg+0xcf/0x120 [ 3402.332358][T29588] ____sys_sendmsg+0x6e8/0x810 [ 3402.337111][T29588] ? kernel_sendmsg+0x50/0x50 [ 3402.341775][T29588] ? do_recvmmsg+0x6c0/0x6c0 [ 3402.346346][T29588] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3402.352301][T29588] ___sys_sendmsg+0xf3/0x170 [ 3402.356884][T29588] ? sendmsg_copy_msghdr+0x160/0x160 [ 3402.362169][T29588] ? __fget_files+0x272/0x400 [ 3402.366840][T29588] ? lock_downgrade+0x6d0/0x6d0 [ 3402.371679][T29588] ? find_held_lock+0x2d/0x110 [ 3402.376423][T29588] ? __fget_files+0x294/0x400 [ 3402.381168][T29588] ? __fget_light+0xea/0x280 [ 3402.385738][T29588] __sys_sendmsg+0xe5/0x1b0 [ 3402.390225][T29588] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3402.395230][T29588] ? __do_sys_futex+0x2a2/0x470 [ 3402.400077][T29588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3402.405958][T29588] do_syscall_64+0x2d/0x70 [ 3402.410371][T29588] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3402.416260][T29588] RIP: 0033:0x45deb9 [ 3402.420152][T29588] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3402.439781][T29588] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3402.448176][T29588] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3402.456130][T29588] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3402.464078][T29588] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3402.472027][T29588] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3402.479972][T29588] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:26 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xdc, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3402.523915][T29600] IPVS: ftp: loaded support on port[0] = 21 [ 3402.542664][T29603] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3402.602939][T29603] CPU: 1 PID: 29603 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3402.611708][T29603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3402.621938][T29603] Call Trace: [ 3402.625841][T29603] dump_stack+0x107/0x163 [ 3402.630176][T29603] sysfs_warn_dup.cold+0x1c/0x29 [ 3402.635123][T29603] sysfs_do_create_link_sd+0x11e/0x140 [ 3402.640604][T29603] sysfs_create_link+0x5f/0xc0 [ 3402.645376][T29603] device_add+0x79a/0x1ce0 [ 3402.649800][T29603] ? devlink_add_symlinks+0x450/0x450 [ 3402.655176][T29603] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3402.661171][T29603] wiphy_register+0x1dfc/0x2900 [ 3402.666377][T29603] ? wiphy_unregister+0xbb0/0xbb0 [ 3402.671628][T29603] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3402.677704][T29603] ieee80211_register_hw+0x1b0f/0x3b00 [ 3402.683184][T29603] ? ieee80211_restart_hw+0x290/0x290 [ 3402.688572][T29603] ? debug_object_destroy+0x210/0x210 [ 3402.693946][T29603] ? memset+0x20/0x40 [ 3402.697930][T29603] ? __hrtimer_init+0x136/0x280 [ 3402.702784][T29603] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3402.708519][T29603] ? hwsim_virtio_rx_work+0x350/0x350 [ 3402.713978][T29603] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3402.719518][T29603] ? memcpy+0x39/0x60 [ 3402.723720][T29603] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3402.729015][T29603] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3402.734944][T29603] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3402.742314][T29603] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3402.749596][T29603] genl_family_rcv_msg_doit+0x228/0x320 [ 3402.755250][T29603] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3402.762632][T29603] ? ns_capable+0xde/0x100 [ 3402.767834][T29603] genl_rcv_msg+0x328/0x580 [ 3402.772623][T29603] ? genl_get_cmd+0x480/0x480 [ 3402.777296][T29603] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3402.783184][T29603] ? lock_release+0x710/0x710 [ 3402.787852][T29603] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3402.793141][T29603] netlink_rcv_skb+0x153/0x420 [ 3402.797905][T29603] ? genl_get_cmd+0x480/0x480 [ 3402.802586][T29603] ? netlink_ack+0xaa0/0xaa0 [ 3402.807188][T29603] genl_rcv+0x24/0x40 [ 3402.811161][T29603] netlink_unicast+0x533/0x7d0 [ 3402.816454][T29603] ? netlink_attachskb+0x810/0x810 [ 3402.822380][T29603] ? __phys_addr_symbol+0x2c/0x70 [ 3402.827397][T29603] ? __check_object_size+0x171/0x3f0 [ 3402.832676][T29603] netlink_sendmsg+0x856/0xd90 [ 3402.838621][T29603] ? netlink_unicast+0x7d0/0x7d0 [ 3402.843564][T29603] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3402.848842][T29603] ? netlink_unicast+0x7d0/0x7d0 [ 3402.853773][T29603] sock_sendmsg+0xcf/0x120 [ 3402.858183][T29603] ____sys_sendmsg+0x6e8/0x810 [ 3402.862937][T29603] ? kernel_sendmsg+0x50/0x50 [ 3402.867604][T29603] ? do_recvmmsg+0x6c0/0x6c0 [ 3402.872209][T29603] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3402.878186][T29603] ___sys_sendmsg+0xf3/0x170 [ 3402.882759][T29603] ? sendmsg_copy_msghdr+0x160/0x160 [ 3402.888040][T29603] ? __fget_files+0x272/0x400 [ 3402.892709][T29603] ? lock_downgrade+0x6d0/0x6d0 [ 3402.897887][T29603] ? find_held_lock+0x2d/0x110 [ 3402.902699][T29603] ? __fget_files+0x294/0x400 [ 3402.907384][T29603] ? __fget_light+0xea/0x280 [ 3402.912798][T29603] __sys_sendmsg+0xe5/0x1b0 [ 3402.917995][T29603] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3402.923058][T29603] ? __do_sys_futex+0x2a2/0x470 [ 3402.927922][T29603] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3402.933808][T29603] do_syscall_64+0x2d/0x70 [ 3402.938221][T29603] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3402.944105][T29603] RIP: 0033:0x45deb9 [ 3402.947993][T29603] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3402.967585][T29603] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3402.975994][T29603] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3402.984273][T29603] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3402.992803][T29603] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:54:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9afe1300}, 0x0) [ 3403.001712][T29603] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3403.009683][T29603] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x26f91300}, 0x0) 15:54:26 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000040), &(0x7f0000000100)=0x30) setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, &(0x7f0000000000)=0x80000000, 0x4) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x80, 0xfff, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, [0x0, 0x0, 0x0, 0xffffffff]}, 0x5c) [ 3403.201390][T29631] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3403.271878][T29587] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3403.283999][T29587] CPU: 0 PID: 29587 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3403.292770][T29587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3403.302826][T29587] Call Trace: [ 3403.306134][T29587] dump_stack+0x107/0x163 [ 3403.310480][T29587] sysfs_warn_dup.cold+0x1c/0x29 [ 3403.315797][T29587] sysfs_do_create_link_sd+0x11e/0x140 [ 3403.321880][T29587] sysfs_create_link+0x5f/0xc0 [ 3403.326655][T29587] device_add+0x79a/0x1ce0 [ 3403.331083][T29587] ? devlink_add_symlinks+0x450/0x450 [ 3403.337211][T29587] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3403.343427][T29587] wiphy_register+0x1dfc/0x2900 [ 3403.349045][T29587] ? wiphy_unregister+0xbb0/0xbb0 [ 3403.354480][T29587] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3403.360554][T29587] ieee80211_register_hw+0x1b0f/0x3b00 [ 3403.366120][T29587] ? ieee80211_restart_hw+0x290/0x290 [ 3403.371499][T29587] ? debug_object_destroy+0x210/0x210 [ 3403.376956][T29587] ? memset+0x20/0x40 [ 3403.381132][T29587] ? __hrtimer_init+0x136/0x280 [ 3403.386762][T29587] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3403.392499][T29587] ? hwsim_virtio_rx_work+0x350/0x350 [ 3403.399046][T29587] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3403.404801][T29587] ? memcpy+0x39/0x60 [ 3403.409154][T29587] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3403.414591][T29587] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3403.420627][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3403.428798][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3403.436085][T29587] genl_family_rcv_msg_doit+0x228/0x320 [ 3403.441634][T29587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3403.449022][T29587] ? ns_capable+0xde/0x100 [ 3403.454095][T29587] genl_rcv_msg+0x328/0x580 [ 3403.458600][T29587] ? genl_get_cmd+0x480/0x480 [ 3403.463848][T29587] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3403.470510][T29587] ? lock_release+0x710/0x710 [ 3403.476049][T29587] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3403.481680][T29587] netlink_rcv_skb+0x153/0x420 [ 3403.487037][T29587] ? genl_get_cmd+0x480/0x480 [ 3403.492199][T29587] ? netlink_ack+0xaa0/0xaa0 [ 3403.497610][T29587] genl_rcv+0x24/0x40 [ 3403.501967][T29587] netlink_unicast+0x533/0x7d0 [ 3403.507565][T29587] ? netlink_attachskb+0x810/0x810 [ 3403.513088][T29587] ? __phys_addr_symbol+0x2c/0x70 [ 3403.518797][T29587] ? __check_object_size+0x171/0x3f0 [ 3403.524470][T29587] netlink_sendmsg+0x856/0xd90 [ 3403.529818][T29587] ? netlink_unicast+0x7d0/0x7d0 [ 3403.535074][T29587] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3403.540875][T29587] ? netlink_unicast+0x7d0/0x7d0 [ 3403.546411][T29587] sock_sendmsg+0xcf/0x120 [ 3403.550824][T29587] ____sys_sendmsg+0x6e8/0x810 [ 3403.555792][T29587] ? kernel_sendmsg+0x50/0x50 [ 3403.561067][T29587] ? do_recvmmsg+0x6c0/0x6c0 [ 3403.566586][T29587] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3403.573207][T29587] ___sys_sendmsg+0xf3/0x170 [ 3403.577832][T29587] ? sendmsg_copy_msghdr+0x160/0x160 [ 3403.583223][T29587] ? __fget_files+0x272/0x400 [ 3403.588631][T29587] ? lock_downgrade+0x6d0/0x6d0 [ 3403.593949][T29587] ? find_held_lock+0x2d/0x110 [ 3403.599583][T29587] ? __fget_files+0x294/0x400 [ 3403.605202][T29587] ? __fget_light+0xea/0x280 [ 3403.610686][T29587] __sys_sendmsg+0xe5/0x1b0 [ 3403.615194][T29587] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3403.620663][T29587] ? __do_sys_futex+0x2a2/0x470 [ 3403.625534][T29587] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3403.631942][T29587] do_syscall_64+0x2d/0x70 [ 3403.636441][T29587] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3403.642402][T29587] RIP: 0033:0x45deb9 [ 3403.646697][T29587] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3403.666628][T29587] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3403.675403][T29587] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3403.684120][T29587] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3403.692613][T29587] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3403.701039][T29587] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3403.709575][T29587] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3403.789845][T29633] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3403.813959][T29633] CPU: 1 PID: 29633 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3403.822738][T29633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3403.832788][T29633] Call Trace: [ 3403.836085][T29633] dump_stack+0x107/0x163 [ 3403.840427][T29633] sysfs_warn_dup.cold+0x1c/0x29 [ 3403.845375][T29633] sysfs_do_create_link_sd+0x11e/0x140 [ 3403.850843][T29633] sysfs_create_link+0x5f/0xc0 [ 3403.855611][T29633] device_add+0x79a/0x1ce0 [ 3403.860046][T29633] ? devlink_add_symlinks+0x450/0x450 [ 3403.865429][T29633] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3403.871424][T29633] wiphy_register+0x1dfc/0x2900 [ 3403.876289][T29633] ? wiphy_unregister+0xbb0/0xbb0 [ 3403.881323][T29633] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3403.887504][T29633] ieee80211_register_hw+0x1b0f/0x3b00 [ 3403.892985][T29633] ? ieee80211_restart_hw+0x290/0x290 [ 3403.898363][T29633] ? debug_object_destroy+0x210/0x210 [ 3403.903744][T29633] ? memset+0x20/0x40 [ 3403.907734][T29633] ? __hrtimer_init+0x136/0x280 [ 3403.912586][T29633] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3403.918321][T29633] ? hwsim_virtio_rx_work+0x350/0x350 [ 3403.923689][T29633] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3403.929235][T29633] ? memcpy+0x39/0x60 [ 3403.933229][T29633] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3403.938341][T29633] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3403.944242][T29633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3403.951603][T29633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3403.958889][T29633] genl_family_rcv_msg_doit+0x228/0x320 [ 3403.964439][T29633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3403.971817][T29633] ? ns_capable+0xde/0x100 [ 3403.976254][T29633] genl_rcv_msg+0x328/0x580 [ 3403.980748][T29633] ? genl_get_cmd+0x480/0x480 [ 3403.985420][T29633] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3403.991296][T29633] ? lock_release+0x710/0x710 [ 3403.995959][T29633] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3404.001230][T29633] netlink_rcv_skb+0x153/0x420 [ 3404.005971][T29633] ? genl_get_cmd+0x480/0x480 [ 3404.010639][T29633] ? netlink_ack+0xaa0/0xaa0 [ 3404.015251][T29633] genl_rcv+0x24/0x40 [ 3404.019219][T29633] netlink_unicast+0x533/0x7d0 [ 3404.023977][T29633] ? netlink_attachskb+0x810/0x810 [ 3404.029075][T29633] ? __phys_addr_symbol+0x2c/0x70 [ 3404.034071][T29633] ? __check_object_size+0x171/0x3f0 [ 3404.039353][T29633] netlink_sendmsg+0x856/0xd90 [ 3404.044096][T29633] ? netlink_unicast+0x7d0/0x7d0 [ 3404.049016][T29633] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3404.054288][T29633] ? netlink_unicast+0x7d0/0x7d0 [ 3404.059208][T29633] sock_sendmsg+0xcf/0x120 [ 3404.063613][T29633] ____sys_sendmsg+0x6e8/0x810 [ 3404.068373][T29633] ? kernel_sendmsg+0x50/0x50 [ 3404.073044][T29633] ? do_recvmmsg+0x6c0/0x6c0 [ 3404.077625][T29633] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3404.083590][T29633] ___sys_sendmsg+0xf3/0x170 [ 3404.088189][T29633] ? sendmsg_copy_msghdr+0x160/0x160 [ 3404.093453][T29633] ? __fget_files+0x272/0x400 [ 3404.098110][T29633] ? lock_downgrade+0x6d0/0x6d0 [ 3404.102937][T29633] ? find_held_lock+0x2d/0x110 [ 3404.107701][T29633] ? __fget_files+0x294/0x400 [ 3404.112368][T29633] ? __fget_light+0xea/0x280 [ 3404.116951][T29633] __sys_sendmsg+0xe5/0x1b0 [ 3404.121437][T29633] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3404.126448][T29633] ? __do_sys_futex+0x2a2/0x470 [ 3404.131344][T29633] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3404.137249][T29633] do_syscall_64+0x2d/0x70 [ 3404.141664][T29633] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3404.147543][T29633] RIP: 0033:0x45deb9 [ 3404.151440][T29633] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3404.171024][T29633] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3404.179412][T29633] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3404.187359][T29633] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3404.195315][T29633] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3404.203272][T29633] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3404.211218][T29633] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3404.228932][T29631] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3404.279061][T29656] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3404.322935][T29656] CPU: 1 PID: 29656 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3404.331723][T29656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3404.341779][T29656] Call Trace: [ 3404.345093][T29656] dump_stack+0x107/0x163 [ 3404.349433][T29656] sysfs_warn_dup.cold+0x1c/0x29 [ 3404.354376][T29656] sysfs_do_create_link_sd+0x11e/0x140 [ 3404.359842][T29656] sysfs_create_link+0x5f/0xc0 [ 3404.364605][T29656] device_add+0x79a/0x1ce0 [ 3404.369023][T29656] ? devlink_add_symlinks+0x450/0x450 [ 3404.374402][T29656] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3404.380401][T29656] wiphy_register+0x1dfc/0x2900 [ 3404.385279][T29656] ? wiphy_unregister+0xbb0/0xbb0 [ 3404.390322][T29656] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3404.396402][T29656] ieee80211_register_hw+0x1b0f/0x3b00 [ 3404.401879][T29656] ? ieee80211_restart_hw+0x290/0x290 [ 3404.407253][T29656] ? debug_object_destroy+0x210/0x210 [ 3404.412628][T29656] ? memset+0x20/0x40 [ 3404.416612][T29656] ? __hrtimer_init+0x136/0x280 [ 3404.421470][T29656] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3404.427215][T29656] ? hwsim_virtio_rx_work+0x350/0x350 [ 3404.433305][T29656] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3404.438869][T29656] ? memcpy+0x39/0x60 [ 3404.443425][T29656] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3404.448539][T29656] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3404.454440][T29656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3404.462520][T29656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3404.470239][T29656] genl_family_rcv_msg_doit+0x228/0x320 [ 3404.475788][T29656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3404.483575][T29656] ? ns_capable+0xde/0x100 [ 3404.488003][T29656] genl_rcv_msg+0x328/0x580 [ 3404.492843][T29656] ? genl_get_cmd+0x480/0x480 [ 3404.497515][T29656] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3404.503888][T29656] ? lock_release+0x710/0x710 [ 3404.508559][T29656] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3404.514098][T29656] netlink_rcv_skb+0x153/0x420 [ 3404.518857][T29656] ? genl_get_cmd+0x480/0x480 [ 3404.523830][T29656] ? netlink_ack+0xaa0/0xaa0 [ 3404.528432][T29656] genl_rcv+0x24/0x40 [ 3404.532759][T29656] netlink_unicast+0x533/0x7d0 [ 3404.537522][T29656] ? netlink_attachskb+0x810/0x810 [ 3404.542631][T29656] ? __phys_addr_symbol+0x2c/0x70 [ 3404.547663][T29656] ? __check_object_size+0x171/0x3f0 [ 3404.552946][T29656] netlink_sendmsg+0x856/0xd90 [ 3404.557712][T29656] ? netlink_unicast+0x7d0/0x7d0 [ 3404.562667][T29656] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3404.567940][T29656] ? netlink_unicast+0x7d0/0x7d0 [ 3404.573116][T29656] sock_sendmsg+0xcf/0x120 [ 3404.577532][T29656] ____sys_sendmsg+0x6e8/0x810 [ 3404.582295][T29656] ? kernel_sendmsg+0x50/0x50 [ 3404.586963][T29656] ? do_recvmmsg+0x6c0/0x6c0 [ 3404.591643][T29656] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3404.597629][T29656] ___sys_sendmsg+0xf3/0x170 [ 3404.602232][T29656] ? sendmsg_copy_msghdr+0x160/0x160 [ 3404.607544][T29656] ? __fget_files+0x272/0x400 [ 3404.612322][T29656] ? lock_downgrade+0x6d0/0x6d0 [ 3404.617172][T29656] ? find_held_lock+0x2d/0x110 [ 3404.622383][T29656] ? __fget_files+0x294/0x400 [ 3404.627071][T29656] ? __fget_light+0xea/0x280 [ 3404.631668][T29656] __sys_sendmsg+0xe5/0x1b0 [ 3404.636374][T29656] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3404.641509][T29656] ? __do_sys_futex+0x2a2/0x470 [ 3404.646389][T29656] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3404.652680][T29656] do_syscall_64+0x2d/0x70 [ 3404.657091][T29656] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3404.663056][T29656] RIP: 0033:0x45deb9 [ 3404.666945][T29656] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3404.686542][T29656] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3404.695535][T29656] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3404.703865][T29656] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3404.712240][T29656] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3404.720749][T29656] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3404.729505][T29656] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:30 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xc, 0xffffff7f0e000000}, 0x0) 15:54:30 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) recvmmsg(r0, &(0x7f0000007800)=[{{&(0x7f0000000180)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000200)=""/185, 0xb9}, {&(0x7f0000000040)=""/49, 0x31}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/253, 0xfd}], 0x4, &(0x7f00000013c0)=""/200, 0xc8}, 0x1}, {{&(0x7f00000014c0)=@in={0x2, 0x0, @local}, 0x80, &(0x7f0000001880)=[{&(0x7f0000001540)=""/156, 0x9c}, {&(0x7f0000001600)=""/195, 0xc3}, {&(0x7f0000001700)=""/254, 0xfe}, {&(0x7f0000001800)=""/31, 0x1f}, {&(0x7f0000001840)=""/53, 0x35}], 0x5, &(0x7f0000001900)=""/47, 0x2f}}, {{&(0x7f0000001940)=@nfc_llcp, 0x80, &(0x7f0000001f00)=[{&(0x7f00000019c0)=""/56, 0x38}, {&(0x7f0000001a00)=""/96, 0x60}, {&(0x7f0000001a80)=""/178, 0xb2}, {&(0x7f0000001b40)=""/229, 0xe5}, {&(0x7f0000001c40)=""/250, 0xfa}, {&(0x7f0000001d40)=""/144, 0x90}, {&(0x7f0000001e00)=""/16, 0x10}, {&(0x7f0000001e40)=""/192, 0xc0}], 0x8}, 0x80000000}, {{&(0x7f0000001f80)=@pptp={0x18, 0x2, {0x0, @private}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002000)=""/33, 0x21}, {&(0x7f0000002040)=""/243, 0xf3}, {&(0x7f0000002140)=""/188, 0xbc}, {&(0x7f0000002200)=""/75, 0x4b}, {&(0x7f0000002280)=""/148, 0x94}], 0x5}, 0x5}, {{&(0x7f00000023c0)=@hci, 0x80, &(0x7f0000003640)=[{&(0x7f0000002440)=""/60, 0x3c}, {&(0x7f0000002480)=""/168, 0xa8}, {&(0x7f0000002540)=""/81, 0x51}, {&(0x7f00000025c0)=""/114, 0x72}, {&(0x7f0000002640)=""/4096, 0x1000}], 0x5, &(0x7f00000036c0)=""/160, 0xa0}, 0x7}, {{&(0x7f0000003780)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000003980)=[{&(0x7f0000003800)=""/52, 0x34}, {&(0x7f0000003840)=""/177, 0xb1}, {&(0x7f0000003900)=""/127, 0x7f}], 0x3}, 0x5}, {{0x0, 0x0, &(0x7f0000004dc0)=[{&(0x7f00000039c0)=""/23, 0x17}, {&(0x7f0000003a00)=""/147, 0x93}, {&(0x7f0000003ac0)=""/85, 0x55}, {&(0x7f0000003b40)=""/101, 0x65}, {&(0x7f0000003bc0)=""/44, 0x2c}, {&(0x7f0000003c00)=""/230, 0xe6}, {&(0x7f0000003d00)=""/125, 0x7d}, {&(0x7f0000003d80)=""/54, 0x36}, {&(0x7f0000003dc0)=""/4096, 0x1000}], 0x9, &(0x7f0000004e80)=""/2, 0x2}, 0x8}, {{&(0x7f0000004ec0)=@in={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000004fc0)=[{&(0x7f0000004f40)=""/81, 0x51}], 0x1, &(0x7f0000005000)=""/159, 0x9f}, 0x2}, {{&(0x7f00000050c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000005400)=[{&(0x7f0000005140)=""/43, 0x2b}, {&(0x7f0000005180)=""/200, 0xc8}, {&(0x7f0000005280)=""/158, 0x9e}, {&(0x7f0000005340)=""/136, 0x88}], 0x4, &(0x7f0000005440)=""/82, 0x52}, 0xff}, {{&(0x7f00000054c0)=@l2tp={0x2, 0x0, @empty}, 0x80, &(0x7f0000007700)=[{&(0x7f0000005540)}, {&(0x7f0000005580)=""/39, 0x27}, {&(0x7f00000055c0)=""/57, 0x39}, {&(0x7f0000005600)=""/86, 0x56}, {&(0x7f0000005680)=""/113, 0x71}, {&(0x7f0000005700)=""/4096, 0x1000}, {&(0x7f0000006700)=""/4096, 0x1000}], 0x7, &(0x7f0000007780)=""/118, 0x76}, 0xa}], 0xa, 0x40010040, 0x0) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f0000007a80)=0x6, 0x4) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000004) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8983, &(0x7f0000000000)={0x6, 'nr0\x00', {0x10000}, 0x3}) 15:54:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9bfe1300}, 0x0) 15:54:30 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xe0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:30 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xcf, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x27f91300}, 0x0) [ 3407.152641][T29741] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3407.182872][T29741] CPU: 0 PID: 29741 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3407.191670][T29741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3407.198548][T29751] IPVS: ftp: loaded support on port[0] = 21 [ 3407.201730][T29741] Call Trace: [ 3407.201756][T29741] dump_stack+0x107/0x163 [ 3407.201778][T29741] sysfs_warn_dup.cold+0x1c/0x29 [ 3407.201799][T29741] sysfs_do_create_link_sd+0x11e/0x140 [ 3407.201820][T29741] sysfs_create_link+0x5f/0xc0 [ 3407.232576][T29741] device_add+0x79a/0x1ce0 [ 3407.237375][T29741] ? devlink_add_symlinks+0x450/0x450 [ 3407.242761][T29741] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3407.248757][T29741] wiphy_register+0x1dfc/0x2900 [ 3407.253713][T29741] ? wiphy_unregister+0xbb0/0xbb0 [ 3407.259607][T29741] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3407.265705][T29741] ieee80211_register_hw+0x1b0f/0x3b00 [ 3407.271194][T29741] ? ieee80211_restart_hw+0x290/0x290 [ 3407.276573][T29741] ? debug_object_destroy+0x210/0x210 [ 3407.281960][T29741] ? memset+0x20/0x40 [ 3407.285950][T29741] ? __hrtimer_init+0x136/0x280 [ 3407.290800][T29741] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3407.296681][T29741] ? hwsim_virtio_rx_work+0x350/0x350 [ 3407.302301][T29741] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3407.307841][T29741] ? memcpy+0x39/0x60 [ 3407.311824][T29741] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3407.316940][T29741] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3407.323134][T29741] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3407.330591][T29741] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3407.337870][T29741] genl_family_rcv_msg_doit+0x228/0x320 [ 3407.343408][T29741] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3407.350969][T29741] ? ns_capable+0xde/0x100 [ 3407.355379][T29741] genl_rcv_msg+0x328/0x580 [ 3407.359890][T29741] ? genl_get_cmd+0x480/0x480 [ 3407.364577][T29741] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3407.370500][T29741] ? lock_release+0x710/0x710 [ 3407.375257][T29741] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3407.380673][T29741] netlink_rcv_skb+0x153/0x420 [ 3407.385456][T29741] ? genl_get_cmd+0x480/0x480 [ 3407.390223][T29741] ? netlink_ack+0xaa0/0xaa0 [ 3407.394844][T29741] genl_rcv+0x24/0x40 [ 3407.398839][T29741] netlink_unicast+0x533/0x7d0 [ 3407.403589][T29741] ? netlink_attachskb+0x810/0x810 [ 3407.408699][T29741] ? __phys_addr_symbol+0x2c/0x70 [ 3407.413713][T29741] ? __check_object_size+0x171/0x3f0 [ 3407.418983][T29741] netlink_sendmsg+0x856/0xd90 [ 3407.423741][T29741] ? netlink_unicast+0x7d0/0x7d0 [ 3407.428764][T29741] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3407.434051][T29741] ? netlink_unicast+0x7d0/0x7d0 [ 3407.438979][T29741] sock_sendmsg+0xcf/0x120 [ 3407.443476][T29741] ____sys_sendmsg+0x6e8/0x810 [ 3407.448228][T29741] ? kernel_sendmsg+0x50/0x50 [ 3407.452888][T29741] ? do_recvmmsg+0x6c0/0x6c0 [ 3407.457478][T29741] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3407.463461][T29741] ___sys_sendmsg+0xf3/0x170 [ 3407.468045][T29741] ? sendmsg_copy_msghdr+0x160/0x160 [ 3407.473316][T29741] ? __fget_files+0x272/0x400 [ 3407.477976][T29741] ? lock_downgrade+0x6d0/0x6d0 [ 3407.482811][T29741] ? find_held_lock+0x2d/0x110 [ 3407.487582][T29741] ? __fget_files+0x294/0x400 [ 3407.492272][T29741] ? __fget_light+0xea/0x280 [ 3407.496874][T29741] __sys_sendmsg+0xe5/0x1b0 [ 3407.501383][T29741] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3407.506400][T29741] ? __do_sys_futex+0x2a2/0x470 [ 3407.511258][T29741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3407.517134][T29741] do_syscall_64+0x2d/0x70 [ 3407.521546][T29741] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3407.527515][T29741] RIP: 0033:0x45deb9 [ 3407.531404][T29741] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3407.551004][T29741] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3407.559436][T29741] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3407.567521][T29741] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3407.575487][T29741] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3407.583481][T29741] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3407.591462][T29741] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3407.607810][T29750] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3407.656268][T29749] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3407.690446][T29749] CPU: 1 PID: 29749 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3407.700351][T29749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3407.710444][T29749] Call Trace: [ 3407.713957][T29749] dump_stack+0x107/0x163 [ 3407.718306][T29749] sysfs_warn_dup.cold+0x1c/0x29 [ 3407.723434][T29749] sysfs_do_create_link_sd+0x11e/0x140 [ 3407.729057][T29749] sysfs_create_link+0x5f/0xc0 [ 3407.733842][T29749] device_add+0x79a/0x1ce0 [ 3407.738269][T29749] ? devlink_add_symlinks+0x450/0x450 [ 3407.743742][T29749] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3407.749860][T29749] wiphy_register+0x1dfc/0x2900 [ 3407.754731][T29749] ? wiphy_unregister+0xbb0/0xbb0 [ 3407.759787][T29749] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3407.765884][T29749] ieee80211_register_hw+0x1b0f/0x3b00 [ 3407.771385][T29749] ? ieee80211_restart_hw+0x290/0x290 [ 3407.776846][T29749] ? debug_object_destroy+0x210/0x210 [ 3407.782255][T29749] ? memset+0x20/0x40 [ 3407.786333][T29749] ? __hrtimer_init+0x136/0x280 [ 3407.791198][T29749] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3407.796952][T29749] ? hwsim_virtio_rx_work+0x350/0x350 [ 3407.802358][T29749] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3407.807955][T29749] ? memcpy+0x39/0x60 [ 3407.812408][T29749] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3407.817612][T29749] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3407.823529][T29749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3407.830990][T29749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3407.838286][T29749] genl_family_rcv_msg_doit+0x228/0x320 [ 3407.843842][T29749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3407.851221][T29749] ? ns_capable+0xde/0x100 [ 3407.855649][T29749] genl_rcv_msg+0x328/0x580 [ 3407.860176][T29749] ? genl_get_cmd+0x480/0x480 [ 3407.864888][T29749] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3407.870810][T29749] ? lock_release+0x710/0x710 [ 3407.875500][T29749] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3407.880802][T29749] netlink_rcv_skb+0x153/0x420 [ 3407.885577][T29749] ? genl_get_cmd+0x480/0x480 [ 3407.890264][T29749] ? netlink_ack+0xaa0/0xaa0 [ 3407.894900][T29749] genl_rcv+0x24/0x40 [ 3407.898890][T29749] netlink_unicast+0x533/0x7d0 [ 3407.903664][T29749] ? netlink_attachskb+0x810/0x810 [ 3407.908909][T29749] ? __phys_addr_symbol+0x2c/0x70 [ 3407.914024][T29749] ? __check_object_size+0x171/0x3f0 [ 3407.919320][T29749] netlink_sendmsg+0x856/0xd90 [ 3407.924248][T29749] ? netlink_unicast+0x7d0/0x7d0 [ 3407.929205][T29749] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3407.934581][T29749] ? netlink_unicast+0x7d0/0x7d0 [ 3407.940223][T29749] sock_sendmsg+0xcf/0x120 [ 3407.944650][T29749] ____sys_sendmsg+0x6e8/0x810 [ 3407.949419][T29749] ? kernel_sendmsg+0x50/0x50 [ 3407.954103][T29749] ? do_recvmmsg+0x6c0/0x6c0 [ 3407.958835][T29749] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3407.964821][T29749] ___sys_sendmsg+0xf3/0x170 [ 3407.969400][T29749] ? sendmsg_copy_msghdr+0x160/0x160 [ 3407.974677][T29749] ? __fget_files+0x272/0x400 [ 3407.979351][T29749] ? lock_downgrade+0x6d0/0x6d0 [ 3407.984309][T29749] ? find_held_lock+0x2d/0x110 [ 3407.989074][T29749] ? __fget_files+0x294/0x400 [ 3407.993744][T29749] ? __fget_light+0xea/0x280 [ 3407.998326][T29749] __sys_sendmsg+0xe5/0x1b0 [ 3408.002817][T29749] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3408.007863][T29749] ? __do_sys_futex+0x2a2/0x470 [ 3408.012708][T29749] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3408.018747][T29749] do_syscall_64+0x2d/0x70 [ 3408.023152][T29749] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3408.029027][T29749] RIP: 0033:0x45deb9 [ 3408.032911][T29749] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:54:31 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000400)=0x100000) [ 3408.052710][T29749] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3408.061114][T29749] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3408.069072][T29749] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3408.077028][T29749] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3408.085077][T29749] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3408.093151][T29749] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:31 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x28f91300}, 0x0) [ 3408.148610][T29770] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3408.152330][T29753] IPVS: ftp: loaded support on port[0] = 21 [ 3408.187280][T29748] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3408.225161][T29748] CPU: 0 PID: 29748 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3408.234167][T29748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3408.244460][T29748] Call Trace: [ 3408.247762][T29748] dump_stack+0x107/0x163 [ 3408.252114][T29748] sysfs_warn_dup.cold+0x1c/0x29 [ 3408.257075][T29748] sysfs_do_create_link_sd+0x11e/0x140 [ 3408.262669][T29748] sysfs_create_link+0x5f/0xc0 [ 3408.267538][T29748] device_add+0x79a/0x1ce0 [ 3408.271973][T29748] ? devlink_add_symlinks+0x450/0x450 [ 3408.277362][T29748] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3408.283364][T29748] wiphy_register+0x1dfc/0x2900 [ 3408.288233][T29748] ? wiphy_unregister+0xbb0/0xbb0 [ 3408.293296][T29748] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3408.299431][T29748] ieee80211_register_hw+0x1b0f/0x3b00 [ 3408.305639][T29748] ? ieee80211_restart_hw+0x290/0x290 [ 3408.311059][T29748] ? debug_object_destroy+0x210/0x210 [ 3408.317055][T29748] ? memset+0x20/0x40 [ 3408.321513][T29748] ? __hrtimer_init+0x136/0x280 [ 3408.326480][T29748] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3408.332309][T29748] ? hwsim_virtio_rx_work+0x350/0x350 [ 3408.338042][T29748] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3408.344355][T29748] ? memcpy+0x39/0x60 [ 3408.348888][T29748] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3408.354619][T29748] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3408.360727][T29748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3408.368273][T29748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3408.375718][T29748] genl_family_rcv_msg_doit+0x228/0x320 [ 3408.381612][T29748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3408.389227][T29748] ? ns_capable+0xde/0x100 [ 3408.394472][T29748] genl_rcv_msg+0x328/0x580 [ 3408.399251][T29748] ? genl_get_cmd+0x480/0x480 [ 3408.403938][T29748] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3408.409850][T29748] ? lock_release+0x710/0x710 [ 3408.415084][T29748] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3408.420959][T29748] netlink_rcv_skb+0x153/0x420 [ 3408.426522][T29748] ? genl_get_cmd+0x480/0x480 [ 3408.431895][T29748] ? netlink_ack+0xaa0/0xaa0 [ 3408.436510][T29748] genl_rcv+0x24/0x40 [ 3408.440668][T29748] netlink_unicast+0x533/0x7d0 [ 3408.446244][T29748] ? netlink_attachskb+0x810/0x810 [ 3408.451768][T29748] ? __phys_addr_symbol+0x2c/0x70 [ 3408.457333][T29748] ? __check_object_size+0x171/0x3f0 [ 3408.463400][T29748] netlink_sendmsg+0x856/0xd90 [ 3408.469015][T29748] ? netlink_unicast+0x7d0/0x7d0 [ 3408.474965][T29748] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3408.481227][T29748] ? netlink_unicast+0x7d0/0x7d0 [ 3408.486193][T29748] sock_sendmsg+0xcf/0x120 [ 3408.490622][T29748] ____sys_sendmsg+0x6e8/0x810 [ 3408.496247][T29748] ? kernel_sendmsg+0x50/0x50 [ 3408.500992][T29748] ? do_recvmmsg+0x6c0/0x6c0 [ 3408.505797][T29748] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3408.511908][T29748] ___sys_sendmsg+0xf3/0x170 [ 3408.516506][T29748] ? sendmsg_copy_msghdr+0x160/0x160 [ 3408.522146][T29748] ? __fget_files+0x272/0x400 [ 3408.527002][T29748] ? lock_downgrade+0x6d0/0x6d0 [ 3408.531865][T29748] ? find_held_lock+0x2d/0x110 [ 3408.537644][T29748] ? __fget_files+0x294/0x400 [ 3408.542340][T29748] ? __fget_light+0xea/0x280 [ 3408.546964][T29748] __sys_sendmsg+0xe5/0x1b0 [ 3408.552110][T29748] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3408.558002][T29748] ? __do_sys_futex+0x2a2/0x470 [ 3408.562881][T29748] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3408.570554][T29748] do_syscall_64+0x2d/0x70 [ 3408.574992][T29748] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3408.581338][T29748] RIP: 0033:0x45deb9 [ 3408.586028][T29748] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3408.606170][T29748] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3408.615211][T29748] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3408.623219][T29748] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3408.631190][T29748] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3408.639754][T29748] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3408.647898][T29748] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c [ 3408.741542][T29767] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3408.790009][T29767] CPU: 0 PID: 29767 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3408.799137][T29767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3408.809299][T29767] Call Trace: [ 3408.812599][T29767] dump_stack+0x107/0x163 [ 3408.817099][T29767] sysfs_warn_dup.cold+0x1c/0x29 [ 3408.822140][T29767] sysfs_do_create_link_sd+0x11e/0x140 [ 3408.827610][T29767] sysfs_create_link+0x5f/0xc0 [ 3408.832385][T29767] device_add+0x79a/0x1ce0 [ 3408.836820][T29767] ? devlink_add_symlinks+0x450/0x450 [ 3408.842208][T29767] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3408.848209][T29767] wiphy_register+0x1dfc/0x2900 [ 3408.853078][T29767] ? wiphy_unregister+0xbb0/0xbb0 [ 3408.858125][T29767] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3408.864203][T29767] ieee80211_register_hw+0x1b0f/0x3b00 [ 3408.869685][T29767] ? ieee80211_restart_hw+0x290/0x290 [ 3408.875073][T29767] ? debug_object_destroy+0x210/0x210 [ 3408.880478][T29767] ? memset+0x20/0x40 [ 3408.884485][T29767] ? __hrtimer_init+0x136/0x280 15:54:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xe, 0xffffff7f0e000000}, 0x0) [ 3408.889353][T29767] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3408.895122][T29767] ? hwsim_virtio_rx_work+0x350/0x350 [ 3408.900520][T29767] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3408.906081][T29767] ? memcpy+0x39/0x60 [ 3408.910079][T29767] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3408.915207][T29767] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3408.921127][T29767] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3408.928590][T29767] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 15:54:32 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3408.935891][T29767] genl_family_rcv_msg_doit+0x228/0x320 [ 3408.941461][T29767] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3408.948852][T29767] ? ns_capable+0xde/0x100 [ 3408.954045][T29767] genl_rcv_msg+0x328/0x580 [ 3408.958658][T29767] ? genl_get_cmd+0x480/0x480 [ 3408.963351][T29767] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3408.969255][T29767] ? lock_release+0x710/0x710 [ 3408.974059][T29767] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3408.979979][T29767] netlink_rcv_skb+0x153/0x420 [ 3408.984778][T29767] ? genl_get_cmd+0x480/0x480 [ 3408.989486][T29767] ? netlink_ack+0xaa0/0xaa0 [ 3408.994097][T29767] genl_rcv+0x24/0x40 [ 3408.998923][T29767] netlink_unicast+0x533/0x7d0 [ 3409.004287][T29767] ? netlink_attachskb+0x810/0x810 [ 3409.009411][T29767] ? __phys_addr_symbol+0x2c/0x70 [ 3409.014440][T29767] ? __check_object_size+0x171/0x3f0 [ 3409.019980][T29767] netlink_sendmsg+0x856/0xd90 [ 3409.024764][T29767] ? netlink_unicast+0x7d0/0x7d0 [ 3409.029928][T29767] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3409.035230][T29767] ? netlink_unicast+0x7d0/0x7d0 [ 3409.040189][T29767] sock_sendmsg+0xcf/0x120 [ 3409.044709][T29767] ____sys_sendmsg+0x6e8/0x810 [ 3409.049482][T29767] ? kernel_sendmsg+0x50/0x50 [ 3409.054626][T29767] ? do_recvmmsg+0x6c0/0x6c0 [ 3409.059240][T29767] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3409.065707][T29767] ___sys_sendmsg+0xf3/0x170 [ 3409.070399][T29767] ? sendmsg_copy_msghdr+0x160/0x160 [ 3409.076259][T29767] ? __fget_files+0x272/0x400 [ 3409.080940][T29767] ? lock_downgrade+0x6d0/0x6d0 [ 3409.085988][T29767] ? find_held_lock+0x2d/0x110 [ 3409.091012][T29767] ? __fget_files+0x294/0x400 [ 3409.095709][T29767] ? __fget_light+0xea/0x280 [ 3409.100330][T29767] __sys_sendmsg+0xe5/0x1b0 [ 3409.104964][T29767] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3409.110172][T29767] ? __do_sys_futex+0x2a2/0x470 [ 3409.115383][T29767] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3409.121383][T29767] do_syscall_64+0x2d/0x70 [ 3409.125812][T29767] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3409.131873][T29767] RIP: 0033:0x45deb9 [ 3409.135798][T29767] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3409.155592][T29767] RSP: 002b:00007f6138fe9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3409.164130][T29767] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3409.172600][T29767] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3409.180580][T29767] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 15:54:32 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8008}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x130, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0xf7c6, 0x75}}}}, [@NL80211_ATTR_STA_FLAGS={0x18, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}]}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x8d, 0xac, "b47c59de62981eea6a0e12f023614acbaab805ec2c972e058634fbec912cd11c6f37eecd142bd61327a4161cd77b6b5f7624fa4cd20f40ca7b1109992c8e6a1d9cd6cd5894833d4aaa4a180dfd3cf03a15399f66cd9cd02df36fe186e9a1a251ca4cad22a11deb96e2284050a51a59c6e734b47f975e56b10355dd2eddf7c3da9d66ee3d55594d1b3f"}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x58, 0xbe, "e6cfd7fe2940c7cb9a75b9c0913bc5ea0cf3642203efa5bc7b7f7344451b976850cfdf7285e4df78482b0403f2d46a0ee662ee0943201abdc01c8ca7b7028c627e504eb02239ede68971b9116db50efe10726ba4"}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}]}, 0x130}, 0x1, 0x0, 0x0, 0x4040011}, 0x4000) [ 3409.189332][T29767] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3409.197762][T29767] R13: 00007ffcdabc015f R14: 00007f6138fea9c0 R15: 000000000118bfd4 [ 3409.309046][T29809] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:54:33 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, r1, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x38}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x24004004) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x0, [0x0, 0x0, 0x0, 0xffffffff]}, 0x5c) [ 3409.417758][T29809] netlink: 'syz-executor.1': attribute type 5 has an invalid length. 15:54:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9cfe1300}, 0x0) [ 3409.469413][T29787] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3409.507284][T29787] CPU: 1 PID: 29787 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3409.516904][T29787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3409.527083][T29787] Call Trace: [ 3409.530384][T29787] dump_stack+0x107/0x163 [ 3409.534723][T29787] sysfs_warn_dup.cold+0x1c/0x29 [ 3409.539895][T29787] sysfs_do_create_link_sd+0x11e/0x140 [ 3409.545467][T29787] sysfs_create_link+0x5f/0xc0 [ 3409.550784][T29787] device_add+0x79a/0x1ce0 [ 3409.555232][T29787] ? devlink_add_symlinks+0x450/0x450 [ 3409.560878][T29787] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3409.566997][T29787] wiphy_register+0x1dfc/0x2900 [ 3409.572966][T29787] ? wiphy_unregister+0xbb0/0xbb0 [ 3409.578294][T29787] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3409.584379][T29787] ieee80211_register_hw+0x1b0f/0x3b00 [ 3409.589869][T29787] ? ieee80211_restart_hw+0x290/0x290 [ 3409.595273][T29787] ? debug_object_destroy+0x210/0x210 [ 3409.601325][T29787] ? memset+0x20/0x40 [ 3409.605328][T29787] ? __hrtimer_init+0x136/0x280 [ 3409.610875][T29787] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3409.616731][T29787] ? hwsim_virtio_rx_work+0x350/0x350 [ 3409.622682][T29787] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3409.628348][T29787] ? memcpy+0x39/0x60 [ 3409.632453][T29787] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3409.637576][T29787] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3409.643948][T29787] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3409.651674][T29787] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3409.658973][T29787] genl_family_rcv_msg_doit+0x228/0x320 [ 3409.664549][T29787] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3409.671938][T29787] ? ns_capable+0xde/0x100 [ 3409.676373][T29787] genl_rcv_msg+0x328/0x580 [ 3409.680886][T29787] ? genl_get_cmd+0x480/0x480 [ 3409.685664][T29787] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3409.691924][T29787] ? lock_release+0x710/0x710 [ 3409.696730][T29787] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3409.702249][T29787] netlink_rcv_skb+0x153/0x420 [ 3409.707030][T29787] ? genl_get_cmd+0x480/0x480 [ 3409.711857][T29787] ? netlink_ack+0xaa0/0xaa0 [ 3409.716479][T29787] genl_rcv+0x24/0x40 [ 3409.720475][T29787] netlink_unicast+0x533/0x7d0 [ 3409.725432][T29787] ? netlink_attachskb+0x810/0x810 [ 3409.731283][T29787] ? __phys_addr_symbol+0x2c/0x70 [ 3409.736317][T29787] ? __check_object_size+0x171/0x3f0 [ 3409.741857][T29787] netlink_sendmsg+0x856/0xd90 [ 3409.746659][T29787] ? netlink_unicast+0x7d0/0x7d0 [ 3409.751702][T29787] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3409.756995][T29787] ? netlink_unicast+0x7d0/0x7d0 [ 3409.761942][T29787] sock_sendmsg+0xcf/0x120 [ 3409.766469][T29787] ____sys_sendmsg+0x6e8/0x810 [ 3409.771706][T29787] ? kernel_sendmsg+0x50/0x50 [ 3409.776389][T29787] ? do_recvmmsg+0x6c0/0x6c0 [ 3409.781078][T29787] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3409.787078][T29787] ___sys_sendmsg+0xf3/0x170 [ 3409.791675][T29787] ? sendmsg_copy_msghdr+0x160/0x160 [ 3409.797057][T29787] ? __fget_files+0x272/0x400 [ 3409.801746][T29787] ? lock_downgrade+0x6d0/0x6d0 [ 3409.806783][T29787] ? find_held_lock+0x2d/0x110 [ 3409.812016][T29787] ? __fget_files+0x294/0x400 [ 3409.816820][T29787] ? __fget_light+0xea/0x280 [ 3409.821505][T29787] __sys_sendmsg+0xe5/0x1b0 [ 3409.826021][T29787] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3409.831078][T29787] ? __do_sys_futex+0x2a2/0x470 [ 3409.835970][T29787] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3409.841904][T29787] do_syscall_64+0x2d/0x70 [ 3409.846332][T29787] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3409.852227][T29787] RIP: 0033:0x45deb9 [ 3409.856126][T29787] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3409.875741][T29787] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3409.884173][T29787] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3409.892394][T29787] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3409.900373][T29787] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3409.908363][T29787] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3409.916445][T29787] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3409.995253][T29808] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:33 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf5, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3410.035892][T29808] CPU: 1 PID: 29808 Comm: syz-executor.5 Not tainted 5.10.0-rc4-syzkaller #0 [ 3410.044690][T29808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3410.054750][T29808] Call Trace: [ 3410.058053][T29808] dump_stack+0x107/0x163 [ 3410.062545][T29808] sysfs_warn_dup.cold+0x1c/0x29 [ 3410.067502][T29808] sysfs_do_create_link_sd+0x11e/0x140 [ 3410.072977][T29808] sysfs_create_link+0x5f/0xc0 [ 3410.077777][T29808] device_add+0x79a/0x1ce0 [ 3410.082208][T29808] ? devlink_add_symlinks+0x450/0x450 [ 3410.087595][T29808] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3410.093608][T29808] wiphy_register+0x1dfc/0x2900 [ 3410.098480][T29808] ? wiphy_unregister+0xbb0/0xbb0 [ 3410.103523][T29808] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3410.109758][T29808] ieee80211_register_hw+0x1b0f/0x3b00 [ 3410.115853][T29808] ? ieee80211_restart_hw+0x290/0x290 [ 3410.121994][T29808] ? debug_object_destroy+0x210/0x210 [ 3410.127391][T29808] ? memset+0x20/0x40 [ 3410.131385][T29808] ? __hrtimer_init+0x136/0x280 [ 3410.136401][T29808] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3410.142151][T29808] ? hwsim_virtio_rx_work+0x350/0x350 [ 3410.147538][T29808] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3410.153094][T29808] ? memcpy+0x39/0x60 [ 3410.157087][T29808] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3410.162876][T29808] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3410.168789][T29808] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3410.176177][T29808] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3410.183577][T29808] genl_family_rcv_msg_doit+0x228/0x320 [ 3410.189526][T29808] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3410.196924][T29808] ? ns_capable+0xde/0x100 [ 3410.201478][T29808] genl_rcv_msg+0x328/0x580 [ 3410.206915][T29808] ? genl_get_cmd+0x480/0x480 [ 3410.211689][T29808] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3410.217692][T29808] ? lock_release+0x710/0x710 [ 3410.222374][T29808] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3410.228084][T29808] netlink_rcv_skb+0x153/0x420 [ 3410.233579][T29808] ? genl_get_cmd+0x480/0x480 [ 3410.238376][T29808] ? netlink_ack+0xaa0/0xaa0 [ 3410.243242][T29808] genl_rcv+0x24/0x40 [ 3410.248128][T29808] netlink_unicast+0x533/0x7d0 [ 3410.253605][T29808] ? netlink_attachskb+0x810/0x810 [ 3410.258963][T29808] ? __check_object_size+0x171/0x3f0 [ 3410.265114][T29808] netlink_sendmsg+0x856/0xd90 [ 3410.269901][T29808] ? netlink_unicast+0x7d0/0x7d0 [ 3410.274852][T29808] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3410.280262][T29808] ? netlink_unicast+0x7d0/0x7d0 [ 3410.285880][T29808] sock_sendmsg+0xcf/0x120 [ 3410.290633][T29808] ____sys_sendmsg+0x6e8/0x810 [ 3410.295417][T29808] ? kernel_sendmsg+0x50/0x50 [ 3410.300123][T29808] ? do_recvmmsg+0x6c0/0x6c0 [ 3410.304872][T29808] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3410.310890][T29808] ___sys_sendmsg+0xf3/0x170 [ 3410.315506][T29808] ? sendmsg_copy_msghdr+0x160/0x160 [ 3410.320820][T29808] ? __fget_files+0x272/0x400 [ 3410.326472][T29808] ? lock_downgrade+0x6d0/0x6d0 [ 3410.332030][T29808] ? find_held_lock+0x2d/0x110 [ 3410.337530][T29808] ? __fget_files+0x294/0x400 [ 3410.342307][T29808] ? __fget_light+0xea/0x280 [ 3410.347022][T29808] __sys_sendmsg+0xe5/0x1b0 [ 3410.352031][T29808] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3410.357546][T29808] ? __do_sys_futex+0x2a2/0x470 [ 3410.363165][T29808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3410.369207][T29808] do_syscall_64+0x2d/0x70 [ 3410.374415][T29808] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3410.380314][T29808] RIP: 0033:0x45deb9 [ 3410.384831][T29808] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3410.404456][T29808] RSP: 002b:00007f3bb3c71c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3410.412875][T29808] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3410.421899][T29808] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3410.429886][T29808] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:54:34 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x29f91300}, 0x0) [ 3410.437860][T29808] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3410.445922][T29808] R13: 00007ffc35384ebf R14: 00007f3bb3c729c0 R15: 000000000118bf2c 15:54:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xf, 0xffffff7f0e000000}, 0x0) [ 3410.522676][T29866] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3410.599261][T29852] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3410.620421][T29852] CPU: 1 PID: 29852 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3410.629198][T29852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3410.640348][T29852] Call Trace: [ 3410.643745][T29852] dump_stack+0x107/0x163 [ 3410.648091][T29852] sysfs_warn_dup.cold+0x1c/0x29 [ 3410.653512][T29852] sysfs_do_create_link_sd+0x11e/0x140 [ 3410.659875][T29852] sysfs_create_link+0x5f/0xc0 [ 3410.664659][T29852] device_add+0x79a/0x1ce0 [ 3410.669583][T29852] ? devlink_add_symlinks+0x450/0x450 [ 3410.674984][T29852] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3410.680987][T29852] wiphy_register+0x1dfc/0x2900 [ 3410.685875][T29852] ? wiphy_unregister+0xbb0/0xbb0 [ 3410.691651][T29852] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3410.697733][T29852] ieee80211_register_hw+0x1b0f/0x3b00 [ 3410.703220][T29852] ? ieee80211_restart_hw+0x290/0x290 [ 3410.709269][T29852] ? debug_object_destroy+0x210/0x210 [ 3410.714955][T29852] ? memset+0x20/0x40 [ 3410.718952][T29852] ? __hrtimer_init+0x136/0x280 [ 3410.723819][T29852] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3410.729811][T29852] ? hwsim_virtio_rx_work+0x350/0x350 [ 3410.735237][T29852] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3410.740942][T29852] ? memcpy+0x39/0x60 [ 3410.744996][T29852] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3410.750760][T29852] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3410.756677][T29852] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3410.764052][T29852] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3410.771827][T29852] genl_family_rcv_msg_doit+0x228/0x320 [ 3410.777383][T29852] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3410.784768][T29852] ? ns_capable+0xde/0x100 [ 3410.789200][T29852] genl_rcv_msg+0x328/0x580 [ 3410.794611][T29852] ? genl_get_cmd+0x480/0x480 [ 3410.799457][T29852] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3410.805460][T29852] ? lock_release+0x710/0x710 [ 3410.810499][T29852] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3410.815822][T29852] netlink_rcv_skb+0x153/0x420 [ 3410.820596][T29852] ? genl_get_cmd+0x480/0x480 [ 3410.825296][T29852] ? netlink_ack+0xaa0/0xaa0 [ 3410.829912][T29852] genl_rcv+0x24/0x40 [ 3410.834072][T29852] netlink_unicast+0x533/0x7d0 [ 3410.838860][T29852] ? netlink_attachskb+0x810/0x810 [ 3410.844675][T29852] ? __phys_addr_symbol+0x2c/0x70 [ 3410.850511][T29852] ? __check_object_size+0x171/0x3f0 [ 3410.855820][T29852] netlink_sendmsg+0x856/0xd90 [ 3410.860623][T29852] ? netlink_unicast+0x7d0/0x7d0 [ 3410.865589][T29852] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3410.870907][T29852] ? netlink_unicast+0x7d0/0x7d0 [ 3410.875858][T29852] sock_sendmsg+0xcf/0x120 [ 3410.880533][T29852] ____sys_sendmsg+0x6e8/0x810 [ 3410.885312][T29852] ? kernel_sendmsg+0x50/0x50 [ 3410.890569][T29852] ? do_recvmmsg+0x6c0/0x6c0 [ 3410.895199][T29852] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3410.901281][T29852] ___sys_sendmsg+0xf3/0x170 [ 3410.905886][T29852] ? sendmsg_copy_msghdr+0x160/0x160 [ 3410.911660][T29852] ? __fget_files+0x272/0x400 [ 3410.916357][T29852] ? lock_downgrade+0x6d0/0x6d0 [ 3410.921297][T29852] ? find_held_lock+0x2d/0x110 [ 3410.926095][T29852] ? __fget_files+0x294/0x400 [ 3410.931482][T29852] ? __fget_light+0xea/0x280 [ 3410.936087][T29852] __sys_sendmsg+0xe5/0x1b0 [ 3410.940961][T29852] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3410.946025][T29852] ? __do_sys_futex+0x2a2/0x470 [ 3410.951298][T29852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3410.957200][T29852] do_syscall_64+0x2d/0x70 [ 3410.962071][T29852] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3410.967980][T29852] RIP: 0033:0x45deb9 [ 3410.972309][T29852] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3410.992349][T29852] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3411.000857][T29852] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3411.008821][T29852] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3411.016790][T29852] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3411.024771][T29852] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3411.032886][T29852] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3411.108016][T29874] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3411.131187][T29874] CPU: 1 PID: 29874 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3411.139970][T29874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3411.150032][T29874] Call Trace: [ 3411.153336][T29874] dump_stack+0x107/0x163 [ 3411.157679][T29874] sysfs_warn_dup.cold+0x1c/0x29 [ 3411.162629][T29874] sysfs_do_create_link_sd+0x11e/0x140 [ 3411.168104][T29874] sysfs_create_link+0x5f/0xc0 [ 3411.172877][T29874] device_add+0x79a/0x1ce0 [ 3411.177320][T29874] ? devlink_add_symlinks+0x450/0x450 [ 3411.182842][T29874] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3411.188862][T29874] wiphy_register+0x1dfc/0x2900 [ 3411.193742][T29874] ? wiphy_unregister+0xbb0/0xbb0 [ 3411.198786][T29874] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3411.204891][T29874] ieee80211_register_hw+0x1b0f/0x3b00 [ 3411.210396][T29874] ? ieee80211_restart_hw+0x290/0x290 [ 3411.215885][T29874] ? debug_object_destroy+0x210/0x210 [ 3411.221292][T29874] ? memset+0x20/0x40 [ 3411.225380][T29874] ? __hrtimer_init+0x136/0x280 [ 3411.230252][T29874] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3411.236005][T29874] ? hwsim_virtio_rx_work+0x350/0x350 [ 3411.241414][T29874] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3411.247063][T29874] ? memcpy+0x39/0x60 [ 3411.251061][T29874] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3411.256288][T29874] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3411.262262][T29874] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3411.269642][T29874] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3411.276935][T29874] genl_family_rcv_msg_doit+0x228/0x320 [ 3411.282492][T29874] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3411.289880][T29874] ? ns_capable+0xde/0x100 [ 3411.294306][T29874] genl_rcv_msg+0x328/0x580 [ 3411.298815][T29874] ? genl_get_cmd+0x480/0x480 [ 3411.303591][T29874] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3411.309614][T29874] ? lock_release+0x710/0x710 [ 3411.314306][T29874] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3411.319614][T29874] netlink_rcv_skb+0x153/0x420 [ 3411.324387][T29874] ? genl_get_cmd+0x480/0x480 [ 3411.329061][T29874] ? netlink_ack+0xaa0/0xaa0 [ 3411.333663][T29874] genl_rcv+0x24/0x40 [ 3411.337641][T29874] netlink_unicast+0x533/0x7d0 [ 3411.342396][T29874] ? netlink_attachskb+0x810/0x810 [ 3411.347499][T29874] ? __phys_addr_symbol+0x2c/0x70 [ 3411.352628][T29874] ? __check_object_size+0x171/0x3f0 [ 3411.357904][T29874] netlink_sendmsg+0x856/0xd90 [ 3411.362656][T29874] ? netlink_unicast+0x7d0/0x7d0 [ 3411.367597][T29874] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3411.372874][T29874] ? netlink_unicast+0x7d0/0x7d0 [ 3411.377824][T29874] sock_sendmsg+0xcf/0x120 [ 3411.382238][T29874] ____sys_sendmsg+0x6e8/0x810 [ 3411.386989][T29874] ? kernel_sendmsg+0x50/0x50 [ 3411.391654][T29874] ? do_recvmmsg+0x6c0/0x6c0 [ 3411.396246][T29874] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3411.402251][T29874] ___sys_sendmsg+0xf3/0x170 [ 3411.406827][T29874] ? sendmsg_copy_msghdr+0x160/0x160 [ 3411.412101][T29874] ? __fget_files+0x272/0x400 [ 3411.416764][T29874] ? lock_downgrade+0x6d0/0x6d0 [ 3411.421602][T29874] ? find_held_lock+0x2d/0x110 [ 3411.426358][T29874] ? __fget_files+0x294/0x400 [ 3411.431024][T29874] ? __fget_light+0xea/0x280 [ 3411.435613][T29874] __sys_sendmsg+0xe5/0x1b0 [ 3411.440123][T29874] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3411.445142][T29874] ? __do_sys_futex+0x2a2/0x470 [ 3411.450003][T29874] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3411.456088][T29874] do_syscall_64+0x2d/0x70 [ 3411.460492][T29874] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3411.466366][T29874] RIP: 0033:0x45deb9 [ 3411.470246][T29874] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3411.489842][T29874] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3411.498255][T29874] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3411.506212][T29874] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3411.514167][T29874] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3411.522220][T29874] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3411.530180][T29874] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:37 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd0, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x10, 0xffffff7f0e000000}, 0x0) 15:54:37 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf8, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:37 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9dfe1300}, 0x0) 15:54:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2a6fc480}, 0x0) 15:54:37 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) write$tun(0xffffffffffffffff, &(0x7f00000001c0)={@val={0x0, 0x2}, @val={0x1, 0x3, 0x3, 0x1, 0xffc0, 0x800}, @mpls={[], @generic="5c178fc8ffeb6b96d8db4610d3922f419334a76cd5723fed6173519c3af5d9a4bb4bb638e04d65a9f07e3aa804600c90484f4fc03637270eeca97a63dbe8b822087c88ba2317219c051fa8107f96bb93fc49308f6b4093f47963c9d7b9441c5e3ab776fdb0fc0fd8d52f303e595ef16eca46379ea49d023151ac712c35b45ed2c4"}}, 0x8f) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}, 0x4, [0x0, 0x0, 0xfffffffe]}, 0x5c) 15:54:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x15, 0xffffff7f0e000000}, 0x0) [ 3413.605014][T29926] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3413.642160][T29929] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3413.675578][T29929] CPU: 1 PID: 29929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3413.684365][T29929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3413.684896][T29934] IPVS: ftp: loaded support on port[0] = 21 [ 3413.694415][T29929] Call Trace: [ 3413.694441][T29929] dump_stack+0x107/0x163 [ 3413.694461][T29929] sysfs_warn_dup.cold+0x1c/0x29 [ 3413.694481][T29929] sysfs_do_create_link_sd+0x11e/0x140 [ 3413.694501][T29929] sysfs_create_link+0x5f/0xc0 [ 3413.694518][T29929] device_add+0x79a/0x1ce0 [ 3413.694537][T29929] ? devlink_add_symlinks+0x450/0x450 [ 3413.694558][T29929] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3413.694581][T29929] wiphy_register+0x1dfc/0x2900 [ 3413.694605][T29929] ? wiphy_unregister+0xbb0/0xbb0 [ 3413.694632][T29929] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3413.694658][T29929] ieee80211_register_hw+0x1b0f/0x3b00 [ 3413.694690][T29929] ? ieee80211_restart_hw+0x290/0x290 [ 3413.694713][T29929] ? debug_object_destroy+0x210/0x210 [ 3413.694734][T29929] ? memset+0x20/0x40 [ 3413.694752][T29929] ? __hrtimer_init+0x136/0x280 [ 3413.694775][T29929] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3413.694808][T29929] ? hwsim_virtio_rx_work+0x350/0x350 [ 3413.694829][T29929] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3413.694846][T29929] ? memcpy+0x39/0x60 [ 3413.694868][T29929] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3413.694906][T29929] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3413.694939][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3413.694957][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3413.694980][T29929] genl_family_rcv_msg_doit+0x228/0x320 [ 3413.695002][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3413.695034][T29929] ? ns_capable+0xde/0x100 [ 3413.695055][T29929] genl_rcv_msg+0x328/0x580 [ 3413.695078][T29929] ? genl_get_cmd+0x480/0x480 [ 3413.695097][T29929] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3413.695119][T29929] ? lock_release+0x710/0x710 [ 3413.695141][T29929] ? netdev_core_pick_tx+0x2e0/0x2e0 15:54:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x16, 0xffffff7f0e000000}, 0x0) [ 3413.695164][T29929] netlink_rcv_skb+0x153/0x420 [ 3413.695183][T29929] ? genl_get_cmd+0x480/0x480 [ 3413.695203][T29929] ? netlink_ack+0xaa0/0xaa0 [ 3413.695238][T29929] genl_rcv+0x24/0x40 [ 3413.695254][T29929] netlink_unicast+0x533/0x7d0 [ 3413.695277][T29929] ? netlink_attachskb+0x810/0x810 [ 3413.695299][T29929] ? __phys_addr_symbol+0x2c/0x70 [ 3413.695311][T29929] ? __check_object_size+0x171/0x3f0 [ 3413.695333][T29929] netlink_sendmsg+0x856/0xd90 [ 3413.695367][T29929] ? netlink_unicast+0x7d0/0x7d0 [ 3413.695397][T29929] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3413.695415][T29929] ? netlink_unicast+0x7d0/0x7d0 [ 3413.695432][T29929] sock_sendmsg+0xcf/0x120 [ 3413.695451][T29929] ____sys_sendmsg+0x6e8/0x810 [ 3413.695472][T29929] ? kernel_sendmsg+0x50/0x50 [ 3413.695488][T29929] ? do_recvmmsg+0x6c0/0x6c0 [ 3413.695516][T29929] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3413.695544][T29929] ___sys_sendmsg+0xf3/0x170 [ 3413.695563][T29929] ? sendmsg_copy_msghdr+0x160/0x160 [ 3413.695586][T29929] ? __fget_files+0x272/0x400 15:54:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x23, 0xffffff7f0e000000}, 0x0) [ 3413.695607][T29929] ? lock_downgrade+0x6d0/0x6d0 [ 3413.695626][T29929] ? find_held_lock+0x2d/0x110 [ 3413.695657][T29929] ? __fget_files+0x294/0x400 [ 3413.695685][T29929] ? __fget_light+0xea/0x280 [ 3413.695710][T29929] __sys_sendmsg+0xe5/0x1b0 [ 3413.695730][T29929] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3413.695750][T29929] ? __do_sys_futex+0x2a2/0x470 [ 3413.695786][T29929] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3413.695811][T29929] do_syscall_64+0x2d/0x70 [ 3413.695828][T29929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3413.695840][T29929] RIP: 0033:0x45deb9 [ 3413.695861][T29929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3413.695872][T29929] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3413.695894][T29929] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3413.695906][T29929] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3413.695919][T29929] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3413.695933][T29929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3413.695947][T29929] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3414.115657][T29927] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:37 executing program 3: setsockopt$inet6_MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x25, 0xffffff7f0e000000}, 0x0) [ 3414.134601][T29927] CPU: 1 PID: 29927 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3414.143514][T29927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3414.153567][T29927] Call Trace: [ 3414.157672][T29927] dump_stack+0x107/0x163 [ 3414.162629][T29927] sysfs_warn_dup.cold+0x1c/0x29 [ 3414.167576][T29927] sysfs_do_create_link_sd+0x11e/0x140 [ 3414.173134][T29927] sysfs_create_link+0x5f/0xc0 [ 3414.177912][T29927] device_add+0x79a/0x1ce0 [ 3414.182343][T29927] ? devlink_add_symlinks+0x450/0x450 [ 3414.188145][T29927] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3414.194226][T29927] wiphy_register+0x1dfc/0x2900 [ 3414.199300][T29927] ? wiphy_unregister+0xbb0/0xbb0 [ 3414.204349][T29927] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3414.210784][T29927] ieee80211_register_hw+0x1b0f/0x3b00 [ 3414.216266][T29927] ? ieee80211_restart_hw+0x290/0x290 [ 3414.221653][T29927] ? debug_object_destroy+0x210/0x210 [ 3414.227618][T29927] ? memset+0x20/0x40 [ 3414.231613][T29927] ? __hrtimer_init+0x136/0x280 [ 3414.237107][T29927] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3414.242863][T29927] ? hwsim_virtio_rx_work+0x350/0x350 [ 3414.248239][T29927] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3414.253796][T29927] ? memcpy+0x39/0x60 [ 3414.258095][T29927] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3414.263362][T29927] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3414.269273][T29927] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3414.276673][T29927] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3414.283972][T29927] genl_family_rcv_msg_doit+0x228/0x320 [ 3414.289528][T29927] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3414.297174][T29927] ? ns_capable+0xde/0x100 [ 3414.301863][T29927] genl_rcv_msg+0x328/0x580 [ 3414.306386][T29927] ? genl_get_cmd+0x480/0x480 [ 3414.311084][T29927] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3414.317002][T29927] ? lock_release+0x710/0x710 [ 3414.322320][T29927] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3414.327653][T29927] netlink_rcv_skb+0x153/0x420 [ 3414.332433][T29927] ? genl_get_cmd+0x480/0x480 [ 3414.337119][T29927] ? netlink_ack+0xaa0/0xaa0 [ 3414.341747][T29927] genl_rcv+0x24/0x40 [ 3414.345905][T29927] netlink_unicast+0x533/0x7d0 [ 3414.350689][T29927] ? netlink_attachskb+0x810/0x810 [ 3414.355819][T29927] ? __phys_addr_symbol+0x2c/0x70 [ 3414.360978][T29927] ? __check_object_size+0x171/0x3f0 [ 3414.366868][T29927] netlink_sendmsg+0x856/0xd90 [ 3414.372435][T29927] ? netlink_unicast+0x7d0/0x7d0 [ 3414.377397][T29927] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3414.382694][T29927] ? netlink_unicast+0x7d0/0x7d0 [ 3414.387767][T29927] sock_sendmsg+0xcf/0x120 [ 3414.392383][T29927] ____sys_sendmsg+0x6e8/0x810 [ 3414.397161][T29927] ? kernel_sendmsg+0x50/0x50 [ 3414.401853][T29927] ? do_recvmmsg+0x6c0/0x6c0 [ 3414.406452][T29927] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3414.412424][T29927] ___sys_sendmsg+0xf3/0x170 [ 3414.417003][T29927] ? sendmsg_copy_msghdr+0x160/0x160 [ 3414.422320][T29927] ? __fget_files+0x272/0x400 [ 3414.427038][T29927] ? lock_downgrade+0x6d0/0x6d0 [ 3414.431893][T29927] ? find_held_lock+0x2d/0x110 [ 3414.436648][T29927] ? __fget_files+0x294/0x400 [ 3414.441315][T29927] ? __fget_light+0xea/0x280 [ 3414.446032][T29927] __sys_sendmsg+0xe5/0x1b0 [ 3414.450524][T29927] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3414.455539][T29927] ? __do_sys_futex+0x2a2/0x470 [ 3414.460389][T29927] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3414.466282][T29927] do_syscall_64+0x2d/0x70 [ 3414.470725][T29927] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3414.476602][T29927] RIP: 0033:0x45deb9 [ 3414.480482][T29927] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3414.500069][T29927] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3414.508467][T29927] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3414.516421][T29927] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3414.524378][T29927] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3414.532333][T29927] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3414.540290][T29927] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:38 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) sendmsg$NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x30, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x7, 0x1, '-[\x00'}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}]}, 0x30}, 0x1, 0x0, 0x0, 0x20040000}, 0x8001) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3414.730048][T29953] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3414.783835][T29929] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3414.783843][T29943] IPVS: ftp: loaded support on port[0] = 21 [ 3414.805934][T29929] CPU: 1 PID: 29929 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3414.814722][T29929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3414.824783][T29929] Call Trace: [ 3414.828392][T29929] dump_stack+0x107/0x163 [ 3414.832839][T29929] sysfs_warn_dup.cold+0x1c/0x29 [ 3414.837931][T29929] sysfs_do_create_link_sd+0x11e/0x140 [ 3414.843407][T29929] sysfs_create_link+0x5f/0xc0 [ 3414.848185][T29929] device_add+0x79a/0x1ce0 [ 3414.852618][T29929] ? devlink_add_symlinks+0x450/0x450 [ 3414.858879][T29929] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3414.864927][T29929] wiphy_register+0x1dfc/0x2900 [ 3414.870039][T29929] ? wiphy_unregister+0xbb0/0xbb0 [ 3414.875209][T29929] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3414.881306][T29929] ieee80211_register_hw+0x1b0f/0x3b00 [ 3414.886806][T29929] ? ieee80211_restart_hw+0x290/0x290 [ 3414.892352][T29929] ? debug_object_destroy+0x210/0x210 [ 3414.897758][T29929] ? memset+0x20/0x40 [ 3414.901751][T29929] ? __hrtimer_init+0x136/0x280 [ 3414.906626][T29929] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3414.912933][T29929] ? hwsim_virtio_rx_work+0x350/0x350 [ 3414.918578][T29929] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3414.924133][T29929] ? memcpy+0x39/0x60 [ 3414.929018][T29929] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3414.934384][T29929] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3414.940455][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3414.947831][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3414.955133][T29929] genl_family_rcv_msg_doit+0x228/0x320 [ 3414.961272][T29929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3414.968666][T29929] ? ns_capable+0xde/0x100 [ 3414.974467][T29929] genl_rcv_msg+0x328/0x580 [ 3414.979431][T29929] ? genl_get_cmd+0x480/0x480 [ 3414.984559][T29929] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3414.990469][T29929] ? lock_release+0x710/0x710 [ 3414.995157][T29929] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3415.000459][T29929] netlink_rcv_skb+0x153/0x420 [ 3415.005241][T29929] ? genl_get_cmd+0x480/0x480 [ 3415.010177][T29929] ? netlink_ack+0xaa0/0xaa0 [ 3415.014792][T29929] genl_rcv+0x24/0x40 [ 3415.019032][T29929] netlink_unicast+0x533/0x7d0 [ 3415.024415][T29929] ? netlink_attachskb+0x810/0x810 [ 3415.030146][T29929] ? __phys_addr_symbol+0x2c/0x70 [ 3415.035185][T29929] ? __check_object_size+0x171/0x3f0 [ 3415.041372][T29929] netlink_sendmsg+0x856/0xd90 [ 3415.046247][T29929] ? netlink_unicast+0x7d0/0x7d0 [ 3415.051288][T29929] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3415.056575][T29929] ? netlink_unicast+0x7d0/0x7d0 [ 3415.062337][T29929] sock_sendmsg+0xcf/0x120 [ 3415.066764][T29929] ____sys_sendmsg+0x6e8/0x810 [ 3415.071757][T29929] ? kernel_sendmsg+0x50/0x50 [ 3415.076438][T29929] ? do_recvmmsg+0x6c0/0x6c0 [ 3415.081061][T29929] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3415.087165][T29929] ___sys_sendmsg+0xf3/0x170 [ 3415.092014][T29929] ? sendmsg_copy_msghdr+0x160/0x160 [ 3415.097313][T29929] ? __fget_files+0x272/0x400 [ 3415.102162][T29929] ? lock_downgrade+0x6d0/0x6d0 [ 3415.107138][T29929] ? find_held_lock+0x2d/0x110 [ 3415.112607][T29929] ? __fget_files+0x294/0x400 [ 3415.117300][T29929] ? __fget_light+0xea/0x280 [ 3415.121894][T29929] __sys_sendmsg+0xe5/0x1b0 [ 3415.126416][T29929] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3415.131764][T29929] ? __do_sys_futex+0x2a2/0x470 [ 3415.136644][T29929] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3415.143230][T29929] do_syscall_64+0x2d/0x70 [ 3415.147661][T29929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3415.153559][T29929] RIP: 0033:0x45deb9 [ 3415.157468][T29929] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3415.177078][T29929] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3415.185507][T29929] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3415.193898][T29929] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3415.201971][T29929] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3415.210455][T29929] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3415.218431][T29929] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3415.268108][T29956] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3415.330566][T29956] CPU: 0 PID: 29956 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3415.339371][T29956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3415.349544][T29956] Call Trace: [ 3415.352861][T29956] dump_stack+0x107/0x163 [ 3415.357314][T29956] sysfs_warn_dup.cold+0x1c/0x29 [ 3415.362266][T29956] sysfs_do_create_link_sd+0x11e/0x140 [ 3415.367739][T29956] sysfs_create_link+0x5f/0xc0 [ 3415.372511][T29956] device_add+0x79a/0x1ce0 [ 3415.376944][T29956] ? devlink_add_symlinks+0x450/0x450 [ 3415.382329][T29956] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3415.388341][T29956] wiphy_register+0x1dfc/0x2900 [ 3415.393214][T29956] ? wiphy_unregister+0xbb0/0xbb0 [ 3415.398260][T29956] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3415.404342][T29956] ieee80211_register_hw+0x1b0f/0x3b00 [ 3415.409827][T29956] ? ieee80211_restart_hw+0x290/0x290 [ 3415.415229][T29956] ? debug_object_destroy+0x210/0x210 [ 3415.420617][T29956] ? memset+0x20/0x40 [ 3415.424611][T29956] ? __hrtimer_init+0x136/0x280 [ 3415.429473][T29956] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3415.435232][T29956] ? hwsim_virtio_rx_work+0x350/0x350 [ 3415.440627][T29956] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3415.446200][T29956] ? memcpy+0x39/0x60 [ 3415.450195][T29956] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3415.455429][T29956] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3415.461354][T29956] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3415.468745][T29956] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3415.476053][T29956] genl_family_rcv_msg_doit+0x228/0x320 [ 3415.481611][T29956] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3415.489176][T29956] ? ns_capable+0xde/0x100 [ 3415.493719][T29956] genl_rcv_msg+0x328/0x580 [ 3415.498234][T29956] ? genl_get_cmd+0x480/0x480 [ 3415.502914][T29956] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3415.508841][T29956] ? lock_release+0x710/0x710 [ 3415.513527][T29956] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3415.518831][T29956] netlink_rcv_skb+0x153/0x420 [ 3415.523605][T29956] ? genl_get_cmd+0x480/0x480 [ 3415.528284][T29956] ? netlink_ack+0xaa0/0xaa0 [ 3415.532897][T29956] genl_rcv+0x24/0x40 [ 3415.536882][T29956] netlink_unicast+0x533/0x7d0 [ 3415.542447][T29956] ? netlink_attachskb+0x810/0x810 [ 3415.548041][T29956] ? __phys_addr_symbol+0x2c/0x70 [ 3415.553377][T29956] ? __check_object_size+0x171/0x3f0 [ 3415.558851][T29956] netlink_sendmsg+0x856/0xd90 [ 3415.563632][T29956] ? netlink_unicast+0x7d0/0x7d0 [ 3415.569963][T29956] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3415.576093][T29956] ? netlink_unicast+0x7d0/0x7d0 [ 3415.581637][T29956] sock_sendmsg+0xcf/0x120 [ 3415.586835][T29956] ____sys_sendmsg+0x6e8/0x810 [ 3415.591941][T29956] ? kernel_sendmsg+0x50/0x50 [ 3415.597417][T29956] ? do_recvmmsg+0x6c0/0x6c0 [ 3415.602757][T29956] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3415.609288][T29956] ___sys_sendmsg+0xf3/0x170 [ 3415.614375][T29956] ? sendmsg_copy_msghdr+0x160/0x160 [ 3415.619996][T29956] ? __fget_files+0x272/0x400 [ 3415.625252][T29956] ? lock_downgrade+0x6d0/0x6d0 [ 3415.630494][T29956] ? find_held_lock+0x2d/0x110 [ 3415.635806][T29956] ? __fget_files+0x294/0x400 [ 3415.641368][T29956] ? __fget_light+0xea/0x280 [ 3415.646637][T29956] __sys_sendmsg+0xe5/0x1b0 [ 3415.651897][T29956] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3415.657309][T29956] ? __do_sys_futex+0x2a2/0x470 [ 3415.662784][T29956] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3415.669247][T29956] do_syscall_64+0x2d/0x70 [ 3415.674251][T29956] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3415.680341][T29956] RIP: 0033:0x45deb9 [ 3415.684500][T29956] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3415.704140][T29956] RSP: 002b:00007f6138fe9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3415.713270][T29956] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3415.721829][T29956] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3415.729944][T29956] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3415.738308][T29956] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3415.746397][T29956] R13: 00007ffcdabc015f R14: 00007f6138fea9c0 R15: 000000000118bfd4 15:54:39 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd1, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x26, 0xffffff7f0e000000}, 0x0) 15:54:39 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xfa, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x9effffff}, 0x0) 15:54:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2af91300}, 0x0) 15:54:39 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r2, r1, 0x0, 0x100000001) bind$nfc_llcp(r2, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x6, 0x9, 0x6, "cfa2670ac5d8f526ea5680bef2930f77787b5b3789dbf911aee85aa99f89bb08d21208828474aaa94e37719b0a5e0e45a69e1f55618ccf4255da5e62bc6231", 0x27}, 0x60) r3 = socket(0x23, 0x4, 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000100)={0x0, 0x80, 0x7}, 0x8) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:39 executing program 3: getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000100)={{{@in6=@private2, @in6=@dev}}, {{@in=@private}, 0x0, @in=@remote}}, &(0x7f0000000000)=0xe8) r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3415.971443][T30030] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3416.038166][T30033] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3416.051305][T30038] IPVS: ftp: loaded support on port[0] = 21 [ 3416.062882][T30033] CPU: 1 PID: 30033 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3416.071739][T30033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3416.081810][T30033] Call Trace: [ 3416.085121][T30033] dump_stack+0x107/0x163 [ 3416.089477][T30033] sysfs_warn_dup.cold+0x1c/0x29 [ 3416.094428][T30033] sysfs_do_create_link_sd+0x11e/0x140 [ 3416.099899][T30033] sysfs_create_link+0x5f/0xc0 [ 3416.104676][T30033] device_add+0x79a/0x1ce0 [ 3416.109108][T30033] ? devlink_add_symlinks+0x450/0x450 [ 3416.114500][T30033] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3416.120498][T30033] wiphy_register+0x1dfc/0x2900 [ 3416.125383][T30033] ? wiphy_unregister+0xbb0/0xbb0 [ 3416.130545][T30033] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3416.136627][T30033] ieee80211_register_hw+0x1b0f/0x3b00 [ 3416.142114][T30033] ? ieee80211_restart_hw+0x290/0x290 [ 3416.147506][T30033] ? debug_object_destroy+0x210/0x210 [ 3416.152894][T30033] ? memset+0x20/0x40 [ 3416.156889][T30033] ? __hrtimer_init+0x136/0x280 [ 3416.161757][T30033] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3416.167505][T30033] ? hwsim_virtio_rx_work+0x350/0x350 [ 3416.172885][T30033] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3416.178441][T30033] ? memcpy+0x39/0x60 [ 3416.182501][T30033] hwsim_new_radio_nl+0x9a6/0x10b0 15:54:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x28, 0xffffff7f0e000000}, 0x0) [ 3416.187632][T30033] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3416.193546][T30033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3416.200918][T30033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3416.208211][T30033] genl_family_rcv_msg_doit+0x228/0x320 [ 3416.213763][T30033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3416.221157][T30033] ? ns_capable+0xde/0x100 [ 3416.225597][T30033] genl_rcv_msg+0x328/0x580 [ 3416.230396][T30033] ? genl_get_cmd+0x480/0x480 [ 3416.235092][T30033] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3416.241012][T30033] ? lock_release+0x710/0x710 [ 3416.245703][T30033] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3416.251335][T30033] netlink_rcv_skb+0x153/0x420 [ 3416.256104][T30033] ? genl_get_cmd+0x480/0x480 [ 3416.260794][T30033] ? netlink_ack+0xaa0/0xaa0 [ 3416.265418][T30033] genl_rcv+0x24/0x40 [ 3416.269409][T30033] netlink_unicast+0x533/0x7d0 [ 3416.274185][T30033] ? netlink_attachskb+0x810/0x810 [ 3416.279309][T30033] ? __phys_addr_symbol+0x2c/0x70 [ 3416.284355][T30033] ? __check_object_size+0x171/0x3f0 [ 3416.289997][T30033] netlink_sendmsg+0x856/0xd90 [ 3416.295087][T30033] ? netlink_unicast+0x7d0/0x7d0 [ 3416.300057][T30033] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3416.305355][T30033] ? netlink_unicast+0x7d0/0x7d0 [ 3416.310971][T30033] sock_sendmsg+0xcf/0x120 [ 3416.315410][T30033] ____sys_sendmsg+0x6e8/0x810 [ 3416.320189][T30033] ? kernel_sendmsg+0x50/0x50 [ 3416.324892][T30033] ? do_recvmmsg+0x6c0/0x6c0 [ 3416.330245][T30033] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3416.336239][T30033] ___sys_sendmsg+0xf3/0x170 [ 3416.341081][T30033] ? sendmsg_copy_msghdr+0x160/0x160 [ 3416.346380][T30033] ? __fget_files+0x272/0x400 [ 3416.351064][T30033] ? lock_downgrade+0x6d0/0x6d0 [ 3416.355924][T30033] ? find_held_lock+0x2d/0x110 [ 3416.361569][T30033] ? __fget_files+0x294/0x400 [ 3416.366260][T30033] ? __fget_light+0xea/0x280 [ 3416.370988][T30033] __sys_sendmsg+0xe5/0x1b0 [ 3416.375505][T30033] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3416.380561][T30033] ? __do_sys_futex+0x2a2/0x470 [ 3416.385445][T30033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3416.391606][T30033] do_syscall_64+0x2d/0x70 [ 3416.396035][T30033] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3416.402298][T30033] RIP: 0033:0x45deb9 [ 3416.406198][T30033] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3416.425917][T30033] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3416.434352][T30033] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3416.442324][T30033] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3416.450301][T30033] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3416.458275][T30033] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3416.466247][T30033] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3416.521241][T30035] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x2f, 0xffffff7f0e000000}, 0x0) [ 3416.572989][T30035] CPU: 1 PID: 30035 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3416.581772][T30035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3416.591995][T30035] Call Trace: [ 3416.595310][T30035] dump_stack+0x107/0x163 [ 3416.599671][T30035] sysfs_warn_dup.cold+0x1c/0x29 [ 3416.604645][T30035] sysfs_do_create_link_sd+0x11e/0x140 [ 3416.610121][T30035] sysfs_create_link+0x5f/0xc0 [ 3416.615028][T30035] device_add+0x79a/0x1ce0 15:54:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x30, 0xffffff7f0e000000}, 0x0) [ 3416.619475][T30035] ? devlink_add_symlinks+0x450/0x450 [ 3416.624869][T30035] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3416.630882][T30035] wiphy_register+0x1dfc/0x2900 [ 3416.635890][T30035] ? wiphy_unregister+0xbb0/0xbb0 [ 3416.640955][T30035] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3416.647043][T30035] ieee80211_register_hw+0x1b0f/0x3b00 [ 3416.652528][T30035] ? ieee80211_restart_hw+0x290/0x290 [ 3416.657917][T30035] ? debug_object_destroy+0x210/0x210 [ 3416.663314][T30035] ? memset+0x20/0x40 [ 3416.667320][T30035] ? __hrtimer_init+0x136/0x280 [ 3416.672199][T30035] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3416.677963][T30035] ? hwsim_virtio_rx_work+0x350/0x350 [ 3416.683355][T30035] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3416.689361][T30035] ? memcpy+0x39/0x60 [ 3416.693370][T30035] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3416.699063][T30035] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3416.705005][T30035] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3416.712386][T30035] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3416.719694][T30035] genl_family_rcv_msg_doit+0x228/0x320 [ 3416.725257][T30035] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3416.733079][T30035] ? ns_capable+0xde/0x100 [ 3416.737511][T30035] genl_rcv_msg+0x328/0x580 [ 3416.742155][T30035] ? genl_get_cmd+0x480/0x480 [ 3416.746849][T30035] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3416.752948][T30035] ? lock_release+0x710/0x710 [ 3416.757636][T30035] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3416.763325][T30035] netlink_rcv_skb+0x153/0x420 [ 3416.768111][T30035] ? genl_get_cmd+0x480/0x480 [ 3416.773196][T30035] ? netlink_ack+0xaa0/0xaa0 [ 3416.777821][T30035] genl_rcv+0x24/0x40 [ 3416.781884][T30035] netlink_unicast+0x533/0x7d0 [ 3416.786669][T30035] ? netlink_attachskb+0x810/0x810 [ 3416.792558][T30035] ? __phys_addr_symbol+0x2c/0x70 [ 3416.797599][T30035] ? __check_object_size+0x171/0x3f0 [ 3416.803139][T30035] netlink_sendmsg+0x856/0xd90 [ 3416.807926][T30035] ? netlink_unicast+0x7d0/0x7d0 [ 3416.813760][T30035] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3416.819051][T30035] ? netlink_unicast+0x7d0/0x7d0 [ 3416.823991][T30035] sock_sendmsg+0xcf/0x120 [ 3416.828500][T30035] ____sys_sendmsg+0x6e8/0x810 [ 3416.834275][T30035] ? kernel_sendmsg+0x50/0x50 [ 3416.839240][T30035] ? do_recvmmsg+0x6c0/0x6c0 [ 3416.843847][T30035] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3416.849854][T30035] ___sys_sendmsg+0xf3/0x170 [ 3416.855251][T30035] ? sendmsg_copy_msghdr+0x160/0x160 [ 3416.860546][T30035] ? __fget_files+0x272/0x400 [ 3416.866225][T30035] ? lock_downgrade+0x6d0/0x6d0 [ 3416.871069][T30035] ? find_held_lock+0x2d/0x110 [ 3416.875849][T30035] ? __fget_files+0x294/0x400 [ 3416.881165][T30035] ? __fget_light+0xea/0x280 [ 3416.885763][T30035] __sys_sendmsg+0xe5/0x1b0 [ 3416.890262][T30035] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3416.895296][T30035] ? __do_sys_futex+0x2a2/0x470 [ 3416.901634][T30035] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3416.907529][T30035] do_syscall_64+0x2d/0x70 [ 3416.912377][T30035] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3416.918327][T30035] RIP: 0033:0x45deb9 [ 3416.922376][T30035] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3416.942144][T30035] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3416.950553][T30035] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3416.958524][T30035] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3416.966502][T30035] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:54:40 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2bf91300}, 0x0) [ 3416.974465][T30035] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3416.982431][T30035] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x33, 0xffffff7f0e000000}, 0x0) [ 3417.066208][T30044] IPVS: ftp: loaded support on port[0] = 21 [ 3417.108953][T30066] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3417.170281][T30069] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3417.224509][T30069] CPU: 0 PID: 30069 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3417.233387][T30069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.243441][T30069] Call Trace: [ 3417.246733][T30069] dump_stack+0x107/0x163 [ 3417.251062][T30069] sysfs_warn_dup.cold+0x1c/0x29 [ 3417.256111][T30069] sysfs_do_create_link_sd+0x11e/0x140 [ 3417.261600][T30069] sysfs_create_link+0x5f/0xc0 [ 3417.266367][T30069] device_add+0x79a/0x1ce0 [ 3417.270785][T30069] ? devlink_add_symlinks+0x450/0x450 [ 3417.276257][T30069] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3417.282263][T30069] wiphy_register+0x1dfc/0x2900 [ 3417.287139][T30069] ? wiphy_unregister+0xbb0/0xbb0 [ 3417.292190][T30069] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3417.298265][T30069] ieee80211_register_hw+0x1b0f/0x3b00 [ 3417.304136][T30069] ? ieee80211_restart_hw+0x290/0x290 [ 3417.310381][T30069] ? debug_object_destroy+0x210/0x210 [ 3417.316690][T30069] ? memset+0x20/0x40 [ 3417.321167][T30069] ? __hrtimer_init+0x136/0x280 [ 3417.326052][T30069] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3417.332097][T30069] ? hwsim_virtio_rx_work+0x350/0x350 [ 3417.337860][T30069] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3417.343530][T30069] ? memcpy+0x39/0x60 [ 3417.347829][T30069] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3417.353327][T30069] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3417.359522][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3417.367104][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3417.374381][T30069] genl_family_rcv_msg_doit+0x228/0x320 [ 3417.379919][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3417.388017][T30069] ? ns_capable+0xde/0x100 [ 3417.393124][T30069] genl_rcv_msg+0x328/0x580 [ 3417.397627][T30069] ? genl_get_cmd+0x480/0x480 [ 3417.402680][T30069] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3417.408574][T30069] ? lock_release+0x710/0x710 [ 3417.413484][T30069] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3417.419016][T30069] netlink_rcv_skb+0x153/0x420 [ 3417.424457][T30069] ? genl_get_cmd+0x480/0x480 [ 3417.429171][T30069] ? netlink_ack+0xaa0/0xaa0 [ 3417.434668][T30069] genl_rcv+0x24/0x40 [ 3417.438975][T30069] netlink_unicast+0x533/0x7d0 [ 3417.444363][T30069] ? netlink_attachskb+0x810/0x810 [ 3417.450008][T30069] ? __phys_addr_symbol+0x2c/0x70 [ 3417.455449][T30069] ? __check_object_size+0x171/0x3f0 [ 3417.461200][T30069] netlink_sendmsg+0x856/0xd90 [ 3417.466629][T30069] ? netlink_unicast+0x7d0/0x7d0 [ 3417.471893][T30069] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3417.477173][T30069] ? netlink_unicast+0x7d0/0x7d0 [ 3417.482418][T30069] sock_sendmsg+0xcf/0x120 [ 3417.487010][T30069] ____sys_sendmsg+0x6e8/0x810 [ 3417.492522][T30069] ? kernel_sendmsg+0x50/0x50 [ 3417.497204][T30069] ? do_recvmmsg+0x6c0/0x6c0 [ 3417.502572][T30069] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3417.508651][T30069] ___sys_sendmsg+0xf3/0x170 [ 3417.513244][T30069] ? sendmsg_copy_msghdr+0x160/0x160 [ 3417.518544][T30069] ? __fget_files+0x272/0x400 [ 3417.523220][T30069] ? lock_downgrade+0x6d0/0x6d0 [ 3417.528070][T30069] ? find_held_lock+0x2d/0x110 [ 3417.532844][T30069] ? __fget_files+0x294/0x400 [ 3417.537533][T30069] ? __fget_light+0xea/0x280 [ 3417.542119][T30069] __sys_sendmsg+0xe5/0x1b0 [ 3417.546622][T30069] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3417.551645][T30069] ? __do_sys_futex+0x2a2/0x470 [ 3417.556521][T30069] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3417.562420][T30069] do_syscall_64+0x2d/0x70 [ 3417.566833][T30069] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3417.572725][T30069] RIP: 0033:0x45deb9 [ 3417.576623][T30069] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3417.596215][T30069] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3417.604599][T30069] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3417.612550][T30069] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3417.620498][T30069] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3417.628450][T30069] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3417.636393][T30069] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3417.770544][T30069] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3417.803599][T30069] CPU: 1 PID: 30069 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3417.812987][T30069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.823821][T30069] Call Trace: [ 3417.827779][T30069] dump_stack+0x107/0x163 [ 3417.832118][T30069] sysfs_warn_dup.cold+0x1c/0x29 [ 3417.838825][T30069] sysfs_do_create_link_sd+0x11e/0x140 [ 3417.844289][T30069] sysfs_create_link+0x5f/0xc0 [ 3417.849062][T30069] device_add+0x79a/0x1ce0 [ 3417.853488][T30069] ? devlink_add_symlinks+0x450/0x450 [ 3417.858866][T30069] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3417.864858][T30069] wiphy_register+0x1dfc/0x2900 [ 3417.869718][T30069] ? wiphy_unregister+0xbb0/0xbb0 [ 3417.874754][T30069] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3417.880828][T30069] ieee80211_register_hw+0x1b0f/0x3b00 [ 3417.886304][T30069] ? ieee80211_restart_hw+0x290/0x290 [ 3417.891681][T30069] ? debug_object_destroy+0x210/0x210 [ 3417.897070][T30069] ? memset+0x20/0x40 [ 3417.901070][T30069] ? __hrtimer_init+0x136/0x280 [ 3417.905932][T30069] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3417.911689][T30069] ? hwsim_virtio_rx_work+0x350/0x350 [ 3417.917058][T30069] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3417.922607][T30069] ? memcpy+0x39/0x60 [ 3417.926592][T30069] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3417.931701][T30069] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3417.937606][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3417.944975][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3417.952260][T30069] genl_family_rcv_msg_doit+0x228/0x320 [ 3417.957802][T30069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3417.965184][T30069] ? ns_capable+0xde/0x100 [ 3417.969600][T30069] genl_rcv_msg+0x328/0x580 [ 3417.974098][T30069] ? genl_get_cmd+0x480/0x480 [ 3417.978771][T30069] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3417.984662][T30069] ? lock_release+0x710/0x710 [ 3417.989332][T30069] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3417.994620][T30069] netlink_rcv_skb+0x153/0x420 [ 3417.999373][T30069] ? genl_get_cmd+0x480/0x480 [ 3418.004031][T30069] ? netlink_ack+0xaa0/0xaa0 [ 3418.008602][T30069] genl_rcv+0x24/0x40 [ 3418.012557][T30069] netlink_unicast+0x533/0x7d0 [ 3418.017298][T30069] ? netlink_attachskb+0x810/0x810 [ 3418.022382][T30069] ? __phys_addr_symbol+0x2c/0x70 [ 3418.027376][T30069] ? __check_object_size+0x171/0x3f0 [ 3418.032642][T30069] netlink_sendmsg+0x856/0xd90 [ 3418.037399][T30069] ? netlink_unicast+0x7d0/0x7d0 [ 3418.042315][T30069] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3418.047582][T30069] ? netlink_unicast+0x7d0/0x7d0 [ 3418.052519][T30069] sock_sendmsg+0xcf/0x120 [ 3418.057035][T30069] ____sys_sendmsg+0x6e8/0x810 [ 3418.061860][T30069] ? kernel_sendmsg+0x50/0x50 [ 3418.066512][T30069] ? do_recvmmsg+0x6c0/0x6c0 [ 3418.071083][T30069] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3418.077095][T30069] ___sys_sendmsg+0xf3/0x170 [ 3418.081661][T30069] ? sendmsg_copy_msghdr+0x160/0x160 [ 3418.086962][T30069] ? __fget_files+0x272/0x400 [ 3418.091624][T30069] ? lock_downgrade+0x6d0/0x6d0 [ 3418.096474][T30069] ? find_held_lock+0x2d/0x110 [ 3418.101231][T30069] ? __fget_files+0x294/0x400 [ 3418.105908][T30069] ? __fget_light+0xea/0x280 [ 3418.110495][T30069] __sys_sendmsg+0xe5/0x1b0 [ 3418.114986][T30069] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3418.120006][T30069] ? __do_sys_futex+0x2a2/0x470 [ 3418.124927][T30069] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3418.130848][T30069] do_syscall_64+0x2d/0x70 [ 3418.135264][T30069] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3418.141142][T30069] RIP: 0033:0x45deb9 [ 3418.145024][T30069] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3418.164714][T30069] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3418.173098][T30069] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3418.181040][T30069] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3418.188985][T30069] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3418.196936][T30069] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3418.204888][T30069] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:44 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd3, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:44 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xa0050000}, 0x0) 15:54:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x34, 0xffffff7f0e000000}, 0x0) 15:54:44 executing program 3: sendmsg$RDMA_NLDEV_CMD_STAT_DEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x1412, 0x4, 0x70bd26, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40800}, 0x20004051) r0 = socket(0x18, 0x3, 0x36f8bc71) sendmsg$SOCK_DESTROY(r0, &(0x7f00000013c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001380)={&(0x7f0000000280)={0x10fc, 0x15, 0x200, 0x70bd2b, 0x25dfdbfb, {0x27, 0x3f}, [@INET_DIAG_REQ_BYTECODE={0x9c, 0x1, "17d006181551f5c0924ffe7b55f8d7eca3305b0b7db1759194382c8a0205b997bdd71e913e2796ae28424e9645c0a9c57a402ec6807636c3df5ed138e38f8fe3bdc7a6047e67b13fa42270997b8324df7f34a73bd16ccba855e88b633f2a39790de9b1e8509138ec7b3dd98dfa2a1876a477cc8edf85f9a6862e188893083245f4a1fedb5d6c7c2308d8d029b8f6b823773793c68b415fdc"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x46, 0x1, "d33629629a290900f269b015f09d7e3fdfb93102113d4cab1ca6f2bca541e3b58fe14cdc14bced3f4a5104dab2c9ce3f75f8d202cf3546b25d8a4182a7e89241ef01"}]}, 0x10fc}, 0x1, 0x0, 0x0, 0x20004040}, 0x40000) r1 = socket(0xb, 0x800, 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_SET_POWER_SAVE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, r3, 0x1, 0x0, 0x0, {{0x1b}, {@void, @val={0xc}}}}, 0x20}}, 0x0) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x7c, r3, 0x400, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x10000}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x47}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x800}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x6}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x36f}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}]]}, 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x20008000) 15:54:44 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x11c, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2cf91300}, 0x0) [ 3421.255614][T30152] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3421.280048][T30152] CPU: 1 PID: 30152 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3421.288832][T30152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3421.298897][T30152] Call Trace: [ 3421.302206][T30152] dump_stack+0x107/0x163 [ 3421.306554][T30152] sysfs_warn_dup.cold+0x1c/0x29 [ 3421.311516][T30152] sysfs_do_create_link_sd+0x11e/0x140 [ 3421.316989][T30152] sysfs_create_link+0x5f/0xc0 [ 3421.321763][T30152] device_add+0x79a/0x1ce0 [ 3421.326190][T30152] ? devlink_add_symlinks+0x450/0x450 [ 3421.331674][T30152] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3421.337661][T30152] wiphy_register+0x1dfc/0x2900 [ 3421.339210][T30161] IPVS: ftp: loaded support on port[0] = 21 [ 3421.342620][T30152] ? wiphy_unregister+0xbb0/0xbb0 15:54:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x35, 0xffffff7f0e000000}, 0x0) [ 3421.342652][T30152] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3421.342679][T30152] ieee80211_register_hw+0x1b0f/0x3b00 [ 3421.365048][T30152] ? ieee80211_restart_hw+0x290/0x290 [ 3421.370426][T30152] ? debug_object_destroy+0x210/0x210 [ 3421.375807][T30152] ? memset+0x20/0x40 [ 3421.379794][T30152] ? __hrtimer_init+0x136/0x280 [ 3421.384656][T30152] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3421.390389][T30152] ? hwsim_virtio_rx_work+0x350/0x350 [ 3421.395759][T30152] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3421.401306][T30152] ? memcpy+0x39/0x60 [ 3421.405294][T30152] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3421.410414][T30152] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3421.416324][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3421.423689][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3421.430971][T30152] genl_family_rcv_msg_doit+0x228/0x320 [ 3421.436616][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3421.443990][T30152] ? ns_capable+0xde/0x100 [ 3421.448409][T30152] genl_rcv_msg+0x328/0x580 15:54:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x36, 0xffffff7f0e000000}, 0x0) [ 3421.452914][T30152] ? genl_get_cmd+0x480/0x480 [ 3421.457590][T30152] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3421.463494][T30152] ? lock_release+0x710/0x710 [ 3421.468171][T30152] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3421.473456][T30152] netlink_rcv_skb+0x153/0x420 [ 3421.478220][T30152] ? genl_get_cmd+0x480/0x480 [ 3421.482897][T30152] ? netlink_ack+0xaa0/0xaa0 [ 3421.487514][T30152] genl_rcv+0x24/0x40 [ 3421.491491][T30152] netlink_unicast+0x533/0x7d0 [ 3421.496268][T30152] ? netlink_attachskb+0x810/0x810 [ 3421.501617][T30152] ? __phys_addr_symbol+0x2c/0x70 15:54:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x37, 0xffffff7f0e000000}, 0x0) [ 3421.506638][T30152] ? __check_object_size+0x171/0x3f0 [ 3421.511923][T30152] netlink_sendmsg+0x856/0xd90 [ 3421.516691][T30152] ? netlink_unicast+0x7d0/0x7d0 [ 3421.521634][T30152] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3421.526918][T30152] ? netlink_unicast+0x7d0/0x7d0 [ 3421.532321][T30152] sock_sendmsg+0xcf/0x120 [ 3421.537561][T30152] ____sys_sendmsg+0x6e8/0x810 [ 3421.542316][T30152] ? kernel_sendmsg+0x50/0x50 [ 3421.546988][T30152] ? do_recvmmsg+0x6c0/0x6c0 [ 3421.552438][T30152] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3421.558431][T30152] ___sys_sendmsg+0xf3/0x170 [ 3421.563021][T30152] ? sendmsg_copy_msghdr+0x160/0x160 [ 3421.568307][T30152] ? __fget_files+0x272/0x400 [ 3421.572997][T30152] ? lock_downgrade+0x6d0/0x6d0 [ 3421.577944][T30152] ? find_held_lock+0x2d/0x110 [ 3421.582798][T30152] ? __fget_files+0x294/0x400 [ 3421.587522][T30152] ? __fget_light+0xea/0x280 [ 3421.592881][T30152] __sys_sendmsg+0xe5/0x1b0 [ 3421.598185][T30152] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3421.603897][T30152] ? __do_sys_futex+0x2a2/0x470 [ 3421.608761][T30152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3421.614693][T30152] do_syscall_64+0x2d/0x70 [ 3421.619503][T30152] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3421.625409][T30152] RIP: 0033:0x45deb9 [ 3421.629817][T30152] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3421.650047][T30152] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3421.658460][T30152] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3421.666432][T30152] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3421.674488][T30152] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3421.683049][T30152] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3421.691015][T30152] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b, 0xffffff7f0e000000}, 0x0) [ 3421.805967][T30159] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3421.862964][T30153] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3421.888831][T30153] CPU: 1 PID: 30153 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3421.897598][T30153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3421.907644][T30153] Call Trace: 15:54:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3c, 0xffffff7f0e000000}, 0x0) [ 3421.911039][T30153] dump_stack+0x107/0x163 [ 3421.915384][T30153] sysfs_warn_dup.cold+0x1c/0x29 [ 3421.920330][T30153] sysfs_do_create_link_sd+0x11e/0x140 [ 3421.925799][T30153] sysfs_create_link+0x5f/0xc0 [ 3421.930566][T30153] device_add+0x79a/0x1ce0 [ 3421.934988][T30153] ? devlink_add_symlinks+0x450/0x450 [ 3421.940367][T30153] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3421.946358][T30153] wiphy_register+0x1dfc/0x2900 [ 3421.951232][T30153] ? wiphy_unregister+0xbb0/0xbb0 [ 3421.956269][T30153] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3421.962344][T30153] ieee80211_register_hw+0x1b0f/0x3b00 [ 3421.967825][T30153] ? ieee80211_restart_hw+0x290/0x290 [ 3421.973199][T30153] ? debug_object_destroy+0x210/0x210 [ 3421.978576][T30153] ? memset+0x20/0x40 [ 3421.982562][T30153] ? __hrtimer_init+0x136/0x280 [ 3421.987422][T30153] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3421.993162][T30153] ? hwsim_virtio_rx_work+0x350/0x350 [ 3421.998532][T30153] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3422.004077][T30153] ? memcpy+0x39/0x60 [ 3422.008064][T30153] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3422.013180][T30153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3422.019081][T30153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3422.026446][T30153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3422.033728][T30153] genl_family_rcv_msg_doit+0x228/0x320 [ 3422.039273][T30153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3422.046650][T30153] ? ns_capable+0xde/0x100 [ 3422.051063][T30153] genl_rcv_msg+0x328/0x580 [ 3422.055569][T30153] ? genl_get_cmd+0x480/0x480 [ 3422.060249][T30153] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3422.066139][T30153] ? lock_release+0x710/0x710 [ 3422.070808][T30153] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3422.076107][T30153] netlink_rcv_skb+0x153/0x420 [ 3422.080865][T30153] ? genl_get_cmd+0x480/0x480 [ 3422.085546][T30153] ? netlink_ack+0xaa0/0xaa0 [ 3422.090157][T30153] genl_rcv+0x24/0x40 [ 3422.094151][T30153] netlink_unicast+0x533/0x7d0 [ 3422.098917][T30153] ? netlink_attachskb+0x810/0x810 [ 3422.104027][T30153] ? __phys_addr_symbol+0x2c/0x70 [ 3422.109049][T30153] ? __check_object_size+0x171/0x3f0 [ 3422.114336][T30153] netlink_sendmsg+0x856/0xd90 [ 3422.119107][T30153] ? netlink_unicast+0x7d0/0x7d0 [ 3422.124049][T30153] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3422.129316][T30153] ? netlink_unicast+0x7d0/0x7d0 [ 3422.134240][T30153] sock_sendmsg+0xcf/0x120 [ 3422.138646][T30153] ____sys_sendmsg+0x6e8/0x810 [ 3422.143405][T30153] ? kernel_sendmsg+0x50/0x50 [ 3422.148074][T30153] ? do_recvmmsg+0x6c0/0x6c0 [ 3422.152707][T30153] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3422.158959][T30153] ___sys_sendmsg+0xf3/0x170 [ 3422.163552][T30153] ? sendmsg_copy_msghdr+0x160/0x160 [ 3422.168851][T30153] ? __fget_files+0x272/0x400 [ 3422.174162][T30153] ? lock_downgrade+0x6d0/0x6d0 [ 3422.180111][T30153] ? find_held_lock+0x2d/0x110 [ 3422.184917][T30153] ? __fget_files+0x294/0x400 [ 3422.189610][T30153] ? __fget_light+0xea/0x280 [ 3422.194218][T30153] __sys_sendmsg+0xe5/0x1b0 [ 3422.198859][T30153] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3422.203891][T30153] ? __do_sys_futex+0x2a2/0x470 [ 3422.208764][T30153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3422.215395][T30153] do_syscall_64+0x2d/0x70 [ 3422.219819][T30153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3422.225711][T30153] RIP: 0033:0x45deb9 [ 3422.229608][T30153] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3422.249296][T30153] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3422.257711][T30153] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3422.265684][T30153] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3422.273743][T30153] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3422.281720][T30153] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3422.289683][T30153] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x42, 0xffffff7f0e000000}, 0x0) [ 3422.343799][T30190] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3422.353792][T30163] IPVS: ftp: loaded support on port[0] = 21 [ 3422.464359][T30152] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3422.490697][T30152] CPU: 1 PID: 30152 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3422.499455][T30152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3422.509502][T30152] Call Trace: [ 3422.512795][T30152] dump_stack+0x107/0x163 [ 3422.517134][T30152] sysfs_warn_dup.cold+0x1c/0x29 [ 3422.522088][T30152] sysfs_do_create_link_sd+0x11e/0x140 [ 3422.527823][T30152] sysfs_create_link+0x5f/0xc0 [ 3422.532584][T30152] device_add+0x79a/0x1ce0 [ 3422.537007][T30152] ? devlink_add_symlinks+0x450/0x450 [ 3422.542382][T30152] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3422.548370][T30152] wiphy_register+0x1dfc/0x2900 [ 3422.553242][T30152] ? wiphy_unregister+0xbb0/0xbb0 [ 3422.559096][T30152] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3422.565264][T30152] ieee80211_register_hw+0x1b0f/0x3b00 [ 3422.571327][T30152] ? ieee80211_restart_hw+0x290/0x290 [ 3422.576711][T30152] ? debug_object_destroy+0x210/0x210 [ 3422.582155][T30152] ? memset+0x20/0x40 [ 3422.586141][T30152] ? __hrtimer_init+0x136/0x280 [ 3422.591445][T30152] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3422.597191][T30152] ? hwsim_virtio_rx_work+0x350/0x350 [ 3422.602767][T30152] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3422.608314][T30152] ? memcpy+0x39/0x60 [ 3422.612855][T30152] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3422.617969][T30152] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3422.623873][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3422.631849][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3422.639422][T30152] genl_family_rcv_msg_doit+0x228/0x320 [ 3422.644974][T30152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3422.652794][T30152] ? ns_capable+0xde/0x100 [ 3422.657214][T30152] genl_rcv_msg+0x328/0x580 [ 3422.661742][T30152] ? genl_get_cmd+0x480/0x480 [ 3422.666419][T30152] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3422.672434][T30152] ? lock_release+0x710/0x710 [ 3422.677106][T30152] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3422.682956][T30152] netlink_rcv_skb+0x153/0x420 [ 3422.687721][T30152] ? genl_get_cmd+0x480/0x480 [ 3422.693224][T30152] ? netlink_ack+0xaa0/0xaa0 [ 3422.698750][T30152] genl_rcv+0x24/0x40 [ 3422.703024][T30152] netlink_unicast+0x533/0x7d0 [ 3422.707882][T30152] ? netlink_attachskb+0x810/0x810 [ 3422.713305][T30152] ? __phys_addr_symbol+0x2c/0x70 [ 3422.718322][T30152] ? __check_object_size+0x171/0x3f0 [ 3422.723849][T30152] netlink_sendmsg+0x856/0xd90 [ 3422.728678][T30152] ? netlink_unicast+0x7d0/0x7d0 [ 3422.734079][T30152] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3422.739478][T30152] ? netlink_unicast+0x7d0/0x7d0 [ 3422.744411][T30152] sock_sendmsg+0xcf/0x120 [ 3422.749629][T30152] ____sys_sendmsg+0x6e8/0x810 [ 3422.754392][T30152] ? kernel_sendmsg+0x50/0x50 [ 3422.759766][T30152] ? do_recvmmsg+0x6c0/0x6c0 [ 3422.764358][T30152] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3422.770757][T30152] ___sys_sendmsg+0xf3/0x170 [ 3422.775350][T30152] ? sendmsg_copy_msghdr+0x160/0x160 [ 3422.781262][T30152] ? __fget_files+0x272/0x400 [ 3422.785941][T30152] ? lock_downgrade+0x6d0/0x6d0 [ 3422.790799][T30152] ? find_held_lock+0x2d/0x110 [ 3422.795574][T30152] ? __fget_files+0x294/0x400 [ 3422.800262][T30152] ? __fget_light+0xea/0x280 [ 3422.804849][T30152] __sys_sendmsg+0xe5/0x1b0 [ 3422.809770][T30152] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3422.814792][T30152] ? __do_sys_futex+0x2a2/0x470 [ 3422.820036][T30152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3422.825942][T30152] do_syscall_64+0x2d/0x70 [ 3422.830453][T30152] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3422.836336][T30152] RIP: 0033:0x45deb9 [ 3422.840240][T30152] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3422.860679][T30152] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3422.869771][T30152] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3422.878445][T30152] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3422.886413][T30152] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3422.894383][T30152] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3422.902566][T30152] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:49 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd4, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x62, 0xffffff7f0e000000}, 0x0) 15:54:49 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x12a, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:49 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xe4ffffff}, 0x0) 15:54:49 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004140)={'team0\x00', 0x0}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140)='nl80211\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000024c0)='nl80211\x00') ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x44, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "3b1d9537a6"}]}, 0x44}}, 0x0) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x402020}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r3, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xff}, @NL80211_ATTR_HE_OBSS_PD={0x34, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x8}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x2}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x10}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x2}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x6}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x11}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4004}, 0x48050) recvfrom$packet(0xffffffffffffffff, &(0x7f0000000000)=""/113, 0x71, 0x40010001, &(0x7f0000004180)={0x11, 0xc, r1, 0x1, 0x80, 0x6, @multicast}, 0x14) 15:54:49 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x2df91300}, 0x0) [ 3425.945489][T30244] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3425.960880][T30248] IPVS: ftp: loaded support on port[0] = 21 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x63, 0xffffff7f0e000000}, 0x0) [ 3425.998863][T30246] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3426.032267][T30246] CPU: 1 PID: 30246 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3426.041121][T30246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3426.051172][T30246] Call Trace: [ 3426.054471][T30246] dump_stack+0x107/0x163 [ 3426.058812][T30246] sysfs_warn_dup.cold+0x1c/0x29 [ 3426.063759][T30246] sysfs_do_create_link_sd+0x11e/0x140 [ 3426.069227][T30246] sysfs_create_link+0x5f/0xc0 [ 3426.074114][T30246] device_add+0x79a/0x1ce0 [ 3426.078555][T30246] ? devlink_add_symlinks+0x450/0x450 [ 3426.083938][T30246] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3426.089943][T30246] wiphy_register+0x1dfc/0x2900 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x6e, 0xffffff7f0e000000}, 0x0) [ 3426.094816][T30246] ? wiphy_unregister+0xbb0/0xbb0 [ 3426.099877][T30246] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3426.105971][T30246] ieee80211_register_hw+0x1b0f/0x3b00 [ 3426.111452][T30246] ? ieee80211_restart_hw+0x290/0x290 [ 3426.116828][T30246] ? debug_object_destroy+0x210/0x210 [ 3426.122208][T30246] ? memset+0x20/0x40 [ 3426.126209][T30246] ? __hrtimer_init+0x136/0x280 [ 3426.131071][T30246] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3426.136807][T30246] ? hwsim_virtio_rx_work+0x350/0x350 [ 3426.142183][T30246] ? __kmalloc_track_caller+0x21b/0x3d0 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x6f, 0xffffff7f0e000000}, 0x0) [ 3426.147730][T30246] ? memcpy+0x39/0x60 [ 3426.151718][T30246] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3426.156837][T30246] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3426.162745][T30246] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3426.170114][T30246] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3426.177408][T30246] genl_family_rcv_msg_doit+0x228/0x320 [ 3426.182977][T30246] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3426.190362][T30246] ? ns_capable+0xde/0x100 [ 3426.194784][T30246] genl_rcv_msg+0x328/0x580 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x71, 0xffffff7f0e000000}, 0x0) [ 3426.199288][T30246] ? genl_get_cmd+0x480/0x480 [ 3426.203981][T30246] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3426.209879][T30246] ? lock_release+0x710/0x710 [ 3426.214559][T30246] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3426.219847][T30246] netlink_rcv_skb+0x153/0x420 [ 3426.224611][T30246] ? genl_get_cmd+0x480/0x480 [ 3426.229290][T30246] ? netlink_ack+0xaa0/0xaa0 [ 3426.233897][T30246] genl_rcv+0x24/0x40 [ 3426.237889][T30246] netlink_unicast+0x533/0x7d0 [ 3426.242654][T30246] ? netlink_attachskb+0x810/0x810 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x75, 0xffffff7f0e000000}, 0x0) [ 3426.247749][T30246] ? __phys_addr_symbol+0x2c/0x70 [ 3426.252762][T30246] ? __check_object_size+0x171/0x3f0 [ 3426.258051][T30246] netlink_sendmsg+0x856/0xd90 [ 3426.262824][T30246] ? netlink_unicast+0x7d0/0x7d0 [ 3426.267773][T30246] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3426.273056][T30246] ? netlink_unicast+0x7d0/0x7d0 [ 3426.277998][T30246] sock_sendmsg+0xcf/0x120 [ 3426.282406][T30246] ____sys_sendmsg+0x6e8/0x810 [ 3426.287187][T30246] ? kernel_sendmsg+0x50/0x50 [ 3426.291883][T30246] ? do_recvmmsg+0x6c0/0x6c0 15:54:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x88, 0xffffff7f0e000000}, 0x0) [ 3426.296483][T30246] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3426.302474][T30246] ___sys_sendmsg+0xf3/0x170 [ 3426.307280][T30246] ? sendmsg_copy_msghdr+0x160/0x160 [ 3426.312570][T30246] ? __fget_files+0x272/0x400 [ 3426.317271][T30246] ? lock_downgrade+0x6d0/0x6d0 [ 3426.322120][T30246] ? find_held_lock+0x2d/0x110 [ 3426.326908][T30246] ? __fget_files+0x294/0x400 [ 3426.331600][T30246] ? __fget_light+0xea/0x280 [ 3426.336206][T30246] __sys_sendmsg+0xe5/0x1b0 [ 3426.340716][T30246] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3426.345748][T30246] ? __do_sys_futex+0x2a2/0x470 [ 3426.350611][T30246] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3426.356488][T30246] do_syscall_64+0x2d/0x70 [ 3426.360879][T30246] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3426.366743][T30246] RIP: 0033:0x45deb9 [ 3426.370613][T30246] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3426.390191][T30246] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3426.398581][T30246] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3426.406538][T30246] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3426.414487][T30246] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3426.422433][T30246] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3426.430385][T30246] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3426.482935][T30247] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3426.518222][T30247] CPU: 1 PID: 30247 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3426.527106][T30247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3426.537155][T30247] Call Trace: [ 3426.540469][T30247] dump_stack+0x107/0x163 [ 3426.544909][T30247] sysfs_warn_dup.cold+0x1c/0x29 [ 3426.549851][T30247] sysfs_do_create_link_sd+0x11e/0x140 [ 3426.555325][T30247] sysfs_create_link+0x5f/0xc0 [ 3426.560098][T30247] device_add+0x79a/0x1ce0 [ 3426.564534][T30247] ? devlink_add_symlinks+0x450/0x450 [ 3426.569908][T30247] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3426.575903][T30247] wiphy_register+0x1dfc/0x2900 [ 3426.580776][T30247] ? wiphy_unregister+0xbb0/0xbb0 [ 3426.585925][T30247] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3426.592003][T30247] ieee80211_register_hw+0x1b0f/0x3b00 [ 3426.597496][T30247] ? ieee80211_restart_hw+0x290/0x290 [ 3426.602897][T30247] ? debug_object_destroy+0x210/0x210 [ 3426.608373][T30247] ? memset+0x20/0x40 [ 3426.613029][T30247] ? __hrtimer_init+0x136/0x280 [ 3426.617906][T30247] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3426.623644][T30247] ? hwsim_virtio_rx_work+0x350/0x350 [ 3426.629015][T30247] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3426.634959][T30247] ? memcpy+0x39/0x60 [ 3426.638950][T30247] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3426.644524][T30247] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3426.650440][T30247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3426.658287][T30247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3426.665580][T30247] genl_family_rcv_msg_doit+0x228/0x320 [ 3426.671129][T30247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3426.678508][T30247] ? ns_capable+0xde/0x100 [ 3426.682935][T30247] genl_rcv_msg+0x328/0x580 [ 3426.688329][T30247] ? genl_get_cmd+0x480/0x480 [ 3426.693002][T30247] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3426.698899][T30247] ? lock_release+0x710/0x710 [ 3426.703777][T30247] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3426.709064][T30247] netlink_rcv_skb+0x153/0x420 [ 3426.713825][T30247] ? genl_get_cmd+0x480/0x480 [ 3426.718521][T30247] ? netlink_ack+0xaa0/0xaa0 [ 3426.723378][T30247] genl_rcv+0x24/0x40 [ 3426.727435][T30247] netlink_unicast+0x533/0x7d0 [ 3426.732206][T30247] ? netlink_attachskb+0x810/0x810 [ 3426.737339][T30247] ? __phys_addr_symbol+0x2c/0x70 [ 3426.742365][T30247] ? __check_object_size+0x171/0x3f0 [ 3426.747650][T30247] netlink_sendmsg+0x856/0xd90 [ 3426.752417][T30247] ? netlink_unicast+0x7d0/0x7d0 [ 3426.757363][T30247] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3426.762636][T30247] ? netlink_unicast+0x7d0/0x7d0 [ 3426.768065][T30247] sock_sendmsg+0xcf/0x120 [ 3426.772485][T30247] ____sys_sendmsg+0x6e8/0x810 [ 3426.777262][T30247] ? kernel_sendmsg+0x50/0x50 [ 3426.781934][T30247] ? do_recvmmsg+0x6c0/0x6c0 [ 3426.786534][T30247] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3426.792632][T30247] ___sys_sendmsg+0xf3/0x170 [ 3426.797223][T30247] ? sendmsg_copy_msghdr+0x160/0x160 [ 3426.802509][T30247] ? __fget_files+0x272/0x400 [ 3426.807191][T30247] ? lock_downgrade+0x6d0/0x6d0 [ 3426.812050][T30247] ? find_held_lock+0x2d/0x110 [ 3426.817280][T30247] ? __fget_files+0x294/0x400 [ 3426.821965][T30247] ? __fget_light+0xea/0x280 [ 3426.826577][T30247] __sys_sendmsg+0xe5/0x1b0 [ 3426.831081][T30247] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3426.837018][T30247] ? __do_sys_futex+0x2a2/0x470 [ 3426.842411][T30247] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3426.848791][T30247] do_syscall_64+0x2d/0x70 [ 3426.854025][T30247] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3426.860537][T30247] RIP: 0033:0x45deb9 [ 3426.864433][T30247] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3426.884179][T30247] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3426.892593][T30247] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3426.900558][T30247] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3426.908526][T30247] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3426.916495][T30247] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3426.924466][T30247] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3426.971347][T30274] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3427.049618][T30257] IPVS: ftp: loaded support on port[0] = 21 15:54:51 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xc, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x3f000000}, 0x0) 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x89, 0xffffff7f0e000000}, 0x0) 15:54:51 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xe7030000}, 0x0) 15:54:51 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e24, 0x2000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:51 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x134, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3427.556453][T30341] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3427.596370][T30344] IPVS: ftp: loaded support on port[0] = 21 15:54:51 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="d6ded11536499ca2a6c8bff7f35b677c6a4d527656f5", 0x16}], 0x1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r3, r1, 0x0, 0x100000001) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r4}, 0x8) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r2, r4, 0x0, 0x100000001) ioctl$EXT4_IOC_MIGRATE(r4, 0x6609) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r5, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000100)={{r5}, "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"}) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @mcast2}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x400000]}, 0x5c) [ 3427.620810][T30343] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3427.657569][T30343] CPU: 1 PID: 30343 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3427.666438][T30343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3427.676501][T30343] Call Trace: [ 3427.679799][T30343] dump_stack+0x107/0x163 [ 3427.684149][T30343] sysfs_warn_dup.cold+0x1c/0x29 [ 3427.689115][T30343] sysfs_do_create_link_sd+0x11e/0x140 [ 3427.694586][T30343] sysfs_create_link+0x5f/0xc0 [ 3427.700248][T30343] device_add+0x79a/0x1ce0 [ 3427.704799][T30343] ? devlink_add_symlinks+0x450/0x450 [ 3427.710577][T30343] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3427.716567][T30343] wiphy_register+0x1dfc/0x2900 [ 3427.721946][T30343] ? wiphy_unregister+0xbb0/0xbb0 [ 3427.727784][T30343] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3427.733874][T30343] ieee80211_register_hw+0x1b0f/0x3b00 [ 3427.740078][T30343] ? ieee80211_restart_hw+0x290/0x290 [ 3427.746143][T30343] ? debug_object_destroy+0x210/0x210 [ 3427.751913][T30343] ? memset+0x20/0x40 [ 3427.756536][T30343] ? __hrtimer_init+0x136/0x280 [ 3427.761395][T30343] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3427.767138][T30343] ? hwsim_virtio_rx_work+0x350/0x350 [ 3427.772702][T30343] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3427.779068][T30343] ? memcpy+0x39/0x60 [ 3427.783660][T30343] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3427.789098][T30343] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3427.795398][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3427.802772][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3427.810373][T30343] genl_family_rcv_msg_doit+0x228/0x320 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xb4, 0xffffff7f0e000000}, 0x0) [ 3427.816388][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3427.823787][T30343] ? ns_capable+0xde/0x100 [ 3427.828199][T30343] genl_rcv_msg+0x328/0x580 [ 3427.832701][T30343] ? genl_get_cmd+0x480/0x480 [ 3427.837384][T30343] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3427.843280][T30343] ? lock_release+0x710/0x710 [ 3427.847944][T30343] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3427.853347][T30343] netlink_rcv_skb+0x153/0x420 [ 3427.858119][T30343] ? genl_get_cmd+0x480/0x480 [ 3427.862788][T30343] ? netlink_ack+0xaa0/0xaa0 [ 3427.867380][T30343] genl_rcv+0x24/0x40 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xd1, 0xffffff7f0e000000}, 0x0) [ 3427.871461][T30343] netlink_unicast+0x533/0x7d0 [ 3427.876237][T30343] ? netlink_attachskb+0x810/0x810 [ 3427.881348][T30343] ? __phys_addr_symbol+0x2c/0x70 [ 3427.886370][T30343] ? __check_object_size+0x171/0x3f0 [ 3427.891663][T30343] netlink_sendmsg+0x856/0xd90 [ 3427.896436][T30343] ? netlink_unicast+0x7d0/0x7d0 [ 3427.901372][T30343] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3427.906637][T30343] ? netlink_unicast+0x7d0/0x7d0 [ 3427.911553][T30343] sock_sendmsg+0xcf/0x120 [ 3427.915951][T30343] ____sys_sendmsg+0x6e8/0x810 [ 3427.920696][T30343] ? kernel_sendmsg+0x50/0x50 [ 3427.925370][T30343] ? do_recvmmsg+0x6c0/0x6c0 [ 3427.929973][T30343] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3427.935961][T30343] ___sys_sendmsg+0xf3/0x170 [ 3427.940529][T30343] ? sendmsg_copy_msghdr+0x160/0x160 [ 3427.945811][T30343] ? __fget_files+0x272/0x400 [ 3427.950490][T30343] ? lock_downgrade+0x6d0/0x6d0 [ 3427.955342][T30343] ? find_held_lock+0x2d/0x110 [ 3427.960128][T30343] ? __fget_files+0x294/0x400 [ 3427.964813][T30343] ? __fget_light+0xea/0x280 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x300, 0xffffff7f0e000000}, 0x0) [ 3427.969414][T30343] __sys_sendmsg+0xe5/0x1b0 [ 3427.973915][T30343] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3427.978938][T30343] ? __do_sys_futex+0x2a2/0x470 [ 3427.983803][T30343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3427.989684][T30343] do_syscall_64+0x2d/0x70 [ 3427.994101][T30343] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3427.999966][T30343] RIP: 0033:0x45deb9 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x377, 0xffffff7f0e000000}, 0x0) [ 3428.003845][T30343] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3428.023434][T30343] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3428.031839][T30343] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3428.039804][T30343] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3428.047769][T30343] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3428.055741][T30343] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3428.063809][T30343] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x386, 0xffffff7f0e000000}, 0x0) [ 3428.144620][T30342] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3428.185074][T30342] CPU: 1 PID: 30342 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3428.193843][T30342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3428.203889][T30342] Call Trace: [ 3428.207177][T30342] dump_stack+0x107/0x163 [ 3428.211511][T30342] sysfs_warn_dup.cold+0x1c/0x29 [ 3428.216451][T30342] sysfs_do_create_link_sd+0x11e/0x140 [ 3428.221929][T30342] sysfs_create_link+0x5f/0xc0 [ 3428.226694][T30342] device_add+0x79a/0x1ce0 [ 3428.231114][T30342] ? devlink_add_symlinks+0x450/0x450 [ 3428.236499][T30342] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3428.242484][T30342] wiphy_register+0x1dfc/0x2900 [ 3428.247331][T30342] ? wiphy_unregister+0xbb0/0xbb0 [ 3428.252361][T30342] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3428.258454][T30342] ieee80211_register_hw+0x1b0f/0x3b00 [ 3428.263935][T30342] ? ieee80211_restart_hw+0x290/0x290 [ 3428.269326][T30342] ? debug_object_destroy+0x210/0x210 [ 3428.274704][T30342] ? memset+0x20/0x40 [ 3428.279349][T30342] ? __hrtimer_init+0x136/0x280 [ 3428.284209][T30342] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3428.289954][T30342] ? hwsim_virtio_rx_work+0x350/0x350 [ 3428.295329][T30342] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3428.301679][T30342] ? memcpy+0x39/0x60 [ 3428.305682][T30342] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3428.310992][T30342] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3428.316922][T30342] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3428.324293][T30342] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3428.334271][T30342] genl_family_rcv_msg_doit+0x228/0x320 [ 3428.339836][T30342] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3428.347994][T30342] ? ns_capable+0xde/0x100 [ 3428.352418][T30342] genl_rcv_msg+0x328/0x580 [ 3428.356922][T30342] ? genl_get_cmd+0x480/0x480 [ 3428.361863][T30342] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3428.368279][T30342] ? lock_release+0x710/0x710 [ 3428.372958][T30342] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3428.378247][T30342] netlink_rcv_skb+0x153/0x420 [ 3428.383124][T30342] ? genl_get_cmd+0x480/0x480 [ 3428.388090][T30342] ? netlink_ack+0xaa0/0xaa0 [ 3428.392691][T30342] genl_rcv+0x24/0x40 [ 3428.396670][T30342] netlink_unicast+0x533/0x7d0 [ 3428.401678][T30342] ? netlink_attachskb+0x810/0x810 [ 3428.406795][T30342] ? __phys_addr_symbol+0x2c/0x70 [ 3428.412519][T30342] ? __check_object_size+0x171/0x3f0 [ 3428.417806][T30342] netlink_sendmsg+0x856/0xd90 [ 3428.423025][T30342] ? netlink_unicast+0x7d0/0x7d0 [ 3428.428232][T30342] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3428.433513][T30342] ? netlink_unicast+0x7d0/0x7d0 [ 3428.438850][T30342] sock_sendmsg+0xcf/0x120 [ 3428.443264][T30342] ____sys_sendmsg+0x6e8/0x810 [ 3428.448021][T30342] ? kernel_sendmsg+0x50/0x50 [ 3428.453391][T30342] ? do_recvmmsg+0x6c0/0x6c0 [ 3428.458283][T30342] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3428.464268][T30342] ___sys_sendmsg+0xf3/0x170 [ 3428.469001][T30342] ? sendmsg_copy_msghdr+0x160/0x160 [ 3428.474291][T30342] ? __fget_files+0x272/0x400 [ 3428.479471][T30342] ? lock_downgrade+0x6d0/0x6d0 [ 3428.484316][T30342] ? find_held_lock+0x2d/0x110 [ 3428.489589][T30342] ? __fget_files+0x294/0x400 [ 3428.494272][T30342] ? __fget_light+0xea/0x280 [ 3428.498865][T30342] __sys_sendmsg+0xe5/0x1b0 [ 3428.503947][T30342] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3428.508970][T30342] ? __do_sys_futex+0x2a2/0x470 [ 3428.513833][T30342] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3428.520521][T30342] do_syscall_64+0x2d/0x70 [ 3428.524940][T30342] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3428.530849][T30342] RIP: 0033:0x45deb9 [ 3428.534738][T30342] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3428.554329][T30342] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3428.562776][T30342] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3428.570740][T30342] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3428.579222][T30342] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3428.587201][T30342] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3428.595170][T30342] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3428.626412][T30341] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3428.670043][T30352] IPVS: ftp: loaded support on port[0] = 21 [ 3428.685400][T30343] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3428.743523][T30343] CPU: 1 PID: 30343 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3428.752292][T30343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3428.762337][T30343] Call Trace: [ 3428.765636][T30343] dump_stack+0x107/0x163 [ 3428.769975][T30343] sysfs_warn_dup.cold+0x1c/0x29 [ 3428.774938][T30343] sysfs_do_create_link_sd+0x11e/0x140 [ 3428.780399][T30343] sysfs_create_link+0x5f/0xc0 [ 3428.785170][T30343] device_add+0x79a/0x1ce0 [ 3428.789592][T30343] ? devlink_add_symlinks+0x450/0x450 [ 3428.794990][T30343] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3428.800980][T30343] wiphy_register+0x1dfc/0x2900 [ 3428.805851][T30343] ? wiphy_unregister+0xbb0/0xbb0 [ 3428.811597][T30343] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3428.817671][T30343] ieee80211_register_hw+0x1b0f/0x3b00 [ 3428.823170][T30343] ? ieee80211_restart_hw+0x290/0x290 [ 3428.829163][T30343] ? debug_object_destroy+0x210/0x210 [ 3428.834552][T30343] ? memset+0x20/0x40 [ 3428.838538][T30343] ? __hrtimer_init+0x136/0x280 [ 3428.843393][T30343] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3428.849127][T30343] ? hwsim_virtio_rx_work+0x350/0x350 [ 3428.854497][T30343] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3428.860044][T30343] ? memcpy+0x39/0x60 [ 3428.864032][T30343] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3428.869146][T30343] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3428.875059][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3428.882858][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3428.890797][T30343] genl_family_rcv_msg_doit+0x228/0x320 [ 3428.896346][T30343] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3428.904463][T30343] ? ns_capable+0xde/0x100 [ 3428.908904][T30343] genl_rcv_msg+0x328/0x580 [ 3428.913517][T30343] ? genl_get_cmd+0x480/0x480 [ 3428.918384][T30343] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3428.924288][T30343] ? lock_release+0x710/0x710 [ 3428.929122][T30343] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3428.934409][T30343] netlink_rcv_skb+0x153/0x420 [ 3428.940163][T30343] ? genl_get_cmd+0x480/0x480 [ 3428.944833][T30343] ? netlink_ack+0xaa0/0xaa0 [ 3428.950007][T30343] genl_rcv+0x24/0x40 [ 3428.953985][T30343] netlink_unicast+0x533/0x7d0 [ 3428.959022][T30343] ? netlink_attachskb+0x810/0x810 [ 3428.964144][T30343] ? __phys_addr_symbol+0x2c/0x70 [ 3428.969166][T30343] ? __check_object_size+0x171/0x3f0 [ 3428.974469][T30343] netlink_sendmsg+0x856/0xd90 [ 3428.979241][T30343] ? netlink_unicast+0x7d0/0x7d0 [ 3428.984192][T30343] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3428.989685][T30343] ? netlink_unicast+0x7d0/0x7d0 [ 3428.994623][T30343] sock_sendmsg+0xcf/0x120 [ 3428.999038][T30343] ____sys_sendmsg+0x6e8/0x810 [ 3429.004442][T30343] ? kernel_sendmsg+0x50/0x50 [ 3429.009116][T30343] ? do_recvmmsg+0x6c0/0x6c0 [ 3429.013715][T30343] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3429.019706][T30343] ___sys_sendmsg+0xf3/0x170 [ 3429.024298][T30343] ? sendmsg_copy_msghdr+0x160/0x160 [ 3429.029598][T30343] ? __fget_files+0x272/0x400 [ 3429.034272][T30343] ? lock_downgrade+0x6d0/0x6d0 [ 3429.039587][T30343] ? find_held_lock+0x2d/0x110 [ 3429.044360][T30343] ? __fget_files+0x294/0x400 [ 3429.049041][T30343] ? __fget_light+0xea/0x280 [ 3429.053879][T30343] __sys_sendmsg+0xe5/0x1b0 [ 3429.058484][T30343] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3429.063754][T30343] ? __do_sys_futex+0x2a2/0x470 [ 3429.069373][T30343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3429.075288][T30343] do_syscall_64+0x2d/0x70 [ 3429.079708][T30343] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3429.086430][T30343] RIP: 0033:0x45deb9 [ 3429.090503][T30343] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3429.110114][T30343] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3429.118543][T30343] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3429.127390][T30343] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3429.136052][T30343] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3429.144024][T30343] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3429.152477][T30343] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:53 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1={0xff, 0x7}, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:53 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x389, 0xffffff7f0e000000}, 0x0) 15:54:53 executing program 3: r0 = socket$inet6(0xa, 0x800, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0xb00000000065808, 0x0) preadv(r1, &(0x7f0000001300)=[{&(0x7f0000000200)=""/4096, 0x3ff800}], 0x42, 0x0, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe, 0xe}}]}}}, @IFLA_LINK={0x8, 0x5, r5}]}, 0x50}}, 0x0) sendmsg$inet6(r2, &(0x7f00000012c0)={&(0x7f0000000140)={0xa, 0x4e24, 0x0, @loopback, 0x7}, 0x1c, &(0x7f00000024c0)=[{&(0x7f0000001200)="de417a3b56dc35a66c9e6588d0ee873a5e484e04c8169d37c50a61429fd599e7b6244cba65f13ad2d06483a0b1484532729179c8f0738a405dc927174b7d44d789501f3e813fbde798065602daa735c6d9e6665fa152c05e942ae858e6cde5525ad7b5335f47ca03c37140907bd2446acd628814de54f30242a46bf95e8e407c5e2b304a0221", 0x86}, {&(0x7f0000000180)="35055a3f79c87b18515a8ae3ffb345ca8d6b4837fdf07987d3254172ac7b1d1ccdaba1501eb13c533a79d3181ed4350f59add497c420ba6eec1c2a969c599a6493102134fd3ae98fd14412e8920f059f862680f3b2ed79d3783617", 0x5b}, {&(0x7f0000001340)="15bc6c4788adc28d109ed0d9bc8c0f98583834df37f451164c8d142657898cb47459956d64039c5eecc881900bc16abd20addafefa96ae7c86d680dcc5cd743c1e584d66315f92f659f16f1898fe0c0f42b95d3daa14205360e946e39a0e45c1f013845761562dd350283ad70c20d7bb485e771621737ce0735111bb2344243a512d1b611a3ba3c305d1db3bec4f058e8b89ebd8d8d9ae0e0848b33b1413511ccd01efe672fb15c558fb28634f6b4c3f10ddb4f33789bf8ea92258b1610a37576fd651912dc029e4a8256f26621dff4a3fc55cf9ef06c6d46f4b332819a3245e33b60acb230b854ee10608822420161e6d0b4e2340b7fabd39a6a0a63f5fff6816609fd82f16309530ae684018d028c10016a973324fd860af1303e44ce8b81e980365d46e84626b6482f72e11e20129597e4c050086623df7f565c9f2877ccb5e7f94255adbbe11a6bc7ce939b3fdf76fba2b6a8ae90a58fd08b28812e94959729f0962849d8cd83d5b8892ddb8eda9e92e4a3a638a43b3b192a2762ee9557e28e6c3ffe60ffab73ebc9f168339e25bff5b8f5d00f0d58a7a2a1d96a1dd8ad75fef0c8b89211fe08199c17c2b879d917996280732ef3fec4fa91b66e58f2833d81634b7cddfbe86688f89b752b4cb95eb9abfa977faa57b3e7fdba386a9e8030db005ec75c14b31a2d2d448076d9726a0d721042ab14b02ad0c36528546097379a310a962b97f75d68a012a8a3f134433a4cce7102d06a91d04d4aab2c54b46ddcec14ac4510015b4e98cd7fc6bbced2df2b1396b32a41dd9509f22c5ad3b9c8eec8e6e3afdc04ccdc83978b18596816ae5a514190dc938e41ef3940846e812b3dc02b4184c761af7cee16f152281a191a77e4056d5b3d8665282df1b696c62027e9caf3e00e82f7c3323ae3898a6762c02e5be96948c818dbf9865e3f87500b44dc1c0bd93e72e7bea42b694adeccc90bc2db7a0aa747fcac87d5c8a71498ea5feee8a5d5fc28f148a802787bd4a71914f2d552b4abf31d77a4aacfb77ee1dc307fcdae51bbeab4d19bbc7f38c38738df989dec623cf5379550ee85c588a64288fbe93ff3f77a4fdd67086bdd18619512e964832224728982e3c6235c196821b8435f9a73911afcf8c2b36c8b20f8b0b39c8b1518a266f61e811a67b21c9efa338bdd445f1818623e2d3c342dccba9a7dc0fce2535bbf9f36d6e79d7b1eeade20abed52b4aa2f9e74d5e0b643107e9295c503403f1ac262dfbb22e57cd401aa5f77bedc4b940175b5e8193c21c93c5e04f849c35a03ddf24e1fc1535b46405f5c028409954a6323d0aa8d218e0efe5badfb84ca9c7ece4372e72559fdd075f6c9a1eb2552c83b1db525a5b15771b32bdef385214a1137422b701ae10dd3b7258554f13642602feee7690cee5ddd3ee785265fccabba638d56ab05ca47d639763998412ffe60450ed3bd13a70faea04fb5197f0833e2bc64d183d5515e6045e3085e66427f0a9b0b821e68e170057821dda2eadf44db54f2eaa30b1dfb0b51d3c10263d729cbbc84235301813124869c7c53ce88691f32e935a35580a4b50454cb8867288a5ab9284f498f8b9eaf52151aef1ce0231f4bffebbf711d0af77e5b8eba714860306610fbad2af9913ba6d0c5730e62069d61a68fa804640feb821b26fbdbf9af5ec0aa85e59ae9bcc36cfeb9bd5424d638d8b50319eb11801f3a2c1bc93d09820e1e3b2199d8777217f9806ebda75870805e9045d3275c482d91eb1599e7752fcd08fa745653947b75367753e13e5a8f0a790be87dc73c65bde873b3a132290b1e922231721450a914af454915125bc7466ce186a985babb9889002eadbf45045cd4051ce40c4125f5796ad5ddb11afe722802a03cee206051d1a8a19b414c9b2f80269ea71233e18234216c5eeed6042ef351d501e8c719d7770f985593b27fd35f00504e0f32a9065a174e300b895d0cd43c0c057ceba506d10a687a7990713e0c34c29f1bfc3e03a821e809cf89eac73684920604dd162035ea6ca2b76d7a1f0f9fd3bbec3220ca760fec13de3f456efe07817d8305f897918d9a970008cf05d74d9ae3c02e320eb1dff11f197c145460fde6547f555b73c259082d89e2ec820614785f1f4915847ba6d35f5d31890dcf571a45b9beeabbc49289e7fad3a4f23e49a6659f553b5419967f386bcea7c952150956dc12211f1b68e7343a6523f26412172c5add3c7ec457f3b3def9563baf0f7527d50a14ed2b0ebfd713f37b1e610f7bad1b3c0d9f3966df0167ecf6febce6d194716a1a1af87dc9bd7eed36593dd70ef8a8f875ca273c19076dc7953c483094259f5d92fee95275a4828a93e808665a74f6ece11d28aead4359ce7bd630f6e7cdbd17078fe769345be0f955974b69e7939746019cbca24e2b2b207cad084533294c80f7252f4188434c6889fe873d41110911b55abcbc6cb77723280af5b2fd1c00db25b06a408a725779ac8a655cab115e0080f25487cc068f80804e3885bc8cb32f24a79f9292bf490c9059b8554ca52f667247aa7e4fde0cc10c8da7316381872f647580256fbc41fddcc60483aee1de4e2a2aaf8a168e8cbaf58282a9f53e88a2fade59d9e1eb290ec66f361355c8cc407f5b548eeffe31930de41a497d32e970f9e602fd18012a630b9910ee68f5e52a8eb9603192ec194623933ab48094a36490feca45d9d85c6224793155249076c5531c59cf2026cf810ccbfaa8933895574ec2b5da49fe8fe4fe0bfcdfadfa019e994bb153c82321f51858f9206bd06aa12d78ac5507d1edaaf3dbbd5883325be587414c6d8193dc99656e2a9332cdfcae1886651536e647f861244fc85219183eeecdd2524a59fc4240e31ef762bfee6430c6ecb13a836409af8fee0c41a8bed3f99aa77bb660ee9e6b8e5139c2cfbb280e13c535055fe6cbd6d3cb422533afb93e26458144892866424db3eae82e4729c1fc73a7a7a071693cfb970af914779e2776753d294f2ca20c95c640690f77a70c43edee66dac1e6853c3db0bf1c8824d5038c823583dfd23c6dae2a4535081639aa225765cd413d3897b551e0eb61efe35556cdf9a8d1b29dc378a68cf99a8ba28e1b19a6342a3a9f7dcb6655ae7492e6783994dbb1db76e3bae2de741f642bb991b97b113700684e4620081914c8e07b44a4c55c65a972d74c1c418e129ffee47093b212042e60816dc4751829aaedbb4135125890b4b3cea22b27961f201fbed63716ae3b4341e98c4cf69af9f5eff0ed692aec65a3e0b6b7c511258e39b5f918ec3fbef2c9688cf2bb925acbe16082bad031fc8c730ed6dc96c85e261ed5799866dff3ac02d4f0a7aa5f0c463ec82c26743fbe373101b765815387bc33ac45c71907fc724bbcfbc4eb12f59875f9eea6b23dbc63abde643c7d9142463bfc9a5538ec3e7771ac9830f15d1c23833240e92448e5f27846cfcb31aa80698e6cbe3d2f38b922a79821c3e6de7f593a19e7071d0b07d7d7382eb9b748a93f2f6e88f97551960624e71ff4994bc46939f2e529d34c672a7d33fb890aa09ccc8969df459a8e9db8d7cdfc089130d1f4e7f30b4e3fc3e8d1852b2c7c1667bdad80e9a0712b7f00e875a2bfcb71c921a7bdc95b7029ff39d0206b9ad2acb8c705ab2368ad42710cca0097bc740058538173c10745866dd38b9c3ec6a795fe50477a09f6e7c017283484e4232694f8d16654fda35beab139efee43b80faf0d0eeaaa6f8f18d7bec32230d0819571c2fc46802d46fd32df78eb00b74b4cfebde2a0b0741db3ebc78d933f82b23f7ea2d4f20f6a22efd67d6556edc3ea5c2bd98b534d452ec480dbe9676bb54256d63abf0807b5e3237a5887d5c4b42de8144fddf6f0365dc4e573e5d9ce6c746c7a76553153f462057baad565d85144be1eee70cc7f739d07714919b867b5cba0dafb8c0eac6ccf360384276f6b758174bf2e2a7c808a812657d608131c2498f7d26c1622407761ea05f730ec6f595da2a9e5e885c3775b04fb4b364a386ea1cadac5cd9fe626680d62aee6a64cd7e3c8b59e7af37058319af79871f1fc1d9c9b2cae280b25254b2bfa28a7dcf853864e4e2b18017613d3da6288ec8d31d7dff4f63a0704daab5cf833c4146702f78856b69741360c8946232cf1d242439db9f6ef5979c411332eede5d853f0a2165f58f7dcc8e3c778f289bfca29782bde7b94bb281fba2b796ba3044f031a69132ac3aa5de6f2b44d8cfc2b66dad392c07918fb09d843f0deed1ff2a1e791a82298e20dbcbc913dee599af1ba2257127092361b3b01f40ec05cb150673b91ff27710d5b5b651a6b6aa9fe7ebcb6def78d4978432e77649667919e215fbddf4b4aee50307b9b3580c960d73bac0d55c37f5df6ee6e4f2278a8912e515275a38e23e7ac6b67825709c56bf28bf057be7438e084f9978352f67b96716ee079f72d1889b2f2da5ba8e4d5a666aafb112d8fb81ef8176fc2c5cac183fdd9ac590ce8dcaa8cadcd4fb22833489f69408e150ebf6b98af1a18b4f703cecc90f08d6e711a354ff54f90f3ce182afef51e1cd8e4c53ce441d9332dd16ac4dd3af9ba17bbe3de1a91ca12ca19ba824351c76143fafab89c96a6a4771ffb4abfdba441eb8ade0d77c6edba98b80e92d8e7704527145a521784d2becbfb50ce20185701001b0cdcbe1f968e5f492d84ed8d39ce9747318e47381a636cd04e9e2446f6927b8325755db8212577aaf43c870217297c3bcfa758d695bcff39f2ceec721111e5b7083d7cd56f3ace9615b012676b0aed6959d4b2a7f7663ec3c8fb7f86b35fb32405bd9fa3141403ed7791fe576703962bb6106c1f090c9c1056bfbc6ddbe77086dd5ac8ddfff5964d15d68f491ff6916b9a9775427b5d25d89040ab3e5ff6caece28821271a0d891d28aec66502f2798c1da561fe1d4ac61919341517acfb153c6b138b1f69dab941a54527661776fbef9bd8d454a8ceed6566a2c617662e643b83417f33e7dca100562e67b1ade6957934c4fcc140a1dbdbe6fc88b13b70e73d63b359e45db68634fdda8dfa31df3cde869187e62f40a9c8b4c0892c905427ba720538a52f0d17ba5d4ac98b21ca253c0c4e70679065164688142f28f9a8d1aed4a1b5158326eaed839db09694682456494e48a7e763398ef2c70079930d0a14ea57201e0d01d1a96db76a3c4d8257406d7e00ce2a88ba7b7f05c34e05465ee10a1650e7ba4e9d65812dfb586b31aaffd4d439272d127e3eee4437d1beb374b5534702ecd4c256eb4492dc9b860e6b03dd6781c8ba7d0404a3aa0db6ef0a1f9205c0a84c49b63f9bcf7fef1038ca7acd5b632afae23f957ad5a32ed3cf245fc88a188691946af720bdf61c06958b2d23a71bf0895c9cc3b4df22bf683f1c57bfbe84ca3c62347fe3f6d5e196de1465bc7a580533277b97e0f9db0577a4599b10bca13351f8f96a544b0822408dd45f12731e9bdf59a61d03051d166ddd1d54f34974155e12392d14e960fbaf7e10bd3c00ec3687d45f223bbbb3a617a7a4832123075def2636ac5713e0544a383a443b93219f3a7179d21037820e50ceb9158cb5cb3621e39223aea7f617da7781721e8862ece694b97880246da00c6a40e8b32d51b9a851ebb883eef0ab92ec9c2cce9a15eefa4303862fe6b4298ffb493260c16d1a95ecbe5a7ba691f174ba7525d5a261dfb148e5d6865b7bedcaf7a941581814411af0787cbb5154fc3eca509fea600f5b01feba43876159346bfd60781fbbd8431a96e5b9fc53a587b26", 0x1000}, {&(0x7f0000002340)="5652072d787285d89281bfd8e91e340c0dff5776f0dd0cd3d3621412cfea03926f980f5dc10e66ec107111f987ef21fd263f25283bc0ab673217ccec444728689c8363555ffee05141162123720555e10ef6ad0943e5a84100649ade7f6e47319c2baed7d2fdfff51279d0cf49e6ff4c640cbd6ce4799243f6af11d302ae3f511db2622c6970", 0x86}, {&(0x7f0000002400)="2d72f0183592046c03d78701d7f96fc1de50444649ea731f175f9910b8b7abb5aff7a4eafe6a10725ca23ec0c14acf3d740e067125299afdec23b352e9739c98169e006bb19562febf35999ffd64b57b446c448fca2a9262c513b6e3d6eb75aff8926aaf23f15e32172ec2fd455a5882a4df4ca7a587445773d90fd879aea5d96616c66bc7a4a9e260d6ccc9dc6b41d09072c26590ca09c33faf0599ea34b92e0550500415e68c33f70228a4718071cc71317a513ac25c6ee547ba", 0xbb}], 0x5, &(0x7f00000028c0)=ANY=[@ANYBLOB="1400000000000000290000000b0000000000080000000000480000000000000029000000390000000c06534b4dadb8899fd30000000000000000ffffe0000001fe8000000000000000000000000000aa00000000000000000000ffffac1414aa2400000000000000290000003200000000000000000000000000ffff64010101", @ANYRES32=r5, @ANYBLOB="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"], 0x310}, 0x16) getsockopt$inet_opts(r1, 0x0, 0x0, &(0x7f0000000000)=""/91, &(0x7f0000000100)=0x5b) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) 15:54:53 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x140, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:53 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x48000000}, 0x0) 15:54:53 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xf0ffffff}, 0x0) [ 3429.756087][T30441] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3429.801713][T30441] CPU: 0 PID: 30441 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3429.810495][T30441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3429.820586][T30441] Call Trace: [ 3429.823879][T30441] dump_stack+0x107/0x163 [ 3429.828212][T30441] sysfs_warn_dup.cold+0x1c/0x29 [ 3429.833148][T30441] sysfs_do_create_link_sd+0x11e/0x140 [ 3429.838601][T30441] sysfs_create_link+0x5f/0xc0 [ 3429.843360][T30441] device_add+0x79a/0x1ce0 [ 3429.847873][T30441] ? devlink_add_symlinks+0x450/0x450 [ 3429.853245][T30441] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3429.859226][T30441] wiphy_register+0x1dfc/0x2900 [ 3429.864100][T30441] ? wiphy_unregister+0xbb0/0xbb0 [ 3429.869138][T30441] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3429.875212][T30441] ieee80211_register_hw+0x1b0f/0x3b00 [ 3429.880683][T30441] ? ieee80211_restart_hw+0x290/0x290 [ 3429.886057][T30441] ? debug_object_destroy+0x210/0x210 [ 3429.891431][T30441] ? memset+0x20/0x40 [ 3429.895415][T30441] ? __hrtimer_init+0x136/0x280 [ 3429.900267][T30441] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3429.906018][T30441] ? hwsim_virtio_rx_work+0x350/0x350 [ 3429.911386][T30441] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3429.916936][T30441] ? memcpy+0x39/0x60 [ 3429.920929][T30441] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3429.926055][T30441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3429.931954][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3429.939319][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3429.946617][T30441] genl_family_rcv_msg_doit+0x228/0x320 [ 3429.952162][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3429.959627][T30441] ? ns_capable+0xde/0x100 [ 3429.964046][T30441] genl_rcv_msg+0x328/0x580 [ 3429.968555][T30441] ? genl_get_cmd+0x480/0x480 [ 3429.973238][T30441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3429.979131][T30441] ? lock_release+0x710/0x710 [ 3429.983802][T30441] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3429.989088][T30441] netlink_rcv_skb+0x153/0x420 [ 3429.993846][T30441] ? genl_get_cmd+0x480/0x480 [ 3429.998521][T30441] ? netlink_ack+0xaa0/0xaa0 [ 3430.003122][T30441] genl_rcv+0x24/0x40 [ 3430.007113][T30441] netlink_unicast+0x533/0x7d0 [ 3430.011874][T30441] ? netlink_attachskb+0x810/0x810 [ 3430.016982][T30441] ? __phys_addr_symbol+0x2c/0x70 [ 3430.021998][T30441] ? __check_object_size+0x171/0x3f0 [ 3430.027281][T30441] netlink_sendmsg+0x856/0xd90 [ 3430.032045][T30441] ? netlink_unicast+0x7d0/0x7d0 [ 3430.036996][T30441] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3430.042271][T30441] ? netlink_unicast+0x7d0/0x7d0 [ 3430.047205][T30441] sock_sendmsg+0xcf/0x120 [ 3430.051613][T30441] ____sys_sendmsg+0x6e8/0x810 [ 3430.056369][T30441] ? kernel_sendmsg+0x50/0x50 [ 3430.061034][T30441] ? do_recvmmsg+0x6c0/0x6c0 [ 3430.065628][T30441] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3430.071615][T30441] ___sys_sendmsg+0xf3/0x170 [ 3430.076199][T30441] ? sendmsg_copy_msghdr+0x160/0x160 [ 3430.081482][T30441] ? __fget_files+0x272/0x400 [ 3430.086151][T30441] ? lock_downgrade+0x6d0/0x6d0 [ 3430.090990][T30441] ? find_held_lock+0x2d/0x110 [ 3430.095774][T30441] ? __fget_files+0x294/0x400 [ 3430.100452][T30441] ? __fget_light+0xea/0x280 [ 3430.105046][T30441] __sys_sendmsg+0xe5/0x1b0 [ 3430.109546][T30441] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3430.114562][T30441] ? __do_sys_futex+0x2a2/0x470 [ 3430.119442][T30441] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3430.125342][T30441] do_syscall_64+0x2d/0x70 [ 3430.129764][T30441] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3430.135647][T30441] RIP: 0033:0x45deb9 [ 3430.139539][T30441] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3430.159131][T30441] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3430.167538][T30441] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3430.175521][T30441] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3430.183487][T30441] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3430.191445][T30441] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:54:53 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x395, 0xffffff7f0e000000}, 0x0) [ 3430.199408][T30441] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3430.224241][T30447] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3430.262436][T30451] IPVS: ftp: loaded support on port[0] = 21 [ 3430.295721][T30445] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3430.363733][T30445] CPU: 1 PID: 30445 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3430.372613][T30445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3430.382659][T30445] Call Trace: [ 3430.385963][T30445] dump_stack+0x107/0x163 [ 3430.390567][T30445] sysfs_warn_dup.cold+0x1c/0x29 [ 3430.395514][T30445] sysfs_do_create_link_sd+0x11e/0x140 [ 3430.400984][T30445] sysfs_create_link+0x5f/0xc0 [ 3430.405755][T30445] device_add+0x79a/0x1ce0 [ 3430.410175][T30445] ? devlink_add_symlinks+0x450/0x450 [ 3430.415554][T30445] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3430.421547][T30445] wiphy_register+0x1dfc/0x2900 [ 3430.426924][T30445] ? wiphy_unregister+0xbb0/0xbb0 [ 3430.432737][T30445] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3430.439253][T30445] ieee80211_register_hw+0x1b0f/0x3b00 [ 3430.444737][T30445] ? ieee80211_restart_hw+0x290/0x290 [ 3430.450114][T30445] ? debug_object_destroy+0x210/0x210 [ 3430.455491][T30445] ? memset+0x20/0x40 [ 3430.459727][T30445] ? __hrtimer_init+0x136/0x280 [ 3430.465201][T30445] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3430.470953][T30445] ? hwsim_virtio_rx_work+0x350/0x350 [ 3430.476320][T30445] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3430.481864][T30445] ? memcpy+0x39/0x60 [ 3430.485856][T30445] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3430.491009][T30445] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3430.496918][T30445] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3430.504287][T30445] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3430.511572][T30445] genl_family_rcv_msg_doit+0x228/0x320 [ 3430.517846][T30445] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3430.525876][T30445] ? ns_capable+0xde/0x100 [ 3430.530299][T30445] genl_rcv_msg+0x328/0x580 [ 3430.534803][T30445] ? genl_get_cmd+0x480/0x480 [ 3430.539476][T30445] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3430.545377][T30445] ? lock_release+0x710/0x710 [ 3430.550052][T30445] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3430.555347][T30445] netlink_rcv_skb+0x153/0x420 [ 3430.560786][T30445] ? genl_get_cmd+0x480/0x480 [ 3430.565467][T30445] ? netlink_ack+0xaa0/0xaa0 [ 3430.570074][T30445] genl_rcv+0x24/0x40 [ 3430.574055][T30445] netlink_unicast+0x533/0x7d0 [ 3430.578830][T30445] ? netlink_attachskb+0x810/0x810 [ 3430.583941][T30445] ? __phys_addr_symbol+0x2c/0x70 [ 3430.588961][T30445] ? __check_object_size+0x171/0x3f0 [ 3430.594245][T30445] netlink_sendmsg+0x856/0xd90 [ 3430.599016][T30445] ? netlink_unicast+0x7d0/0x7d0 [ 3430.603962][T30445] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3430.609256][T30445] ? netlink_unicast+0x7d0/0x7d0 [ 3430.614182][T30445] sock_sendmsg+0xcf/0x120 [ 3430.618591][T30445] ____sys_sendmsg+0x6e8/0x810 [ 3430.623357][T30445] ? kernel_sendmsg+0x50/0x50 [ 3430.623368][T30445] ? do_recvmmsg+0x6c0/0x6c0 [ 3430.623389][T30445] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3430.623410][T30445] ___sys_sendmsg+0xf3/0x170 [ 3430.623425][T30445] ? sendmsg_copy_msghdr+0x160/0x160 [ 3430.623443][T30445] ? __fget_files+0x272/0x400 [ 3430.623461][T30445] ? lock_downgrade+0x6d0/0x6d0 [ 3430.658235][T30445] ? find_held_lock+0x2d/0x110 [ 3430.663223][T30445] ? __fget_files+0x294/0x400 [ 3430.667902][T30445] ? __fget_light+0xea/0x280 [ 3430.672492][T30445] __sys_sendmsg+0xe5/0x1b0 [ 3430.676986][T30445] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3430.681998][T30445] ? __do_sys_futex+0x2a2/0x470 [ 3430.688413][T30445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3430.694310][T30445] do_syscall_64+0x2d/0x70 [ 3430.698735][T30445] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3430.705383][T30445] RIP: 0033:0x45deb9 [ 3430.709467][T30445] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3430.729891][T30445] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3430.738314][T30445] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3430.746284][T30445] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3430.754246][T30445] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:54:54 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = socket$inet(0x2, 0x80000, 0x8) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e23, 0x6, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x43}}, 0xffffffff}}, 0x0, 0x0, 0x4c, 0x0, "216dd8a930d4cae948210c7b68c36b0059037d14a067306a5bc22abdf72ae8c7c62194362cb52da9d135d5ac20b4334d79150b8e04334d45aaf6f56e6a2a1aae4afc20877095a750c5b7f078afbc1dc7"}, 0xd8) [ 3430.762204][T30445] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3430.770166][T30445] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x39e, 0xffffff7f0e000000}, 0x0) 15:54:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3a6, 0xffffff7f0e000000}, 0x0) [ 3430.856202][T30469] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3430.869348][T30452] IPVS: ftp: loaded support on port[0] = 21 [ 3430.949819][T30441] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' 15:54:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xfdffffff}, 0x0) [ 3431.019363][T30441] CPU: 0 PID: 30441 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3431.028133][T30441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3431.038185][T30441] Call Trace: [ 3431.041483][T30441] dump_stack+0x107/0x163 [ 3431.045826][T30441] sysfs_warn_dup.cold+0x1c/0x29 [ 3431.050769][T30441] sysfs_do_create_link_sd+0x11e/0x140 [ 3431.056231][T30441] sysfs_create_link+0x5f/0xc0 [ 3431.060991][T30441] device_add+0x79a/0x1ce0 [ 3431.065426][T30441] ? devlink_add_symlinks+0x450/0x450 [ 3431.070810][T30441] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3431.076800][T30441] wiphy_register+0x1dfc/0x2900 [ 3431.081664][T30441] ? wiphy_unregister+0xbb0/0xbb0 [ 3431.086701][T30441] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3431.092777][T30441] ieee80211_register_hw+0x1b0f/0x3b00 [ 3431.098264][T30441] ? ieee80211_restart_hw+0x290/0x290 [ 3431.103637][T30441] ? debug_object_destroy+0x210/0x210 [ 3431.109020][T30441] ? memset+0x20/0x40 [ 3431.113006][T30441] ? __hrtimer_init+0x136/0x280 [ 3431.117859][T30441] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3431.123594][T30441] ? hwsim_virtio_rx_work+0x350/0x350 [ 3431.128962][T30441] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3431.134509][T30441] ? memcpy+0x39/0x60 [ 3431.138498][T30441] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3431.143609][T30441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3431.149512][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3431.156878][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3431.164161][T30441] genl_family_rcv_msg_doit+0x228/0x320 [ 3431.170574][T30441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3431.178256][T30441] ? ns_capable+0xde/0x100 [ 3431.183361][T30441] genl_rcv_msg+0x328/0x580 [ 3431.188166][T30441] ? genl_get_cmd+0x480/0x480 [ 3431.192838][T30441] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3431.199532][T30441] ? lock_release+0x710/0x710 [ 3431.204219][T30441] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3431.210108][T30441] netlink_rcv_skb+0x153/0x420 [ 3431.214894][T30441] ? genl_get_cmd+0x480/0x480 [ 3431.220460][T30441] ? netlink_ack+0xaa0/0xaa0 [ 3431.225115][T30441] genl_rcv+0x24/0x40 [ 3431.229513][T30441] netlink_unicast+0x533/0x7d0 [ 3431.235211][T30441] ? netlink_attachskb+0x810/0x810 [ 3431.241151][T30441] ? __phys_addr_symbol+0x2c/0x70 [ 3431.246949][T30441] ? __check_object_size+0x171/0x3f0 [ 3431.252725][T30441] netlink_sendmsg+0x856/0xd90 [ 3431.257550][T30441] ? netlink_unicast+0x7d0/0x7d0 [ 3431.263121][T30441] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3431.268933][T30441] ? netlink_unicast+0x7d0/0x7d0 [ 3431.274531][T30441] sock_sendmsg+0xcf/0x120 [ 3431.279064][T30441] ____sys_sendmsg+0x6e8/0x810 [ 3431.283825][T30441] ? kernel_sendmsg+0x50/0x50 [ 3431.288504][T30441] ? do_recvmmsg+0x6c0/0x6c0 [ 3431.293107][T30441] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3431.299087][T30441] ___sys_sendmsg+0xf3/0x170 [ 3431.303677][T30441] ? sendmsg_copy_msghdr+0x160/0x160 [ 3431.308978][T30441] ? __fget_files+0x272/0x400 [ 3431.313764][T30441] ? lock_downgrade+0x6d0/0x6d0 [ 3431.319016][T30441] ? find_held_lock+0x2d/0x110 [ 3431.323799][T30441] ? __fget_files+0x294/0x400 [ 3431.328513][T30441] ? __fget_light+0xea/0x280 [ 3431.333140][T30441] __sys_sendmsg+0xe5/0x1b0 [ 3431.338050][T30441] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3431.343882][T30441] ? __do_sys_futex+0x2a2/0x470 [ 3431.348746][T30441] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3431.354641][T30441] do_syscall_64+0x2d/0x70 [ 3431.359050][T30441] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3431.365051][T30441] RIP: 0033:0x45deb9 [ 3431.369408][T30441] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3431.389064][T30441] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3431.398208][T30441] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3431.406182][T30441] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3431.414980][T30441] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3431.423611][T30441] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3431.431906][T30441] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:55 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3aa, 0xffffff7f0e000000}, 0x0) [ 3431.508902][T30497] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3431.558413][T30497] CPU: 1 PID: 30497 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3431.567195][T30497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3431.577271][T30497] Call Trace: [ 3431.580568][T30497] dump_stack+0x107/0x163 [ 3431.584943][T30497] sysfs_warn_dup.cold+0x1c/0x29 [ 3431.589895][T30497] sysfs_do_create_link_sd+0x11e/0x140 [ 3431.595367][T30497] sysfs_create_link+0x5f/0xc0 [ 3431.600134][T30497] device_add+0x79a/0x1ce0 [ 3431.604562][T30497] ? devlink_add_symlinks+0x450/0x450 [ 3431.609939][T30497] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3431.615935][T30497] wiphy_register+0x1dfc/0x2900 [ 3431.620800][T30497] ? wiphy_unregister+0xbb0/0xbb0 [ 3431.625839][T30497] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3431.631915][T30497] ieee80211_register_hw+0x1b0f/0x3b00 [ 3431.637394][T30497] ? ieee80211_restart_hw+0x290/0x290 [ 3431.642765][T30497] ? debug_object_destroy+0x210/0x210 [ 3431.648139][T30497] ? memset+0x20/0x40 [ 3431.652121][T30497] ? __hrtimer_init+0x136/0x280 [ 3431.656980][T30497] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3431.662723][T30497] ? hwsim_virtio_rx_work+0x350/0x350 [ 3431.668093][T30497] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3431.673640][T30497] ? memcpy+0x39/0x60 [ 3431.677629][T30497] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3431.682747][T30497] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3431.688651][T30497] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3431.696017][T30497] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3431.703313][T30497] genl_family_rcv_msg_doit+0x228/0x320 [ 3431.708853][T30497] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3431.716233][T30497] ? ns_capable+0xde/0x100 [ 3431.720673][T30497] genl_rcv_msg+0x328/0x580 [ 3431.725185][T30497] ? genl_get_cmd+0x480/0x480 [ 3431.729860][T30497] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3431.735753][T30497] ? lock_release+0x710/0x710 [ 3431.740431][T30497] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3431.745724][T30497] netlink_rcv_skb+0x153/0x420 [ 3431.750487][T30497] ? genl_get_cmd+0x480/0x480 [ 3431.755164][T30497] ? netlink_ack+0xaa0/0xaa0 [ 3431.759767][T30497] genl_rcv+0x24/0x40 [ 3431.763741][T30497] netlink_unicast+0x533/0x7d0 [ 3431.768505][T30497] ? netlink_attachskb+0x810/0x810 [ 3431.773618][T30497] ? __phys_addr_symbol+0x2c/0x70 [ 3431.778631][T30497] ? __check_object_size+0x171/0x3f0 [ 3431.783909][T30497] netlink_sendmsg+0x856/0xd90 [ 3431.788668][T30497] ? netlink_unicast+0x7d0/0x7d0 [ 3431.793613][T30497] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3431.798899][T30497] ? netlink_unicast+0x7d0/0x7d0 [ 3431.803825][T30497] sock_sendmsg+0xcf/0x120 [ 3431.808253][T30497] ____sys_sendmsg+0x6e8/0x810 [ 3431.813020][T30497] ? kernel_sendmsg+0x50/0x50 [ 3431.817694][T30497] ? do_recvmmsg+0x6c0/0x6c0 [ 3431.822294][T30497] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3431.828281][T30497] ___sys_sendmsg+0xf3/0x170 [ 3431.832867][T30497] ? sendmsg_copy_msghdr+0x160/0x160 [ 3431.838152][T30497] ? __fget_files+0x272/0x400 [ 3431.842819][T30497] ? lock_downgrade+0x6d0/0x6d0 [ 3431.847660][T30497] ? find_held_lock+0x2d/0x110 [ 3431.852432][T30497] ? __fget_files+0x294/0x400 [ 3431.857114][T30497] ? __fget_light+0xea/0x280 [ 3431.861709][T30497] __sys_sendmsg+0xe5/0x1b0 [ 3431.866207][T30497] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3431.871231][T30497] ? __do_sys_futex+0x2a2/0x470 [ 3431.876106][T30497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3431.882001][T30497] do_syscall_64+0x2d/0x70 [ 3431.886409][T30497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3431.892292][T30497] RIP: 0033:0x45deb9 [ 3431.896177][T30497] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3431.916110][T30497] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3431.924520][T30497] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3431.932478][T30497] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3431.940574][T30497] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3431.948536][T30497] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3431.957171][T30497] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:58 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1={0xff, 0x8}, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:54:58 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x160, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:54:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x4c000000}, 0x0) 15:54:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3ac, 0xffffff7f0e000000}, 0x0) 15:54:58 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xfffff000}, 0x0) 15:54:58 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) r1 = socket$inet6_dccp(0xa, 0x6, 0x0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000000100)={0x660, {{0xa, 0x4e20, 0x4, @private1={0xfc, 0x1, [], 0x1}, 0x3a4}}, 0x1, 0x3, [{{0xa, 0x4e22, 0x79b438b1, @mcast1, 0x200}}, {{0xa, 0x4e20, 0x1, @private1, 0x6}}, {{0xa, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7}}]}, 0x210) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e21, 0x8, @remote, 0x5}, 0x1c) 15:54:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3ad, 0xffffff7f0e000000}, 0x0) [ 3435.095762][T30577] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3435.154366][T30585] IPVS: ftp: loaded support on port[0] = 21 [ 3435.176190][T30579] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3435.207481][T30579] CPU: 1 PID: 30579 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3435.216352][T30579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3435.226398][T30579] Call Trace: [ 3435.229692][T30579] dump_stack+0x107/0x163 [ 3435.234022][T30579] sysfs_warn_dup.cold+0x1c/0x29 [ 3435.238960][T30579] sysfs_do_create_link_sd+0x11e/0x140 [ 3435.244424][T30579] sysfs_create_link+0x5f/0xc0 [ 3435.249193][T30579] device_add+0x79a/0x1ce0 [ 3435.253618][T30579] ? devlink_add_symlinks+0x450/0x450 [ 3435.258989][T30579] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3435.264981][T30579] wiphy_register+0x1dfc/0x2900 [ 3435.269843][T30579] ? wiphy_unregister+0xbb0/0xbb0 [ 3435.274894][T30579] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3435.281090][T30579] ieee80211_register_hw+0x1b0f/0x3b00 [ 3435.286567][T30579] ? ieee80211_restart_hw+0x290/0x290 [ 3435.291937][T30579] ? debug_object_destroy+0x210/0x210 [ 3435.297319][T30579] ? memset+0x20/0x40 [ 3435.301305][T30579] ? __hrtimer_init+0x136/0x280 [ 3435.306169][T30579] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3435.311917][T30579] ? hwsim_virtio_rx_work+0x350/0x350 [ 3435.317381][T30579] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3435.322929][T30579] ? memcpy+0x39/0x60 [ 3435.326911][T30579] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3435.332021][T30579] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3435.337933][T30579] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3435.345309][T30579] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3435.352591][T30579] genl_family_rcv_msg_doit+0x228/0x320 [ 3435.358135][T30579] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3435.365517][T30579] ? ns_capable+0xde/0x100 [ 3435.369933][T30579] genl_rcv_msg+0x328/0x580 [ 3435.374438][T30579] ? genl_get_cmd+0x480/0x480 [ 3435.379110][T30579] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3435.385010][T30579] ? lock_release+0x710/0x710 [ 3435.389681][T30579] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3435.394969][T30579] netlink_rcv_skb+0x153/0x420 [ 3435.399727][T30579] ? genl_get_cmd+0x480/0x480 [ 3435.404402][T30579] ? netlink_ack+0xaa0/0xaa0 [ 3435.409003][T30579] genl_rcv+0x24/0x40 [ 3435.412974][T30579] netlink_unicast+0x533/0x7d0 [ 3435.417738][T30579] ? netlink_attachskb+0x810/0x810 [ 3435.422843][T30579] ? __phys_addr_symbol+0x2c/0x70 [ 3435.427862][T30579] ? __check_object_size+0x171/0x3f0 [ 3435.433146][T30579] netlink_sendmsg+0x856/0xd90 [ 3435.437908][T30579] ? netlink_unicast+0x7d0/0x7d0 [ 3435.442847][T30579] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3435.448122][T30579] ? netlink_unicast+0x7d0/0x7d0 [ 3435.453055][T30579] sock_sendmsg+0xcf/0x120 [ 3435.457483][T30579] ____sys_sendmsg+0x6e8/0x810 [ 3435.462243][T30579] ? kernel_sendmsg+0x50/0x50 [ 3435.466912][T30579] ? do_recvmmsg+0x6c0/0x6c0 [ 3435.471527][T30579] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3435.477509][T30579] ___sys_sendmsg+0xf3/0x170 [ 3435.482093][T30579] ? sendmsg_copy_msghdr+0x160/0x160 [ 3435.487375][T30579] ? __fget_files+0x272/0x400 [ 3435.492044][T30579] ? lock_downgrade+0x6d0/0x6d0 [ 3435.496905][T30579] ? find_held_lock+0x2d/0x110 [ 3435.501696][T30579] ? __fget_files+0x294/0x400 [ 3435.506375][T30579] ? __fget_light+0xea/0x280 [ 3435.510969][T30579] __sys_sendmsg+0xe5/0x1b0 [ 3435.515467][T30579] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3435.520489][T30579] ? __do_sys_futex+0x2a2/0x470 [ 3435.525354][T30579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3435.531252][T30579] do_syscall_64+0x2d/0x70 [ 3435.535667][T30579] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3435.541550][T30579] RIP: 0033:0x45deb9 [ 3435.545442][T30579] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3435.565041][T30579] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3435.573457][T30579] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3435.581443][T30579] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3435.589410][T30579] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3435.597461][T30579] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3435.605438][T30579] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:54:59 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b1, 0xffffff7f0e000000}, 0x0) 15:54:59 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r2, r1, 0x0, 0x100000001) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x84, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x80000000}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_ADDR={0x2c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000010}, 0x20008810) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) [ 3435.653689][T30577] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3435.719816][T30578] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3435.768587][T30578] CPU: 1 PID: 30578 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3435.777354][T30578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3435.787522][T30578] Call Trace: [ 3435.790816][T30578] dump_stack+0x107/0x163 [ 3435.795155][T30578] sysfs_warn_dup.cold+0x1c/0x29 [ 3435.800099][T30578] sysfs_do_create_link_sd+0x11e/0x140 [ 3435.805577][T30578] sysfs_create_link+0x5f/0xc0 [ 3435.810356][T30578] device_add+0x79a/0x1ce0 [ 3435.814783][T30578] ? devlink_add_symlinks+0x450/0x450 [ 3435.820477][T30578] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3435.826520][T30578] wiphy_register+0x1dfc/0x2900 [ 3435.831388][T30578] ? wiphy_unregister+0xbb0/0xbb0 [ 3435.836427][T30578] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3435.842505][T30578] ieee80211_register_hw+0x1b0f/0x3b00 [ 3435.848527][T30578] ? ieee80211_restart_hw+0x290/0x290 [ 3435.853909][T30578] ? debug_object_destroy+0x210/0x210 [ 3435.859290][T30578] ? memset+0x20/0x40 [ 3435.863274][T30578] ? __hrtimer_init+0x136/0x280 [ 3435.868448][T30578] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3435.874196][T30578] ? hwsim_virtio_rx_work+0x350/0x350 [ 3435.879565][T30578] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3435.885107][T30578] ? memcpy+0x39/0x60 [ 3435.889077][T30578] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3435.894168][T30578] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3435.900047][T30578] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3435.907393][T30578] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3435.914672][T30578] genl_family_rcv_msg_doit+0x228/0x320 [ 3435.920195][T30578] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3435.927548][T30578] ? ns_capable+0xde/0x100 [ 3435.931953][T30578] genl_rcv_msg+0x328/0x580 [ 3435.936449][T30578] ? genl_get_cmd+0x480/0x480 [ 3435.941103][T30578] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3435.946977][T30578] ? lock_release+0x710/0x710 [ 3435.951627][T30578] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3435.956891][T30578] netlink_rcv_skb+0x153/0x420 [ 3435.961631][T30578] ? genl_get_cmd+0x480/0x480 [ 3435.966299][T30578] ? netlink_ack+0xaa0/0xaa0 [ 3435.970873][T30578] genl_rcv+0x24/0x40 [ 3435.974836][T30578] netlink_unicast+0x533/0x7d0 [ 3435.979596][T30578] ? netlink_attachskb+0x810/0x810 [ 3435.984687][T30578] ? __phys_addr_symbol+0x2c/0x70 [ 3435.989687][T30578] ? __check_object_size+0x171/0x3f0 [ 3435.994955][T30578] netlink_sendmsg+0x856/0xd90 [ 3435.999704][T30578] ? netlink_unicast+0x7d0/0x7d0 [ 3436.004635][T30578] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3436.009908][T30578] ? netlink_unicast+0x7d0/0x7d0 [ 3436.014822][T30578] sock_sendmsg+0xcf/0x120 [ 3436.019223][T30578] ____sys_sendmsg+0x6e8/0x810 [ 3436.023965][T30578] ? kernel_sendmsg+0x50/0x50 [ 3436.028625][T30578] ? do_recvmmsg+0x6c0/0x6c0 [ 3436.033201][T30578] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3436.039168][T30578] ___sys_sendmsg+0xf3/0x170 [ 3436.043740][T30578] ? sendmsg_copy_msghdr+0x160/0x160 [ 3436.049008][T30578] ? __fget_files+0x272/0x400 [ 3436.053664][T30578] ? lock_downgrade+0x6d0/0x6d0 [ 3436.058491][T30578] ? find_held_lock+0x2d/0x110 [ 3436.063240][T30578] ? __fget_files+0x294/0x400 [ 3436.067905][T30578] ? __fget_light+0xea/0x280 [ 3436.072472][T30578] __sys_sendmsg+0xe5/0x1b0 [ 3436.076953][T30578] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3436.081981][T30578] ? __do_sys_futex+0x2a2/0x470 [ 3436.086838][T30578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3436.092716][T30578] do_syscall_64+0x2d/0x70 [ 3436.097111][T30578] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3436.102987][T30578] RIP: 0033:0x45deb9 [ 3436.106864][T30578] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3436.126457][T30578] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3436.134851][T30578] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3436.142799][T30578] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3436.150745][T30578] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3436.158693][T30578] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3436.166669][T30578] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:54:59 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x60000000}, 0x0) 15:54:59 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b2, 0xffffff7f0e000000}, 0x0) [ 3436.237654][T30590] IPVS: ftp: loaded support on port[0] = 21 [ 3436.251452][T30611] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3436.322722][T30611] CPU: 0 PID: 30611 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3436.331581][T30611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3436.341630][T30611] Call Trace: [ 3436.344957][T30611] dump_stack+0x107/0x163 [ 3436.349293][T30611] sysfs_warn_dup.cold+0x1c/0x29 [ 3436.354995][T30611] sysfs_do_create_link_sd+0x11e/0x140 [ 3436.360463][T30611] sysfs_create_link+0x5f/0xc0 [ 3436.365238][T30611] device_add+0x79a/0x1ce0 [ 3436.369658][T30611] ? devlink_add_symlinks+0x450/0x450 [ 3436.375044][T30611] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3436.381033][T30611] wiphy_register+0x1dfc/0x2900 [ 3436.385903][T30611] ? wiphy_unregister+0xbb0/0xbb0 [ 3436.391439][T30611] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3436.397515][T30611] ieee80211_register_hw+0x1b0f/0x3b00 [ 3436.402986][T30611] ? ieee80211_restart_hw+0x290/0x290 [ 3436.408365][T30611] ? debug_object_destroy+0x210/0x210 [ 3436.413742][T30611] ? memset+0x20/0x40 [ 3436.417923][T30611] ? __hrtimer_init+0x136/0x280 [ 3436.423049][T30611] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3436.428784][T30611] ? hwsim_virtio_rx_work+0x350/0x350 [ 3436.434152][T30611] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3436.439695][T30611] ? memcpy+0x39/0x60 [ 3436.444292][T30611] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3436.449406][T30611] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3436.455336][T30611] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3436.462711][T30611] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3436.470001][T30611] genl_family_rcv_msg_doit+0x228/0x320 [ 3436.476295][T30611] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3436.484566][T30611] ? ns_capable+0xde/0x100 [ 3436.488987][T30611] genl_rcv_msg+0x328/0x580 [ 3436.493490][T30611] ? genl_get_cmd+0x480/0x480 [ 3436.498164][T30611] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3436.504143][T30611] ? lock_release+0x710/0x710 [ 3436.508878][T30611] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3436.514761][T30611] netlink_rcv_skb+0x153/0x420 [ 3436.519676][T30611] ? genl_get_cmd+0x480/0x480 [ 3436.524355][T30611] ? netlink_ack+0xaa0/0xaa0 [ 3436.528959][T30611] genl_rcv+0x24/0x40 [ 3436.533025][T30611] netlink_unicast+0x533/0x7d0 [ 3436.537798][T30611] ? netlink_attachskb+0x810/0x810 [ 3436.542922][T30611] ? __phys_addr_symbol+0x2c/0x70 [ 3436.548360][T30611] ? __check_object_size+0x171/0x3f0 [ 3436.554197][T30611] netlink_sendmsg+0x856/0xd90 [ 3436.559349][T30611] ? netlink_unicast+0x7d0/0x7d0 [ 3436.565196][T30611] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3436.570586][T30611] ? netlink_unicast+0x7d0/0x7d0 [ 3436.576409][T30611] sock_sendmsg+0xcf/0x120 [ 3436.581407][T30611] ____sys_sendmsg+0x6e8/0x810 [ 3436.586172][T30611] ? kernel_sendmsg+0x50/0x50 [ 3436.590850][T30611] ? do_recvmmsg+0x6c0/0x6c0 [ 3436.595451][T30611] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3436.601442][T30611] ___sys_sendmsg+0xf3/0x170 [ 3436.606036][T30611] ? sendmsg_copy_msghdr+0x160/0x160 [ 3436.612057][T30611] ? __fget_files+0x272/0x400 [ 3436.617152][T30611] ? lock_downgrade+0x6d0/0x6d0 [ 3436.621999][T30611] ? find_held_lock+0x2d/0x110 [ 3436.626784][T30611] ? __fget_files+0x294/0x400 [ 3436.631486][T30611] ? __fget_light+0xea/0x280 [ 3436.636106][T30611] __sys_sendmsg+0xe5/0x1b0 [ 3436.640606][T30611] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3436.646392][T30611] ? __do_sys_futex+0x2a2/0x470 [ 3436.651318][T30611] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3436.657216][T30611] do_syscall_64+0x2d/0x70 [ 3436.662437][T30611] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3436.668320][T30611] RIP: 0033:0x45deb9 [ 3436.672208][T30611] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3436.691804][T30611] RSP: 002b:00007f6138fe9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3436.700215][T30611] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3436.708589][T30611] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 15:55:00 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x162, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) [ 3436.717053][T30611] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3436.726067][T30611] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3436.734073][T30611] R13: 00007ffcdabc015f R14: 00007f6138fea9c0 R15: 000000000118bfd4 [ 3436.915717][T30627] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3437.005584][T30624] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3437.054017][T30624] CPU: 0 PID: 30624 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3437.063451][T30624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3437.073690][T30624] Call Trace: [ 3437.076987][T30624] dump_stack+0x107/0x163 [ 3437.081323][T30624] sysfs_warn_dup.cold+0x1c/0x29 [ 3437.086742][T30624] sysfs_do_create_link_sd+0x11e/0x140 [ 3437.092219][T30624] sysfs_create_link+0x5f/0xc0 [ 3437.096991][T30624] device_add+0x79a/0x1ce0 [ 3437.101419][T30624] ? devlink_add_symlinks+0x450/0x450 [ 3437.106824][T30624] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3437.112821][T30624] wiphy_register+0x1dfc/0x2900 [ 3437.118213][T30624] ? wiphy_unregister+0xbb0/0xbb0 [ 3437.123262][T30624] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3437.129331][T30624] ieee80211_register_hw+0x1b0f/0x3b00 [ 3437.134789][T30624] ? ieee80211_restart_hw+0x290/0x290 [ 3437.140154][T30624] ? debug_object_destroy+0x210/0x210 [ 3437.145520][T30624] ? memset+0x20/0x40 [ 3437.149489][T30624] ? __hrtimer_init+0x136/0x280 [ 3437.154326][T30624] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3437.160061][T30624] ? hwsim_virtio_rx_work+0x350/0x350 [ 3437.165415][T30624] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3437.170942][T30624] ? memcpy+0x39/0x60 [ 3437.174924][T30624] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3437.180026][T30624] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3437.185916][T30624] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3437.193268][T30624] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3437.200538][T30624] genl_family_rcv_msg_doit+0x228/0x320 [ 3437.206072][T30624] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3437.213429][T30624] ? ns_capable+0xde/0x100 [ 3437.217832][T30624] genl_rcv_msg+0x328/0x580 [ 3437.222318][T30624] ? genl_get_cmd+0x480/0x480 [ 3437.226978][T30624] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3437.232850][T30624] ? lock_release+0x710/0x710 [ 3437.237504][T30624] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3437.242807][T30624] netlink_rcv_skb+0x153/0x420 [ 3437.247573][T30624] ? genl_get_cmd+0x480/0x480 [ 3437.252226][T30624] ? netlink_ack+0xaa0/0xaa0 [ 3437.256809][T30624] genl_rcv+0x24/0x40 [ 3437.260770][T30624] netlink_unicast+0x533/0x7d0 [ 3437.265519][T30624] ? netlink_attachskb+0x810/0x810 [ 3437.270613][T30624] ? __phys_addr_symbol+0x2c/0x70 [ 3437.275616][T30624] ? __check_object_size+0x171/0x3f0 [ 3437.280882][T30624] netlink_sendmsg+0x856/0xd90 [ 3437.285640][T30624] ? netlink_unicast+0x7d0/0x7d0 [ 3437.290564][T30624] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3437.295835][T30624] ? netlink_unicast+0x7d0/0x7d0 [ 3437.300763][T30624] sock_sendmsg+0xcf/0x120 [ 3437.305174][T30624] ____sys_sendmsg+0x6e8/0x810 [ 3437.309928][T30624] ? kernel_sendmsg+0x50/0x50 [ 3437.314603][T30624] ? do_recvmmsg+0x6c0/0x6c0 [ 3437.319179][T30624] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3437.325232][T30624] ___sys_sendmsg+0xf3/0x170 [ 3437.329898][T30624] ? sendmsg_copy_msghdr+0x160/0x160 [ 3437.335168][T30624] ? __fget_files+0x272/0x400 [ 3437.339827][T30624] ? lock_downgrade+0x6d0/0x6d0 [ 3437.344658][T30624] ? find_held_lock+0x2d/0x110 [ 3437.349413][T30624] ? __fget_files+0x294/0x400 [ 3437.354071][T30624] ? __fget_light+0xea/0x280 [ 3437.358644][T30624] __sys_sendmsg+0xe5/0x1b0 [ 3437.363123][T30624] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3437.368121][T30624] ? __do_sys_futex+0x2a2/0x470 [ 3437.372957][T30624] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3437.378828][T30624] do_syscall_64+0x2d/0x70 [ 3437.383224][T30624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3437.389091][T30624] RIP: 0033:0x45deb9 [ 3437.392978][T30624] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3437.412760][T30624] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3437.421153][T30624] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3437.429099][T30624] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3437.437047][T30624] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3437.445000][T30624] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3437.452950][T30624] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3437.640570][T30627] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3437.719636][T30645] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3437.761714][T30645] CPU: 1 PID: 30645 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3437.770479][T30645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3437.780529][T30645] Call Trace: [ 3437.783822][T30645] dump_stack+0x107/0x163 [ 3437.788336][T30645] sysfs_warn_dup.cold+0x1c/0x29 [ 3437.793277][T30645] sysfs_do_create_link_sd+0x11e/0x140 [ 3437.798738][T30645] sysfs_create_link+0x5f/0xc0 [ 3437.803501][T30645] device_add+0x79a/0x1ce0 [ 3437.807922][T30645] ? devlink_add_symlinks+0x450/0x450 [ 3437.813299][T30645] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3437.819595][T30645] wiphy_register+0x1dfc/0x2900 [ 3437.824460][T30645] ? wiphy_unregister+0xbb0/0xbb0 [ 3437.829500][T30645] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3437.836149][T30645] ieee80211_register_hw+0x1b0f/0x3b00 [ 3437.842413][T30645] ? ieee80211_restart_hw+0x290/0x290 [ 3437.847788][T30645] ? debug_object_destroy+0x210/0x210 [ 3437.853160][T30645] ? memset+0x20/0x40 [ 3437.858053][T30645] ? __hrtimer_init+0x136/0x280 [ 3437.862911][T30645] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3437.868645][T30645] ? hwsim_virtio_rx_work+0x350/0x350 [ 3437.874014][T30645] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3437.879562][T30645] ? memcpy+0x39/0x60 [ 3437.883547][T30645] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3437.888655][T30645] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3437.894566][T30645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3437.902206][T30645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3437.909492][T30645] genl_family_rcv_msg_doit+0x228/0x320 [ 3437.915046][T30645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3437.922439][T30645] ? ns_capable+0xde/0x100 [ 3437.926861][T30645] genl_rcv_msg+0x328/0x580 [ 3437.931391][T30645] ? genl_get_cmd+0x480/0x480 [ 3437.936083][T30645] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3437.941977][T30645] ? lock_release+0x710/0x710 [ 3437.946652][T30645] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3437.951940][T30645] netlink_rcv_skb+0x153/0x420 [ 3437.956716][T30645] ? genl_get_cmd+0x480/0x480 [ 3437.961395][T30645] ? netlink_ack+0xaa0/0xaa0 [ 3437.966016][T30645] genl_rcv+0x24/0x40 [ 3437.969995][T30645] netlink_unicast+0x533/0x7d0 [ 3437.975088][T30645] ? netlink_attachskb+0x810/0x810 [ 3437.980208][T30645] ? __phys_addr_symbol+0x2c/0x70 [ 3437.985237][T30645] ? __check_object_size+0x171/0x3f0 [ 3437.990526][T30645] netlink_sendmsg+0x856/0xd90 [ 3437.995311][T30645] ? netlink_unicast+0x7d0/0x7d0 [ 3438.000255][T30645] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3438.005540][T30645] ? netlink_unicast+0x7d0/0x7d0 [ 3438.010478][T30645] sock_sendmsg+0xcf/0x120 [ 3438.015173][T30645] ____sys_sendmsg+0x6e8/0x810 [ 3438.020031][T30645] ? kernel_sendmsg+0x50/0x50 [ 3438.024710][T30645] ? do_recvmmsg+0x6c0/0x6c0 [ 3438.029325][T30645] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3438.035326][T30645] ___sys_sendmsg+0xf3/0x170 [ 3438.039924][T30645] ? sendmsg_copy_msghdr+0x160/0x160 [ 3438.045239][T30645] ? __fget_files+0x272/0x400 [ 3438.049922][T30645] ? lock_downgrade+0x6d0/0x6d0 [ 3438.054770][T30645] ? find_held_lock+0x2d/0x110 [ 3438.060273][T30645] ? __fget_files+0x294/0x400 [ 3438.064974][T30645] ? __fget_light+0xea/0x280 [ 3438.069805][T30645] __sys_sendmsg+0xe5/0x1b0 [ 3438.074313][T30645] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3438.079340][T30645] ? __do_sys_futex+0x2a2/0x470 [ 3438.084217][T30645] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3438.090678][T30645] do_syscall_64+0x2d/0x70 [ 3438.095194][T30645] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3438.101088][T30645] RIP: 0033:0x45deb9 [ 3438.104987][T30645] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3438.124591][T30645] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3438.133009][T30645] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3438.140980][T30645] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3438.148951][T30645] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3438.157289][T30645] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3438.165260][T30645] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 15:55:04 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:55:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b3, 0xffffff7f0e000000}, 0x0) 15:55:04 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xffffff7f}, 0x0) 15:55:04 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x1, @local}, 0x0, [0x0, 0x0, 0x2]}, 0x5c) 15:55:04 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x172, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:55:04 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x68000000}, 0x0) [ 3440.741789][T30716] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3440.781140][T30724] IPVS: ftp: loaded support on port[0] = 21 [ 3440.796073][T30716] CPU: 1 PID: 30716 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3440.804841][T30716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3440.815004][T30716] Call Trace: [ 3440.818319][T30716] dump_stack+0x107/0x163 [ 3440.822658][T30716] sysfs_warn_dup.cold+0x1c/0x29 [ 3440.827608][T30716] sysfs_do_create_link_sd+0x11e/0x140 [ 3440.833078][T30716] sysfs_create_link+0x5f/0xc0 [ 3440.838256][T30716] device_add+0x79a/0x1ce0 [ 3440.843227][T30716] ? devlink_add_symlinks+0x450/0x450 [ 3440.848777][T30716] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3440.854765][T30716] wiphy_register+0x1dfc/0x2900 [ 3440.860421][T30716] ? wiphy_unregister+0xbb0/0xbb0 [ 3440.865478][T30716] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3440.872126][T30716] ieee80211_register_hw+0x1b0f/0x3b00 [ 3440.878299][T30716] ? ieee80211_restart_hw+0x290/0x290 [ 3440.883683][T30716] ? debug_object_destroy+0x210/0x210 [ 3440.889462][T30716] ? memset+0x20/0x40 [ 3440.893456][T30716] ? __hrtimer_init+0x136/0x280 [ 3440.898943][T30716] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3440.904705][T30716] ? hwsim_virtio_rx_work+0x350/0x350 [ 3440.910076][T30716] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3440.915626][T30716] ? memcpy+0x39/0x60 [ 3440.919853][T30716] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3440.924970][T30716] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3440.931344][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3440.938714][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3440.946004][T30716] genl_family_rcv_msg_doit+0x228/0x320 [ 3440.951773][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3440.959156][T30716] ? ns_capable+0xde/0x100 [ 3440.963586][T30716] genl_rcv_msg+0x328/0x580 [ 3440.968098][T30716] ? genl_get_cmd+0x480/0x480 [ 3440.973151][T30716] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3440.979054][T30716] ? lock_release+0x710/0x710 [ 3440.983737][T30716] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3440.989875][T30716] netlink_rcv_skb+0x153/0x420 [ 3440.994645][T30716] ? genl_get_cmd+0x480/0x480 [ 3440.999327][T30716] ? netlink_ack+0xaa0/0xaa0 [ 3441.003943][T30716] genl_rcv+0x24/0x40 [ 3441.008345][T30716] netlink_unicast+0x533/0x7d0 [ 3441.013124][T30716] ? netlink_attachskb+0x810/0x810 [ 3441.018240][T30716] ? __phys_addr_symbol+0x2c/0x70 [ 3441.023272][T30716] ? __check_object_size+0x171/0x3f0 [ 3441.028568][T30716] netlink_sendmsg+0x856/0xd90 [ 3441.033348][T30716] ? netlink_unicast+0x7d0/0x7d0 [ 3441.038301][T30716] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3441.043592][T30716] ? netlink_unicast+0x7d0/0x7d0 [ 3441.048786][T30716] sock_sendmsg+0xcf/0x120 [ 3441.053215][T30716] ____sys_sendmsg+0x6e8/0x810 [ 3441.057987][T30716] ? kernel_sendmsg+0x50/0x50 [ 3441.062845][T30716] ? do_recvmmsg+0x6c0/0x6c0 [ 3441.068128][T30716] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3441.074132][T30716] ___sys_sendmsg+0xf3/0x170 [ 3441.078829][T30716] ? sendmsg_copy_msghdr+0x160/0x160 [ 3441.084126][T30716] ? __fget_files+0x272/0x400 [ 3441.088876][T30716] ? lock_downgrade+0x6d0/0x6d0 [ 3441.093732][T30716] ? find_held_lock+0x2d/0x110 [ 3441.098518][T30716] ? __fget_files+0x294/0x400 [ 3441.103211][T30716] ? __fget_light+0xea/0x280 [ 3441.107812][T30716] __sys_sendmsg+0xe5/0x1b0 [ 3441.112805][T30716] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3441.118247][T30716] ? __do_sys_futex+0x2a2/0x470 [ 3441.123390][T30716] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3441.129336][T30716] do_syscall_64+0x2d/0x70 [ 3441.133753][T30716] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3441.139782][T30716] RIP: 0033:0x45deb9 [ 3441.143680][T30716] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3441.163286][T30716] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3441.171810][T30716] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3441.180496][T30716] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3441.189252][T30716] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 15:55:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b4, 0xffffff7f0e000000}, 0x0) [ 3441.198114][T30716] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3441.206089][T30716] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:55:04 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r3}, 0x8) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r4, r3, 0x0, 0x100000001) sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x5c, 0x3, 0x6, 0x5, 0x0, 0x0, {0xc}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000100)={r0, r2, 0x7, 0x51, &(0x7f0000000000)="715d4c2e05303e650e7cd3e4cf2182b7f03c1df5426d1efadac8fcf48f283a02027364e76aaa5dfa1365570d40a072f9fc57c282f209725e9b7c1655d9ca2bdb003602b757c47d6f1b1571edeebbb3ab73", 0xfd, 0x63, 0x1, 0xfff, 0x8, 0x0, 0x3f, 'syz1\x00'}) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty}}, 0x5c) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001000010400"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000140012000c000100627269646765"], 0x34}}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0xa4d}}, 0x20}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000440)={'erspan0\x00', &(0x7f0000000380)={'syztnl0\x00', 0x0, 0x80, 0x8000, 0x3f, 0x3, {{0x28, 0x4, 0x3, 0x1f, 0xa0, 0x64, 0x0, 0x9, 0x4, 0x0, @multicast2, @broadcast, {[@ra={0x94, 0x4, 0x1}, @rr={0x7, 0x27, 0xaa, [@private=0xa010100, @multicast2, @multicast2, @local, @dev={0xac, 0x14, 0x14, 0x29}, @empty, @loopback, @remote, @loopback]}, @end, @lsrr={0x83, 0x13, 0x26, [@multicast2, @local, @local, @multicast2]}, @cipso={0x86, 0x30, 0x1, [{0x7, 0xb, "d434d621cbd4249e66"}, {0x5, 0x5, "b7f1c2"}, {0x2, 0x11, "4d27b96e4cac8863582080f9e60f3c"}, {0x5, 0x4, "1125"}, {0x6, 0x5, ']#{'}]}, @lsrr={0x83, 0x7, 0x28, [@rand_addr=0x64010102]}, @cipso={0x86, 0x16, 0x0, [{0x7, 0x10, "68b3b429b5043592b2f490445ada"}]}]}}}}}) sendmsg$ETHTOOL_MSG_EEE_GET(r3, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000700)={0xf8, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) 15:55:04 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b8, 0xffffff7f0e000000}, 0x0) [ 3441.310402][T30720] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3441.385086][T30723] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3441.431999][T30723] CPU: 0 PID: 30723 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3441.440775][T30723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3441.450826][T30723] Call Trace: [ 3441.454122][T30723] dump_stack+0x107/0x163 [ 3441.458547][T30723] sysfs_warn_dup.cold+0x1c/0x29 [ 3441.463490][T30723] sysfs_do_create_link_sd+0x11e/0x140 [ 3441.468954][T30723] sysfs_create_link+0x5f/0xc0 [ 3441.473720][T30723] device_add+0x79a/0x1ce0 15:55:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3b9, 0xffffff7f0e000000}, 0x0) 15:55:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3c7, 0xffffff7f0e000000}, 0x0) [ 3441.478143][T30723] ? devlink_add_symlinks+0x450/0x450 [ 3441.483527][T30723] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3441.489520][T30723] wiphy_register+0x1dfc/0x2900 [ 3441.494380][T30723] ? wiphy_unregister+0xbb0/0xbb0 [ 3441.499420][T30723] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3441.505502][T30723] ieee80211_register_hw+0x1b0f/0x3b00 [ 3441.510989][T30723] ? ieee80211_restart_hw+0x290/0x290 [ 3441.516379][T30723] ? debug_object_destroy+0x210/0x210 [ 3441.521758][T30723] ? memset+0x20/0x40 [ 3441.525748][T30723] ? __hrtimer_init+0x136/0x280 15:55:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x3d0, 0xffffff7f0e000000}, 0x0) [ 3441.530615][T30723] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3441.536462][T30723] ? hwsim_virtio_rx_work+0x350/0x350 [ 3441.541833][T30723] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3441.547376][T30723] ? memcpy+0x39/0x60 [ 3441.551371][T30723] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3441.556511][T30723] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3441.562441][T30723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3441.569820][T30723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3441.577114][T30723] genl_family_rcv_msg_doit+0x228/0x320 [ 3441.582672][T30723] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3441.590058][T30723] ? ns_capable+0xde/0x100 [ 3441.594492][T30723] genl_rcv_msg+0x328/0x580 [ 3441.599020][T30723] ? genl_get_cmd+0x480/0x480 [ 3441.603700][T30723] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3441.609597][T30723] ? lock_release+0x710/0x710 [ 3441.614293][T30723] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3441.619601][T30723] netlink_rcv_skb+0x153/0x420 [ 3441.624360][T30723] ? genl_get_cmd+0x480/0x480 [ 3441.629017][T30723] ? netlink_ack+0xaa0/0xaa0 [ 3441.633595][T30723] genl_rcv+0x24/0x40 [ 3441.637571][T30723] netlink_unicast+0x533/0x7d0 [ 3441.642323][T30723] ? netlink_attachskb+0x810/0x810 [ 3441.647513][T30723] ? __phys_addr_symbol+0x2c/0x70 [ 3441.652527][T30723] ? __check_object_size+0x171/0x3f0 [ 3441.657793][T30723] netlink_sendmsg+0x856/0xd90 [ 3441.662541][T30723] ? netlink_unicast+0x7d0/0x7d0 [ 3441.667575][T30723] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3441.672851][T30723] ? netlink_unicast+0x7d0/0x7d0 [ 3441.677787][T30723] sock_sendmsg+0xcf/0x120 [ 3441.682203][T30723] ____sys_sendmsg+0x6e8/0x810 [ 3441.686955][T30723] ? kernel_sendmsg+0x50/0x50 [ 3441.691606][T30723] ? do_recvmmsg+0x6c0/0x6c0 [ 3441.696173][T30723] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3441.702132][T30723] ___sys_sendmsg+0xf3/0x170 [ 3441.706883][T30723] ? sendmsg_copy_msghdr+0x160/0x160 [ 3441.712156][T30723] ? __fget_files+0x272/0x400 [ 3441.716820][T30723] ? lock_downgrade+0x6d0/0x6d0 [ 3441.721655][T30723] ? find_held_lock+0x2d/0x110 [ 3441.726404][T30723] ? __fget_files+0x294/0x400 [ 3441.731080][T30723] ? __fget_light+0xea/0x280 [ 3441.735764][T30723] __sys_sendmsg+0xe5/0x1b0 [ 3441.740246][T30723] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3441.745253][T30723] ? __do_sys_futex+0x2a2/0x470 [ 3441.750091][T30723] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3441.755984][T30723] do_syscall_64+0x2d/0x70 [ 3441.760378][T30723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3441.766239][T30723] RIP: 0033:0x45deb9 [ 3441.770108][T30723] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3441.789685][T30723] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3441.798075][T30723] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3441.806025][T30723] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3441.813980][T30723] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3441.821924][T30723] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3441.829871][T30723] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c [ 3441.871092][T30725] IPVS: ftp: loaded support on port[0] = 21 [ 3441.877826][T30755] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3441.958230][T30716] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3441.988441][T30716] CPU: 0 PID: 30716 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3441.997211][T30716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3442.007262][T30716] Call Trace: [ 3442.010564][T30716] dump_stack+0x107/0x163 [ 3442.014940][T30716] sysfs_warn_dup.cold+0x1c/0x29 [ 3442.019899][T30716] sysfs_do_create_link_sd+0x11e/0x140 [ 3442.025384][T30716] sysfs_create_link+0x5f/0xc0 [ 3442.030154][T30716] device_add+0x79a/0x1ce0 [ 3442.034574][T30716] ? devlink_add_symlinks+0x450/0x450 [ 3442.039949][T30716] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3442.045940][T30716] wiphy_register+0x1dfc/0x2900 [ 3442.050823][T30716] ? wiphy_unregister+0xbb0/0xbb0 [ 3442.055872][T30716] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3442.061952][T30716] ieee80211_register_hw+0x1b0f/0x3b00 [ 3442.067431][T30716] ? ieee80211_restart_hw+0x290/0x290 [ 3442.072807][T30716] ? debug_object_destroy+0x210/0x210 [ 3442.078379][T30716] ? memset+0x20/0x40 [ 3442.082537][T30716] ? __hrtimer_init+0x136/0x280 [ 3442.087473][T30716] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3442.093230][T30716] ? hwsim_virtio_rx_work+0x350/0x350 [ 3442.099052][T30716] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3442.104604][T30716] ? memcpy+0x39/0x60 [ 3442.109900][T30716] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3442.115259][T30716] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3442.121888][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3442.129423][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3442.136760][T30716] genl_family_rcv_msg_doit+0x228/0x320 [ 3442.142480][T30716] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3442.149986][T30716] ? ns_capable+0xde/0x100 [ 3442.154969][T30716] genl_rcv_msg+0x328/0x580 [ 3442.159578][T30716] ? genl_get_cmd+0x480/0x480 [ 3442.164886][T30716] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3442.170946][T30716] ? lock_release+0x710/0x710 [ 3442.175630][T30716] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3442.181330][T30716] netlink_rcv_skb+0x153/0x420 [ 3442.186103][T30716] ? genl_get_cmd+0x480/0x480 [ 3442.191679][T30716] ? netlink_ack+0xaa0/0xaa0 [ 3442.196293][T30716] genl_rcv+0x24/0x40 [ 3442.200815][T30716] netlink_unicast+0x533/0x7d0 [ 3442.206461][T30716] ? netlink_attachskb+0x810/0x810 [ 3442.212096][T30716] ? __phys_addr_symbol+0x2c/0x70 [ 3442.217852][T30716] ? __check_object_size+0x171/0x3f0 [ 3442.223598][T30716] netlink_sendmsg+0x856/0xd90 [ 3442.229240][T30716] ? netlink_unicast+0x7d0/0x7d0 [ 3442.234813][T30716] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3442.240563][T30716] ? netlink_unicast+0x7d0/0x7d0 [ 3442.246219][T30716] sock_sendmsg+0xcf/0x120 [ 3442.250635][T30716] ____sys_sendmsg+0x6e8/0x810 [ 3442.255788][T30716] ? kernel_sendmsg+0x50/0x50 [ 3442.260467][T30716] ? do_recvmmsg+0x6c0/0x6c0 [ 3442.265773][T30716] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3442.271768][T30716] ___sys_sendmsg+0xf3/0x170 [ 3442.277171][T30716] ? sendmsg_copy_msghdr+0x160/0x160 [ 3442.282811][T30716] ? __fget_files+0x272/0x400 [ 3442.287499][T30716] ? lock_downgrade+0x6d0/0x6d0 [ 3442.293179][T30716] ? find_held_lock+0x2d/0x110 [ 3442.298901][T30716] ? __fget_files+0x294/0x400 [ 3442.303598][T30716] ? __fget_light+0xea/0x280 [ 3442.309048][T30716] __sys_sendmsg+0xe5/0x1b0 [ 3442.313925][T30716] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3442.319743][T30716] ? __do_sys_futex+0x2a2/0x470 [ 3442.325520][T30716] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3442.331485][T30716] do_syscall_64+0x2d/0x70 [ 3442.335909][T30716] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3442.341865][T30716] RIP: 0033:0x45deb9 [ 3442.346391][T30716] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3442.366748][T30716] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3442.375798][T30716] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3442.383768][T30716] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3442.391732][T30716] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3442.399745][T30716] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3442.407708][T30716] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:55:06 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1={0xff, 0x1, [0x3]}, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:55:06 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0xffa, 0xffffff7f0e000000}, 0x0) 15:55:06 executing program 3: r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000200)='tasks\x00', 0x2, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000240)={0x6, 0x7fff, 0x87, 0x6, 0x9}) r1 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e22, 0x0, @mcast1}, {0xa, 0x10, 0x0, @ipv4={[], [], @rand_addr=0x64010101}}, 0x0, [0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xd2]}, 0x5c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f00000001c0)=0xffffffffffffff01) bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r2}, 0x8) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) sendfile(r3, r2, 0x0, 0x100000001) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000080)='cpuset\x00'}, 0x30) r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) pread64(r4, 0x0, 0x0, 0x0) sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x80, 0x0, 0x10, 0x70bd2a, 0x25dfdbfb, {}, [@L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @loopback}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x1e}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}, @L2TP_ATTR_FD={0x8, 0x17, @udp6=r3}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0x66ff}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x0) 15:55:06 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x6c000000}, 0x0) 15:55:06 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x17a, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:55:06 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xffffff97}, 0x0) [ 3442.900923][T30818] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3442.930164][T30817] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3442.957554][T30817] CPU: 0 PID: 30817 Comm: syz-executor.0 Not tainted 5.10.0-rc4-syzkaller #0 [ 3442.966319][T30817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3442.976370][T30817] Call Trace: [ 3442.979664][T30817] dump_stack+0x107/0x163 [ 3442.984001][T30817] sysfs_warn_dup.cold+0x1c/0x29 [ 3442.988946][T30817] sysfs_do_create_link_sd+0x11e/0x140 [ 3442.994498][T30817] sysfs_create_link+0x5f/0xc0 [ 3442.999269][T30817] device_add+0x79a/0x1ce0 [ 3443.003686][T30817] ? devlink_add_symlinks+0x450/0x450 [ 3443.009058][T30817] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3443.015154][T30817] wiphy_register+0x1dfc/0x2900 [ 3443.020031][T30817] ? wiphy_unregister+0xbb0/0xbb0 [ 3443.025096][T30817] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3443.031176][T30817] ieee80211_register_hw+0x1b0f/0x3b00 [ 3443.036651][T30817] ? ieee80211_restart_hw+0x290/0x290 [ 3443.042019][T30817] ? debug_object_destroy+0x210/0x210 [ 3443.047388][T30817] ? memset+0x20/0x40 [ 3443.051359][T30817] ? __hrtimer_init+0x136/0x280 [ 3443.056203][T30817] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3443.061944][T30817] ? hwsim_virtio_rx_work+0x350/0x350 [ 3443.067313][T30817] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3443.072853][T30817] ? memcpy+0x39/0x60 [ 3443.076837][T30817] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3443.081945][T30817] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3443.087842][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3443.095206][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3443.102488][T30817] genl_family_rcv_msg_doit+0x228/0x320 [ 3443.108027][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3443.115399][T30817] ? ns_capable+0xde/0x100 [ 3443.119808][T30817] genl_rcv_msg+0x328/0x580 [ 3443.124300][T30817] ? genl_get_cmd+0x480/0x480 [ 3443.128962][T30817] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3443.134849][T30817] ? lock_release+0x710/0x710 [ 3443.139532][T30817] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3443.144813][T30817] netlink_rcv_skb+0x153/0x420 [ 3443.149578][T30817] ? genl_get_cmd+0x480/0x480 [ 3443.154243][T30817] ? netlink_ack+0xaa0/0xaa0 [ 3443.158838][T30817] genl_rcv+0x24/0x40 [ 3443.162804][T30817] netlink_unicast+0x533/0x7d0 [ 3443.167557][T30817] ? netlink_attachskb+0x810/0x810 [ 3443.172654][T30817] ? __phys_addr_symbol+0x2c/0x70 [ 3443.177679][T30817] ? __check_object_size+0x171/0x3f0 [ 3443.182975][T30817] netlink_sendmsg+0x856/0xd90 [ 3443.187763][T30817] ? netlink_unicast+0x7d0/0x7d0 [ 3443.192700][T30817] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3443.197977][T30817] ? netlink_unicast+0x7d0/0x7d0 [ 3443.202903][T30817] sock_sendmsg+0xcf/0x120 [ 3443.207311][T30817] ____sys_sendmsg+0x6e8/0x810 [ 3443.212072][T30817] ? kernel_sendmsg+0x50/0x50 [ 3443.216742][T30817] ? do_recvmmsg+0x6c0/0x6c0 [ 3443.221344][T30817] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3443.227321][T30817] ___sys_sendmsg+0xf3/0x170 [ 3443.231901][T30817] ? sendmsg_copy_msghdr+0x160/0x160 [ 3443.237180][T30817] ? __fget_files+0x272/0x400 [ 3443.241847][T30817] ? lock_downgrade+0x6d0/0x6d0 [ 3443.246687][T30817] ? find_held_lock+0x2d/0x110 [ 3443.251447][T30817] ? __fget_files+0x294/0x400 [ 3443.256116][T30817] ? __fget_light+0xea/0x280 [ 3443.260702][T30817] __sys_sendmsg+0xe5/0x1b0 [ 3443.265205][T30817] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3443.270223][T30817] ? __do_sys_futex+0x2a2/0x470 [ 3443.275165][T30817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3443.281066][T30817] do_syscall_64+0x2d/0x70 [ 3443.285471][T30817] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3443.291551][T30817] RIP: 0033:0x45deb9 [ 3443.295452][T30817] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3443.315045][T30817] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3443.323547][T30817] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3443.331514][T30817] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3443.339476][T30817] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3443.347441][T30817] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:55:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d840, 0xffffff7f0e000000}, 0x0) [ 3443.355409][T30817] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c 15:55:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d841, 0xffffff7f0e000000}, 0x0) [ 3443.380306][T30830] IPVS: ftp: loaded support on port[0] = 21 [ 3443.459609][T30819] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3443.508996][T30819] CPU: 1 PID: 30819 Comm: syz-executor.4 Not tainted 5.10.0-rc4-syzkaller #0 [ 3443.517867][T30819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3443.527914][T30819] Call Trace: [ 3443.531208][T30819] dump_stack+0x107/0x163 [ 3443.535545][T30819] sysfs_warn_dup.cold+0x1c/0x29 [ 3443.540501][T30819] sysfs_do_create_link_sd+0x11e/0x140 [ 3443.545970][T30819] sysfs_create_link+0x5f/0xc0 [ 3443.550736][T30819] device_add+0x79a/0x1ce0 [ 3443.555160][T30819] ? devlink_add_symlinks+0x450/0x450 [ 3443.560542][T30819] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3443.566526][T30819] wiphy_register+0x1dfc/0x2900 [ 3443.571391][T30819] ? wiphy_unregister+0xbb0/0xbb0 [ 3443.576600][T30819] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3443.582673][T30819] ieee80211_register_hw+0x1b0f/0x3b00 [ 3443.588150][T30819] ? ieee80211_restart_hw+0x290/0x290 [ 3443.593529][T30819] ? debug_object_destroy+0x210/0x210 [ 3443.598908][T30819] ? memset+0x20/0x40 [ 3443.602892][T30819] ? __hrtimer_init+0x136/0x280 [ 3443.607749][T30819] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3443.613484][T30819] ? hwsim_virtio_rx_work+0x350/0x350 [ 3443.619359][T30819] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3443.624939][T30819] ? memcpy+0x39/0x60 [ 3443.628951][T30819] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3443.634167][T30819] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3443.640079][T30819] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3443.647446][T30819] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3443.654735][T30819] genl_family_rcv_msg_doit+0x228/0x320 [ 3443.660374][T30819] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3443.667752][T30819] ? ns_capable+0xde/0x100 [ 3443.672517][T30819] genl_rcv_msg+0x328/0x580 [ 3443.677046][T30819] ? genl_get_cmd+0x480/0x480 [ 3443.681721][T30819] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3443.687609][T30819] ? lock_release+0x710/0x710 [ 3443.692287][T30819] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3443.697583][T30819] netlink_rcv_skb+0x153/0x420 [ 3443.702463][T30819] ? genl_get_cmd+0x480/0x480 [ 3443.707126][T30819] ? netlink_ack+0xaa0/0xaa0 [ 3443.711706][T30819] genl_rcv+0x24/0x40 [ 3443.715753][T30819] netlink_unicast+0x533/0x7d0 [ 3443.720503][T30819] ? netlink_attachskb+0x810/0x810 [ 3443.725603][T30819] ? __phys_addr_symbol+0x2c/0x70 [ 3443.730605][T30819] ? __check_object_size+0x171/0x3f0 [ 3443.735872][T30819] netlink_sendmsg+0x856/0xd90 [ 3443.740628][T30819] ? netlink_unicast+0x7d0/0x7d0 [ 3443.745560][T30819] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3443.750821][T30819] ? netlink_unicast+0x7d0/0x7d0 [ 3443.755740][T30819] sock_sendmsg+0xcf/0x120 [ 3443.760142][T30819] ____sys_sendmsg+0x6e8/0x810 [ 3443.764903][T30819] ? kernel_sendmsg+0x50/0x50 [ 3443.769554][T30819] ? do_recvmmsg+0x6c0/0x6c0 [ 3443.774122][T30819] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3443.780087][T30819] ___sys_sendmsg+0xf3/0x170 [ 3443.784653][T30819] ? sendmsg_copy_msghdr+0x160/0x160 [ 3443.789917][T30819] ? __fget_files+0x272/0x400 [ 3443.794569][T30819] ? lock_downgrade+0x6d0/0x6d0 [ 3443.799411][T30819] ? find_held_lock+0x2d/0x110 [ 3443.804163][T30819] ? __fget_files+0x294/0x400 [ 3443.808825][T30819] ? __fget_light+0xea/0x280 [ 3443.813408][T30819] __sys_sendmsg+0xe5/0x1b0 [ 3443.817889][T30819] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3443.822892][T30819] ? __do_sys_futex+0x2a2/0x470 [ 3443.827733][T30819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3443.833605][T30819] do_syscall_64+0x2d/0x70 [ 3443.837999][T30819] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3443.843863][T30819] RIP: 0033:0x45deb9 [ 3443.847734][T30819] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3443.867313][T30819] RSP: 002b:00007f0618710c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3443.875714][T30819] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3443.883664][T30819] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3443.891608][T30819] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3443.899553][T30819] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c 15:55:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d842, 0xffffff7f0e000000}, 0x0) 15:55:07 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @empty, 0x200}, 0x0, [0x0, 0x2, 0x8000000, 0x8000000, 0x0, 0x0, 0x9]}, 0x5c) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) recvfrom$inet6(r1, &(0x7f00000015c0)=""/4096, 0x1000, 0x0, &(0x7f00000025c0)={0xa, 0x4e22, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c) r2 = accept4$llc(0xffffffffffffffff, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000040)=0x10, 0x80000) r3 = accept$unix(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000180)=0x6e) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f00000001c0)={{r3}, 0x1000, 0x1, 0x9}) [ 3443.907500][T30819] R13: 00007fff1bbf6dbf R14: 00007f06187119c0 R15: 000000000118bf2c 15:55:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d843, 0xffffff7f0e000000}, 0x0) [ 3444.053174][T30853] divide error: 0000 [#1] PREEMPT SMP KASAN [ 3444.059781][T30853] CPU: 0 PID: 30853 Comm: syz-executor.3 Not tainted 5.10.0-rc4-syzkaller #0 [ 3444.068739][T30853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3444.078846][T30853] RIP: 0010:__tcp_select_window+0x509/0xa60 [ 3444.085630][T30853] Code: 44 89 ff e8 d9 2a fb f9 45 39 e7 0f 8d 20 ff ff ff e8 fb 32 fb f9 44 89 e3 e9 13 ff ff ff e8 ee 32 fb f9 44 89 e0 44 89 e3 99 7c 24 04 29 d3 e9 fc fe ff ff e8 d7 32 fb f9 44 89 f1 48 89 ea [ 3444.105699][T30853] RSP: 0018:ffffc90001a9f9c8 EFLAGS: 00010212 [ 3444.113751][T30853] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9000ff5c000 [ 3444.122188][T30853] RDX: 0000000000000000 RSI: ffffffff8774fd02 RDI: 0000000000000004 [ 3444.130656][T30853] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff888060c92f0b [ 3444.139118][T30853] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 3444.147557][T30853] R13: 1ffff92000353f3d R14: 0000000000000000 R15: 0000000000000000 [ 3444.155978][T30853] FS: 00007ff65de44700(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 [ 3444.165675][T30853] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3444.173163][T30853] CR2: 000000000050ca50 CR3: 000000008d5b2000 CR4: 00000000001506f0 [ 3444.181629][T30853] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3444.190060][T30853] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3444.198502][T30853] Call Trace: [ 3444.201794][T30853] ? tcp_schedule_loss_probe+0x70/0x70 [ 3444.208137][T30853] ? do_raw_spin_lock+0x120/0x2b0 [ 3444.213697][T30853] ? mark_held_locks+0x9f/0xe0 [ 3444.219201][T30853] tcp_cleanup_rbuf+0x486/0x5b0 [ 3444.224764][T30853] mptcp_send_ack+0x165/0x1b0 [ 3444.231243][T30853] mptcp_recvmsg+0x1081/0x1ab0 [ 3444.236745][T30853] ? mptcp_timeout_timer+0x1d0/0x1d0 [ 3444.242373][T30853] ? aa_sk_perm+0x316/0xaa0 [ 3444.247888][T30853] inet6_recvmsg+0x11b/0x5d0 [ 3444.252981][T30853] ? inet6_sk_rebuild_header+0xc80/0xc80 [ 3444.258706][T30853] ? bpf_lsm_socket_recvmsg+0x5/0x10 [ 3444.264245][T30853] ? security_socket_recvmsg+0x8f/0xc0 [ 3444.269699][T30853] __sys_recvfrom+0x248/0x3a0 [ 3444.275051][T30853] ? __ia32_sys_send+0x100/0x100 [ 3444.280651][T30853] ? _copy_to_user+0xdc/0x150 [ 3444.285823][T30853] ? put_timespec64+0xcb/0x120 [ 3444.290995][T30853] ? ns_to_timespec64+0xc0/0xc0 [ 3444.296575][T30853] ? __do_sys_futex+0x2a2/0x470 [ 3444.301911][T30853] ? __do_sys_futex+0x2ab/0x470 [ 3444.307336][T30853] __x64_sys_recvfrom+0xdd/0x1b0 [ 3444.312583][T30853] ? lockdep_hardirqs_on+0x79/0x100 [ 3444.318258][T30853] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3444.325054][T30853] do_syscall_64+0x2d/0x70 [ 3444.329465][T30853] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3444.336194][T30853] RIP: 0033:0x45deb9 [ 3444.340516][T30853] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3444.360431][T30853] RSP: 002b:00007ff65de43c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 3444.369022][T30853] RAX: ffffffffffffffda RBX: 0000000000026d80 RCX: 000000000045deb9 [ 3444.377453][T30853] RDX: 0000000000001000 RSI: 00000000200015c0 RDI: 0000000000000004 [ 3444.385692][T30853] RBP: 000000000118c020 R08: 00000000200025c0 R09: 000000000000001c [ 3444.393725][T30853] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 15:55:08 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d844, 0xffffff7f0e000000}, 0x0) [ 3444.402472][T30853] R13: 00007fffde0ca7bf R14: 00007ff65de449c0 R15: 000000000118bfd4 [ 3444.411019][T30853] Modules linked in: [ 3444.434267][T30853] ---[ end trace d820973cff6ed0f8 ]--- [ 3444.440216][T30853] RIP: 0010:__tcp_select_window+0x509/0xa60 [ 3444.447234][T30853] Code: 44 89 ff e8 d9 2a fb f9 45 39 e7 0f 8d 20 ff ff ff e8 fb 32 fb f9 44 89 e3 e9 13 ff ff ff e8 ee 32 fb f9 44 89 e0 44 89 e3 99 7c 24 04 29 d3 e9 fc fe ff ff e8 d7 32 fb f9 44 89 f1 48 89 ea [ 3444.466939][T30835] netlink: 'syz-executor.1': attribute type 5 has an invalid length. [ 3444.501230][T30834] IPVS: ftp: loaded support on port[0] = 21 [ 3444.505034][T30817] ieee80211 ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!: Selected rate control algorithm 'minstrel_ht' [ 3444.525733][T30853] RSP: 0018:ffffc90001a9f9c8 EFLAGS: 00010212 [ 3444.539926][T30853] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9000ff5c000 [ 3444.541451][T30817] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3444.558497][T30853] RDX: 0000000000000000 RSI: ffffffff8774fd02 RDI: 0000000000000004 [ 3444.567500][T30853] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff888060c92f0b [ 3444.578557][T30853] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 3444.578693][T30817] CPU: 1 PID: 30817 Comm: syz-executor.0 Tainted: G D 5.10.0-rc4-syzkaller #0 [ 3444.587269][T30853] R13: 1ffff92000353f3d R14: 0000000000000000 R15: 0000000000000000 [ 3444.596644][T30817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3444.596648][T30817] Call Trace: [ 3444.596667][T30817] dump_stack+0x107/0x163 [ 3444.596679][T30817] sysfs_warn_dup.cold+0x1c/0x29 [ 3444.596694][T30817] sysfs_do_create_link_sd+0x11e/0x140 [ 3444.596706][T30817] sysfs_create_link+0x5f/0xc0 [ 3444.596717][T30817] device_add+0x79a/0x1ce0 [ 3444.596729][T30817] ? devlink_add_symlinks+0x450/0x450 [ 3444.596750][T30817] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3444.607853][T30853] FS: 00007ff65de44700(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 [ 3444.614715][T30817] wiphy_register+0x1dfc/0x2900 [ 3444.614730][T30817] ? wiphy_unregister+0xbb0/0xbb0 [ 3444.614745][T30817] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3444.614760][T30817] ieee80211_register_hw+0x1b0f/0x3b00 [ 3444.614775][T30817] ? ieee80211_restart_hw+0x290/0x290 [ 3444.614787][T30817] ? debug_object_destroy+0x210/0x210 [ 3444.614798][T30817] ? lock_downgrade+0x6d0/0x6d0 [ 3444.614805][T30817] ? lockdep_init_map_waits+0x26a/0x720 [ 3444.614815][T30817] ? memset+0x20/0x40 [ 3444.614825][T30817] ? __hrtimer_init+0x136/0x280 [ 3444.614840][T30817] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3444.614852][T30817] ? hwsim_virtio_rx_work+0x350/0x350 [ 3444.614860][T30817] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3444.614885][T30817] ? memcpy+0x39/0x60 [ 3444.614894][T30817] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3444.614903][T30817] ? lock_downgrade+0x6d0/0x6d0 [ 3444.614930][T30817] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3444.614948][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3444.614959][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3444.614970][T30817] genl_family_rcv_msg_doit+0x228/0x320 [ 3444.614982][T30817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3444.614996][T30817] ? ns_capable+0xde/0x100 [ 3444.615006][T30817] genl_rcv_msg+0x328/0x580 [ 3444.615016][T30817] ? genl_get_cmd+0x480/0x480 [ 3444.615026][T30817] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3444.615035][T30817] ? lock_release+0x710/0x710 [ 3444.615048][T30817] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3444.615061][T30817] netlink_rcv_skb+0x153/0x420 [ 3444.615073][T30817] ? genl_get_cmd+0x480/0x480 [ 3444.615085][T30817] ? netlink_ack+0xaa0/0xaa0 [ 3444.615106][T30817] genl_rcv+0x24/0x40 [ 3444.615115][T30817] netlink_unicast+0x533/0x7d0 [ 3444.615125][T30817] ? netlink_attachskb+0x810/0x810 [ 3444.615136][T30817] ? __phys_addr_symbol+0x2c/0x70 [ 3444.615145][T30817] ? __check_object_size+0x171/0x3f0 [ 3444.615155][T30817] netlink_sendmsg+0x856/0xd90 [ 3444.615166][T30817] ? netlink_unicast+0x7d0/0x7d0 [ 3444.615180][T30817] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3444.615189][T30817] ? netlink_unicast+0x7d0/0x7d0 [ 3444.615198][T30817] sock_sendmsg+0xcf/0x120 [ 3444.615210][T30817] ____sys_sendmsg+0x6e8/0x810 [ 3444.615220][T30817] ? kernel_sendmsg+0x50/0x50 [ 3444.615229][T30817] ? do_recvmmsg+0x6c0/0x6c0 [ 3444.615241][T30817] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3444.615251][T30817] ___sys_sendmsg+0xf3/0x170 [ 3444.615261][T30817] ? sendmsg_copy_msghdr+0x160/0x160 [ 3444.615272][T30817] ? __fget_files+0x272/0x400 [ 3444.615283][T30817] ? lock_downgrade+0x6d0/0x6d0 [ 3444.615292][T30817] ? find_held_lock+0x2d/0x110 [ 3444.615304][T30817] ? __fget_files+0x294/0x400 [ 3444.615318][T30817] ? __fget_light+0xea/0x280 [ 3444.615332][T30817] __sys_sendmsg+0xe5/0x1b0 [ 3444.615344][T30817] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3444.615357][T30817] ? __do_sys_futex+0x2a2/0x470 [ 3444.615373][T30817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3444.615384][T30817] do_syscall_64+0x2d/0x70 [ 3444.615394][T30817] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3444.615402][T30817] RIP: 0033:0x45deb9 [ 3444.615417][T30817] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3444.615423][T30817] RSP: 002b:00007f613900ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3444.615434][T30817] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3444.615441][T30817] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3444.615447][T30817] RBP: 000000000118bf60 R08: 0000000000000000 R09: 0000000000000000 [ 3444.615453][T30817] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bf2c [ 3444.615460][T30817] R13: 00007ffcdabc015f R14: 00007f613900b9c0 R15: 000000000118bf2c [ 3444.864722][T30854] divide error: 0000 [#2] PREEMPT SMP KASAN [ 3444.874201][T30846] ieee80211 ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!: Selected rate control algorithm 'minstrel_ht' [ 3444.877377][T30854] CPU: 1 PID: 30854 Comm: syz-executor.3 Tainted: G D 5.10.0-rc4-syzkaller #0 [ 3444.883743][T30846] sysfs: cannot create duplicate filename '/class/ieee80211/ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!' [ 3444.886753][T30854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3444.891318][T30846] CPU: 0 PID: 30846 Comm: syz-executor.4 Tainted: G D 5.10.0-rc4-syzkaller #0 [ 3444.897265][T30854] RIP: 0010:__tcp_select_window+0x509/0xa60 [ 3444.901809][T30846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3444.907058][T30854] Code: 44 89 ff e8 d9 2a fb f9 45 39 e7 0f 8d 20 ff ff ff e8 fb 32 fb f9 44 89 e3 e9 13 ff ff ff e8 ee 32 fb f9 44 89 e0 44 89 e3 99 7c 24 04 29 d3 e9 fc fe ff ff e8 d7 32 fb f9 44 89 f1 48 89 ea [ 3444.911697][T30846] Call Trace: [ 3444.916511][T30854] RSP: 0018:ffffc900019ef9c8 EFLAGS: 00010216 [ 3444.921464][T30846] dump_stack+0x107/0x163 [ 3444.926091][T30854] [ 3444.930652][T30846] sysfs_warn_dup.cold+0x1c/0x29 [ 3444.935116][T30854] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9001015d000 [ 3444.940110][T30846] sysfs_do_create_link_sd+0x11e/0x140 [ 3444.944937][T30854] RDX: 0000000000000000 RSI: ffffffff8774fd02 RDI: 0000000000000004 [ 3444.950806][T30846] sysfs_create_link+0x5f/0xc0 [ 3444.955183][T30854] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff88805fd5d0cb [ 3444.961057][T30846] device_add+0x79a/0x1ce0 [ 3444.964935][T30854] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 3444.984523][T30846] ? devlink_add_symlinks+0x450/0x450 [ 3444.992895][T30854] R13: 1ffff9200033df3d R14: 0000000000000000 R15: 0000000000000000 [ 3445.000847][T30846] ? ieee80211_set_bitrate_flags+0x3e8/0x650 [ 3445.008781][T30854] FS: 00007ff65de23700(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 3445.016743][T30846] wiphy_register+0x1dfc/0x2900 [ 3445.024679][T30854] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3445.032621][T30846] ? wiphy_unregister+0xbb0/0xbb0 [ 3445.038473][T30854] CR2: 000000000074b698 CR3: 000000008d5b2000 CR4: 00000000001506e0 [ 3445.048674][T30846] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 3445.058775][T30854] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3445.069148][T30846] ieee80211_register_hw+0x1b0f/0x3b00 [ 3445.079163][T30854] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3445.089367][T30846] ? ieee80211_restart_hw+0x290/0x290 [ 3445.095216][T30854] Call Trace: [ 3445.105254][T30846] ? debug_object_destroy+0x210/0x210 [ 3445.124832][T30854] ? tcp_schedule_loss_probe+0x70/0x70 [ 3445.128086][T30846] ? lock_downgrade+0x6d0/0x6d0 [ 3445.134109][T30854] ? do_raw_spin_lock+0x120/0x2b0 [ 3445.138401][T30846] ? lockdep_init_map_waits+0x128/0x720 [ 3445.140707][T30854] ? rwlock_bug.part.0+0x90/0x90 [ 3445.145611][T30846] ? memset+0x20/0x40 [ 3445.153548][T30854] ? lock_downgrade+0x6d0/0x6d0 [ 3445.158972][T30846] ? __hrtimer_init+0x136/0x280 [ 3445.166921][T30854] tcp_cleanup_rbuf+0x486/0x5b0 [ 3445.171653][T30846] mac80211_hwsim_new_radio+0x2044/0x4830 [ 3445.179598][T30854] mptcp_send_ack+0x165/0x1b0 [ 3445.183978][T30846] ? hwsim_virtio_rx_work+0x350/0x350 [ 3445.191918][T30854] mptcp_recvmsg+0x1081/0x1ab0 [ 3445.197262][T30846] ? __kmalloc_track_caller+0x21b/0x3d0 [ 3445.205202][T30854] ? lock_acquire+0x2e5/0x8c0 [ 3445.211147][T30846] ? memcpy+0x39/0x60 [ 3445.220048][T30854] ? mptcp_timeout_timer+0x1d0/0x1d0 [ 3445.224863][T30846] hwsim_new_radio_nl+0x9a6/0x10b0 [ 3445.231413][T30854] ? aa_sk_perm+0x316/0xaa0 [ 3445.236399][T30846] ? lock_downgrade+0x6d0/0x6d0 [ 3445.244341][T30854] inet6_recvmsg+0x11b/0x5d0 [ 3445.250367][T30846] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3445.258306][T30854] ? inet6_sk_rebuild_header+0xc80/0xc80 [ 3445.263731][T30846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x280 [ 3445.271666][T30854] ? bpf_lsm_socket_recvmsg+0x5/0x10 [ 3445.276999][T30846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3445.280250][T30854] ? security_socket_recvmsg+0x8f/0xc0 [ 3445.285586][T30846] genl_family_rcv_msg_doit+0x228/0x320 [ 3445.291011][T30854] __sys_recvfrom+0x248/0x3a0 [ 3445.295842][T30846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3445.300828][T30854] ? __ia32_sys_send+0x100/0x100 [ 3445.306357][T30846] ? ns_capable+0xde/0x100 [ 3445.311267][T30854] ? ktime_get_ts64+0x296/0x2e0 [ 3445.315215][T30846] genl_rcv_msg+0x328/0x580 [ 3445.320058][T30854] ? trace_hardirqs_on+0x5b/0x1c0 [ 3445.324847][T30846] ? genl_get_cmd+0x480/0x480 [ 3445.329679][T30854] ? _copy_to_user+0xdc/0x150 [ 3445.335365][T30846] ? mac80211_hwsim_new_radio+0x4830/0x4830 [ 3445.340001][T30854] ? put_timespec64+0xcb/0x120 [ 3445.345425][T30846] ? lock_release+0x710/0x710 [ 3445.350151][T30854] ? ns_to_timespec64+0xc0/0xc0 [ 3445.355664][T30846] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 3445.360303][T30854] ? __do_sys_futex+0x2a2/0x470 [ 3445.364246][T30846] netlink_rcv_skb+0x153/0x420 [ 3445.369493][T30854] ? __do_sys_futex+0x2ab/0x470 [ 3445.374564][T30846] ? genl_get_cmd+0x480/0x480 [ 3445.379034][T30854] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 3445.383837][T30846] ? netlink_ack+0xaa0/0xaa0 [ 3445.388396][T30854] ? __x64_sys_clock_gettime+0x16f/0x260 [ 3445.394272][T30846] genl_rcv+0x24/0x40 [ 3445.399865][T30854] __x64_sys_recvfrom+0xdd/0x1b0 [ 3445.407193][T30846] netlink_unicast+0x533/0x7d0 [ 3445.412440][T30854] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3445.419681][T30846] ? netlink_attachskb+0x810/0x810 [ 3445.425107][T30854] do_syscall_64+0x2d/0x70 [ 3445.430614][T30846] ? __phys_addr_symbol+0x2c/0x70 [ 3445.435256][T30854] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3445.442586][T30846] ? __check_object_size+0x171/0x3f0 [ 3445.447484][T30854] RIP: 0033:0x45deb9 [ 3445.451865][T30846] netlink_sendmsg+0x856/0xd90 [ 3445.456675][T30854] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3445.461138][T30846] ? netlink_unicast+0x7d0/0x7d0 [ 3445.466121][T30854] RSP: 002b:00007ff65de22c78 EFLAGS: 00000246 [ 3445.470765][T30846] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 3445.475400][T30854] ORIG_RAX: 000000000000002d [ 3445.481275][T30846] ? netlink_unicast+0x7d0/0x7d0 [ 3445.486011][T30854] RAX: ffffffffffffffda RBX: 0000000000026d80 RCX: 000000000045deb9 [ 3445.490655][T30846] sock_sendmsg+0xcf/0x120 [ 3445.495468][T30854] RDX: 0000000000001000 RSI: 00000000200015c0 RDI: 0000000000000003 [ 3445.500718][T30846] ____sys_sendmsg+0x6e8/0x810 [ 3445.505536][T30854] RBP: 000000000118c0c8 R08: 00000000200025c0 R09: 000000000000001c [ 3445.510265][T30846] ? kernel_sendmsg+0x50/0x50 [ 3445.515078][T30854] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118c07c [ 3445.519725][T30846] ? do_recvmmsg+0x6c0/0x6c0 [ 3445.524976][T30854] R13: 00007fffde0ca7bf R14: 00007ff65de239c0 R15: 000000000118c07c [ 3445.529537][T30846] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3445.535126][T30854] Modules linked in: [ 3445.539095][T30846] ___sys_sendmsg+0xf3/0x170 [ 3445.543985][T30854] [ 3445.548716][T30846] ? sendmsg_copy_msghdr+0x160/0x160 [ 3445.715123][T30846] ? __fget_files+0x272/0x400 [ 3445.720417][T30846] ? lock_downgrade+0x6d0/0x6d0 [ 3445.725378][T30846] ? find_held_lock+0x2d/0x110 [ 3445.730137][T30846] ? __fget_files+0x294/0x400 [ 3445.734823][T30846] ? __fget_light+0xea/0x280 [ 3445.740072][T30846] __sys_sendmsg+0xe5/0x1b0 [ 3445.744565][T30846] ? __sys_sendmsg_sock+0xb0/0xb0 [ 3445.749736][T30846] ? __do_sys_futex+0x2a2/0x470 [ 3445.754582][T30846] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3445.760461][T30846] do_syscall_64+0x2d/0x70 [ 3445.764891][T30846] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 3445.770769][T30846] RIP: 0033:0x45deb9 [ 3445.774651][T30846] Code: 0d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3445.794237][T30846] RSP: 002b:00007f06186efc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3445.803087][T30846] RAX: ffffffffffffffda RBX: 000000000002e5c0 RCX: 000000000045deb9 [ 3445.811243][T30846] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 3445.819200][T30846] RBP: 000000000118c008 R08: 0000000000000000 R09: 0000000000000000 [ 3445.827161][T30846] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118bfd4 [ 3445.835621][T30846] R13: 00007fff1bbf6dbf R14: 00007f06186f09c0 R15: 000000000118bfd4 [ 3445.873555][T30853] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3445.902253][T30853] CR2: 00007fcfc38afdb8 CR3: 000000008d5b2000 CR4: 00000000001506f0 15:55:09 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x10, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000180)={'veth0_to_bridge\x00'}) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_x25_SIOCDELRT(r2, 0x890b, &(0x7f0000000100)={@null=' \x00', 0x2001, 'macvlan1\x00'}) ioctl$FIOCLEX(r2, 0x5451) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000300)={@dev={0xfe, 0x80, [], 0x32}, @empty, @private1={0xfc, 0x1, [], 0x1}, 0x3cc7da67, 0x1f, 0x501, 0x100, 0x7, 0x80040000}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r1, &(0x7f0000000440)="dad4a56736672a6189a3ce5bedd1e2041234d8b9b40e20640c8921339c420a3201a1400c805912ff09da16847ac06d14bc2b55aa452844ebd5806d0ea273b33322f380204a909cb10a6fa04f95db96e692822c3300551fbe550b2d6b07f89d342ebffe0c2e69face08802a6c938d895c4daec656b658be178ec620f34c1bcfb48465702d66c8dc844a39e13ca7adcaeb109c84f48930c2703a47dc24369f8e18035a8f70e4656c53e12326d3b45b81a55c1d61e094655fcdd32b151078369a254852b785d2f4becc080c7fd33462", &(0x7f0000000600)=""/160}, 0x20) getsockopt$inet_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f0000000400)) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000280)={0x0, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x17}}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x201, 0x0, 0x0, 0x0, 0x5, &(0x7f00000003c0)='ipvlan1\x00', 0x1, 0x3}) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000200)=0x3, 0x4) r4 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0xfffffff9, @mcast1={0xff, 0x1, [0x4]}, 0x1}, {0xa, 0x4e20, 0x4, @empty, 0x3}}, 0x5c) 15:55:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x13d845, 0xffffff7f0e000000}, 0x0) 15:55:09 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x3e7, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0xffffff9e}, 0x0) 15:55:09 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x192, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000050774740000dfdbdfa65501a381", @ANYRES32=0x0, @ANYBLOB="7ffd0002810d00001c0012000b0001006d616373656300e10b00020005000700010000000a000540340000000000000008000a0009d32f2561"], 0x50}}, 0x0) 15:55:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, 0x27, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@typed={0x26, 0x11, 0x0, 0x0, @binary="5ac7f35da444370641fefecf9f54a47afdf6227b51e762dde54329bccd139b11672f"}]}, 0x3c}, 0x1, 0xffffff7f0e000000, 0x0, 0x6d0f0000}, 0x0) [ 3445.926922][T30853] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3445.948026][T30853] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3445.992188][T30925] ieee80211 ZÇó]¤D7AþþÏŸT¤zýö"{QçbÝåC)¼Í›g!: Selected rate control algorithm 'minstrel_ht' [ 3446.004703][T30853] Kernel panic - not syncing: Fatal exception [ 3446.011431][T30853] Kernel Offset: disabled [ 3446.015740][T30853] Rebooting in 86400 seconds..