last executing test programs:

1.87833122s ago: executing program 2 (id=1737):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x1108d5, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000010000107000f0000000000000a000000060001001700000008000a00", @ANYRES32=r1], 0x24}}, 0x0)

1.811923467s ago: executing program 0 (id=1739):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000000000010000000000000008020000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0xf, &(0x7f0000000680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3bd}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r3, 0x3, 0x25, 0x4, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x48, 0x0, 0x0}, 0x40)
sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@updpolicy={0x23c, 0x19, 0x1, 0x0, 0x3, {{@in6=@mcast2, @in=@loopback, 0xfffd, 0x6, 0x0, 0x0, 0xa, 0x80, 0x0, 0x8}, {0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x1b}, {0x0, 0x0, 0x0, 0x2dd}, 0x0, 0x0, 0x0, 0x1, 0x4, 0x2}, [@tmpl={0x184, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x3b}, 0x4d3, 0x2b}, 0x0, @in=@dev={0xac, 0x14, 0x14, 0xc}, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0xff}, {{@in=@rand_addr=0x64010101, 0x0, 0x32}, 0x0, @in6=@private2, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffff, 0x3}, {{@in6=@loopback, 0x0, 0x3c}, 0x2, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x1, 0x3, 0x0, 0x0, 0x6}, {{@in6=@mcast2, 0xfffffffd, 0x33}, 0x2, @in6=@local, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x278b6a28}, {{@in6=@empty, 0x0, 0x3c}, 0x2, @in=@empty, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfffffffe, 0x33}, 0x2, @in=@broadcast, 0x0, 0x0, 0x2}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b0400000000000000000200000038000480340001800b00010074617267657400002400028010000100434f4e4e5345434d41524b0005000300ef00000008000240000000000900010073797a30000000000900020073797a32"], 0xa0}}, 0x14b6deac033214c2)

1.756982277s ago: executing program 2 (id=1741):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x420000, 0x0)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000040)=0x3)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$inet(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000000080)="2637db6c27148d80ca4eff0a8ca968c0b4dc4663651c14f4f9b53537ee31350412e845cc2fb9a3c4689cafe785235a8c30bfdaf29a6cc716307c5165a0f56f0a749594ffca6784e943f700c5dbb08d4e1b548cd67fc7eedd", 0x58}, {&(0x7f0000000100)="a6232f8263cb76e2004c428fc961a078f3f94b0ef2d40005d2462a7f576c39afddecd9ea8f989db7f5b8afaa0f563bcfb53a2a355828194a588f5df8e111557a47d839fc3666b9a27faea74baf6b0368569cdba4884fdb624c22bcd2cca91bf8b76f3c914f7b1c44747e5bbce3695f68242b88b6bbe48158940d66836a3a1fed432912d2d14f5f60f5c707dea5845ba9d1fd9a08bff8a809075e8cd3c546612b1a886092558736be932f386f42979b4e38e7e8897969a43404576a97ab8ecdc1c349647ad235a70846f2dda88a5273138b0e83c2d65c579958", 0xd9}, {&(0x7f0000000200)="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", 0x1000}], 0x3, &(0x7f0000001240)=[@ip_ttl={{0x14, 0x0, 0x2, 0x80}}, @ip_retopts={{0xa4, 0x0, 0x7, {[@rr={0x7, 0x1b, 0x87, [@private=0xa010102, @loopback, @rand_addr=0x64010102, @broadcast, @empty, @local]}, @timestamp_addr={0x44, 0xc, 0x1c, 0x1, 0x5, [{@broadcast, 0x2}]}, @rr={0x7, 0x23, 0xc3, [@private=0xa010102, @multicast1, @multicast2, @loopback, @rand_addr=0x64010100, @broadcast, @local, @multicast1]}, @timestamp_addr={0x44, 0x44, 0xcc, 0x1, 0x7, [{@remote, 0x1000}, {@dev={0xac, 0x14, 0x14, 0x2c}, 0x2}, {@empty, 0x2}, {@local, 0x401}, {@loopback, 0x9}, {@rand_addr=0x64010101, 0x9}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@rand_addr=0x64010100, 0x9}]}, @ra={0x94, 0x4, 0x1}]}}}, @ip_tos_int={{0x14}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5e}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3}}], 0x120}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000013c0)={0x1b, 0x0, 0x0, 0xc, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x1}, 0x50)
r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001440)={0x0, 0x4, 0x8}, 0xc)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000001480)={0x1, <r4=>0xffffffffffffffff}, 0x4)
r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001500)=@generic={&(0x7f00000014c0)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000019c0)={0xffffffffffffffff, 0xe0, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000001700)=[0x0], ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x5, 0x9, &(0x7f0000001740)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xa2, &(0x7f00000017c0)=[{}], 0x8, 0x10, &(0x7f0000001800), &(0x7f0000001840), 0x8, 0x98, 0x8, 0x8, &(0x7f0000001880)}}, 0x10)
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001a00)=0xffffffffffffffff, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001d40)={0xffffffffffffffff, 0xe0, &(0x7f0000001c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000001a80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x6, 0x5, &(0x7f0000001ac0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000001b00)=[0x0, 0x0, 0x0, 0x0, 0x0], <r9=>0x0, 0x43, &(0x7f0000001b40)=[{}], 0x8, 0x10, &(0x7f0000001b80), &(0x7f0000001bc0), 0x8, 0x74, 0x8, 0x8, &(0x7f0000001c00)}}, 0x10)
r10 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001dc0)=@generic={&(0x7f0000001d80)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000001e00)={0x1, <r11=>0xffffffffffffffff}, 0x4)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000001ec0)={0xa, 0x2e, &(0x7f0000001540)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xb}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@btf_id={0x18, 0x5, 0x3, 0x0, 0x3}, @generic={0xa5, 0x3, 0x5, 0xf}, @map_val={0x18, 0x2, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x374}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @alu={0x4, 0x0, 0x3, 0xa96caf9491597cd2, 0x9, 0x50, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @map_val={0x18, 0x7, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x401}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}], {{}, {}, {0x85, 0x0, 0x0, 0x1}}}, &(0x7f00000016c0)='GPL\x00', 0x9ff7, 0x0, 0x0, 0x41000, 0x34, '\x00', r6, @fallback=0x14, r7, 0x8, &(0x7f0000001a40)={0x2, 0x4}, 0x8, 0x10, 0x0, 0x0, r9, 0xffffffffffffffff, 0x2, &(0x7f0000001e40)=[r10, r11], &(0x7f0000001e80)=[{0x1, 0x1, 0x9, 0x8}, {0x0, 0x1, 0x10, 0x9}], 0x10, 0x75}, 0x94)
r13 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$sock_attach_bpf(r13, 0x1, 0x32, &(0x7f0000001f80)=r12, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001fc0))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000002080)={r3, 0x58, &(0x7f0000002000)}, 0x10)
r14 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r14, &(0x7f0000002180)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002140)={&(0x7f0000002100)={0x40, 0x8, 0x6, 0x301, 0x0, 0x0, {0x1, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x200048d5}, 0x40)
r15 = perf_event_open$cgroup(&(0x7f0000002240)={0x4, 0x80, 0x9, 0x1, 0x80, 0x8, 0x0, 0x4, 0x10000, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x3, 0xd}, 0x1, 0x4, 0x6, 0x1, 0x9, 0x3, 0x5, 0x0, 0x366, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xf)
perf_event_open(&(0x7f00000021c0)={0x0, 0x80, 0x3, 0x0, 0x4, 0x1, 0x0, 0x4, 0x10, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10b0, 0x0, @perf_config_ext={0x2, 0x5}, 0x1004, 0x1, 0x6, 0x0, 0x101, 0xff, 0x2, 0x0, 0x8001, 0x0, 0xfffffffffffffd6f}, 0x0, 0x2, r15, 0x9)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000022c0)={r12, r12, 0x0, r12}, 0x10)
close(r12)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002300))
r16 = socket$kcm(0x29, 0x0, 0x0)
r17 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000002540)=@bpf_tracing={0x1a, 0x9, &(0x7f0000002340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}}, @alu={0x7, 0x1, 0x0, 0x6, 0x5, 0xffffffffffffffc0, 0xfffffffffffffff0}]}, &(0x7f00000023c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', r8, 0x17, r7, 0x8, &(0x7f0000002400)={0x8, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x22ec8, r12, 0x9, &(0x7f0000002440)=[r11, r10], &(0x7f0000002480)=[{0x1, 0x3, 0xb, 0x1}, {0x5, 0x3, 0xe}, {0x3, 0x1, 0x9, 0x9}, {0x3, 0x4}, {0x3, 0x4, 0xa, 0x9}, {0x4, 0x3, 0xc, 0x3}, {0x3, 0x5, 0xd, 0x2}, {0x0, 0x2, 0x9, 0x3}, {0x0, 0x2, 0xa, 0x1}]}, 0x94)
ioctl$sock_kcm_SIOCKCMATTACH(r16, 0x89e0, &(0x7f0000002600)={r1, r17})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000028c0)={0x11, 0xf, &(0x7f0000002640)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x10001}, [@call={0x85, 0x0, 0x0, 0x3f}, @map_idx_val={0x18, 0xf, 0x6, 0x0, 0x10, 0x0, 0x0, 0x0, 0x1}, @generic={0x7, 0x8, 0xd, 0x40, 0x800}, @call={0x85, 0x0, 0x0, 0x5d}, @map_idx={0x18, 0x9, 0x5, 0x0, 0x6}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @cb_func={0x18, 0x0, 0x4, 0x0, 0xfffffffffffffffa}, @map_fd={0x18, 0x1, 0x1, 0x0, r10}]}, &(0x7f00000026c0)='syzkaller\x00', 0x8001, 0x5c, &(0x7f0000002700)=""/92, 0x40f00, 0x1, '\x00', 0x0, 0x0, r7, 0x8, &(0x7f0000002780)={0x2, 0x1}, 0x8, 0x10, &(0x7f00000027c0)={0x3, 0x2, 0x7, 0xfff}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000002800)=[r5], &(0x7f0000002840)=[{0x1, 0x2, 0x5, 0xb}, {0x3, 0x2, 0xa, 0xc}, {0x2, 0x2, 0xe, 0x4}, {0x4, 0x3, 0xa, 0x6}, {0x2, 0x5, 0xa, 0x7}, {0x4, 0x1, 0x10, 0xa}], 0x10, 0x3c4a}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002cc0)={r17, 0x0, 0xbe, 0x6c, &(0x7f0000002980)="94d5707099366db1e8e6ca8f0e693a5b8207d0c6a160ba9bddba0e301f0ef05bc592cfbe0be58c875579852e71f9b1e9fbdaa7c1115df040b9d4bb04f286bbbb8614a2bfe665d026c4ca6dfae0e77c96addf89450f820f01a26994d732ac16ecf894708cf7b99bd6dd2218ac6a8945caebbc3f9cde15c54d7911331d4b3d117c893bfb9245d15a4b0db7c075905fd3b41176a90e0b9aca84f80467aad12ed7b9d9cf77dc1182239cb3743e118396b8532ec24bf2d27cb4ae6ffc3b385f6c", &(0x7f0000002a40)=""/108, 0x0, 0x0, 0xdd, 0xc2, &(0x7f0000002ac0)="cca0f1aca0e362e6d697f0088433cf12df71b5f2ecf02c274b16d7e7aa20a083796d9684c24d49e75655ff276d49e6c57a32ec7a95be83014de7d546fb00ce082498a74bca5e95211463dbae6324a7c7a02c7abd6c0047b1bd4963b56840f8d3957dbbed5f14c37ffc4348fb326f43d9da45eae69872c7e3a1f7b3255a6ec6d48d7cbed35d9b931a350bfcec8251bb413e9833652a2e7b353b02b806167af9802a268798fa1d2cdac454928b1a03e1cf65744cc75572bd66597c623f29acb91e7fd9a49c7c35dd13ae241183d3a3c2a7fd29c5d60468221b6674197a6e", &(0x7f0000002bc0)="3b0a46d11daba81ce240b2933964d1b431d8d6ad70745d74b4b58b5aa3286f4d071076aa8977281836486bd32ff2cd9e40d959fd075be7cdf37ccb0723f5b9c40d8a1ca13b22b5aaf82172e80efe9dbb77c8e451bce80df1b59151ef4a1f0ffce6de216739fd11441ddfb41714336c2d32b0aa475f94abcea10b24ad44768121358747f20ed6fed93235093575f3ac600102dee44264489b890a8c3172a6992bd9b025661cca3986c10c702fd4a6b88e3687b839cfd35a28efa57b9622f003a42809", 0x6, 0x0, 0x4}, 0x50)

1.755359771s ago: executing program 0 (id=1742):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020207025000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)=r3, 0x17e)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000280013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)

1.710956625s ago: executing program 2 (id=1743):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$kcm(0xa, 0x5, 0x0)
r2 = syz_clone(0xa0886600, &(0x7f0000000400)="1e57b78f10d0b491155fee80662fe95012320fd1c06b630754ca37d709592c5d9084fc9a5421dfc5a74f50989a4c3032f01fe28bdd1d5776ebdba3957b6bff0467d49f1b3a27c9a59f7663946f620402f84e5c4f82983091fbdaa453633f66ac897da328a6da88d9d1a11d8487f88b3f215559c61f27bc9c110768066dbd1c3a5af4b7d2bde79b4edecee0c68c4b534f9648d1234e428e68a42815e1ef6031933cd227c32cbe607dd0", 0xa9, &(0x7f0000000100), &(0x7f0000000180), &(0x7f00000004c0)="0b0d73c393edc4f354770b6b2f6d6755335aaf0dcf689c8c16f1cd40696f49bb057e7a8eb9edaaae12ad6354f9f739232313681a36800102cd05ceeb6ee8d7ea9abd56e4e66b96211ee478fcf405a45caca072fee21236")
setsockopt$sock_attach_bpf(r1, 0x29, 0x1a, &(0x7f0000000140), 0x4)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r6 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r4, r5, 0x26, 0x0, @void}, 0x10)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000002c0)={r6, r4}, 0x10)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000300)=r4, 0x4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff})
ioctl$TUNDETACHFILTER(r7, 0x8903, 0x1000000000000)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2106, 0x0, @perf_config_ext={0x0, 0x1946}, 0x0, 0x0, 0xfffffffe, 0x9, 0x3fe, 0x7fffffff}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000240)='ns/user\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x120e64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0xfffffbff, 0x3, 0x7, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
socket$kcm(0xa, 0x5, 0x0)
sendmsg$inet(r9, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf8}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1d, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x8946, &(0x7f0000000080))
sendmsg$kcm(r1, &(0x7f00000003c0)={&(0x7f0000000040)=@in6={0xa, 0x4e23, 0xd, @local, 0x7}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000000)="f1", 0x1}], 0x1}, 0x40040)

1.710724248s ago: executing program 1 (id=1744):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020207025000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="2001000012001307a6ffffffffffffffe0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)

1.710453649s ago: executing program 0 (id=1745):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10)
r2 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{}, {0x10000002}], 0x10, 0xfffffffd}, 0x94)
r3 = socket$kcm(0xa, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x8907, 0x0)
close(0x3)
r4 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r6)
close(r4)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x18}, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$kcm(0xa, 0x5, 0x0)
setsockopt$sock_attach_bpf(r4, 0x84, 0x64, &(0x7f0000000000)=r7, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
close(r9)
r10 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r10, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001700)=[@sndrcv={0x30, 0x84, 0x1, {0x6, 0x100, 0x200, 0xfff, 0x0, 0xe, 0x3a, 0xd}}], 0x30, 0x10084}, 0x4000804)
recvmsg$unix(r8, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r11=>0xffffffffffffffff]}}], 0x49}, 0x0)
setsockopt$sock_attach_bpf(r2, 0x84, 0x64, &(0x7f0000000000)=r11, 0x10)

1.65234485s ago: executing program 1 (id=1746):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000680)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000080))
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r0, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6600c2, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="000700000003"})

1.652007855s ago: executing program 0 (id=1747):
syz_clone(0x800000, &(0x7f0000000040)="43bce1c89d89500431dc09b51d2a430d14990d0d3e84dfcfae8b1e3e7bd1c458cb34545faced538b75bf16f5b8931c7d6ed57c1568ea47f856482c8e9ae25c258b3bc9c939ce0e19001af8bb3d6d78672444c9d27d5213adb7389b6a0f3a2f3c0807fc9b498e49cb5e89318debad17906262c33e8af4aec232b7308732ceed3c35c151673f3a573e", 0x88, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000200)="1a6ac802ca194034a160747552a151c23e48041e7ed36ffd1419ea7741cc86d52a28cee97941fc79f54c4de114da10a1f1f36bdfecc5d02b4c490938013c9ddf2e0f0f8ea1838088bed86d8151a80528c2e5f5df960a228cc433af7068a945210eb1e4ebd1d7bf30c96201f8687706a9cb76b46e55dc9879af9382c85eb71e34166547b84fa783d2971dee40c514e8035dda50c0b3ecec397f0549")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0xc500, 0xc8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xeb8c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x24}, 0x94)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x50)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xe, 0x66c}, 0x104101, 0x4, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000bf000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
close(0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d80000001c0081044e81f782db44b9040a1d080220000000401296a1180002000700000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)="5c00000015006b0300224ed86e6c1d0002117ea6e070d6064e22000300000000250002000f00000017d34460bc24eab556a705251e6182949a00003d3b48dfd8cdbf9767b4fa51f62a64c9f4060046d88037e786a6d0a5d700000017", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$kcm(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff})
recvmsg$unix(r9, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r8, 0x84, 0x79, &(0x7f0000000000)=r10, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="13000000fdffffff8c080000aaed000080000000", @ANYRES32=r7, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32=r10, @ANYBLOB="020000000400000005000000000000000000000000000000000000001af14690a747ca80528193302154cef4183a5f10a5e9084c4169ece1eb7fdb213334a6a18336cb9d27b3ae0c3acd9f3c9f0fff50868957c481f33beef1a3afb157a9c889aa1360c434e057d6d160432b344cf3d37f90901c0f642d0ee36cc9a49cb9338b024801ca71129947220d0b07871d1dad5580e16df14a7fd80126ac5935585cc7688026555cd0555ddc6edc7de8f6613fcde8346768038346976390d921f619cb78dc549165a09ea6de8a"], 0x50)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000180)=r0, 0x4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000000000000000000000000000007fffffff0001000000000071273fa79d93014b8e3381b6"], 0xfdef)
r11 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000e00)="130000001a0081044e81f782db4cb9041c1d08", 0x13}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))

237.93383ms ago: executing program 2 (id=1748):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000003e0007012dbd7000fcdbdf25047c0000040000001460018006000600800a00000800"], 0x2c}, 0x1, 0x0, 0x0, 0x20040011}, 0x44000)

237.575974ms ago: executing program 0 (id=1749):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202064250000000000202020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xcf}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402000a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x23, &(0x7f0000000040), 0xcf)
r1 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r1, 0x29, 0x23, &(0x7f0000000040), 0xcf)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000000c0)=ANY=[@ANYBLOB="fc0000001900010027bd700000000000e0000002000000000000000000000000ac1414aa0000000000000000000000004e240000000000000a"], 0xfc}}, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000003c0007010000000000400000037c00000400fc80100001805f"], 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)

191.250151ms ago: executing program 2 (id=1750):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x1108d5, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x1, 0xffffffffffffffff, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001000010700400000000000000a000000060001001700000008000a00", @ANYRES32=r1], 0x24}}, 0x0)

190.541674ms ago: executing program 1 (id=1751):
r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'freezer'}, {0x2d, 'memory'}, {0x2d, 'net'}, {0x2d, 'rdma'}]}, 0x1c)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x145700, 0x0)
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x7, 0x9e, 0x2, 0x3}, {0x7, 0xf8, 0x3, 0x31be}]})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'geneve1\x00', 0x2000})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x58, &(0x7f0000000180)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000240)=r3)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x3, '\x00', r3, 0xffffffffffffffff, 0x5, 0x5, 0x5}, 0x50)
r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000340), 0x8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r4, <r6=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000380)=r5}, 0x20)
ioctl$TUNSETDEBUG(r5, 0x400454c9, &(0x7f0000000400)=0xad)
ioctl$TUNGETFILTER(r1, 0x801054db, &(0x7f0000000440)=""/63)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000480)='btrfs_add_block_group\x00', r5, 0x0, 0x1}, 0x18)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x9c, 0x1, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x4}, [@CTA_LABELS_MASK={0x18, 0x17, [0x2, 0x10001, 0x7, 0x8, 0x3]}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0x4, 0x4]}, @CTA_NAT_SRC={0x48, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x15}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast2}]}, @CTA_SEQ_ADJ_ORIG={0xc, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x87}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@bloom_filter={0x1e, 0x6, 0xfffffffb, 0x0, 0x44010, r4, 0x101, '\x00', r3, r5, 0x0, 0x2, 0x5, 0x1}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x6, 0x2, &(0x7f0000000680)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x7fffffff}], &(0x7f00000006c0)='syzkaller\x00', 0x6, 0x69, &(0x7f0000000700)=""/105, 0x40f00, 0x0, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x1, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000840)=[r4, r7, r4, r5, r6, r4], &(0x7f0000000880)=[{0x0, 0x4, 0xd, 0x858ace1d24333315}, {0x1, 0x3, 0x2, 0x4}, {0x0, 0x3, 0x5, 0x6}, {0x1, 0x1, 0x6}, {0x0, 0x1, 0x6, 0x9}], 0x10, 0xf}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000d00)=@generic={&(0x7f0000000cc0)='./file0\x00', 0x0, 0x8}, 0x18)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000d40)={r2, 0x7, 0x18}, 0xc)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000d80)={0x1b, 0x0, 0x0, 0x9, 0x0, r4, 0x7f, '\x00', r3, 0xffffffffffffffff, 0x4, 0x3}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000e40)={0x6, 0x27, &(0x7f00000009c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4bd4, 0x0, 0x0, 0x0, 0xfff}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_val={0x18, 0x4, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x0, 0xb, 0x9, 0x4, 0x2, 0x8}, @ldst={0x3, 0x1, 0x0, 0xa, 0x4, 0xffffffffffffffc0, 0xfffffffffffffffc}, @ldst={0x3, 0x1, 0x3, 0x9, 0x7, 0xc, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0xcd27e52dcd5b35aa}}}, &(0x7f0000000b00)='GPL\x00', 0x8001, 0xf1, &(0x7f0000000b40)=""/241, 0x41000, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000c40)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000000c80)={0x0, 0x6, 0x6, 0x9}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000e00)=[r8, r7, r9, r5, r7, r5, r7, r10, r4], 0x0, 0x10, 0x5}, 0x94)
sendmsg$NFT_MSG_GETSETELEM(r5, &(0x7f0000001140)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001100)={&(0x7f0000000f40)={0x194, 0xd, 0xa, 0x804, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_USERDATA={0x24, 0x6, 0x1, 0x0, "456d99f45c8dcc30e2fb45293bf6eefc3b2ff1749626b55afaf341987b67ccd0"}]}]}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xfc, 0x3, 0x0, 0x1, [{0xf8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_USERDATA={0xea, 0x6, 0x1, 0x0, "f63b4dbf5c246d4d6b2fe0dda8e4203e01667d516f20ec75fab5616537681ae3e948c5c57f4c124ca2e1aeec31a3884580156a4a140e4c27b808d45d620078abba5bdcb8115de11c2d06372ca6309f03ce37c34714fd3688f3bdaeaebb1f254ade75343d5853389dcfb7b933ab16835e9ca47390a68a0ddfbca3d0266f4d4a5bfcd1313f5ee216512d9d2bc4dbfafb34ee87efe4230bbe89a61525b3671147dc55e0c4a10e0f4b2bd29fad5413e45d4624087946923a579e54930eacab925dea548490bc3c0b54d67804ffc1dbe4f99080238d85b406b1cf4aaed1e6f0ea971910a98a4699ef"}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x194}}, 0x40080cc)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000001180), 0x400000, 0x0)
ioctl$TUNSETTXFILTER(r11, 0x400454d1, &(0x7f00000011c0)={0x0, 0x5, [@local, @random="c980cd8bcc29", @empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @local]})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001500)={r5, 0xe0, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000001200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, &(0x7f0000001240)=[0x0, 0x0, 0x0], &(0x7f0000001280)=[0x0, 0x0], 0x0, 0xd0, &(0x7f00000012c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f0000001340), &(0x7f0000001380), 0x8, 0x15, 0x8, 0x8, &(0x7f00000013c0)}}, 0x10)
ioctl$TUNSETOWNER(0xffffffffffffffff, 0x400454cc, 0xffffffffffffffff)
fstat(r8, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0})
ioctl$TUNSETGROUP(r1, 0x400454ce, r12)
r13 = openat$tun(0xffffffffffffff9c, &(0x7f00000015c0), 0x8002, 0x0)
ioctl$TUNSETTXFILTER(r13, 0x400454d1, &(0x7f0000001600)={0x1, 0x4, [@multicast, @local, @multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}]})

131.424222ms ago: executing program 1 (id=1752):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020207025000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)=r3, 0x17e)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000400013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)

130.792063ms ago: executing program 2 (id=1753):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x624a, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7ff0, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x6, 0x8, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0xd}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x500, 0x4000000}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0x4, &(0x7f0000000780)=ANY=[@ANYRESHEX=r1], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x5, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x4000}, 0x8, 0x10, &(0x7f0000000000)={0xfffffffd}, 0x10}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2700000000002020207b1a00fe00000000bfa10000000000000701000078ffffffb702000008000000b70300000000000085000000c700000095"], &(0x7f0000000040)='syzkaller\x00', 0x9}, 0x94)
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x50, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0x800000000aea}, 0x14105, 0x2e, 0xfffffc03, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d2f, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x3}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000610d6400000000009500000000000000a238eba7f3e618ba3a5c5a996a73e32da52e6d5c1bab0342"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)
r3 = openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000000c14df25"], 0x38}, 0x1, 0x0, 0x0, 0x8080}, 0x20008800)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
openat$cgroup_procs(r2, 0x0, 0x2, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
close(r2)
close(0xffffffffffffffff)
r5 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000580)=ANY=[@ANYBLOB="364000001a00913a09b51bcb3cc5a05f0a"], 0xfe33)
socket$kcm(0x29, 0x8, 0x0)

51.330513ms ago: executing program 1 (id=1754):
r0 = socket$kcm(0x2, 0x1, 0x84)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3c, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18020000000000000000000000000000870a000000000000637e00000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0xfa, &(0x7f0000000140)=""/250}, 0x94)

51.111655ms ago: executing program 0 (id=1755):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x41, &(0x7f0000000000)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000002d00010000000000000000000400008005f011802f"], 0x1c}], 0x1}, 0x310)

0s ago: executing program 1 (id=1756):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000001946}, 0x0, 0x0, 0x0, 0x8, 0x3fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
sendmsg$nl_xfrm(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000025bd7000000000000000000000000000000000000300000006"], 0x34c}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@expire={0x104, 0x18, 0x1, 0x70bd2a, 0x25dfdbfd, {{{@in6=@empty, @in=@broadcast, 0x4e22, 0x6, 0x4e23, 0x4, 0x2, 0x0, 0xa0, 0xd5}, {@in6=@remote, 0x4d5, 0x3c}, @in=@rand_addr=0x64010102, {0x515a9802, 0x7f, 0xffffffffffffffff, 0xd, 0x8000000000000000, 0xba, 0x7, 0xe}, {0x3f, 0xffffffffffffff4d, 0x6, 0x4}, {0x5, 0x10, 0x97}, 0x70bd25, 0x3500, 0xa, 0x7, 0x9, 0x8}, 0xd}, [@mark={0xc, 0x15, {0x35075a, 0x9}}]}, 0x104}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

kernel console output (not intermixed with test programs):

9 R08: 0000000000000000 R09: 0000000000000000
[  200.906200][T10026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.906208][T10026] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  200.906231][T10026]  </TASK>
[  201.276108][T10032] syzkaller0: entered promiscuous mode
[  201.279822][T10032] syzkaller0: entered allmulticast mode
[  201.303527][T10042] netlink: 'syz.2.1318': attribute type 21 has an invalid length.
[  201.321197][T10045] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  201.355918][T10043] netlink: 'syz.2.1318': attribute type 10 has an invalid length.
[  201.359360][T10043] netlink: 55 bytes leftover after parsing attributes in process `syz.2.1318'.
[  201.373399][T10047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1320'.
[  201.438465][T10051] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1321'.
[  202.340648][T10055] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1322'.
[  202.487243][T10061] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  202.490485][T10061] CPU: 1 UID: 0 PID: 10061 Comm: syz.1.1324 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  202.490502][T10061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  202.490510][T10061] Call Trace:
[  202.490518][T10061]  <TASK>
[  202.490524][T10061]  dump_stack_lvl+0x189/0x250
[  202.490546][T10061]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.490565][T10061]  ? __pfx__printk+0x10/0x10
[  202.490608][T10061]  ? kernfs_path_from_node+0x2f/0x290
[  202.490621][T10061]  ? kernfs_path_from_node+0x250/0x290
[  202.490633][T10061]  ? kernfs_path_from_node+0x2f/0x290
[  202.490648][T10061]  sysfs_warn_dup+0x8e/0xa0
[  202.490660][T10061]  sysfs_do_create_link_sd+0xc0/0x110
[  202.490675][T10061]  device_add_class_symlinks+0x1cf/0x240
[  202.490690][T10061]  device_add+0x475/0xb50
[  202.490706][T10061]  wiphy_register+0x1ba6/0x28d0
[  202.490732][T10061]  ? __pfx_wiphy_register+0x10/0x10
[  202.490747][T10061]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  202.490765][T10061]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  202.490790][T10061]  ieee80211_register_hw+0x3425/0x4080
[  202.490814][T10061]  ? ieee80211_register_hw+0x1441/0x4080
[  202.490830][T10061]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  202.490845][T10061]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  202.490865][T10061]  ? __hrtimer_setup+0x187/0x210
[  202.490877][T10061]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  202.490899][T10061]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  202.490935][T10061]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  202.490952][T10061]  ? trace_kmalloc+0x1f/0xd0
[  202.490966][T10061]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  202.490980][T10061]  ? kstrndup+0xbf/0x160
[  202.491000][T10061]  hwsim_new_radio_nl+0xea4/0x1b10
[  202.491018][T10061]  ? __pfx___nla_validate_parse+0x10/0x10
[  202.491046][T10061]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  202.491070][T10061]  ? __nla_parse+0x40/0x60
[  202.491090][T10061]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  202.491111][T10061]  genl_family_rcv_msg_doit+0x215/0x300
[  202.491131][T10061]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  202.491156][T10061]  ? bpf_lsm_capable+0x9/0x20
[  202.491173][T10061]  ? security_capable+0x7e/0x2e0
[  202.491196][T10061]  genl_rcv_msg+0x60e/0x790
[  202.491215][T10061]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.491228][T10061]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  202.491244][T10061]  ? __asan_memcpy+0x40/0x70
[  202.491258][T10061]  ? __pfx_ref_tracker_free+0x10/0x10
[  202.491281][T10061]  netlink_rcv_skb+0x208/0x470
[  202.491299][T10061]  ? __lock_acquire+0xab9/0xd20
[  202.491317][T10061]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.491334][T10061]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  202.491365][T10061]  ? down_read+0x1ad/0x2e0
[  202.491385][T10061]  genl_rcv+0x28/0x40
[  202.491399][T10061]  netlink_unicast+0x82f/0x9e0
[  202.491422][T10061]  ? __pfx_netlink_unicast+0x10/0x10
[  202.491440][T10061]  ? netlink_sendmsg+0x642/0xb30
[  202.491456][T10061]  ? skb_put+0x11b/0x210
[  202.491469][T10061]  netlink_sendmsg+0x805/0xb30
[  202.491493][T10061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.491514][T10061]  ? aa_sock_msg_perm+0xf1/0x1d0
[  202.491536][T10061]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  202.491550][T10061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.491607][T10061]  __sock_sendmsg+0x21c/0x270
[  202.491629][T10061]  ____sys_sendmsg+0x505/0x830
[  202.491648][T10061]  ? __pfx_____sys_sendmsg+0x10/0x10
[  202.491669][T10061]  ? import_iovec+0x74/0xa0
[  202.491687][T10061]  ___sys_sendmsg+0x21f/0x2a0
[  202.491701][T10061]  ? __pfx____sys_sendmsg+0x10/0x10
[  202.491737][T10061]  ? __fget_files+0x2a/0x420
[  202.491747][T10061]  ? __fget_files+0x3a0/0x420
[  202.491766][T10061]  __x64_sys_sendmsg+0x19b/0x260
[  202.491782][T10061]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  202.491803][T10061]  ? rcu_is_watching+0x15/0xb0
[  202.491820][T10061]  ? do_syscall_64+0xbe/0x3b0
[  202.491841][T10061]  do_syscall_64+0xfa/0x3b0
[  202.491861][T10061]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.491877][T10061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.491890][T10061]  ? exc_page_fault+0x9f/0xf0
[  202.491905][T10061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.491918][T10061] RIP: 0033:0x7fc6e658ebe9
[  202.491932][T10061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.491944][T10061] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.491959][T10061] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  202.491969][T10061] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  202.491978][T10061] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  202.491987][T10061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.491995][T10061] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  202.492017][T10061]  </TASK>
[  202.776836][T10074] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  202.829498][T10072] netlink: 'syz.1.1328': attribute type 21 has an invalid length.
[  202.832910][T10072] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1328'.
[  202.837202][T10072] netlink: 'syz.1.1328': attribute type 4 has an invalid length.
[  202.843901][T10081] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1331'.
[  202.905989][T10072] netlink: 228 bytes leftover after parsing attributes in process `syz.1.1328'.
[  202.960741][T10085] syzkaller0: entered promiscuous mode
[  202.962696][T10085] syzkaller0: entered allmulticast mode
[  203.824057][T10092] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  203.827436][T10092] CPU: 0 UID: 0 PID: 10092 Comm: syz.0.1336 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  203.827456][T10092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  203.827465][T10092] Call Trace:
[  203.827472][T10092]  <TASK>
[  203.827478][T10092]  dump_stack_lvl+0x189/0x250
[  203.827524][T10092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.827540][T10092]  ? __pfx__printk+0x10/0x10
[  203.827589][T10092]  ? kernfs_path_from_node+0x2f/0x290
[  203.827605][T10092]  ? kernfs_path_from_node+0x250/0x290
[  203.827617][T10092]  ? kernfs_path_from_node+0x2f/0x290
[  203.827634][T10092]  sysfs_warn_dup+0x8e/0xa0
[  203.827648][T10092]  sysfs_do_create_link_sd+0xc0/0x110
[  203.827665][T10092]  device_add_class_symlinks+0x1cf/0x240
[  203.827682][T10092]  device_add+0x475/0xb50
[  203.827699][T10092]  wiphy_register+0x1ba6/0x28d0
[  203.827731][T10092]  ? __pfx_wiphy_register+0x10/0x10
[  203.827747][T10092]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  203.827767][T10092]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  203.827791][T10092]  ieee80211_register_hw+0x3425/0x4080
[  203.827817][T10092]  ? ieee80211_register_hw+0x1441/0x4080
[  203.827836][T10092]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  203.827853][T10092]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  203.827875][T10092]  ? __hrtimer_setup+0x187/0x210
[  203.827887][T10092]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  203.827907][T10092]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  203.827946][T10092]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  203.827960][T10092]  ? trace_kmalloc+0x1f/0xd0
[  203.827975][T10092]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  203.827992][T10092]  ? kstrndup+0xbf/0x160
[  203.828014][T10092]  hwsim_new_radio_nl+0xea4/0x1b10
[  203.828032][T10092]  ? __pfx___nla_validate_parse+0x10/0x10
[  203.828061][T10092]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  203.828089][T10092]  ? __nla_parse+0x40/0x60
[  203.828110][T10092]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  203.828131][T10092]  genl_family_rcv_msg_doit+0x215/0x300
[  203.828151][T10092]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  203.828177][T10092]  ? bpf_lsm_capable+0x9/0x20
[  203.828195][T10092]  ? security_capable+0x7e/0x2e0
[  203.828218][T10092]  genl_rcv_msg+0x60e/0x790
[  203.828238][T10092]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.828288][T10092]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  203.828305][T10092]  ? __asan_memcpy+0x40/0x70
[  203.828320][T10092]  ? __pfx_ref_tracker_free+0x10/0x10
[  203.828342][T10092]  netlink_rcv_skb+0x208/0x470
[  203.828358][T10092]  ? __lock_acquire+0xab9/0xd20
[  203.828377][T10092]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.828392][T10092]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  203.828424][T10092]  ? down_read+0x1ad/0x2e0
[  203.828445][T10092]  genl_rcv+0x28/0x40
[  203.828457][T10092]  netlink_unicast+0x82f/0x9e0
[  203.828479][T10092]  ? __pfx_netlink_unicast+0x10/0x10
[  203.828498][T10092]  ? netlink_sendmsg+0x642/0xb30
[  203.828513][T10092]  ? skb_put+0x11b/0x210
[  203.828528][T10092]  netlink_sendmsg+0x805/0xb30
[  203.828552][T10092]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.828604][T10092]  ? aa_sock_msg_perm+0xf1/0x1d0
[  203.828625][T10092]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  203.828638][T10092]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.828657][T10092]  __sock_sendmsg+0x21c/0x270
[  203.828676][T10092]  ____sys_sendmsg+0x505/0x830
[  203.828694][T10092]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.828715][T10092]  ? import_iovec+0x74/0xa0
[  203.828734][T10092]  ___sys_sendmsg+0x21f/0x2a0
[  203.828750][T10092]  ? __pfx____sys_sendmsg+0x10/0x10
[  203.828793][T10092]  ? __fget_files+0x2a/0x420
[  203.828805][T10092]  ? __fget_files+0x3a0/0x420
[  203.828826][T10092]  __x64_sys_sendmsg+0x19b/0x260
[  203.828841][T10092]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  203.828864][T10092]  ? rcu_is_watching+0x15/0xb0
[  203.828883][T10092]  ? do_syscall_64+0xbe/0x3b0
[  203.828905][T10092]  do_syscall_64+0xfa/0x3b0
[  203.828924][T10092]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.828940][T10092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.828952][T10092]  ? exc_page_fault+0x9f/0xf0
[  203.828971][T10092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.828983][T10092] RIP: 0033:0x7f51e098ebe9
[  203.828996][T10092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.829006][T10092] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.829022][T10092] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  203.829032][T10092] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  203.829041][T10092] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  203.829050][T10092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.829059][T10092] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  203.829082][T10092]  </TASK>
[  204.131910][T10100] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1340'.
[  204.198904][T10106] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  204.270214][T10108] syzkaller0: entered promiscuous mode
[  204.272467][T10108] syzkaller0: entered allmulticast mode
[  204.291139][T10112] netlink: 'syz.1.1339': attribute type 39 has an invalid length.
[  204.329479][T10114] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  204.333178][T10115] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  205.145064][T10122] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  205.150023][T10122] CPU: 0 UID: 0 PID: 10122 Comm: syz.1.1347 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  205.150036][T10122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  205.150041][T10122] Call Trace:
[  205.150046][T10122]  <TASK>
[  205.150050][T10122]  dump_stack_lvl+0x189/0x250
[  205.150071][T10122]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.150086][T10122]  ? __pfx__printk+0x10/0x10
[  205.150105][T10122]  ? kernfs_path_from_node+0x2f/0x290
[  205.150115][T10122]  ? kernfs_path_from_node+0x250/0x290
[  205.150126][T10122]  ? kernfs_path_from_node+0x2f/0x290
[  205.150141][T10122]  sysfs_warn_dup+0x8e/0xa0
[  205.150153][T10122]  sysfs_do_create_link_sd+0xc0/0x110
[  205.150166][T10122]  device_add_class_symlinks+0x1cf/0x240
[  205.150182][T10122]  device_add+0x475/0xb50
[  205.150194][T10122]  wiphy_register+0x1ba6/0x28d0
[  205.150212][T10122]  ? __pfx_wiphy_register+0x10/0x10
[  205.150222][T10122]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  205.150235][T10122]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  205.150258][T10122]  ieee80211_register_hw+0x3425/0x4080
[  205.150275][T10122]  ? ieee80211_register_hw+0x1441/0x4080
[  205.150287][T10122]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  205.150298][T10122]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  205.150312][T10122]  ? __hrtimer_setup+0x187/0x210
[  205.150320][T10122]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  205.150333][T10122]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  205.150354][T10122]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  205.150364][T10122]  ? trace_kmalloc+0x1f/0xd0
[  205.150373][T10122]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  205.150383][T10122]  ? kstrndup+0xbf/0x160
[  205.150395][T10122]  hwsim_new_radio_nl+0xea4/0x1b10
[  205.150405][T10122]  ? __pfx___nla_validate_parse+0x10/0x10
[  205.150423][T10122]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  205.150438][T10122]  ? __nla_parse+0x40/0x60
[  205.150457][T10122]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  205.150474][T10122]  genl_family_rcv_msg_doit+0x215/0x300
[  205.150491][T10122]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  205.150511][T10122]  ? bpf_lsm_capable+0x9/0x20
[  205.150526][T10122]  ? security_capable+0x7e/0x2e0
[  205.150572][T10122]  genl_rcv_msg+0x60e/0x790
[  205.150593][T10122]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.150606][T10122]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  205.150622][T10122]  ? __asan_memcpy+0x40/0x70
[  205.150636][T10122]  ? __pfx_ref_tracker_free+0x10/0x10
[  205.150659][T10122]  netlink_rcv_skb+0x208/0x470
[  205.150674][T10122]  ? __lock_acquire+0xab9/0xd20
[  205.150692][T10122]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.150708][T10122]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  205.150740][T10122]  ? down_read+0x1ad/0x2e0
[  205.150761][T10122]  genl_rcv+0x28/0x40
[  205.150773][T10122]  netlink_unicast+0x82f/0x9e0
[  205.150795][T10122]  ? __pfx_netlink_unicast+0x10/0x10
[  205.150812][T10122]  ? netlink_sendmsg+0x642/0xb30
[  205.150828][T10122]  ? skb_put+0x11b/0x210
[  205.150843][T10122]  netlink_sendmsg+0x805/0xb30
[  205.150868][T10122]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.150888][T10122]  ? aa_sock_msg_perm+0xf1/0x1d0
[  205.150908][T10122]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  205.150921][T10122]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.150939][T10122]  __sock_sendmsg+0x21c/0x270
[  205.150958][T10122]  ____sys_sendmsg+0x505/0x830
[  205.150971][T10122]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.150984][T10122]  ? import_iovec+0x74/0xa0
[  205.150995][T10122]  ___sys_sendmsg+0x21f/0x2a0
[  205.151005][T10122]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.151049][T10122]  ? __fget_files+0x2a/0x420
[  205.151057][T10122]  ? __fget_files+0x3a0/0x420
[  205.151071][T10122]  __x64_sys_sendmsg+0x19b/0x260
[  205.151083][T10122]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  205.151095][T10122]  ? rcu_is_watching+0x15/0xb0
[  205.151106][T10122]  ? do_syscall_64+0xbe/0x3b0
[  205.151118][T10122]  do_syscall_64+0xfa/0x3b0
[  205.151128][T10122]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.151137][T10122]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.151145][T10122]  ? exc_page_fault+0x9f/0xf0
[  205.151155][T10122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.151163][T10122] RIP: 0033:0x7fc6e658ebe9
[  205.151171][T10122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.151178][T10122] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.151187][T10122] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  205.151193][T10122] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  205.151198][T10122] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  205.151203][T10122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.151207][T10122] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  205.151220][T10122]  </TASK>
[  205.515267][T10134] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  205.587947][T10141] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  205.590778][T10141] CPU: 1 UID: 0 PID: 10141 Comm: syz.0.1356 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  205.590796][T10141] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  205.590804][T10141] Call Trace:
[  205.590810][T10141]  <TASK>
[  205.590818][T10141]  dump_stack_lvl+0x189/0x250
[  205.590838][T10141]  ? kernfs_path_from_node+0x2f/0x290
[  205.590854][T10141]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.590870][T10141]  ? __pfx__printk+0x10/0x10
[  205.590893][T10141]  ? kernfs_path_from_node+0x2f/0x290
[  205.590907][T10141]  ? kernfs_path_from_node+0x250/0x290
[  205.590919][T10141]  ? kernfs_path_from_node+0x2f/0x290
[  205.590936][T10141]  sysfs_warn_dup+0x8e/0xa0
[  205.590951][T10141]  sysfs_do_create_link_sd+0xc0/0x110
[  205.590968][T10141]  device_add_class_symlinks+0x1cf/0x240
[  205.590985][T10141]  device_add+0x475/0xb50
[  205.591001][T10141]  wiphy_register+0x1ba6/0x28d0
[  205.591035][T10141]  ? __pfx_wiphy_register+0x10/0x10
[  205.591052][T10141]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  205.591072][T10141]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  205.591095][T10141]  ieee80211_register_hw+0x3425/0x4080
[  205.591125][T10141]  ? ieee80211_register_hw+0x1441/0x4080
[  205.591145][T10141]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  205.591161][T10141]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  205.591184][T10141]  ? __hrtimer_setup+0x187/0x210
[  205.591195][T10141]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  205.591215][T10141]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  205.591264][T10141]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  205.591279][T10141]  ? trace_kmalloc+0x1f/0xd0
[  205.591294][T10141]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  205.591311][T10141]  ? kstrndup+0xbf/0x160
[  205.591335][T10141]  hwsim_new_radio_nl+0xea4/0x1b10
[  205.591354][T10141]  ? __pfx___nla_validate_parse+0x10/0x10
[  205.591386][T10141]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  205.591412][T10141]  ? __nla_parse+0x40/0x60
[  205.591433][T10141]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  205.591454][T10141]  genl_family_rcv_msg_doit+0x215/0x300
[  205.591475][T10141]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  205.591500][T10141]  ? bpf_lsm_capable+0x9/0x20
[  205.591516][T10141]  ? security_capable+0x7e/0x2e0
[  205.591574][T10141]  genl_rcv_msg+0x60e/0x790
[  205.591597][T10141]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.591612][T10141]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  205.591629][T10141]  ? __asan_memcpy+0x40/0x70
[  205.591644][T10141]  ? __pfx_ref_tracker_free+0x10/0x10
[  205.591669][T10141]  netlink_rcv_skb+0x208/0x470
[  205.591685][T10141]  ? __lock_acquire+0xab9/0xd20
[  205.591705][T10141]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.591720][T10141]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  205.591753][T10141]  ? down_read+0x1ad/0x2e0
[  205.591774][T10141]  genl_rcv+0x28/0x40
[  205.591786][T10141]  netlink_unicast+0x82f/0x9e0
[  205.591810][T10141]  ? __pfx_netlink_unicast+0x10/0x10
[  205.591828][T10141]  ? netlink_sendmsg+0x642/0xb30
[  205.591843][T10141]  ? skb_put+0x11b/0x210
[  205.591859][T10141]  netlink_sendmsg+0x805/0xb30
[  205.591885][T10141]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.591905][T10141]  ? aa_sock_msg_perm+0xf1/0x1d0
[  205.591925][T10141]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  205.591938][T10141]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.591956][T10141]  __sock_sendmsg+0x21c/0x270
[  205.591975][T10141]  ____sys_sendmsg+0x505/0x830
[  205.591994][T10141]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.592016][T10141]  ? import_iovec+0x74/0xa0
[  205.592034][T10141]  ___sys_sendmsg+0x21f/0x2a0
[  205.592049][T10141]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.592081][T10141]  ? __fget_files+0x2a/0x420
[  205.592104][T10141]  ? __fget_files+0x2a/0x420
[  205.592114][T10141]  ? __fget_files+0x3a0/0x420
[  205.592135][T10141]  __x64_sys_sendmsg+0x19b/0x260
[  205.592150][T10141]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  205.592172][T10141]  ? rcu_is_watching+0x15/0xb0
[  205.592190][T10141]  ? do_syscall_64+0xbe/0x3b0
[  205.592211][T10141]  do_syscall_64+0xfa/0x3b0
[  205.592226][T10141]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.592247][T10141]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.592260][T10141]  ? exc_page_fault+0x9f/0xf0
[  205.592279][T10141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.592291][T10141] RIP: 0033:0x7f51e098ebe9
[  205.592304][T10141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.592315][T10141] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.592330][T10141] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  205.592339][T10141] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  205.592348][T10141] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  205.592355][T10141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.592362][T10141] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  205.592387][T10141]  </TASK>
[  205.865006][T10142] __nla_validate_parse: 3 callbacks suppressed
[  205.865109][T10142] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1355'.
[  205.881951][T10142] netlink: 'syz.1.1355': attribute type 3 has an invalid length.
[  205.884885][T10142] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.1355'.
[  206.064356][T10156] syzkaller0: entered promiscuous mode
[  206.069856][T10156] syzkaller0: entered allmulticast mode
[  207.027007][T10160] netlink: 763 bytes leftover after parsing attributes in process `syz.2.1359'.
[  207.092069][T10163] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1360'.
[  207.253642][T10170] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  207.325405][T10175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1365'.
[  207.338455][T10177] netlink: 260 bytes leftover after parsing attributes in process `syz.2.1366'.
[  207.341882][T10177] netlink: 260 bytes leftover after parsing attributes in process `syz.2.1366'.
[  207.408206][T10183] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  207.411453][T10183] CPU: 1 UID: 0 PID: 10183 Comm: syz.0.1367 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  207.411470][T10183] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  207.411480][T10183] Call Trace:
[  207.411486][T10183]  <TASK>
[  207.411494][T10183]  dump_stack_lvl+0x189/0x250
[  207.411537][T10183]  ? kernfs_path_from_node+0x2f/0x290
[  207.411558][T10183]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.411576][T10183]  ? __pfx__printk+0x10/0x10
[  207.411601][T10183]  ? kernfs_path_from_node+0x2f/0x290
[  207.411617][T10183]  ? kernfs_path_from_node+0x250/0x290
[  207.411631][T10183]  ? kernfs_path_from_node+0x2f/0x290
[  207.411650][T10183]  sysfs_warn_dup+0x8e/0xa0
[  207.411666][T10183]  sysfs_do_create_link_sd+0xc0/0x110
[  207.411683][T10183]  device_add_class_symlinks+0x1cf/0x240
[  207.411702][T10183]  device_add+0x475/0xb50
[  207.411720][T10183]  wiphy_register+0x1ba6/0x28d0
[  207.411754][T10183]  ? __pfx_wiphy_register+0x10/0x10
[  207.411772][T10183]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  207.411795][T10183]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  207.411822][T10183]  ieee80211_register_hw+0x3425/0x4080
[  207.411851][T10183]  ? ieee80211_register_hw+0x1441/0x4080
[  207.411874][T10183]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  207.411893][T10183]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  207.411917][T10183]  ? __hrtimer_setup+0x187/0x210
[  207.411930][T10183]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  207.411952][T10183]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  207.411995][T10183]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  207.412013][T10183]  ? trace_kmalloc+0x1f/0xd0
[  207.412029][T10183]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  207.412046][T10183]  ? kstrndup+0xbf/0x160
[  207.412069][T10183]  hwsim_new_radio_nl+0xea4/0x1b10
[  207.412089][T10183]  ? __pfx___nla_validate_parse+0x10/0x10
[  207.412124][T10183]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  207.412152][T10183]  ? __nla_parse+0x40/0x60
[  207.412175][T10183]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  207.412199][T10183]  genl_family_rcv_msg_doit+0x215/0x300
[  207.412221][T10183]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  207.412247][T10183]  ? bpf_lsm_capable+0x9/0x20
[  207.412266][T10183]  ? security_capable+0x7e/0x2e0
[  207.412296][T10183]  genl_rcv_msg+0x60e/0x790
[  207.412318][T10183]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.412332][T10183]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  207.412350][T10183]  ? __asan_memcpy+0x40/0x70
[  207.412367][T10183]  ? __pfx_ref_tracker_free+0x10/0x10
[  207.412392][T10183]  netlink_rcv_skb+0x208/0x470
[  207.412411][T10183]  ? __lock_acquire+0xab9/0xd20
[  207.412433][T10183]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.412450][T10183]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.412488][T10183]  ? down_read+0x1ad/0x2e0
[  207.412510][T10183]  genl_rcv+0x28/0x40
[  207.412549][T10183]  netlink_unicast+0x82f/0x9e0
[  207.412576][T10183]  ? __pfx_netlink_unicast+0x10/0x10
[  207.412597][T10183]  ? netlink_sendmsg+0x642/0xb30
[  207.412614][T10183]  ? skb_put+0x11b/0x210
[  207.412632][T10183]  netlink_sendmsg+0x805/0xb30
[  207.412660][T10183]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.412684][T10183]  ? aa_sock_msg_perm+0xf1/0x1d0
[  207.412707][T10183]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  207.412723][T10183]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.412743][T10183]  __sock_sendmsg+0x21c/0x270
[  207.412763][T10183]  ____sys_sendmsg+0x505/0x830
[  207.412782][T10183]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.412806][T10183]  ? import_iovec+0x74/0xa0
[  207.412825][T10183]  ___sys_sendmsg+0x21f/0x2a0
[  207.412842][T10183]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.412876][T10183]  ? __fget_files+0x2a/0x420
[  207.412901][T10183]  ? __fget_files+0x2a/0x420
[  207.412914][T10183]  ? __fget_files+0x3a0/0x420
[  207.412936][T10183]  __x64_sys_sendmsg+0x19b/0x260
[  207.412953][T10183]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  207.412977][T10183]  ? rcu_is_watching+0x15/0xb0
[  207.412996][T10183]  ? do_syscall_64+0xbe/0x3b0
[  207.413019][T10183]  do_syscall_64+0xfa/0x3b0
[  207.413036][T10183]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.413053][T10183]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.413066][T10183]  ? exc_page_fault+0x9f/0xf0
[  207.413086][T10183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.413098][T10183] RIP: 0033:0x7f51e098ebe9
[  207.413112][T10183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.413124][T10183] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.413140][T10183] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  207.413150][T10183] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  207.413158][T10183] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  207.413167][T10183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.413176][T10183] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  207.413201][T10183]  </TASK>
[  207.614086][T10181] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1364'.
[  207.645987][T10191] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1369'.
[  207.700137][T10193] syzkaller0: entered promiscuous mode
[  207.702379][T10193] syzkaller0: entered allmulticast mode
[  208.680144][T10204] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  208.684877][T10201] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1373'.
[  208.779293][T10215] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  208.782559][T10215] CPU: 0 UID: 0 PID: 10215 Comm: syz.0.1379 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  208.782579][T10215] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  208.782589][T10215] Call Trace:
[  208.782596][T10215]  <TASK>
[  208.782602][T10215]  dump_stack_lvl+0x189/0x250
[  208.782627][T10215]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.782645][T10215]  ? __pfx__printk+0x10/0x10
[  208.782669][T10215]  ? kernfs_path_from_node+0x2f/0x290
[  208.782685][T10215]  ? kernfs_path_from_node+0x250/0x290
[  208.782698][T10215]  ? kernfs_path_from_node+0x2f/0x290
[  208.782716][T10215]  sysfs_warn_dup+0x8e/0xa0
[  208.782731][T10215]  sysfs_do_create_link_sd+0xc0/0x110
[  208.782747][T10215]  device_add_class_symlinks+0x1cf/0x240
[  208.782765][T10215]  device_add+0x475/0xb50
[  208.782782][T10215]  wiphy_register+0x1ba6/0x28d0
[  208.782815][T10215]  ? __pfx_wiphy_register+0x10/0x10
[  208.782832][T10215]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  208.782853][T10215]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  208.782878][T10215]  ieee80211_register_hw+0x3425/0x4080
[  208.782904][T10215]  ? ieee80211_register_hw+0x1441/0x4080
[  208.782925][T10215]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  208.782943][T10215]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  208.782965][T10215]  ? __hrtimer_setup+0x187/0x210
[  208.782978][T10215]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  208.782999][T10215]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  208.783038][T10215]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  208.783054][T10215]  ? trace_kmalloc+0x1f/0xd0
[  208.783070][T10215]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  208.783088][T10215]  ? kstrndup+0xbf/0x160
[  208.783108][T10215]  hwsim_new_radio_nl+0xea4/0x1b10
[  208.783147][T10215]  ? __pfx___nla_validate_parse+0x10/0x10
[  208.783181][T10215]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  208.783214][T10215]  ? __nla_parse+0x40/0x60
[  208.783237][T10215]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  208.783262][T10215]  genl_family_rcv_msg_doit+0x215/0x300
[  208.783283][T10215]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  208.783309][T10215]  ? bpf_lsm_capable+0x9/0x20
[  208.783326][T10215]  ? security_capable+0x7e/0x2e0
[  208.783351][T10215]  genl_rcv_msg+0x60e/0x790
[  208.783371][T10215]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.783385][T10215]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  208.783404][T10215]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[  208.783428][T10215]  netlink_rcv_skb+0x208/0x470
[  208.783445][T10215]  ? __lock_acquire+0xab9/0xd20
[  208.783463][T10215]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.783478][T10215]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  208.783536][T10215]  ? down_read+0x1ad/0x2e0
[  208.783560][T10215]  genl_rcv+0x28/0x40
[  208.783575][T10215]  netlink_unicast+0x82f/0x9e0
[  208.783599][T10215]  ? __pfx_netlink_unicast+0x10/0x10
[  208.783617][T10215]  ? netlink_sendmsg+0x642/0xb30
[  208.783634][T10215]  ? skb_put+0x11b/0x210
[  208.783650][T10215]  netlink_sendmsg+0x805/0xb30
[  208.783677][T10215]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.783697][T10215]  ? aa_sock_msg_perm+0xf1/0x1d0
[  208.783718][T10215]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.783732][T10215]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.783750][T10215]  __sock_sendmsg+0x21c/0x270
[  208.783769][T10215]  ____sys_sendmsg+0x505/0x830
[  208.783787][T10215]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.783808][T10215]  ? import_iovec+0x74/0xa0
[  208.783827][T10215]  ___sys_sendmsg+0x21f/0x2a0
[  208.783842][T10215]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.783884][T10215]  ? __fget_files+0x2a/0x420
[  208.783898][T10215]  ? __fget_files+0x3a0/0x420
[  208.783917][T10215]  __x64_sys_sendmsg+0x19b/0x260
[  208.783934][T10215]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.783956][T10215]  ? rcu_is_watching+0x15/0xb0
[  208.783974][T10215]  ? do_syscall_64+0xbe/0x3b0
[  208.783995][T10215]  do_syscall_64+0xfa/0x3b0
[  208.784012][T10215]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.784029][T10215]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.784043][T10215]  ? exc_page_fault+0x9f/0xf0
[  208.784061][T10215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.784073][T10215] RIP: 0033:0x7f51e098ebe9
[  208.784088][T10215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.784099][T10215] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.784115][T10215] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  208.784124][T10215] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  208.784133][T10215] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  208.784142][T10215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.784150][T10215] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  208.784173][T10215]  </TASK>
[  209.032034][T10219] syzkaller0: entered promiscuous mode
[  209.033997][T10219] syzkaller0: entered allmulticast mode
[  209.142192][T10226] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  210.434775][T10246] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  210.446336][T10246] CPU: 0 UID: 0 PID: 10246 Comm: syz.1.1390 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  210.446350][T10246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  210.446355][T10246] Call Trace:
[  210.446359][T10246]  <TASK>
[  210.446364][T10246]  dump_stack_lvl+0x189/0x250
[  210.446379][T10246]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.446389][T10246]  ? __pfx__printk+0x10/0x10
[  210.446402][T10246]  ? kernfs_path_from_node+0x2f/0x290
[  210.446412][T10246]  ? kernfs_path_from_node+0x250/0x290
[  210.446420][T10246]  ? kernfs_path_from_node+0x2f/0x290
[  210.446431][T10246]  sysfs_warn_dup+0x8e/0xa0
[  210.446440][T10246]  sysfs_do_create_link_sd+0xc0/0x110
[  210.446450][T10246]  device_add_class_symlinks+0x1cf/0x240
[  210.446460][T10246]  device_add+0x475/0xb50
[  210.446469][T10246]  wiphy_register+0x1ba6/0x28d0
[  210.446508][T10246]  ? __pfx_wiphy_register+0x10/0x10
[  210.446522][T10246]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  210.446535][T10246]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  210.446550][T10246]  ieee80211_register_hw+0x3425/0x4080
[  210.446566][T10246]  ? ieee80211_register_hw+0x1441/0x4080
[  210.446578][T10246]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  210.446589][T10246]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  210.446603][T10246]  ? __hrtimer_setup+0x187/0x210
[  210.446611][T10246]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  210.446623][T10246]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  210.446645][T10246]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  210.446653][T10246]  ? trace_kmalloc+0x1f/0xd0
[  210.446662][T10246]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  210.446671][T10246]  ? kstrndup+0xbf/0x160
[  210.446683][T10246]  hwsim_new_radio_nl+0xea4/0x1b10
[  210.446694][T10246]  ? __pfx___nla_validate_parse+0x10/0x10
[  210.446712][T10246]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  210.446728][T10246]  ? __nla_parse+0x40/0x60
[  210.446740][T10246]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  210.446753][T10246]  genl_family_rcv_msg_doit+0x215/0x300
[  210.446764][T10246]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  210.446778][T10246]  ? bpf_lsm_capable+0x9/0x20
[  210.446787][T10246]  ? security_capable+0x7e/0x2e0
[  210.446801][T10246]  genl_rcv_msg+0x60e/0x790
[  210.446812][T10246]  ? __pfx_genl_rcv_msg+0x10/0x10
[  210.446819][T10246]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  210.446829][T10246]  ? __asan_memcpy+0x40/0x70
[  210.446838][T10246]  ? __pfx_ref_tracker_free+0x10/0x10
[  210.446851][T10246]  netlink_rcv_skb+0x208/0x470
[  210.446861][T10246]  ? __lock_acquire+0xab9/0xd20
[  210.446872][T10246]  ? __pfx_genl_rcv_msg+0x10/0x10
[  210.446897][T10246]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  210.446917][T10246]  ? down_read+0x1ad/0x2e0
[  210.446929][T10246]  genl_rcv+0x28/0x40
[  210.446936][T10246]  netlink_unicast+0x82f/0x9e0
[  210.446950][T10246]  ? __pfx_netlink_unicast+0x10/0x10
[  210.446960][T10246]  ? netlink_sendmsg+0x642/0xb30
[  210.446969][T10246]  ? skb_put+0x11b/0x210
[  210.446978][T10246]  netlink_sendmsg+0x805/0xb30
[  210.446994][T10246]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.447007][T10246]  ? aa_sock_msg_perm+0xf1/0x1d0
[  210.447020][T10246]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  210.447029][T10246]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.447040][T10246]  __sock_sendmsg+0x21c/0x270
[  210.447052][T10246]  ____sys_sendmsg+0x505/0x830
[  210.447062][T10246]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.447074][T10246]  ? import_iovec+0x74/0xa0
[  210.447084][T10246]  ___sys_sendmsg+0x21f/0x2a0
[  210.447093][T10246]  ? __pfx____sys_sendmsg+0x10/0x10
[  210.447110][T10246]  ? __fget_files+0x2a/0x420
[  210.447122][T10246]  ? __fget_files+0x2a/0x420
[  210.447128][T10246]  ? __fget_files+0x3a0/0x420
[  210.447139][T10246]  __x64_sys_sendmsg+0x19b/0x260
[  210.447148][T10246]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  210.447166][T10246]  do_syscall_64+0xfa/0x3b0
[  210.447177][T10246]  ? lockdep_hardirqs_on+0x9c/0x150
[  210.447186][T10246]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.447194][T10246]  ? exc_page_fault+0x9f/0xf0
[  210.447204][T10246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.447211][T10246] RIP: 0033:0x7fc6e658ebe9
[  210.447219][T10246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.447226][T10246] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.447236][T10246] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  210.447241][T10246] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  210.447246][T10246] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  210.447251][T10246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.447256][T10246] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  210.447273][T10246]  </TASK>
[  210.663576][T10251] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  210.734063][T10256] syzkaller1: tun_chr_ioctl cmd 2148553947
[  210.892003][T10269] syzkaller0: entered promiscuous mode
[  210.894263][T10269] syzkaller0: entered allmulticast mode
[  210.941747][T10278] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  211.863609][T10280] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  211.867174][T10280] CPU: 1 UID: 0 PID: 10280 Comm: syz.2.1403 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  211.867187][T10280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  211.867193][T10280] Call Trace:
[  211.867197][T10280]  <TASK>
[  211.867202][T10280]  dump_stack_lvl+0x189/0x250
[  211.867223][T10280]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.867233][T10280]  ? __pfx__printk+0x10/0x10
[  211.867247][T10280]  ? kernfs_path_from_node+0x2f/0x290
[  211.867256][T10280]  ? kernfs_path_from_node+0x250/0x290
[  211.867264][T10280]  ? kernfs_path_from_node+0x2f/0x290
[  211.867274][T10280]  sysfs_warn_dup+0x8e/0xa0
[  211.867283][T10280]  sysfs_do_create_link_sd+0xc0/0x110
[  211.867293][T10280]  device_add_class_symlinks+0x1cf/0x240
[  211.867304][T10280]  device_add+0x475/0xb50
[  211.867314][T10280]  wiphy_register+0x1ba6/0x28d0
[  211.867333][T10280]  ? __pfx_wiphy_register+0x10/0x10
[  211.867344][T10280]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  211.867357][T10280]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  211.867372][T10280]  ieee80211_register_hw+0x3425/0x4080
[  211.867388][T10280]  ? ieee80211_register_hw+0x1441/0x4080
[  211.867400][T10280]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  211.867409][T10280]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  211.867424][T10280]  ? __hrtimer_setup+0x187/0x210
[  211.867431][T10280]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  211.867444][T10280]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  211.867493][T10280]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  211.867505][T10280]  ? trace_kmalloc+0x1f/0xd0
[  211.867515][T10280]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  211.867526][T10280]  ? kstrndup+0xbf/0x160
[  211.867539][T10280]  hwsim_new_radio_nl+0xea4/0x1b10
[  211.867551][T10280]  ? __pfx___nla_validate_parse+0x10/0x10
[  211.867570][T10280]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  211.867587][T10280]  ? __nla_parse+0x40/0x60
[  211.867600][T10280]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  211.867613][T10280]  genl_family_rcv_msg_doit+0x215/0x300
[  211.867625][T10280]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  211.867640][T10280]  ? bpf_lsm_capable+0x9/0x20
[  211.867649][T10280]  ? security_capable+0x7e/0x2e0
[  211.867663][T10280]  genl_rcv_msg+0x60e/0x790
[  211.867674][T10280]  ? __pfx_genl_rcv_msg+0x10/0x10
[  211.867682][T10280]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  211.867691][T10280]  ? __asan_memcpy+0x40/0x70
[  211.867700][T10280]  ? __pfx_ref_tracker_free+0x10/0x10
[  211.867714][T10280]  netlink_rcv_skb+0x208/0x470
[  211.867724][T10280]  ? __lock_acquire+0xab9/0xd20
[  211.867734][T10280]  ? __pfx_genl_rcv_msg+0x10/0x10
[  211.867743][T10280]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  211.867761][T10280]  ? down_read+0x1ad/0x2e0
[  211.867773][T10280]  genl_rcv+0x28/0x40
[  211.867780][T10280]  netlink_unicast+0x82f/0x9e0
[  211.867794][T10280]  ? __pfx_netlink_unicast+0x10/0x10
[  211.867804][T10280]  ? netlink_sendmsg+0x642/0xb30
[  211.867813][T10280]  ? skb_put+0x11b/0x210
[  211.867822][T10280]  netlink_sendmsg+0x805/0xb30
[  211.867836][T10280]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.867848][T10280]  ? aa_sock_msg_perm+0xf1/0x1d0
[  211.867861][T10280]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  211.867869][T10280]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.867880][T10280]  __sock_sendmsg+0x21c/0x270
[  211.867891][T10280]  ____sys_sendmsg+0x505/0x830
[  211.867901][T10280]  ? __pfx_____sys_sendmsg+0x10/0x10
[  211.867913][T10280]  ? import_iovec+0x74/0xa0
[  211.867923][T10280]  ___sys_sendmsg+0x21f/0x2a0
[  211.867932][T10280]  ? __pfx____sys_sendmsg+0x10/0x10
[  211.867948][T10280]  ? __fget_files+0x2a/0x420
[  211.867961][T10280]  ? __fget_files+0x2a/0x420
[  211.867967][T10280]  ? __fget_files+0x3a0/0x420
[  211.867978][T10280]  __x64_sys_sendmsg+0x19b/0x260
[  211.867987][T10280]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  211.867999][T10280]  ? rcu_is_watching+0x15/0xb0
[  211.868010][T10280]  ? do_syscall_64+0xbe/0x3b0
[  211.868024][T10280]  do_syscall_64+0xfa/0x3b0
[  211.868033][T10280]  ? lockdep_hardirqs_on+0x9c/0x150
[  211.868043][T10280]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.868050][T10280]  ? exc_page_fault+0x9f/0xf0
[  211.868061][T10280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.868068][T10280] RIP: 0033:0x7ff126f8ebe9
[  211.868077][T10280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.868084][T10280] RSP: 002b:00007ff127d46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  211.868093][T10280] RAX: ffffffffffffffda RBX: 00007ff1271b5fa0 RCX: 00007ff126f8ebe9
[  211.868099][T10280] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  211.868104][T10280] RBP: 00007ff127011e19 R08: 0000000000000000 R09: 0000000000000000
[  211.868109][T10280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  211.868113][T10280] R13: 00007ff1271b6038 R14: 00007ff1271b5fa0 R15: 00007ffc3663af28
[  211.868126][T10280]  </TASK>
[  212.073960][T10285] __nla_validate_parse: 7 callbacks suppressed
[  212.073970][T10285] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1405'.
[  212.105414][T10289] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1407'.
[  212.111797][T10291] netlink: 'syz.1.1406': attribute type 17 has an invalid length.
[  212.170613][T10297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1411'.
[  212.205487][T10300] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  212.305887][T10302] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1412'.
[  212.353174][T10309] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  212.364848][T10309] CPU: 0 UID: 0 PID: 10309 Comm: syz.0.1415 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  212.364868][T10309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  212.364876][T10309] Call Trace:
[  212.364883][T10309]  <TASK>
[  212.364890][T10309]  dump_stack_lvl+0x189/0x250
[  212.364914][T10309]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.364930][T10309]  ? __pfx__printk+0x10/0x10
[  212.364954][T10309]  ? kernfs_path_from_node+0x2f/0x290
[  212.364969][T10309]  ? kernfs_path_from_node+0x250/0x290
[  212.364982][T10309]  ? kernfs_path_from_node+0x2f/0x290
[  212.364999][T10309]  sysfs_warn_dup+0x8e/0xa0
[  212.365014][T10309]  sysfs_do_create_link_sd+0xc0/0x110
[  212.365030][T10309]  device_add_class_symlinks+0x1cf/0x240
[  212.365048][T10309]  device_add+0x475/0xb50
[  212.365064][T10309]  wiphy_register+0x1ba6/0x28d0
[  212.365096][T10309]  ? __pfx_wiphy_register+0x10/0x10
[  212.365112][T10309]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  212.365132][T10309]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  212.365156][T10309]  ieee80211_register_hw+0x3425/0x4080
[  212.365188][T10309]  ? ieee80211_register_hw+0x1441/0x4080
[  212.365208][T10309]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  212.365225][T10309]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  212.365247][T10309]  ? __hrtimer_setup+0x187/0x210
[  212.365259][T10309]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  212.365281][T10309]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  212.365320][T10309]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  212.365334][T10309]  ? trace_kmalloc+0x1f/0xd0
[  212.365350][T10309]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  212.365368][T10309]  ? kstrndup+0xbf/0x160
[  212.365389][T10309]  hwsim_new_radio_nl+0xea4/0x1b10
[  212.365406][T10309]  ? __pfx___nla_validate_parse+0x10/0x10
[  212.365436][T10309]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  212.365485][T10309]  ? __nla_parse+0x40/0x60
[  212.365509][T10309]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  212.365531][T10309]  genl_family_rcv_msg_doit+0x215/0x300
[  212.365552][T10309]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  212.365577][T10309]  ? bpf_lsm_capable+0x9/0x20
[  212.365595][T10309]  ? security_capable+0x7e/0x2e0
[  212.365637][T10309]  genl_rcv_msg+0x60e/0x790
[  212.365658][T10309]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.365671][T10309]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  212.365688][T10309]  ? __asan_memcpy+0x40/0x70
[  212.365701][T10309]  ? __pfx_ref_tracker_free+0x10/0x10
[  212.365724][T10309]  netlink_rcv_skb+0x208/0x470
[  212.365740][T10309]  ? __lock_acquire+0xab9/0xd20
[  212.365759][T10309]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.365774][T10309]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.365806][T10309]  ? down_read+0x1ad/0x2e0
[  212.365828][T10309]  genl_rcv+0x28/0x40
[  212.365841][T10309]  netlink_unicast+0x82f/0x9e0
[  212.365866][T10309]  ? __pfx_netlink_unicast+0x10/0x10
[  212.365884][T10309]  ? netlink_sendmsg+0x642/0xb30
[  212.365900][T10309]  ? skb_put+0x11b/0x210
[  212.365915][T10309]  netlink_sendmsg+0x805/0xb30
[  212.365941][T10309]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.365962][T10309]  ? aa_sock_msg_perm+0xf1/0x1d0
[  212.365984][T10309]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  212.365998][T10309]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.366017][T10309]  __sock_sendmsg+0x21c/0x270
[  212.366036][T10309]  ____sys_sendmsg+0x505/0x830
[  212.366053][T10309]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.366073][T10309]  ? import_iovec+0x74/0xa0
[  212.366090][T10309]  ___sys_sendmsg+0x21f/0x2a0
[  212.366105][T10309]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.366146][T10309]  ? __fget_files+0x2a/0x420
[  212.366157][T10309]  ? __fget_files+0x3a0/0x420
[  212.366183][T10309]  __x64_sys_sendmsg+0x19b/0x260
[  212.366198][T10309]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  212.366219][T10309]  ? rcu_is_watching+0x15/0xb0
[  212.366236][T10309]  ? do_syscall_64+0xbe/0x3b0
[  212.366258][T10309]  do_syscall_64+0xfa/0x3b0
[  212.366275][T10309]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.366292][T10309]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.366304][T10309]  ? exc_page_fault+0x9f/0xf0
[  212.366324][T10309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.366336][T10309] RIP: 0033:0x7f51e098ebe9
[  212.366349][T10309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.366360][T10309] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  212.366375][T10309] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  212.366384][T10309] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  212.366392][T10309] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  212.366400][T10309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.366408][T10309] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  212.366430][T10309]  </TASK>
[  212.606965][T10315] syzkaller0: entered promiscuous mode
[  212.608976][T10315] syzkaller0: entered allmulticast mode
[  212.659371][T10319] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1419'.
[  213.611112][T10326] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1421'.
[  213.625158][T10331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1423'.
[  213.712045][T10339] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  213.748853][T10343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1429'.
[  213.764687][T10344] netlink: 'syz.0.1426': attribute type 21 has an invalid length.
[  213.774724][T10344] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1426'.
[  213.791259][T10344] netlink: 'syz.0.1426': attribute type 4 has an invalid length.
[  213.801396][T10344] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1426'.
[  213.813478][T10346] netlink: 'syz.2.1430': attribute type 21 has an invalid length.
[  213.856581][T10349] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  213.859541][T10349] CPU: 1 UID: 0 PID: 10349 Comm: syz.2.1431 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  213.859557][T10349] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  213.859565][T10349] Call Trace:
[  213.859571][T10349]  <TASK>
[  213.859577][T10349]  dump_stack_lvl+0x189/0x250
[  213.859598][T10349]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.859611][T10349]  ? __pfx__printk+0x10/0x10
[  213.859631][T10349]  ? kernfs_path_from_node+0x2f/0x290
[  213.859645][T10349]  ? kernfs_path_from_node+0x250/0x290
[  213.859657][T10349]  ? kernfs_path_from_node+0x2f/0x290
[  213.859672][T10349]  sysfs_warn_dup+0x8e/0xa0
[  213.859686][T10349]  sysfs_do_create_link_sd+0xc0/0x110
[  213.859701][T10349]  device_add_class_symlinks+0x1cf/0x240
[  213.859716][T10349]  device_add+0x475/0xb50
[  213.859730][T10349]  wiphy_register+0x1ba6/0x28d0
[  213.859758][T10349]  ? __pfx_wiphy_register+0x10/0x10
[  213.859773][T10349]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  213.859790][T10349]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  213.859812][T10349]  ieee80211_register_hw+0x3425/0x4080
[  213.859835][T10349]  ? ieee80211_register_hw+0x1441/0x4080
[  213.859852][T10349]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  213.859867][T10349]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  213.859888][T10349]  ? __hrtimer_setup+0x187/0x210
[  213.859899][T10349]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  213.859916][T10349]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  213.859967][T10349]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  213.859982][T10349]  ? trace_kmalloc+0x1f/0xd0
[  213.859996][T10349]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  213.860012][T10349]  ? kstrndup+0xbf/0x160
[  213.860032][T10349]  hwsim_new_radio_nl+0xea4/0x1b10
[  213.860049][T10349]  ? __pfx___nla_validate_parse+0x10/0x10
[  213.860076][T10349]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  213.860099][T10349]  ? __nla_parse+0x40/0x60
[  213.860118][T10349]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  213.860137][T10349]  genl_family_rcv_msg_doit+0x215/0x300
[  213.860155][T10349]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  213.860177][T10349]  ? bpf_lsm_capable+0x9/0x20
[  213.860193][T10349]  ? security_capable+0x7e/0x2e0
[  213.860214][T10349]  genl_rcv_msg+0x60e/0x790
[  213.860230][T10349]  ? __pfx_genl_rcv_msg+0x10/0x10
[  213.860242][T10349]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  213.860256][T10349]  ? __asan_memcpy+0x40/0x70
[  213.860269][T10349]  ? __pfx_ref_tracker_free+0x10/0x10
[  213.860288][T10349]  netlink_rcv_skb+0x208/0x470
[  213.860302][T10349]  ? __lock_acquire+0xab9/0xd20
[  213.860318][T10349]  ? __pfx_genl_rcv_msg+0x10/0x10
[  213.860331][T10349]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  213.860359][T10349]  ? down_read+0x1ad/0x2e0
[  213.860377][T10349]  genl_rcv+0x28/0x40
[  213.860387][T10349]  netlink_unicast+0x82f/0x9e0
[  213.860407][T10349]  ? __pfx_netlink_unicast+0x10/0x10
[  213.860423][T10349]  ? netlink_sendmsg+0x642/0xb30
[  213.860436][T10349]  ? skb_put+0x11b/0x210
[  213.860480][T10349]  netlink_sendmsg+0x805/0xb30
[  213.860505][T10349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.860524][T10349]  ? aa_sock_msg_perm+0xf1/0x1d0
[  213.860544][T10349]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  213.860556][T10349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  213.860573][T10349]  __sock_sendmsg+0x21c/0x270
[  213.860591][T10349]  ____sys_sendmsg+0x505/0x830
[  213.860608][T10349]  ? __pfx_____sys_sendmsg+0x10/0x10
[  213.860626][T10349]  ? import_iovec+0x74/0xa0
[  213.860642][T10349]  ___sys_sendmsg+0x21f/0x2a0
[  213.860656][T10349]  ? __pfx____sys_sendmsg+0x10/0x10
[  213.860694][T10349]  ? __fget_files+0x2a/0x420
[  213.860704][T10349]  ? __fget_files+0x3a0/0x420
[  213.860721][T10349]  __x64_sys_sendmsg+0x19b/0x260
[  213.860735][T10349]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  213.860754][T10349]  ? rcu_is_watching+0x15/0xb0
[  213.860769][T10349]  ? do_syscall_64+0xbe/0x3b0
[  213.860788][T10349]  do_syscall_64+0xfa/0x3b0
[  213.860802][T10349]  ? lockdep_hardirqs_on+0x9c/0x150
[  213.860816][T10349]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.860827][T10349]  ? exc_page_fault+0x9f/0xf0
[  213.860843][T10349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.860854][T10349] RIP: 0033:0x7ff126f8ebe9
[  213.860866][T10349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.860876][T10349] RSP: 002b:00007ff127d46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  213.860890][T10349] RAX: ffffffffffffffda RBX: 00007ff1271b5fa0 RCX: 00007ff126f8ebe9
[  213.860898][T10349] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  213.860905][T10349] RBP: 00007ff127011e19 R08: 0000000000000000 R09: 0000000000000000
[  213.860912][T10349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  213.860919][T10349] R13: 00007ff1271b6038 R14: 00007ff1271b5fa0 R15: 00007ffc3663af28
[  213.860939][T10349]  </TASK>
[  214.142735][T10353] syzkaller0: entered promiscuous mode
[  214.144703][T10353] syzkaller0: entered allmulticast mode
[  214.315081][T10361] netlink: 'syz.0.1437': attribute type 2 has an invalid length.
[  214.695026][T10372] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  215.435261][T10387] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  215.438794][T10387] CPU: 0 UID: 0 PID: 10387 Comm: syz.1.1445 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  215.438811][T10387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  215.438818][T10387] Call Trace:
[  215.438823][T10387]  <TASK>
[  215.438829][T10387]  dump_stack_lvl+0x189/0x250
[  215.438850][T10387]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.438864][T10387]  ? __pfx__printk+0x10/0x10
[  215.438882][T10387]  ? kernfs_path_from_node+0x2f/0x290
[  215.438894][T10387]  ? kernfs_path_from_node+0x250/0x290
[  215.438905][T10387]  ? kernfs_path_from_node+0x2f/0x290
[  215.438921][T10387]  sysfs_warn_dup+0x8e/0xa0
[  215.438932][T10387]  sysfs_do_create_link_sd+0xc0/0x110
[  215.438945][T10387]  device_add_class_symlinks+0x1cf/0x240
[  215.438959][T10387]  device_add+0x475/0xb50
[  215.438972][T10387]  wiphy_register+0x1ba6/0x28d0
[  215.438996][T10387]  ? __pfx_wiphy_register+0x10/0x10
[  215.439008][T10387]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  215.439025][T10387]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  215.439045][T10387]  ieee80211_register_hw+0x3425/0x4080
[  215.439068][T10387]  ? ieee80211_register_hw+0x1441/0x4080
[  215.439085][T10387]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  215.439099][T10387]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  215.439117][T10387]  ? __hrtimer_setup+0x187/0x210
[  215.439127][T10387]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  215.439143][T10387]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  215.439172][T10387]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  215.439183][T10387]  ? trace_kmalloc+0x1f/0xd0
[  215.439205][T10387]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  215.439219][T10387]  ? kstrndup+0xbf/0x160
[  215.439236][T10387]  hwsim_new_radio_nl+0xea4/0x1b10
[  215.439252][T10387]  ? __pfx___nla_validate_parse+0x10/0x10
[  215.439277][T10387]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  215.439300][T10387]  ? __nla_parse+0x40/0x60
[  215.439317][T10387]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  215.439336][T10387]  genl_family_rcv_msg_doit+0x215/0x300
[  215.439353][T10387]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  215.439371][T10387]  ? bpf_lsm_capable+0x9/0x20
[  215.439385][T10387]  ? security_capable+0x7e/0x2e0
[  215.439403][T10387]  genl_rcv_msg+0x60e/0x790
[  215.439417][T10387]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.439427][T10387]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  215.439474][T10387]  ? __asan_memcpy+0x40/0x70
[  215.439487][T10387]  ? __pfx_ref_tracker_free+0x10/0x10
[  215.439507][T10387]  netlink_rcv_skb+0x208/0x470
[  215.439521][T10387]  ? __lock_acquire+0xab9/0xd20
[  215.439538][T10387]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.439550][T10387]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  215.439578][T10387]  ? down_read+0x1ad/0x2e0
[  215.439594][T10387]  genl_rcv+0x28/0x40
[  215.439605][T10387]  netlink_unicast+0x82f/0x9e0
[  215.439623][T10387]  ? __pfx_netlink_unicast+0x10/0x10
[  215.439637][T10387]  ? netlink_sendmsg+0x642/0xb30
[  215.439649][T10387]  ? skb_put+0x11b/0x210
[  215.439661][T10387]  netlink_sendmsg+0x805/0xb30
[  215.439680][T10387]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.439696][T10387]  ? aa_sock_msg_perm+0xf1/0x1d0
[  215.439712][T10387]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  215.439723][T10387]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.439738][T10387]  __sock_sendmsg+0x21c/0x270
[  215.439753][T10387]  ____sys_sendmsg+0x505/0x830
[  215.439767][T10387]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.439783][T10387]  ? import_iovec+0x74/0xa0
[  215.439797][T10387]  ___sys_sendmsg+0x21f/0x2a0
[  215.439809][T10387]  ? __pfx____sys_sendmsg+0x10/0x10
[  215.439841][T10387]  ? __fget_files+0x2a/0x420
[  215.439849][T10387]  ? __fget_files+0x3a0/0x420
[  215.439865][T10387]  __x64_sys_sendmsg+0x19b/0x260
[  215.439876][T10387]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  215.439893][T10387]  ? rcu_is_watching+0x15/0xb0
[  215.439907][T10387]  ? do_syscall_64+0xbe/0x3b0
[  215.439923][T10387]  do_syscall_64+0xfa/0x3b0
[  215.439936][T10387]  ? lockdep_hardirqs_on+0x9c/0x150
[  215.439948][T10387]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.439958][T10387]  ? exc_page_fault+0x9f/0xf0
[  215.439972][T10387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.439982][T10387] RIP: 0033:0x7fc6e658ebe9
[  215.439993][T10387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.440002][T10387] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.440014][T10387] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  215.440022][T10387] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  215.440028][T10387] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  215.440034][T10387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.440040][T10387] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  215.440058][T10387]  </TASK>
[  215.894932][T10408] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  215.964300][T10416] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  215.967135][T10416] CPU: 0 UID: 0 PID: 10416 Comm: syz.2.1457 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  215.967148][T10416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  215.967153][T10416] Call Trace:
[  215.967157][T10416]  <TASK>
[  215.967161][T10416]  dump_stack_lvl+0x189/0x250
[  215.967177][T10416]  ? __pfx_dump_stack_lvl+0x10/0x10
[  215.967189][T10416]  ? __pfx__printk+0x10/0x10
[  215.967203][T10416]  ? kernfs_path_from_node+0x2f/0x290
[  215.967212][T10416]  ? kernfs_path_from_node+0x250/0x290
[  215.967220][T10416]  ? kernfs_path_from_node+0x2f/0x290
[  215.967229][T10416]  sysfs_warn_dup+0x8e/0xa0
[  215.967238][T10416]  sysfs_do_create_link_sd+0xc0/0x110
[  215.967247][T10416]  device_add_class_symlinks+0x1cf/0x240
[  215.967257][T10416]  device_add+0x475/0xb50
[  215.967266][T10416]  wiphy_register+0x1ba6/0x28d0
[  215.967284][T10416]  ? __pfx_wiphy_register+0x10/0x10
[  215.967294][T10416]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  215.967305][T10416]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  215.967319][T10416]  ieee80211_register_hw+0x3425/0x4080
[  215.967363][T10416]  ? ieee80211_register_hw+0x1441/0x4080
[  215.967384][T10416]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  215.967395][T10416]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  215.967409][T10416]  ? __hrtimer_setup+0x187/0x210
[  215.967418][T10416]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  215.967469][T10416]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  215.967498][T10416]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  215.967508][T10416]  ? trace_kmalloc+0x1f/0xd0
[  215.967517][T10416]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  215.967529][T10416]  ? kstrndup+0xbf/0x160
[  215.967547][T10416]  hwsim_new_radio_nl+0xea4/0x1b10
[  215.967565][T10416]  ? __pfx___nla_validate_parse+0x10/0x10
[  215.967589][T10416]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  215.967604][T10416]  ? __nla_parse+0x40/0x60
[  215.967616][T10416]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  215.967632][T10416]  genl_family_rcv_msg_doit+0x215/0x300
[  215.967652][T10416]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  215.967675][T10416]  ? bpf_lsm_capable+0x9/0x20
[  215.967690][T10416]  ? security_capable+0x7e/0x2e0
[  215.967704][T10416]  genl_rcv_msg+0x60e/0x790
[  215.967718][T10416]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.967731][T10416]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  215.967746][T10416]  ? __asan_memcpy+0x40/0x70
[  215.967760][T10416]  ? __pfx_ref_tracker_free+0x10/0x10
[  215.967782][T10416]  netlink_rcv_skb+0x208/0x470
[  215.967794][T10416]  ? __lock_acquire+0xab9/0xd20
[  215.967810][T10416]  ? __pfx_genl_rcv_msg+0x10/0x10
[  215.967823][T10416]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  215.967880][T10416]  ? down_read+0x1ad/0x2e0
[  215.967897][T10416]  genl_rcv+0x28/0x40
[  215.967910][T10416]  netlink_unicast+0x82f/0x9e0
[  215.967933][T10416]  ? __pfx_netlink_unicast+0x10/0x10
[  215.967951][T10416]  ? netlink_sendmsg+0x642/0xb30
[  215.967966][T10416]  ? skb_put+0x11b/0x210
[  215.967975][T10416]  netlink_sendmsg+0x805/0xb30
[  215.967990][T10416]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.968002][T10416]  ? aa_sock_msg_perm+0xf1/0x1d0
[  215.968014][T10416]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  215.968022][T10416]  ? __pfx_netlink_sendmsg+0x10/0x10
[  215.968033][T10416]  __sock_sendmsg+0x21c/0x270
[  215.968045][T10416]  ____sys_sendmsg+0x505/0x830
[  215.968055][T10416]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.968067][T10416]  ? import_iovec+0x74/0xa0
[  215.968077][T10416]  ___sys_sendmsg+0x21f/0x2a0
[  215.968086][T10416]  ? __pfx____sys_sendmsg+0x10/0x10
[  215.968109][T10416]  ? __fget_files+0x2a/0x420
[  215.968116][T10416]  ? __fget_files+0x3a0/0x420
[  215.968127][T10416]  __x64_sys_sendmsg+0x19b/0x260
[  215.968136][T10416]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  215.968148][T10416]  ? rcu_is_watching+0x15/0xb0
[  215.968159][T10416]  ? do_syscall_64+0xbe/0x3b0
[  215.968172][T10416]  do_syscall_64+0xfa/0x3b0
[  215.968182][T10416]  ? lockdep_hardirqs_on+0x9c/0x150
[  215.968193][T10416]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.968202][T10416]  ? exc_page_fault+0x9f/0xf0
[  215.968213][T10416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.968220][T10416] RIP: 0033:0x7ff126f8ebe9
[  215.968228][T10416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.968235][T10416] RSP: 002b:00007ff127d46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.968245][T10416] RAX: ffffffffffffffda RBX: 00007ff1271b5fa0 RCX: 00007ff126f8ebe9
[  215.968250][T10416] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  215.968255][T10416] RBP: 00007ff127011e19 R08: 0000000000000000 R09: 0000000000000000
[  215.968260][T10416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.968265][T10416] R13: 00007ff1271b6038 R14: 00007ff1271b5fa0 R15: 00007ffc3663af28
[  215.968277][T10416]  </TASK>
[  216.237864][T10423] syzkaller0: entered promiscuous mode
[  216.240007][T10423] syzkaller0: entered allmulticast mode
[  219.587801][T10440] netlink: 'syz.2.1464': attribute type 10 has an invalid length.
[  220.188959][T10447] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  220.197643][T10445] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  220.202852][T10445] __nla_validate_parse: 13 callbacks suppressed
[  220.202868][T10445] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1466'.
[  220.242129][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1469'.
[  220.274467][T10456] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1470'.
[  220.278411][T10456] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1470'.
[  220.281536][T10456] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1470'.
[  220.344266][T10459] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  220.347084][T10459] CPU: 1 UID: 0 PID: 10459 Comm: syz.1.1471 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  220.347096][T10459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  220.347101][T10459] Call Trace:
[  220.347105][T10459]  <TASK>
[  220.347109][T10459]  dump_stack_lvl+0x189/0x250
[  220.347124][T10459]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.347134][T10459]  ? __pfx__printk+0x10/0x10
[  220.347153][T10459]  ? kernfs_path_from_node+0x2f/0x290
[  220.347162][T10459]  ? kernfs_path_from_node+0x250/0x290
[  220.347170][T10459]  ? kernfs_path_from_node+0x2f/0x290
[  220.347179][T10459]  sysfs_warn_dup+0x8e/0xa0
[  220.347187][T10459]  sysfs_do_create_link_sd+0xc0/0x110
[  220.347196][T10459]  device_add_class_symlinks+0x1cf/0x240
[  220.347207][T10459]  device_add+0x475/0xb50
[  220.347217][T10459]  wiphy_register+0x1ba6/0x28d0
[  220.347235][T10459]  ? __pfx_wiphy_register+0x10/0x10
[  220.347246][T10459]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  220.347259][T10459]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  220.347274][T10459]  ieee80211_register_hw+0x3425/0x4080
[  220.347289][T10459]  ? ieee80211_register_hw+0x1441/0x4080
[  220.347301][T10459]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  220.347311][T10459]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  220.347325][T10459]  ? __hrtimer_setup+0x187/0x210
[  220.347332][T10459]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  220.347344][T10459]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  220.347365][T10459]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  220.347394][T10459]  ? trace_kmalloc+0x1f/0xd0
[  220.347406][T10459]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  220.347417][T10459]  ? kstrndup+0xbf/0x160
[  220.347429][T10459]  hwsim_new_radio_nl+0xea4/0x1b10
[  220.347440][T10459]  ? __pfx___nla_validate_parse+0x10/0x10
[  220.347458][T10459]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  220.347473][T10459]  ? __nla_parse+0x40/0x60
[  220.347485][T10459]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  220.347499][T10459]  genl_family_rcv_msg_doit+0x215/0x300
[  220.347510][T10459]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  220.347524][T10459]  ? bpf_lsm_capable+0x9/0x20
[  220.347534][T10459]  ? security_capable+0x7e/0x2e0
[  220.347547][T10459]  genl_rcv_msg+0x60e/0x790
[  220.347558][T10459]  ? __pfx_genl_rcv_msg+0x10/0x10
[  220.347566][T10459]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  220.347575][T10459]  ? __asan_memcpy+0x40/0x70
[  220.347584][T10459]  ? __pfx_ref_tracker_free+0x10/0x10
[  220.347596][T10459]  netlink_rcv_skb+0x208/0x470
[  220.347606][T10459]  ? __lock_acquire+0xab9/0xd20
[  220.347617][T10459]  ? __pfx_genl_rcv_msg+0x10/0x10
[  220.347626][T10459]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  220.347643][T10459]  ? down_read+0x1ad/0x2e0
[  220.347655][T10459]  genl_rcv+0x28/0x40
[  220.347662][T10459]  netlink_unicast+0x82f/0x9e0
[  220.347675][T10459]  ? __pfx_netlink_unicast+0x10/0x10
[  220.347685][T10459]  ? netlink_sendmsg+0x642/0xb30
[  220.347695][T10459]  ? skb_put+0x11b/0x210
[  220.347704][T10459]  netlink_sendmsg+0x805/0xb30
[  220.347718][T10459]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.347730][T10459]  ? aa_sock_msg_perm+0xf1/0x1d0
[  220.347742][T10459]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  220.347750][T10459]  ? __pfx_netlink_sendmsg+0x10/0x10
[  220.347760][T10459]  __sock_sendmsg+0x21c/0x270
[  220.347771][T10459]  ____sys_sendmsg+0x505/0x830
[  220.347781][T10459]  ? __pfx_____sys_sendmsg+0x10/0x10
[  220.347793][T10459]  ? import_iovec+0x74/0xa0
[  220.347804][T10459]  ___sys_sendmsg+0x21f/0x2a0
[  220.347812][T10459]  ? __pfx____sys_sendmsg+0x10/0x10
[  220.347835][T10459]  ? __fget_files+0x2a/0x420
[  220.347841][T10459]  ? __fget_files+0x3a0/0x420
[  220.347853][T10459]  __x64_sys_sendmsg+0x19b/0x260
[  220.347861][T10459]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  220.347877][T10459]  ? do_syscall_64+0xbe/0x3b0
[  220.347889][T10459]  do_syscall_64+0xfa/0x3b0
[  220.347898][T10459]  ? lockdep_hardirqs_on+0x9c/0x150
[  220.347907][T10459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.347915][T10459]  ? exc_page_fault+0x9f/0xf0
[  220.347925][T10459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.347932][T10459] RIP: 0033:0x7fc6e658ebe9
[  220.347940][T10459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.347947][T10459] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  220.347957][T10459] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  220.347962][T10459] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  220.347967][T10459] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  220.347972][T10459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.347976][T10459] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  220.347989][T10459]  </TASK>
[  220.546462][T10460] netlink: 'syz.2.1470': attribute type 11 has an invalid length.
[  220.548896][T10460] netlink: 140 bytes leftover after parsing attributes in process `syz.2.1470'.
[  220.570186][T10462] rdma_rxe: rxe_newlink: failed to add bond0
[  220.590467][T10464] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1473'.
[  220.784836][T10476] syzkaller0: entered promiscuous mode
[  220.789295][T10476] syzkaller0: entered allmulticast mode
[  221.025250][T10488] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  221.098214][T10492] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1483'.
[  221.149017][T10495] netlink: 809 bytes leftover after parsing attributes in process `syz.1.1482'.
[  221.152231][T10495] netlink: 130160 bytes leftover after parsing attributes in process `syz.1.1482'.
[  221.211003][T10497] netlink: 'syz.1.1482': attribute type 2 has an invalid length.
[  221.214642][T10497] netlink: 'syz.1.1482': attribute type 9 has an invalid length.
[  221.724755][T10499] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  221.730761][T10499] CPU: 1 UID: 0 PID: 10499 Comm: syz.1.1485 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  221.730782][T10499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  221.730790][T10499] Call Trace:
[  221.730797][T10499]  <TASK>
[  221.730804][T10499]  dump_stack_lvl+0x189/0x250
[  221.730828][T10499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  221.730845][T10499]  ? __pfx__printk+0x10/0x10
[  221.730869][T10499]  ? kernfs_path_from_node+0x2f/0x290
[  221.730885][T10499]  ? kernfs_path_from_node+0x250/0x290
[  221.730898][T10499]  ? kernfs_path_from_node+0x2f/0x290
[  221.730916][T10499]  sysfs_warn_dup+0x8e/0xa0
[  221.730930][T10499]  sysfs_do_create_link_sd+0xc0/0x110
[  221.730946][T10499]  device_add_class_symlinks+0x1cf/0x240
[  221.730965][T10499]  device_add+0x475/0xb50
[  221.730982][T10499]  wiphy_register+0x1ba6/0x28d0
[  221.731016][T10499]  ? __pfx_wiphy_register+0x10/0x10
[  221.731033][T10499]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  221.731054][T10499]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  221.731088][T10499]  ieee80211_register_hw+0x3425/0x4080
[  221.731116][T10499]  ? ieee80211_register_hw+0x1441/0x4080
[  221.731138][T10499]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  221.731156][T10499]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  221.731181][T10499]  ? __hrtimer_setup+0x187/0x210
[  221.731195][T10499]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  221.731216][T10499]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  221.731256][T10499]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  221.731271][T10499]  ? trace_kmalloc+0x1f/0xd0
[  221.731286][T10499]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  221.731303][T10499]  ? kstrndup+0xbf/0x160
[  221.731325][T10499]  hwsim_new_radio_nl+0xea4/0x1b10
[  221.731341][T10499]  ? __pfx___nla_validate_parse+0x10/0x10
[  221.731397][T10499]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  221.731428][T10499]  ? __nla_parse+0x40/0x60
[  221.731452][T10499]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  221.731475][T10499]  genl_family_rcv_msg_doit+0x215/0x300
[  221.731496][T10499]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  221.731523][T10499]  ? bpf_lsm_capable+0x9/0x20
[  221.731539][T10499]  ? security_capable+0x7e/0x2e0
[  221.731564][T10499]  genl_rcv_msg+0x60e/0x790
[  221.731584][T10499]  ? __pfx_genl_rcv_msg+0x10/0x10
[  221.731598][T10499]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  221.731615][T10499]  ? __asan_memcpy+0x40/0x70
[  221.731631][T10499]  ? __pfx_ref_tracker_free+0x10/0x10
[  221.731655][T10499]  netlink_rcv_skb+0x208/0x470
[  221.731672][T10499]  ? __lock_acquire+0xab9/0xd20
[  221.731692][T10499]  ? __pfx_genl_rcv_msg+0x10/0x10
[  221.731708][T10499]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  221.731742][T10499]  ? down_read+0x1ad/0x2e0
[  221.731764][T10499]  genl_rcv+0x28/0x40
[  221.731798][T10499]  netlink_unicast+0x82f/0x9e0
[  221.731824][T10499]  ? __pfx_netlink_unicast+0x10/0x10
[  221.731843][T10499]  ? netlink_sendmsg+0x642/0xb30
[  221.731860][T10499]  ? skb_put+0x11b/0x210
[  221.731876][T10499]  netlink_sendmsg+0x805/0xb30
[  221.731903][T10499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  221.731925][T10499]  ? aa_sock_msg_perm+0xf1/0x1d0
[  221.731948][T10499]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  221.731962][T10499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  221.731982][T10499]  __sock_sendmsg+0x21c/0x270
[  221.732002][T10499]  ____sys_sendmsg+0x505/0x830
[  221.732021][T10499]  ? __pfx_____sys_sendmsg+0x10/0x10
[  221.732043][T10499]  ? import_iovec+0x74/0xa0
[  221.732062][T10499]  ___sys_sendmsg+0x21f/0x2a0
[  221.732076][T10499]  ? __pfx____sys_sendmsg+0x10/0x10
[  221.732125][T10499]  ? __fget_files+0x2a/0x420
[  221.732138][T10499]  ? __fget_files+0x3a0/0x420
[  221.732159][T10499]  __x64_sys_sendmsg+0x19b/0x260
[  221.732176][T10499]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  221.732199][T10499]  ? rcu_is_watching+0x15/0xb0
[  221.732219][T10499]  ? do_syscall_64+0xbe/0x3b0
[  221.732242][T10499]  do_syscall_64+0xfa/0x3b0
[  221.732259][T10499]  ? lockdep_hardirqs_on+0x9c/0x150
[  221.732276][T10499]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.732289][T10499]  ? exc_page_fault+0x9f/0xf0
[  221.732309][T10499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.732322][T10499] RIP: 0033:0x7fc6e658ebe9
[  221.732334][T10499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.732346][T10499] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  221.732385][T10499] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  221.732397][T10499] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  221.732406][T10499] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  221.732415][T10499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.732424][T10499] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  221.732449][T10499]  </TASK>
[  221.949148][   T33] audit: type=1107 audit(1755293095.196:4): pid=10504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  221.994904][T10515] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  222.137982][T10527] syzkaller0: entered promiscuous mode
[  222.140320][T10527] syzkaller0: entered allmulticast mode
[  222.994223][T10538] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  222.998804][T10538] CPU: 1 UID: 0 PID: 10538 Comm: syz.0.1501 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  222.998825][T10538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  222.998834][T10538] Call Trace:
[  222.998839][T10538]  <TASK>
[  222.998846][T10538]  dump_stack_lvl+0x189/0x250
[  222.998868][T10538]  ? __pfx_dump_stack_lvl+0x10/0x10
[  222.998884][T10538]  ? __pfx__printk+0x10/0x10
[  222.998906][T10538]  ? kernfs_path_from_node+0x2f/0x290
[  222.998919][T10538]  ? kernfs_path_from_node+0x250/0x290
[  222.998932][T10538]  ? kernfs_path_from_node+0x2f/0x290
[  222.998947][T10538]  sysfs_warn_dup+0x8e/0xa0
[  222.998960][T10538]  sysfs_do_create_link_sd+0xc0/0x110
[  222.998975][T10538]  device_add_class_symlinks+0x1cf/0x240
[  222.998991][T10538]  device_add+0x475/0xb50
[  222.999007][T10538]  wiphy_register+0x1ba6/0x28d0
[  222.999036][T10538]  ? __pfx_wiphy_register+0x10/0x10
[  222.999053][T10538]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  222.999068][T10538]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  222.999086][T10538]  ieee80211_register_hw+0x3425/0x4080
[  222.999111][T10538]  ? ieee80211_register_hw+0x1441/0x4080
[  222.999130][T10538]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  222.999152][T10538]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  222.999176][T10538]  ? __hrtimer_setup+0x187/0x210
[  222.999189][T10538]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  222.999209][T10538]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  222.999270][T10538]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  222.999286][T10538]  ? trace_kmalloc+0x1f/0xd0
[  222.999301][T10538]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  222.999318][T10538]  ? kstrndup+0xbf/0x160
[  222.999340][T10538]  hwsim_new_radio_nl+0xea4/0x1b10
[  222.999386][T10538]  ? __pfx___nla_validate_parse+0x10/0x10
[  222.999415][T10538]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  222.999436][T10538]  ? __nla_parse+0x40/0x60
[  222.999455][T10538]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  222.999473][T10538]  genl_family_rcv_msg_doit+0x215/0x300
[  222.999492][T10538]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  222.999514][T10538]  ? bpf_lsm_capable+0x9/0x20
[  222.999529][T10538]  ? security_capable+0x7e/0x2e0
[  222.999551][T10538]  genl_rcv_msg+0x60e/0x790
[  222.999570][T10538]  ? __pfx_genl_rcv_msg+0x10/0x10
[  222.999582][T10538]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  222.999597][T10538]  ? __asan_memcpy+0x40/0x70
[  222.999610][T10538]  ? __pfx_ref_tracker_free+0x10/0x10
[  222.999631][T10538]  netlink_rcv_skb+0x208/0x470
[  222.999646][T10538]  ? __lock_acquire+0xab9/0xd20
[  222.999664][T10538]  ? __pfx_genl_rcv_msg+0x10/0x10
[  222.999679][T10538]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  222.999710][T10538]  ? down_read+0x1ad/0x2e0
[  222.999730][T10538]  genl_rcv+0x28/0x40
[  222.999742][T10538]  netlink_unicast+0x82f/0x9e0
[  222.999763][T10538]  ? __pfx_netlink_unicast+0x10/0x10
[  222.999779][T10538]  ? netlink_sendmsg+0x642/0xb30
[  222.999794][T10538]  ? skb_put+0x11b/0x210
[  222.999809][T10538]  netlink_sendmsg+0x805/0xb30
[  222.999832][T10538]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.999851][T10538]  ? aa_sock_msg_perm+0xf1/0x1d0
[  222.999870][T10538]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  222.999884][T10538]  ? __pfx_netlink_sendmsg+0x10/0x10
[  222.999901][T10538]  __sock_sendmsg+0x21c/0x270
[  222.999920][T10538]  ____sys_sendmsg+0x505/0x830
[  222.999937][T10538]  ? __pfx_____sys_sendmsg+0x10/0x10
[  222.999955][T10538]  ? import_iovec+0x74/0xa0
[  222.999971][T10538]  ___sys_sendmsg+0x21f/0x2a0
[  222.999984][T10538]  ? __pfx____sys_sendmsg+0x10/0x10
[  223.000022][T10538]  ? __fget_files+0x2a/0x420
[  223.000032][T10538]  ? __fget_files+0x3a0/0x420
[  223.000048][T10538]  __x64_sys_sendmsg+0x19b/0x260
[  223.000060][T10538]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  223.000078][T10538]  ? rcu_is_watching+0x15/0xb0
[  223.000093][T10538]  ? do_syscall_64+0xbe/0x3b0
[  223.000112][T10538]  do_syscall_64+0xfa/0x3b0
[  223.000128][T10538]  ? lockdep_hardirqs_on+0x9c/0x150
[  223.000142][T10538]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.000162][T10538]  ? exc_page_fault+0x9f/0xf0
[  223.000180][T10538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.000190][T10538] RIP: 0033:0x7f51e098ebe9
[  223.000204][T10538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.000215][T10538] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  223.000229][T10538] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  223.000238][T10538] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  223.000247][T10538] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  223.000255][T10538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  223.000263][T10538] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  223.000284][T10538]  </TASK>
[  223.057819][T10543] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  223.558131][T10563] syzkaller0: entered promiscuous mode
[  223.560717][T10563] syzkaller0: entered allmulticast mode
[  224.751610][T10576] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  224.754703][T10576] CPU: 0 UID: 0 PID: 10576 Comm: syz.0.1515 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  224.754722][T10576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  224.754731][T10576] Call Trace:
[  224.754737][T10576]  <TASK>
[  224.754744][T10576]  dump_stack_lvl+0x189/0x250
[  224.754770][T10576]  ? __pfx_dump_stack_lvl+0x10/0x10
[  224.754786][T10576]  ? __pfx__printk+0x10/0x10
[  224.754810][T10576]  ? kernfs_path_from_node+0x2f/0x290
[  224.754825][T10576]  ? kernfs_path_from_node+0x250/0x290
[  224.754838][T10576]  ? kernfs_path_from_node+0x2f/0x290
[  224.754856][T10576]  sysfs_warn_dup+0x8e/0xa0
[  224.754870][T10576]  sysfs_do_create_link_sd+0xc0/0x110
[  224.754886][T10576]  device_add_class_symlinks+0x1cf/0x240
[  224.754904][T10576]  device_add+0x475/0xb50
[  224.754922][T10576]  wiphy_register+0x1ba6/0x28d0
[  224.754953][T10576]  ? __pfx_wiphy_register+0x10/0x10
[  224.754970][T10576]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  224.754989][T10576]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  224.755011][T10576]  ieee80211_register_hw+0x3425/0x4080
[  224.755044][T10576]  ? ieee80211_register_hw+0x1441/0x4080
[  224.755064][T10576]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  224.755081][T10576]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  224.755105][T10576]  ? __hrtimer_setup+0x187/0x210
[  224.755119][T10576]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  224.755142][T10576]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  224.755183][T10576]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  224.755199][T10576]  ? trace_kmalloc+0x1f/0xd0
[  224.755215][T10576]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  224.755233][T10576]  ? kstrndup+0xbf/0x160
[  224.755255][T10576]  hwsim_new_radio_nl+0xea4/0x1b10
[  224.755274][T10576]  ? __pfx___nla_validate_parse+0x10/0x10
[  224.755305][T10576]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  224.755356][T10576]  ? __nla_parse+0x40/0x60
[  224.755381][T10576]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  224.755405][T10576]  genl_family_rcv_msg_doit+0x215/0x300
[  224.755425][T10576]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  224.755452][T10576]  ? bpf_lsm_capable+0x9/0x20
[  224.755470][T10576]  ? security_capable+0x7e/0x2e0
[  224.755493][T10576]  genl_rcv_msg+0x60e/0x790
[  224.755514][T10576]  ? __pfx_genl_rcv_msg+0x10/0x10
[  224.755528][T10576]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  224.755545][T10576]  ? __asan_memcpy+0x40/0x70
[  224.755560][T10576]  ? __pfx_ref_tracker_free+0x10/0x10
[  224.755584][T10576]  netlink_rcv_skb+0x208/0x470
[  224.755600][T10576]  ? __lock_acquire+0xab9/0xd20
[  224.755639][T10576]  ? __pfx_genl_rcv_msg+0x10/0x10
[  224.755656][T10576]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  224.755691][T10576]  ? down_read+0x1ad/0x2e0
[  224.755712][T10576]  genl_rcv+0x28/0x40
[  224.755725][T10576]  netlink_unicast+0x82f/0x9e0
[  224.755749][T10576]  ? __pfx_netlink_unicast+0x10/0x10
[  224.755767][T10576]  ? netlink_sendmsg+0x642/0xb30
[  224.755784][T10576]  ? skb_put+0x11b/0x210
[  224.755799][T10576]  netlink_sendmsg+0x805/0xb30
[  224.755825][T10576]  ? __pfx_netlink_sendmsg+0x10/0x10
[  224.755847][T10576]  ? aa_sock_msg_perm+0xf1/0x1d0
[  224.755868][T10576]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  224.755882][T10576]  ? __pfx_netlink_sendmsg+0x10/0x10
[  224.755901][T10576]  __sock_sendmsg+0x21c/0x270
[  224.755920][T10576]  ____sys_sendmsg+0x505/0x830
[  224.755939][T10576]  ? __pfx_____sys_sendmsg+0x10/0x10
[  224.755960][T10576]  ? import_iovec+0x74/0xa0
[  224.755978][T10576]  ___sys_sendmsg+0x21f/0x2a0
[  224.755995][T10576]  ? __pfx____sys_sendmsg+0x10/0x10
[  224.756057][T10576]  ? __fget_files+0x2a/0x420
[  224.756069][T10576]  ? __fget_files+0x3a0/0x420
[  224.756090][T10576]  __x64_sys_sendmsg+0x19b/0x260
[  224.756107][T10576]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  224.756130][T10576]  ? rcu_is_watching+0x15/0xb0
[  224.756149][T10576]  ? do_syscall_64+0xbe/0x3b0
[  224.756171][T10576]  do_syscall_64+0xfa/0x3b0
[  224.756188][T10576]  ? lockdep_hardirqs_on+0x9c/0x150
[  224.756204][T10576]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.756217][T10576]  ? exc_page_fault+0x9f/0xf0
[  224.756236][T10576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  224.756248][T10576] RIP: 0033:0x7f51e098ebe9
[  224.756262][T10576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  224.756274][T10576] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  224.756289][T10576] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  224.756299][T10576] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  224.756308][T10576] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  224.756317][T10576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  224.756325][T10576] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  224.756378][T10576]  </TASK>
[  224.976813][T10582] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  225.121886][T10589] mac80211_hwsim hwsim7 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  225.122456][T10584] netlink: 'syz.2.1518': attribute type 39 has an invalid length.
[  225.126560][T10589] netlink: 'syz.0.1520': attribute type 10 has an invalid length.
[  225.137975][T10589] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  225.276080][T10596] __nla_validate_parse: 51 callbacks suppressed
[  225.276095][T10596] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1523'.
[  225.326387][T10600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1525'.
[  225.339057][T10601] netlink: 495 bytes leftover after parsing attributes in process `syz.0.1526'.
[  225.423363][T10604] syzkaller0: entered promiscuous mode
[  225.425883][T10604] syzkaller0: entered allmulticast mode
[  226.314440][T10615] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1530'.
[  226.322052][T10615] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1530'.
[  226.381136][T10610] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  226.384464][T10610] CPU: 1 UID: 0 PID: 10610 Comm: syz.1.1529 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  226.384482][T10610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  226.384490][T10610] Call Trace:
[  226.384497][T10610]  <TASK>
[  226.384505][T10610]  dump_stack_lvl+0x189/0x250
[  226.384529][T10610]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.384546][T10610]  ? __pfx__printk+0x10/0x10
[  226.384569][T10610]  ? kernfs_path_from_node+0x2f/0x290
[  226.384585][T10610]  ? kernfs_path_from_node+0x250/0x290
[  226.384599][T10610]  ? kernfs_path_from_node+0x2f/0x290
[  226.384616][T10610]  sysfs_warn_dup+0x8e/0xa0
[  226.384631][T10610]  sysfs_do_create_link_sd+0xc0/0x110
[  226.384648][T10610]  device_add_class_symlinks+0x1cf/0x240
[  226.384665][T10610]  device_add+0x475/0xb50
[  226.384681][T10610]  wiphy_register+0x1ba6/0x28d0
[  226.384711][T10610]  ? __pfx_wiphy_register+0x10/0x10
[  226.384726][T10610]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  226.384745][T10610]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  226.384767][T10610]  ieee80211_register_hw+0x3425/0x4080
[  226.384793][T10610]  ? ieee80211_register_hw+0x1441/0x4080
[  226.384814][T10610]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  226.384831][T10610]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  226.384855][T10610]  ? __hrtimer_setup+0x187/0x210
[  226.384868][T10610]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  226.384889][T10610]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  226.384926][T10610]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  226.384942][T10610]  ? trace_kmalloc+0x1f/0xd0
[  226.384958][T10610]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  226.384975][T10610]  ? kstrndup+0xbf/0x160
[  226.384998][T10610]  hwsim_new_radio_nl+0xea4/0x1b10
[  226.385016][T10610]  ? __pfx___nla_validate_parse+0x10/0x10
[  226.385045][T10610]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  226.385072][T10610]  ? __nla_parse+0x40/0x60
[  226.385093][T10610]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  226.385114][T10610]  genl_family_rcv_msg_doit+0x215/0x300
[  226.385134][T10610]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  226.385157][T10610]  ? bpf_lsm_capable+0x9/0x20
[  226.385174][T10610]  ? security_capable+0x7e/0x2e0
[  226.385198][T10610]  genl_rcv_msg+0x60e/0x790
[  226.385217][T10610]  ? __pfx_genl_rcv_msg+0x10/0x10
[  226.385230][T10610]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  226.385246][T10610]  ? __asan_memcpy+0x40/0x70
[  226.385259][T10610]  ? __pfx_ref_tracker_free+0x10/0x10
[  226.385279][T10610]  netlink_rcv_skb+0x208/0x470
[  226.385297][T10610]  ? __lock_acquire+0xab9/0xd20
[  226.385345][T10610]  ? __pfx_genl_rcv_msg+0x10/0x10
[  226.385361][T10610]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  226.385394][T10610]  ? down_read+0x1ad/0x2e0
[  226.385417][T10610]  genl_rcv+0x28/0x40
[  226.385429][T10610]  netlink_unicast+0x82f/0x9e0
[  226.385455][T10610]  ? __pfx_netlink_unicast+0x10/0x10
[  226.385473][T10610]  ? netlink_sendmsg+0x642/0xb30
[  226.385490][T10610]  ? skb_put+0x11b/0x210
[  226.385506][T10610]  netlink_sendmsg+0x805/0xb30
[  226.385532][T10610]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.385552][T10610]  ? aa_sock_msg_perm+0xf1/0x1d0
[  226.385572][T10610]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  226.385587][T10610]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.385606][T10610]  __sock_sendmsg+0x21c/0x270
[  226.385644][T10610]  ____sys_sendmsg+0x505/0x830
[  226.385661][T10610]  ? __pfx_____sys_sendmsg+0x10/0x10
[  226.385681][T10610]  ? import_iovec+0x74/0xa0
[  226.385700][T10610]  ___sys_sendmsg+0x21f/0x2a0
[  226.385715][T10610]  ? __pfx____sys_sendmsg+0x10/0x10
[  226.385755][T10610]  ? __fget_files+0x2a/0x420
[  226.385767][T10610]  ? __fget_files+0x3a0/0x420
[  226.385785][T10610]  __x64_sys_sendmsg+0x19b/0x260
[  226.385801][T10610]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  226.385829][T10610]  ? do_syscall_64+0xbe/0x3b0
[  226.385852][T10610]  do_syscall_64+0xfa/0x3b0
[  226.385869][T10610]  ? lockdep_hardirqs_on+0x9c/0x150
[  226.385884][T10610]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.385897][T10610]  ? exc_page_fault+0x9f/0xf0
[  226.385915][T10610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.385929][T10610] RIP: 0033:0x7fc6e658ebe9
[  226.385943][T10610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.385958][T10610] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  226.385974][T10610] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  226.385982][T10610] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  226.385992][T10610] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  226.385999][T10610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.386006][T10610] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  226.386027][T10610]  </TASK>
[  226.600013][T10617] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  226.657356][T10621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1533'.
[  226.707867][T10630] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1537'.
[  226.717669][T10632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1538'.
[  226.736606][T10635] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1539'.
[  226.759026][T10637] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1540'.
[  226.769677][T10639] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  226.803373][T10641] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  226.823766][T10643] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  226.828473][T10643] CPU: 1 UID: 0 PID: 10643 Comm: syz.0.1543 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  226.828493][T10643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  226.828501][T10643] Call Trace:
[  226.828508][T10643]  <TASK>
[  226.828516][T10643]  dump_stack_lvl+0x189/0x250
[  226.828538][T10643]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.828555][T10643]  ? __pfx__printk+0x10/0x10
[  226.828578][T10643]  ? kernfs_path_from_node+0x2f/0x290
[  226.828595][T10643]  ? kernfs_path_from_node+0x250/0x290
[  226.828608][T10643]  ? kernfs_path_from_node+0x2f/0x290
[  226.828626][T10643]  sysfs_warn_dup+0x8e/0xa0
[  226.828641][T10643]  sysfs_do_create_link_sd+0xc0/0x110
[  226.828656][T10643]  device_add_class_symlinks+0x1cf/0x240
[  226.828673][T10643]  device_add+0x475/0xb50
[  226.828690][T10643]  wiphy_register+0x1ba6/0x28d0
[  226.828720][T10643]  ? __pfx_wiphy_register+0x10/0x10
[  226.828738][T10643]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  226.828758][T10643]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  226.828783][T10643]  ieee80211_register_hw+0x3425/0x4080
[  226.828809][T10643]  ? ieee80211_register_hw+0x1441/0x4080
[  226.828830][T10643]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  226.828848][T10643]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  226.828870][T10643]  ? __hrtimer_setup+0x187/0x210
[  226.828882][T10643]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  226.828903][T10643]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  226.828942][T10643]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  226.828956][T10643]  ? trace_kmalloc+0x1f/0xd0
[  226.828971][T10643]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  226.828989][T10643]  ? kstrndup+0xbf/0x160
[  226.829012][T10643]  hwsim_new_radio_nl+0xea4/0x1b10
[  226.829040][T10643]  ? __pfx___nla_validate_parse+0x10/0x10
[  226.829072][T10643]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  226.829099][T10643]  ? __nla_parse+0x40/0x60
[  226.829121][T10643]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  226.829143][T10643]  genl_family_rcv_msg_doit+0x215/0x300
[  226.829164][T10643]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  226.829190][T10643]  ? bpf_lsm_capable+0x9/0x20
[  226.829207][T10643]  ? security_capable+0x7e/0x2e0
[  226.829230][T10643]  genl_rcv_msg+0x60e/0x790
[  226.829249][T10643]  ? __pfx_genl_rcv_msg+0x10/0x10
[  226.829263][T10643]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  226.829278][T10643]  ? __asan_memcpy+0x40/0x70
[  226.829291][T10643]  ? __pfx_ref_tracker_free+0x10/0x10
[  226.829341][T10643]  netlink_rcv_skb+0x208/0x470
[  226.829358][T10643]  ? __lock_acquire+0xab9/0xd20
[  226.829379][T10643]  ? __pfx_genl_rcv_msg+0x10/0x10
[  226.829396][T10643]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  226.829428][T10643]  ? down_read+0x1ad/0x2e0
[  226.829449][T10643]  genl_rcv+0x28/0x40
[  226.829463][T10643]  netlink_unicast+0x82f/0x9e0
[  226.829485][T10643]  ? __pfx_netlink_unicast+0x10/0x10
[  226.829503][T10643]  ? netlink_sendmsg+0x642/0xb30
[  226.829519][T10643]  ? skb_put+0x11b/0x210
[  226.829535][T10643]  netlink_sendmsg+0x805/0xb30
[  226.829560][T10643]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.829580][T10643]  ? aa_sock_msg_perm+0xf1/0x1d0
[  226.829601][T10643]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  226.829615][T10643]  ? __pfx_netlink_sendmsg+0x10/0x10
[  226.829634][T10643]  __sock_sendmsg+0x21c/0x270
[  226.829653][T10643]  ____sys_sendmsg+0x505/0x830
[  226.829670][T10643]  ? __pfx_____sys_sendmsg+0x10/0x10
[  226.829691][T10643]  ? import_iovec+0x74/0xa0
[  226.829709][T10643]  ___sys_sendmsg+0x21f/0x2a0
[  226.829725][T10643]  ? __pfx____sys_sendmsg+0x10/0x10
[  226.829765][T10643]  ? __fget_files+0x2a/0x420
[  226.829777][T10643]  ? __fget_files+0x3a0/0x420
[  226.829796][T10643]  __x64_sys_sendmsg+0x19b/0x260
[  226.829811][T10643]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  226.829834][T10643]  ? rcu_is_watching+0x15/0xb0
[  226.829851][T10643]  ? do_syscall_64+0xbe/0x3b0
[  226.829872][T10643]  do_syscall_64+0xfa/0x3b0
[  226.829888][T10643]  ? lockdep_hardirqs_on+0x9c/0x150
[  226.829903][T10643]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.829918][T10643]  ? exc_page_fault+0x9f/0xf0
[  226.829937][T10643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.829950][T10643] RIP: 0033:0x7f51e098ebe9
[  226.829963][T10643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.829975][T10643] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  226.829988][T10643] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  226.829999][T10643] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  226.830007][T10643] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  226.830023][T10643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.830031][T10643] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  226.830052][T10643]  </TASK>
[  227.085330][T10648] syzkaller0: entered promiscuous mode
[  227.087769][T10648] syzkaller0: entered allmulticast mode
[  228.584111][T10679] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  228.612892][T10680] netlink: 'syz.1.1552': attribute type 10 has an invalid length.
[  228.690491][T10680] team0 (unregistering): Port device C removed
[  228.698676][T10680] team0 (unregistering): Port device team_slave_1 removed
[  228.709725][T10685] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  228.712731][T10685] CPU: 1 UID: 0 PID: 10685 Comm: syz.2.1557 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  228.712749][T10685] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  228.712756][T10685] Call Trace:
[  228.712760][T10685]  <TASK>
[  228.712765][T10685]  dump_stack_lvl+0x189/0x250
[  228.712788][T10685]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.712803][T10685]  ? __pfx__printk+0x10/0x10
[  228.712826][T10685]  ? kernfs_path_from_node+0x2f/0x290
[  228.712839][T10685]  ? kernfs_path_from_node+0x250/0x290
[  228.712849][T10685]  ? kernfs_path_from_node+0x2f/0x290
[  228.712861][T10685]  sysfs_warn_dup+0x8e/0xa0
[  228.712875][T10685]  sysfs_do_create_link_sd+0xc0/0x110
[  228.712890][T10685]  device_add_class_symlinks+0x1cf/0x240
[  228.712905][T10685]  device_add+0x475/0xb50
[  228.712921][T10685]  wiphy_register+0x1ba6/0x28d0
[  228.712949][T10685]  ? __pfx_wiphy_register+0x10/0x10
[  228.712963][T10685]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  228.712979][T10685]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  228.713023][T10685]  ieee80211_register_hw+0x3425/0x4080
[  228.713049][T10685]  ? ieee80211_register_hw+0x1441/0x4080
[  228.713067][T10685]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  228.713079][T10685]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  228.713100][T10685]  ? __hrtimer_setup+0x187/0x210
[  228.713112][T10685]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  228.713133][T10685]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  228.713167][T10685]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  228.713176][T10685]  ? trace_kmalloc+0x1f/0xd0
[  228.713185][T10685]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  228.713197][T10685]  ? kstrndup+0xbf/0x160
[  228.713209][T10685]  hwsim_new_radio_nl+0xea4/0x1b10
[  228.713222][T10685]  ? __pfx___nla_validate_parse+0x10/0x10
[  228.713239][T10685]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  228.713254][T10685]  ? __nla_parse+0x40/0x60
[  228.713266][T10685]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  228.713279][T10685]  genl_family_rcv_msg_doit+0x215/0x300
[  228.713316][T10685]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  228.713331][T10685]  ? bpf_lsm_capable+0x9/0x20
[  228.713343][T10685]  ? security_capable+0x7e/0x2e0
[  228.713357][T10685]  genl_rcv_msg+0x60e/0x790
[  228.713369][T10685]  ? __pfx_genl_rcv_msg+0x10/0x10
[  228.713377][T10685]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  228.713387][T10685]  ? __asan_memcpy+0x40/0x70
[  228.713396][T10685]  ? __pfx_ref_tracker_free+0x10/0x10
[  228.713411][T10685]  netlink_rcv_skb+0x208/0x470
[  228.713422][T10685]  ? __lock_acquire+0xab9/0xd20
[  228.713432][T10685]  ? __pfx_genl_rcv_msg+0x10/0x10
[  228.713441][T10685]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  228.713459][T10685]  ? down_read+0x1ad/0x2e0
[  228.713471][T10685]  genl_rcv+0x28/0x40
[  228.713478][T10685]  netlink_unicast+0x82f/0x9e0
[  228.713491][T10685]  ? __pfx_netlink_unicast+0x10/0x10
[  228.713501][T10685]  ? netlink_sendmsg+0x642/0xb30
[  228.713511][T10685]  ? skb_put+0x11b/0x210
[  228.713520][T10685]  netlink_sendmsg+0x805/0xb30
[  228.713534][T10685]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.713546][T10685]  ? aa_sock_msg_perm+0xf1/0x1d0
[  228.713559][T10685]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  228.713567][T10685]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.713578][T10685]  __sock_sendmsg+0x21c/0x270
[  228.713589][T10685]  ____sys_sendmsg+0x505/0x830
[  228.713600][T10685]  ? __pfx_____sys_sendmsg+0x10/0x10
[  228.713611][T10685]  ? import_iovec+0x74/0xa0
[  228.713622][T10685]  ___sys_sendmsg+0x21f/0x2a0
[  228.713630][T10685]  ? __pfx____sys_sendmsg+0x10/0x10
[  228.713654][T10685]  ? __fget_files+0x2a/0x420
[  228.713660][T10685]  ? __fget_files+0x3a0/0x420
[  228.713671][T10685]  __x64_sys_sendmsg+0x19b/0x260
[  228.713680][T10685]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  228.713692][T10685]  ? rcu_is_watching+0x15/0xb0
[  228.713703][T10685]  ? do_syscall_64+0xbe/0x3b0
[  228.713715][T10685]  do_syscall_64+0xfa/0x3b0
[  228.713724][T10685]  ? lockdep_hardirqs_on+0x9c/0x150
[  228.713734][T10685]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.713742][T10685]  ? exc_page_fault+0x9f/0xf0
[  228.713753][T10685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.713761][T10685] RIP: 0033:0x7ff126f8ebe9
[  228.713769][T10685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.713776][T10685] RSP: 002b:00007ff127d46038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.713786][T10685] RAX: ffffffffffffffda RBX: 00007ff1271b5fa0 RCX: 00007ff126f8ebe9
[  228.713791][T10685] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  228.713797][T10685] RBP: 00007ff127011e19 R08: 0000000000000000 R09: 0000000000000000
[  228.713802][T10685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.713806][T10685] R13: 00007ff1271b6038 R14: 00007ff1271b5fa0 R15: 00007ffc3663af28
[  228.713819][T10685]  </TASK>
[  228.998041][T10690] syzkaller0: entered promiscuous mode
[  229.000403][T10690] syzkaller0: entered allmulticast mode
[  230.119852][T10714] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  230.142566][T10718] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  230.146996][T10718] CPU: 0 UID: 0 PID: 10718 Comm: syz.0.1571 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  230.147009][T10718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  230.147015][T10718] Call Trace:
[  230.147018][T10718]  <TASK>
[  230.147031][T10718]  dump_stack_lvl+0x189/0x250
[  230.147047][T10718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.147057][T10718]  ? __pfx__printk+0x10/0x10
[  230.147072][T10718]  ? kernfs_path_from_node+0x2f/0x290
[  230.147081][T10718]  ? kernfs_path_from_node+0x250/0x290
[  230.147088][T10718]  ? kernfs_path_from_node+0x2f/0x290
[  230.147099][T10718]  sysfs_warn_dup+0x8e/0xa0
[  230.147108][T10718]  sysfs_do_create_link_sd+0xc0/0x110
[  230.147117][T10718]  device_add_class_symlinks+0x1cf/0x240
[  230.147128][T10718]  device_add+0x475/0xb50
[  230.147137][T10718]  wiphy_register+0x1ba6/0x28d0
[  230.147155][T10718]  ? __pfx_wiphy_register+0x10/0x10
[  230.147166][T10718]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  230.147178][T10718]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  230.147194][T10718]  ieee80211_register_hw+0x3425/0x4080
[  230.147211][T10718]  ? ieee80211_register_hw+0x1441/0x4080
[  230.147223][T10718]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  230.147233][T10718]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  230.147247][T10718]  ? __hrtimer_setup+0x187/0x210
[  230.147254][T10718]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  230.147266][T10718]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  230.147316][T10718]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  230.147326][T10718]  ? trace_kmalloc+0x1f/0xd0
[  230.147336][T10718]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  230.147347][T10718]  ? kstrndup+0xbf/0x160
[  230.147360][T10718]  hwsim_new_radio_nl+0xea4/0x1b10
[  230.147371][T10718]  ? __pfx___nla_validate_parse+0x10/0x10
[  230.147389][T10718]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  230.147405][T10718]  ? __nla_parse+0x40/0x60
[  230.147418][T10718]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  230.147430][T10718]  genl_family_rcv_msg_doit+0x215/0x300
[  230.147441][T10718]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  230.147455][T10718]  ? bpf_lsm_capable+0x9/0x20
[  230.147465][T10718]  ? security_capable+0x7e/0x2e0
[  230.147478][T10718]  genl_rcv_msg+0x60e/0x790
[  230.147489][T10718]  ? __pfx_genl_rcv_msg+0x10/0x10
[  230.147496][T10718]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  230.147506][T10718]  ? __asan_memcpy+0x40/0x70
[  230.147515][T10718]  ? __pfx_ref_tracker_free+0x10/0x10
[  230.147528][T10718]  netlink_rcv_skb+0x208/0x470
[  230.147538][T10718]  ? __lock_acquire+0xab9/0xd20
[  230.147549][T10718]  ? __pfx_genl_rcv_msg+0x10/0x10
[  230.147558][T10718]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  230.147576][T10718]  ? down_read+0x1ad/0x2e0
[  230.147589][T10718]  genl_rcv+0x28/0x40
[  230.147596][T10718]  netlink_unicast+0x82f/0x9e0
[  230.147609][T10718]  ? __pfx_netlink_unicast+0x10/0x10
[  230.147619][T10718]  ? netlink_sendmsg+0x642/0xb30
[  230.147629][T10718]  ? skb_put+0x11b/0x210
[  230.147638][T10718]  netlink_sendmsg+0x805/0xb30
[  230.147652][T10718]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.147664][T10718]  ? aa_sock_msg_perm+0xf1/0x1d0
[  230.147677][T10718]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  230.147684][T10718]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.147695][T10718]  __sock_sendmsg+0x21c/0x270
[  230.147706][T10718]  ____sys_sendmsg+0x505/0x830
[  230.147716][T10718]  ? __pfx_____sys_sendmsg+0x10/0x10
[  230.147728][T10718]  ? import_iovec+0x74/0xa0
[  230.147739][T10718]  ___sys_sendmsg+0x21f/0x2a0
[  230.147747][T10718]  ? __pfx____sys_sendmsg+0x10/0x10
[  230.147770][T10718]  ? __fget_files+0x2a/0x420
[  230.147777][T10718]  ? __fget_files+0x3a0/0x420
[  230.147788][T10718]  __x64_sys_sendmsg+0x19b/0x260
[  230.147797][T10718]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  230.147812][T10718]  ? do_syscall_64+0xbe/0x3b0
[  230.147825][T10718]  do_syscall_64+0xfa/0x3b0
[  230.147835][T10718]  ? lockdep_hardirqs_on+0x9c/0x150
[  230.147844][T10718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.147851][T10718]  ? exc_page_fault+0x9f/0xf0
[  230.147861][T10718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.147868][T10718] RIP: 0033:0x7f51e098ebe9
[  230.147877][T10718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.147884][T10718] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  230.147893][T10718] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  230.147898][T10718] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  230.147903][T10718] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  230.147908][T10718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.147913][T10718] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  230.147925][T10718]  </TASK>
[  230.333879][T10721] netlink: 'syz.1.1572': attribute type 21 has an invalid length.
[  230.338854][T10721] __nla_validate_parse: 18 callbacks suppressed
[  230.338870][T10721] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1572'.
[  230.361842][T10720] delete_channel: no stack
[  230.363650][T10720] delete_channel: no stack
[  230.383648][T10725] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1573'.
[  230.440333][T10730] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1575'.
[  230.448893][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'.
[  230.574800][T10741] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  230.627561][T10745] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  230.631189][T10745] CPU: 0 UID: 0 PID: 10745 Comm: syz.0.1583 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  230.631209][T10745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  230.631238][T10745] Call Trace:
[  230.631244][T10745]  <TASK>
[  230.631251][T10745]  dump_stack_lvl+0x189/0x250
[  230.631301][T10745]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.631318][T10745]  ? __pfx__printk+0x10/0x10
[  230.631343][T10745]  ? kernfs_path_from_node+0x2f/0x290
[  230.631358][T10745]  ? kernfs_path_from_node+0x250/0x290
[  230.631371][T10745]  ? kernfs_path_from_node+0x2f/0x290
[  230.631388][T10745]  sysfs_warn_dup+0x8e/0xa0
[  230.631402][T10745]  sysfs_do_create_link_sd+0xc0/0x110
[  230.631418][T10745]  device_add_class_symlinks+0x1cf/0x240
[  230.631435][T10745]  device_add+0x475/0xb50
[  230.631452][T10745]  wiphy_register+0x1ba6/0x28d0
[  230.631485][T10745]  ? __pfx_wiphy_register+0x10/0x10
[  230.631502][T10745]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  230.631523][T10745]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  230.631548][T10745]  ieee80211_register_hw+0x3425/0x4080
[  230.631575][T10745]  ? ieee80211_register_hw+0x1441/0x4080
[  230.631595][T10745]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  230.631612][T10745]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  230.631635][T10745]  ? __hrtimer_setup+0x187/0x210
[  230.631648][T10745]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  230.631668][T10745]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  230.631708][T10745]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  230.631723][T10745]  ? trace_kmalloc+0x1f/0xd0
[  230.631737][T10745]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  230.631755][T10745]  ? kstrndup+0xbf/0x160
[  230.631776][T10745]  hwsim_new_radio_nl+0xea4/0x1b10
[  230.631795][T10745]  ? __pfx___nla_validate_parse+0x10/0x10
[  230.631825][T10745]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  230.631852][T10745]  ? __nla_parse+0x40/0x60
[  230.631874][T10745]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  230.631896][T10745]  genl_family_rcv_msg_doit+0x215/0x300
[  230.631917][T10745]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  230.631942][T10745]  ? bpf_lsm_capable+0x9/0x20
[  230.631959][T10745]  ? security_capable+0x7e/0x2e0
[  230.631990][T10745]  genl_rcv_msg+0x60e/0x790
[  230.632011][T10745]  ? __pfx_genl_rcv_msg+0x10/0x10
[  230.632025][T10745]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  230.632043][T10745]  ? __asan_memcpy+0x40/0x70
[  230.632058][T10745]  ? __pfx_ref_tracker_free+0x10/0x10
[  230.632084][T10745]  netlink_rcv_skb+0x208/0x470
[  230.632101][T10745]  ? __lock_acquire+0xab9/0xd20
[  230.632120][T10745]  ? __pfx_genl_rcv_msg+0x10/0x10
[  230.632136][T10745]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  230.632169][T10745]  ? down_read+0x1ad/0x2e0
[  230.632190][T10745]  genl_rcv+0x28/0x40
[  230.632202][T10745]  netlink_unicast+0x82f/0x9e0
[  230.632226][T10745]  ? __pfx_netlink_unicast+0x10/0x10
[  230.632244][T10745]  ? netlink_sendmsg+0x642/0xb30
[  230.632260][T10745]  ? skb_put+0x11b/0x210
[  230.632304][T10745]  netlink_sendmsg+0x805/0xb30
[  230.632332][T10745]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.632351][T10745]  ? aa_sock_msg_perm+0xf1/0x1d0
[  230.632372][T10745]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  230.632386][T10745]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.632405][T10745]  __sock_sendmsg+0x21c/0x270
[  230.632423][T10745]  ____sys_sendmsg+0x505/0x830
[  230.632442][T10745]  ? __pfx_____sys_sendmsg+0x10/0x10
[  230.632459][T10745]  ? import_iovec+0x74/0xa0
[  230.632475][T10745]  ___sys_sendmsg+0x21f/0x2a0
[  230.632490][T10745]  ? __pfx____sys_sendmsg+0x10/0x10
[  230.632531][T10745]  ? __fget_files+0x2a/0x420
[  230.632543][T10745]  ? __fget_files+0x3a0/0x420
[  230.632562][T10745]  __x64_sys_sendmsg+0x19b/0x260
[  230.632578][T10745]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  230.632599][T10745]  ? rcu_is_watching+0x15/0xb0
[  230.632618][T10745]  ? do_syscall_64+0xbe/0x3b0
[  230.632641][T10745]  do_syscall_64+0xfa/0x3b0
[  230.632658][T10745]  ? lockdep_hardirqs_on+0x9c/0x150
[  230.632675][T10745]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.632688][T10745]  ? exc_page_fault+0x9f/0xf0
[  230.632707][T10745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.632718][T10745] RIP: 0033:0x7f51e098ebe9
[  230.632731][T10745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.632743][T10745] RSP: 002b:00007f51e174d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  230.632759][T10745] RAX: ffffffffffffffda RBX: 00007f51e0bb5fa0 RCX: 00007f51e098ebe9
[  230.632768][T10745] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000003
[  230.632776][T10745] RBP: 00007f51e0a11e19 R08: 0000000000000000 R09: 0000000000000000
[  230.632784][T10745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.632793][T10745] R13: 00007f51e0bb6038 R14: 00007f51e0bb5fa0 R15: 00007ffc27955fc8
[  230.632816][T10745]  </TASK>
[  230.888456][T10752] syzkaller0: entered promiscuous mode
[  230.890432][T10752] syzkaller0: entered allmulticast mode
[  231.469092][T10764] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1587'.
[  231.790946][T10768] netlink: 15743 bytes leftover after parsing attributes in process `syz.1.1590'.
[  231.791572][T10770] netlink: 212940 bytes leftover after parsing attributes in process `syz.2.1589'.
[  231.807129][T10770] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1589'.
[  231.814038][T10770] netlink: 'syz.2.1589': attribute type 6 has an invalid length.
[  231.817438][T10770] netlink: 'syz.2.1589': attribute type 1 has an invalid length.
[  231.821215][T10770] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.1589'.
[  231.864499][T10774] netlink: 272 bytes leftover after parsing attributes in process `syz.2.1592'.
[  232.815058][T10800] netlink: 'syz.0.1599': attribute type 3 has an invalid length.
[  232.818801][T10800] netlink: 'syz.0.1599': attribute type 2 has an invalid length.
[  233.262923][T10792] : entered promiscuous mode
[  233.290273][T10799] syzkaller0: entered promiscuous mode
[  233.292516][T10799] syzkaller0: entered allmulticast mode
[  234.268433][T10812] netlink: 'syz.0.1600': attribute type 10 has an invalid length.
[  234.774613][T10860] syzkaller0: entered promiscuous mode
[  234.785552][T10860] syzkaller0: entered allmulticast mode
[  235.900447][T10870] __nla_validate_parse: 12 callbacks suppressed
[  235.900465][T10870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1620'.
[  236.155601][T10886] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  236.258402][T10890] syzkaller0: entered promiscuous mode
[  236.260504][T10890] syzkaller0: entered allmulticast mode
[  236.847777][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1630'.
[  237.532829][T10903] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1633'.
[  237.686728][T10909] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1637'.
[  237.689030][T10912] netlink: 'syz.2.1636': attribute type 10 has an invalid length.
[  237.712284][T10914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1638'.
[  237.738114][T10915] vcan0 speed is unknown, defaulting to 1000
[  237.871712][T10933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1642'.
[  237.923170][T10915] wlan1 speed is unknown, defaulting to 1000
[  238.119517][T10939] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  238.122870][T10940] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1644'.
[  238.153840][T10939] netlink: 'syz.0.1644': attribute type 39 has an invalid length.
[  239.265351][T10942] syzkaller0: entered promiscuous mode
[  239.269909][T10942] syzkaller0: entered allmulticast mode
[  239.505413][T10950] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1647'.
[  239.607702][   T55] Bluetooth: hci1: ISO packet too small
[  240.466873][T10955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1649'.
[  240.471442][T10956] netlink: 'syz.0.1650': attribute type 12 has an invalid length.
[  240.529533][T10960] netlink: 'syz.0.1652': attribute type 21 has an invalid length.
[  240.691791][T10973] syzkaller0: entered promiscuous mode
[  240.694094][T10973] syzkaller0: entered allmulticast mode
[  241.627551][T10990] __nla_validate_parse: 9 callbacks suppressed
[  241.627561][T10990] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1663'.
[  241.721425][T11000] syzkaller0: entered promiscuous mode
[  241.723410][T11000] syzkaller0: entered allmulticast mode
[  241.727649][T11000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1667'.
[  241.784243][T11004] netlink: 'syz.2.1668': attribute type 33 has an invalid length.
[  241.789441][T11004] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1668'.
[  242.905258][T11015] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1671'.
[  243.052033][T11027] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  243.069448][T11028] netlink: 16211 bytes leftover after parsing attributes in process `syz.2.1672'.
[  243.163512][T11038] netlink: 'syz.0.1679': attribute type 4 has an invalid length.
[  243.166996][T11038] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1679'.
[  243.172904][T11038] wlan1: mtu less than device minimum
[  243.206359][T11028] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1672'.
[  243.283075][T11017] delete_channel: no stack
[  243.354952][T11044] netlink: 'syz.0.1680': attribute type 2 has an invalid length.
[  243.361595][T11044] netlink: 'syz.0.1680': attribute type 1 has an invalid length.
[  243.364098][T11044] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.1680'.
[  243.367841][T11044] nbd: couldn't find device at index 16
[  243.374812][T11051] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1682'.
[  243.430430][T11054] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1683'.
[  243.441419][T11056] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  243.500357][T11064] syzkaller0: entered promiscuous mode
[  243.502210][T11064] syzkaller0: entered allmulticast mode
[  245.050230][T11082] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  245.322511][T11107] syzkaller0: entered promiscuous mode
[  245.324634][T11107] syzkaller0: entered allmulticast mode
[  245.336374][T11104] netlink: 'syz.1.1702': attribute type 10 has an invalid length.
[  245.601796][T11110] openvswitch: netlink: Key 0 has unexpected len 4 expected 0
[  246.229397][T11104] ipvlan1: entered promiscuous mode
[  246.231670][T11104] ipvlan1: entered allmulticast mode
[  246.234057][T11104] veth0_vlan: entered allmulticast mode
[  246.239687][T11104] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  246.248189][T11112] netlink: 'syz.2.1704': attribute type 3 has an invalid length.
[  246.360717][T11121] netlink: 'syz.2.1708': attribute type 27 has an invalid length.
[  246.370008][T11125] netlink: zone id is out of range
[  246.372258][T11125] netlink: zone id is out of range
[  246.374423][T11125] netlink: zone id is out of range
[  246.381257][T11125] netlink: zone id is out of range
[  246.386039][T11125] netlink: 'syz.1.1710': attribute type 1 has an invalid length.
[  246.481168][T11135] syzkaller0: entered promiscuous mode
[  246.483592][T11135] syzkaller0: entered allmulticast mode
[  247.380610][T11137] mac80211_hwsim hwsim6 wlan1: left promiscuous mode
[  247.654815][T11165] __nla_validate_parse: 17 callbacks suppressed
[  247.654831][T11165] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1724'.
[  247.730905][T11169] syzkaller0: entered promiscuous mode
[  247.733163][T11169] syzkaller0: entered allmulticast mode
[  247.961247][T11180] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1731'.
[  247.970889][T11180] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1731'.
[  248.009330][T11185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1734'.
[  248.824370][T11194] netlink: 'syz.2.1736': attribute type 21 has an invalid length.
[  248.828223][T11194] netlink: 14532 bytes leftover after parsing attributes in process `syz.2.1736'.
[  248.892415][T11198] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1738'.
[  248.897728][T11198] net_ratelimit: 81 callbacks suppressed
[  248.897738][T11198] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  248.919473][T11200] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1739'.
[  248.965060][T11207] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1742'.
[  249.009298][T11213] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1744'.
[  249.120812][T11217] syzkaller0: entered promiscuous mode
[  249.123229][T11217] syzkaller0: entered allmulticast mode
[  250.421529][T11219] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1747'.
[  250.456691][T11227] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  250.725131][T11244] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  250.732077][T11244] netlink: 'syz.1.1756': attribute type 29 has an invalid length.
[  250.747252][T11244] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI
[  250.751195][T11244] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  250.753985][T11244] CPU: 0 UID: 0 PID: 11244 Comm: syz.1.1756 Not tainted 6.17.0-rc1-syzkaller-00022-g07866544e410-dirty #0 PREEMPT(full) 
[  250.758732][T11244] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  250.762140][T11244] RIP: 0010:xfrm_alloc_spi+0xe0e/0xf30
[  250.763951][T11244] Code: 00 fc ff df 80 3c 03 00 4c 8b 34 24 74 08 4c 89 f7 e8 96 aa 01 f8 4d 8b 36 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 48 8b 5c 24 58 74 08 4c 89 f7 e8 5f ab 01 f8 4d 89 3e
[  250.770512][T11244] RSP: 0018:ffffc90008cc70e0 EFLAGS: 00010246
[  250.772675][T11244] RAX: 0000000000000000 RBX: 1ffff11003f6c6c6 RCX: dffffc0000000000
[  250.775571][T11244] RDX: ffffc90003531000 RSI: 0000000000000420 RDI: 0000000000000421
[  250.778444][T11244] RBP: ffffc90008cc7230 R08: ffff888021521cc0 R09: 0000000000000002
[  250.781299][T11244] R10: 000000000000000a R11: 0000000000000002 R12: 1ffff1102451c096
[  250.783944][T11244] R13: ffff88801fb63630 R14: 0000000000000000 R15: ffff88801fb63628
[  250.786559][T11244] FS:  00007fc6e731c6c0(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  250.789553][T11244] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  250.791974][T11244] CR2: 000000110c2bf855 CR3: 0000000035dd4000 CR4: 00000000000006f0
[  250.794800][T11244] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  250.797595][T11244] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  250.800291][T11244] Call Trace:
[  250.801379][T11244]  <TASK>
[  250.802371][T11244]  ? xfrm_alloc_spi+0x2a0/0xf30
[  250.803975][T11244]  ? __pfx_xfrm_alloc_spi+0x10/0x10
[  250.805656][T11244]  ? xfrm_find_acq+0x87/0xa0
[  250.807144][T11244]  xfrm_alloc_userspi+0x70b/0xc90
[  250.808825][T11244]  ? apparmor_capable+0x137/0x1b0
[  250.810561][T11244]  ? __pfx_xfrm_alloc_userspi+0x10/0x10
[  250.812379][T11244]  ? __nla_parse+0x40/0x60
[  250.813869][T11244]  xfrm_user_rcv_msg+0x7a3/0xab0
[  250.815527][T11244]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  250.817362][T11244]  ? __pfx___mutex_trylock_common+0x10/0x10
[  250.819341][T11244]  ? rcu_is_watching+0x15/0xb0
[  250.820975][T11244]  ? trace_contention_end+0x39/0x120
[  250.822817][T11244]  ? __mutex_lock+0x335/0x1360
[  250.824452][T11244]  netlink_rcv_skb+0x208/0x470
[  250.826154][T11244]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  250.828039][T11244]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  250.829745][T11244]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.831536][T11244]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.833246][T11244]  xfrm_netlink_rcv+0x79/0x90
[  250.834795][T11244]  netlink_unicast+0x82f/0x9e0
[  250.836544][T11244]  ? __pfx_netlink_unicast+0x10/0x10
[  250.838590][T11244]  ? netlink_sendmsg+0x642/0xb30
[  250.840517][T11244]  ? skb_put+0x11b/0x210
[  250.842029][T11244]  netlink_sendmsg+0x805/0xb30
[  250.843755][T11244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.845461][T11244]  ? aa_sock_msg_perm+0xf1/0x1d0
[  250.847041][T11244]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  250.848762][T11244]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.850458][T11244]  __sock_sendmsg+0x21c/0x270
[  250.851941][T11244]  ____sys_sendmsg+0x505/0x830
[  250.853485][T11244]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.855345][T11244]  ? import_iovec+0x74/0xa0
[  250.856951][T11244]  ___sys_sendmsg+0x21f/0x2a0
[  250.858532][T11244]  ? __pfx____sys_sendmsg+0x10/0x10
[  250.860185][T11244]  ? __fget_files+0x2a/0x420
[  250.861684][T11244]  ? __fget_files+0x3a0/0x420
[  250.863197][T11244]  __x64_sys_sendmsg+0x19b/0x260
[  250.864754][T11244]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  250.866520][T11244]  ? rcu_is_watching+0x15/0xb0
[  250.868107][T11244]  ? do_syscall_64+0xbe/0x3b0
[  250.869808][T11244]  do_syscall_64+0xfa/0x3b0
[  250.871567][T11244]  ? lockdep_hardirqs_on+0x9c/0x150
[  250.873677][T11244]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.876180][T11244]  ? exc_page_fault+0x9f/0xf0
[  250.878141][T11244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.880534][T11244] RIP: 0033:0x7fc6e658ebe9
[  250.882484][T11244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.890023][T11244] RSP: 002b:00007fc6e731c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.893422][T11244] RAX: ffffffffffffffda RBX: 00007fc6e67b5fa0 RCX: 00007fc6e658ebe9
[  250.896646][T11244] RDX: 0000000000000000 RSI: 0000200000000840 RDI: 0000000000000005
[  250.899967][T11244] RBP: 00007fc6e6611e19 R08: 0000000000000000 R09: 0000000000000000
[  250.903203][T11244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.906459][T11244] R13: 00007fc6e67b6038 R14: 00007fc6e67b5fa0 R15: 00007ffe3e3abb48
[  250.909673][T11244]  </TASK>
[  250.910975][T11244] Modules linked in:
[  250.912758][T11244] ---[ end trace 0000000000000000 ]---
[  250.914970][T11244] RIP: 0010:xfrm_alloc_spi+0xe0e/0xf30
[  250.917309][T11244] Code: 00 fc ff df 80 3c 03 00 4c 8b 34 24 74 08 4c 89 f7 e8 96 aa 01 f8 4d 8b 36 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 48 8b 5c 24 58 74 08 4c 89 f7 e8 5f ab 01 f8 4d 89 3e
[  250.924559][T11244] RSP: 0018:ffffc90008cc70e0 EFLAGS: 00010246
[  250.926707][T11244] RAX: 0000000000000000 RBX: 1ffff11003f6c6c6 RCX: dffffc0000000000
[  250.929922][T11244] RDX: ffffc90003531000 RSI: 0000000000000420 RDI: 0000000000000421
[  250.933135][T11244] RBP: ffffc90008cc7230 R08: ffff888021521cc0 R09: 0000000000000002
[  250.936384][T11244] R10: 000000000000000a R11: 0000000000000002 R12: 1ffff1102451c096
[  250.939582][T11244] R13: ffff88801fb63630 R14: 0000000000000000 R15: ffff88801fb63628
[  250.942779][T11244] FS:  00007fc6e731c6c0(0000) GS:ffff8880b861c000(0000) knlGS:0000000000000000
[  250.946469][T11244] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  250.949160][T11244] CR2: 000000110c2bf855 CR3: 0000000035dd4000 CR4: 00000000000006f0
[  250.951167][T11247] syzkaller0: entered promiscuous mode
[  250.952397][T11244] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  250.954511][T11247] syzkaller0: entered allmulticast mode
[  250.957729][T11244] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  250.962657][T11244] Kernel panic - not syncing: Fatal exception in interrupt
[  250.966620][T11244] Kernel Offset: disabled
[  250.968389][T11244] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:25:24  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000034 RBX=0000000000000034 RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000170c RDI=000000000000170d RBP=00000000000003f8 RSP=ffffc90008cc6870
R8 =ffff888107950237 R9 =1ffff11020f2a046 R10=dffffc0000000000 R11=ffffffff854ef730
R12=dffffc0000000000 R13=ffffffff99af98ef R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854ef7ac RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc6e731c6c0 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c2bf855 CR3=0000000035dd4000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fc6e6787498 00007fc6e6787470 XMM03=00007fc6e67874a8 00007fc6e67874a0
XMM04=00007fc6e72ed100 00007fc6e6787460 XMM05=00007fc6e6787478 00007fc6e67874c0
XMM06=00007fc6e67874b8 00007fc6e67874b0 XMM07=00007fc6e67874a8 00007fc6e67874a0
XMM08=0000000000000000 00007fc6e6612ee7 XMM09=0000000000000000 00007fc6e6612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000000003af RBX=ffff888136623900 RCX=0000000000000838 RDX=0000000000000000
RSI=00000000000003af RDI=0000000000000838 RBP=0000000000000000 RSP=ffffc900001e0e50
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000003 R11=ffffffff81703490
R12=0000000010000a10 R13=dffffc0000000000 R14=00000000000003af R15=0000000000000020
RIP=ffffffff81716179 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff127d466c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c371257 CR3=000000010fc28000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000200000000300 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007ff127012e53
XMM06=0000000000000000 00007ff127012e4d XMM07=0000000000000000 00007ff127012e61
XMM08=0000000000000000 00007ff127012ee7 XMM09=0000000000000000 00007ff127012fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
