KMSAN: uninit-value in ip6_protocol_deliver

=====================================================
BUG: KMSAN: uninit-value in ip6_protocol_deliver_rcu+0x62d/0x25f0 net/ipv6/ip6_input.c:365
CPU: 1 PID: 17 Comm: ksoftirqd/1 Not tainted 5.12.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:79 [inline]
 dump_stack+0x24c/0x2e0 lib/dump_stack.c:120
 kmsan_report+0xfb/0x1e0 mm/kmsan/kmsan_report.c:118
 __msan_warning+0x5c/0xa0 mm/kmsan/kmsan_instr.c:197
 ip6_protocol_deliver_rcu+0x62d/0x25f0 net/ipv6/ip6_input.c:365
 ip6_input_finish net/ipv6/ip6_input.c:463 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 ip6_input+0x12b/0x390 net/ipv6/ip6_input.c:472
 dst_input include/net/dst.h:458 [inline]
 ip6_rcv_finish+0x5fc/0x7f0 net/ipv6/ip6_input.c:76
 ip_sabotage_in+0x36c/0x3c0 net/bridge/br_netfilter_hooks.c:873
 nf_hook_entry_hookfn include/linux/netfilter.h:136 [inline]
 nf_hook_slow+0x17b/0x460 net/netfilter/core.c:589
 nf_hook include/linux/netfilter.h:256 [inline]
 NF_HOOK include/linux/netfilter.h:299 [inline]
 ipv6_rcv+0x3c8/0x460 net/ipv6/ip6_input.c:297
 __netif_receive_skb_one_core net/core/dev.c:5384 [inline]
 __netif_receive_skb+0x1ec/0x640 net/core/dev.c:5498
 netif_receive_skb_internal+0x1ae/0x3e0 net/core/dev.c:5603
 netif_receive_skb+0x4c/0x270 net/core/dev.c:5662
 br_netif_receive_skb net/bridge/br_input.c:30 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 br_pass_frame_up+0x856/0xad0 net/bridge/br_input.c:61
 br_handle_frame_finish+0x1c8f/0x20e0 net/bridge/br_input.c:168
 br_nf_hook_thresh+0x571/0x6f0 net/bridge/br_netfilter_hooks.c:1024
 br_nf_pre_routing_finish_ipv6+0xf89/0x1110 net/bridge/br_netfilter_ipv6.c:187
 NF_HOOK include/linux/netfilter.h:301 [inline]
 br_nf_pre_routing_ipv6+0x588/0x8b0 net/bridge/br_netfilter_ipv6.c:236
 br_nf_pre_routing+0xffb/0x25c0 net/bridge/br_netfilter_hooks.c:505
 nf_hook_entry_hookfn include/linux/netfilter.h:136 [inline]
 nf_hook_bridge_pre net/bridge/br_input.c:224 [inline]
 br_handle_frame+0xfee/0x2830 net/bridge/br_input.c:367
 __netif_receive_skb_core+0x1f9d/0x65a0 net/core/dev.c:5279
 __netif_receive_skb_one_core net/core/dev.c:5382 [inline]
 __netif_receive_skb+0xf2/0x640 net/core/dev.c:5498
 process_backlog+0x517/0xbd0 net/core/dev.c:6365
 __napi_poll+0x13e/0xca0 net/core/dev.c:6912
 napi_poll net/core/dev.c:6979 [inline]
 net_rx_action+0x726/0x14a0 net/core/dev.c:7065
 __do_softirq+0x1b9/0x715 kernel/softirq.c:345
 run_ksoftirqd+0x20/0x40 kernel/softirq.c:652
 smpboot_thread_fn+0x5f5/0xa90 kernel/smpboot.c:165
 kthread+0x521/0x560 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

Local variable ----regs@__bpf_prog_run32 created at:
 __bpf_prog_run32+0x84/0x190 kernel/bpf/core.c:1748
 __bpf_prog_run32+0x84/0x190 kernel/bpf/core.c:1748
=====================================================
=====================================================
BUG: KMSAN: uninit-value in ip6_protocol_deliver_rcu+0x8ed/0x25f0 net/ipv6/ip6_input.c:377
CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G    B             5.12.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:79 [inline]
 dump_stack+0x24c/0x2e0 lib/dump_stack.c:120
 kmsan_report+0xfb/0x1e0 mm/kmsan/kmsan_report.c:118
 __msan_warning+0x5c/0xa0 mm/kmsan/kmsan_instr.c:197
 ip6_protocol_deliver_rcu+0x8ed/0x25f0 net/ipv6/ip6_input.c:377
 ip6_input_finish net/ipv6/ip6_input.c:463 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 ip6_input+0x12b/0x390 net/ipv6/ip6_input.c:472
 dst_input include/net/dst.h:458 [inline]
 ip6_rcv_finish+0x5fc/0x7f0 net/ipv6/ip6_input.c:76
 ip_sabotage_in+0x36c/0x3c0 net/bridge/br_netfilter_hooks.c:873
 nf_hook_entry_hookfn include/linux/netfilter.h:136 [inline]
 nf_hook_slow+0x17b/0x460 net/netfilter/core.c:589
 nf_hook include/linux/netfilter.h:256 [inline]
 NF_HOOK include/linux/netfilter.h:299 [inline]
 ipv6_rcv+0x3c8/0x460 net/ipv6/ip6_input.c:297
 __netif_receive_skb_one_core net/core/dev.c:5384 [inline]
 __netif_receive_skb+0x1ec/0x640 net/core/dev.c:5498
 netif_receive_skb_internal+0x1ae/0x3e0 net/core/dev.c:5603
 netif_receive_skb+0x4c/0x270 net/core/dev.c:5662
 br_netif_receive_skb net/bridge/br_input.c:30 [inline]
 NF_HOOK include/linux/netfilter.h:301 [inline]
 br_pass_frame_up+0x856/0xad0 net/bridge/br_input.c:61
 br_handle_frame_finish+0x1c8f/0x20e0 net/bridge/br_input.c:168
 br_nf_hook_thresh+0x571/0x6f0 net/bridge/br_netfilter_hooks.c:1024
 br_nf_pre_routing_finish_ipv6+0xf89/0x1110 net/bridge/br_netfilter_ipv6.c:187
 NF_HOOK include/linux/netfilter.h:301 [inline]
 br_nf_pre_routing_ipv6+0x588/0x8b0 net/bridge/br_netfilter_ipv6.c:236
 br_nf_pre_routing+0xffb/0x25c0 net/bridge/br_netfilter_hooks.c:505
 nf_hook_entry_hookfn include/linux/netfilter.h:136 [inline]
 nf_hook_bridge_pre net/bridge/br_input.c:224 [inline]
 br_handle_frame+0xfee/0x2830 net/bridge/br_input.c:367
 __netif_receive_skb_core+0x1f9d/0x65a0 net/core/dev.c:5279
 __netif_receive_skb_one_core net/core/dev.c:5382 [inline]
 __netif_receive_skb+0xf2/0x640 net/core/dev.c:5498
 process_backlog+0x517/0xbd0 net/core/dev.c:6365
 __napi_poll+0x13e/0xca0 net/core/dev.c:6912
 napi_poll net/core/dev.c:6979 [inline]
 net_rx_action+0x726/0x14a0 net/core/dev.c:7065
 __do_softirq+0x1b9/0x715 kernel/softirq.c:345
 run_ksoftirqd+0x20/0x40 kernel/softirq.c:652
 smpboot_thread_fn+0x5f5/0xa90 kernel/smpboot.c:165
 kthread+0x521/0x560 kernel/kthread.c:292
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294

Local variable ----regs@__bpf_prog_run32 created at:
 __bpf_prog_run32+0x84/0x190 kernel/bpf/core.c:1748
 __bpf_prog_run32+0x84/0x190 kernel/bpf/core.c:1748
=====================================================
cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71
cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71
cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71
cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71
cm109 3-1:0.0: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71
cm109 3-1:0.0: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19