0 [ 613.822180][T14000] __sys_recvmmsg+0x4ca/0x510 [ 613.826856][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.832939][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.839099][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 613.844454][T14000] do_fast_syscall_32+0x6b/0xd0 [ 613.849313][T14000] do_SYSENTER_32+0x73/0x90 [ 613.853820][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.860261][T14000] [ 613.862590][T14000] Uninit was stored to memory at: [ 613.867712][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 613.873541][T14000] __msan_chain_origin+0x50/0x90 [ 613.878499][T14000] __get_compat_msghdr+0x5be/0x890 [ 613.883744][T14000] get_compat_msghdr+0x108/0x270 [ 613.888770][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 613.893273][T14000] __sys_recvmmsg+0x4ca/0x510 [ 613.897956][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.904024][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.910185][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 613.915387][T14000] do_fast_syscall_32+0x6b/0xd0 [ 613.920239][T14000] do_SYSENTER_32+0x73/0x90 [ 613.924768][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.931080][T14000] [ 613.933403][T14000] Uninit was stored to memory at: [ 613.938436][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 613.944165][T14000] __msan_chain_origin+0x50/0x90 [ 613.949111][T14000] __get_compat_msghdr+0x5be/0x890 [ 613.954227][T14000] get_compat_msghdr+0x108/0x270 [ 613.959174][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 613.963733][T14000] __sys_recvmmsg+0x4ca/0x510 [ 613.968436][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.974535][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.980704][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 613.985911][T14000] do_fast_syscall_32+0x6b/0xd0 [ 613.990763][T14000] do_SYSENTER_32+0x73/0x90 [ 613.995269][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.001592][T14000] [ 614.003911][T14000] Uninit was stored to memory at: [ 614.008948][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.014669][T14000] __msan_chain_origin+0x50/0x90 [ 614.019615][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.024730][T14000] get_compat_msghdr+0x108/0x270 [ 614.029670][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.034179][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.038977][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.045064][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.051229][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.056429][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.061280][T14000] do_SYSENTER_32+0x73/0x90 [ 614.065783][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.072100][T14000] [ 614.074420][T14000] Uninit was stored to memory at: [ 614.079445][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.085161][T14000] __msan_chain_origin+0x50/0x90 [ 614.090102][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.095215][T14000] get_compat_msghdr+0x108/0x270 [ 614.100157][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.104659][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.109335][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.115401][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.121551][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.126771][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.131638][T14000] do_SYSENTER_32+0x73/0x90 [ 614.136145][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.142458][T14000] [ 614.144776][T14000] Uninit was stored to memory at: [ 614.149811][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.155532][T14000] __msan_chain_origin+0x50/0x90 [ 614.160484][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.165593][T14000] get_compat_msghdr+0x108/0x270 [ 614.170530][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.175046][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.179727][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.185790][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.191938][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.197138][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.201986][T14000] do_SYSENTER_32+0x73/0x90 [ 614.206486][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.212798][T14000] [ 614.215116][T14000] Uninit was stored to memory at: [ 614.220143][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.225863][T14000] __msan_chain_origin+0x50/0x90 [ 614.230804][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.235916][T14000] get_compat_msghdr+0x108/0x270 [ 614.240852][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.245356][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.250219][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.256288][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.262560][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.267949][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.272805][T14000] do_SYSENTER_32+0x73/0x90 [ 614.277310][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.283648][T14000] [ 614.285973][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 614.292736][T14000] do_recvmmsg+0xc5/0x1ee0 [ 614.297151][T14000] do_recvmmsg+0xc5/0x1ee0 [ 614.482980][T14000] not chained 2040000 origins [ 614.487702][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 614.496366][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.506417][T14000] Call Trace: [ 614.509713][T14000] dump_stack+0x1df/0x240 [ 614.514050][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 614.519780][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 614.524893][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 614.530007][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.535817][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.541886][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 614.546831][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 614.551944][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 614.557499][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.563561][T14000] ? _copy_from_user+0x15b/0x260 [ 614.568487][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 614.573576][T14000] __msan_chain_origin+0x50/0x90 [ 614.578580][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.583805][T14000] get_compat_msghdr+0x108/0x270 [ 614.588728][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.593211][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 614.598824][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 614.603908][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 614.609517][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 614.614787][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 614.619661][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 614.624398][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 614.629574][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.634231][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.640278][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 614.646493][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.652624][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.657806][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.662640][T14000] do_SYSENTER_32+0x73/0x90 [ 614.667122][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.673421][T14000] RIP: 0023:0xf7fd1549 [ 614.677472][T14000] Code: Bad RIP value. [ 614.681509][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 614.689891][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 614.697835][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 614.705824][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 614.713769][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 614.721713][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.729712][T14000] Uninit was stored to memory at: [ 614.734715][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.740409][T14000] __msan_chain_origin+0x50/0x90 [ 614.745320][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.750404][T14000] get_compat_msghdr+0x108/0x270 [ 614.755316][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.759793][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.764446][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.770494][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.776624][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.781968][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.786793][T14000] do_SYSENTER_32+0x73/0x90 [ 614.791270][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.797582][T14000] [ 614.799896][T14000] Uninit was stored to memory at: [ 614.804895][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.810612][T14000] __msan_chain_origin+0x50/0x90 [ 614.815535][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.820864][T14000] get_compat_msghdr+0x108/0x270 [ 614.825867][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.830349][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.835008][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.841052][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.847177][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.852352][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.857265][T14000] do_SYSENTER_32+0x73/0x90 [ 614.861749][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.868048][T14000] [ 614.870422][T14000] Uninit was stored to memory at: [ 614.875434][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.881129][T14000] __msan_chain_origin+0x50/0x90 [ 614.886047][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.891134][T14000] get_compat_msghdr+0x108/0x270 [ 614.896049][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.900526][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.905173][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.911212][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.917338][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.922514][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.927339][T14000] do_SYSENTER_32+0x73/0x90 [ 614.931841][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.938137][T14000] [ 614.940442][T14000] Uninit was stored to memory at: [ 614.945530][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 614.951224][T14000] __msan_chain_origin+0x50/0x90 [ 614.956137][T14000] __get_compat_msghdr+0x5be/0x890 [ 614.961312][T14000] get_compat_msghdr+0x108/0x270 [ 614.966225][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 614.970706][T14000] __sys_recvmmsg+0x4ca/0x510 [ 614.975358][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.981401][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.987620][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 614.992799][T14000] do_fast_syscall_32+0x6b/0xd0 [ 614.997624][T14000] do_SYSENTER_32+0x73/0x90 [ 615.002102][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.008418][T14000] [ 615.010718][T14000] Uninit was stored to memory at: [ 615.015721][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.021411][T14000] __msan_chain_origin+0x50/0x90 [ 615.026323][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.031416][T14000] get_compat_msghdr+0x108/0x270 [ 615.036360][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.040839][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.045491][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.051541][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.057670][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.062857][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.067685][T14000] do_SYSENTER_32+0x73/0x90 [ 615.072162][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.078457][T14000] [ 615.080768][T14000] Uninit was stored to memory at: [ 615.085772][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.091553][T14000] __msan_chain_origin+0x50/0x90 [ 615.096492][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.101613][T14000] get_compat_msghdr+0x108/0x270 [ 615.106534][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.111033][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.115696][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.121745][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.127926][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.133105][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.137929][T14000] do_SYSENTER_32+0x73/0x90 [ 615.142406][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.148704][T14000] [ 615.151007][T14000] Uninit was stored to memory at: [ 615.156024][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.161730][T14000] __msan_chain_origin+0x50/0x90 [ 615.166664][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.171757][T14000] get_compat_msghdr+0x108/0x270 [ 615.176672][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.181164][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.185835][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.191875][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.199234][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.204422][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.209250][T14000] do_SYSENTER_32+0x73/0x90 [ 615.213738][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.220043][T14000] [ 615.222361][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 615.229104][T14000] do_recvmmsg+0xc5/0x1ee0 [ 615.233500][T14000] do_recvmmsg+0xc5/0x1ee0 [ 615.423992][T14000] not chained 2050000 origins [ 615.428714][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 615.437376][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.447426][T14000] Call Trace: [ 615.450735][T14000] dump_stack+0x1df/0x240 [ 615.455074][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 615.460800][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 615.465918][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 615.471048][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 615.476872][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 615.482947][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 615.487892][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 615.493006][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 615.498554][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.504625][T14000] ? _copy_from_user+0x15b/0x260 [ 615.509577][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 615.514692][T14000] __msan_chain_origin+0x50/0x90 [ 615.519637][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.524766][T14000] get_compat_msghdr+0x108/0x270 [ 615.529711][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.534228][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 615.539874][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 615.544986][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 615.550621][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 615.555908][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 615.560674][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 615.565438][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 615.570654][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.575370][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.581582][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 615.587847][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.594015][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.599228][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.604093][T14000] do_SYSENTER_32+0x73/0x90 [ 615.608598][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.615006][T14000] RIP: 0023:0xf7fd1549 [ 615.619064][T14000] Code: Bad RIP value. [ 615.623122][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 615.631530][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 615.639523][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 615.647496][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 615.655463][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 615.663430][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 615.671415][T14000] Uninit was stored to memory at: [ 615.676453][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.682171][T14000] __msan_chain_origin+0x50/0x90 [ 615.687109][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.692221][T14000] get_compat_msghdr+0x108/0x270 [ 615.697157][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.701668][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.706346][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.712409][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.718574][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.723771][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.728629][T14000] do_SYSENTER_32+0x73/0x90 [ 615.733129][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.739442][T14000] [ 615.741761][T14000] Uninit was stored to memory at: [ 615.746789][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.752509][T14000] __msan_chain_origin+0x50/0x90 [ 615.757455][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.762587][T14000] get_compat_msghdr+0x108/0x270 [ 615.767550][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.772395][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.777068][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.783128][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.789320][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.794517][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.799366][T14000] do_SYSENTER_32+0x73/0x90 [ 615.803876][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.812365][T14000] [ 615.815123][T14000] Uninit was stored to memory at: [ 615.820152][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.825870][T14000] __msan_chain_origin+0x50/0x90 [ 615.830808][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.835918][T14000] get_compat_msghdr+0x108/0x270 [ 615.840854][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.845353][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.850026][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.856093][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.862245][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.867620][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.872476][T14000] do_SYSENTER_32+0x73/0x90 [ 615.876974][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.883286][T14000] [ 615.885639][T14000] Uninit was stored to memory at: [ 615.890664][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.896399][T14000] __msan_chain_origin+0x50/0x90 [ 615.901356][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.906468][T14000] get_compat_msghdr+0x108/0x270 [ 615.911421][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.915921][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.920596][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.926659][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.933069][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 615.938267][T14000] do_fast_syscall_32+0x6b/0xd0 [ 615.943120][T14000] do_SYSENTER_32+0x73/0x90 [ 615.947622][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.953933][T14000] [ 615.956257][T14000] Uninit was stored to memory at: [ 615.961292][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 615.967288][T14000] __msan_chain_origin+0x50/0x90 [ 615.972225][T14000] __get_compat_msghdr+0x5be/0x890 [ 615.977333][T14000] get_compat_msghdr+0x108/0x270 [ 615.982266][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 615.986770][T14000] __sys_recvmmsg+0x4ca/0x510 [ 615.991508][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.997577][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.003730][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.008930][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.013779][T14000] do_SYSENTER_32+0x73/0x90 [ 616.018278][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.024590][T14000] [ 616.026939][T14000] Uninit was stored to memory at: [ 616.031963][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.037677][T14000] __msan_chain_origin+0x50/0x90 [ 616.042619][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.047726][T14000] get_compat_msghdr+0x108/0x270 [ 616.052663][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.057161][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.061834][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.067985][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.074135][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.079417][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.084348][T14000] do_SYSENTER_32+0x73/0x90 [ 616.088849][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.095946][T14000] [ 616.098299][T14000] Uninit was stored to memory at: [ 616.103370][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.109278][T14000] __msan_chain_origin+0x50/0x90 [ 616.114217][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.119327][T14000] get_compat_msghdr+0x108/0x270 [ 616.124262][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.128789][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.133464][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.139525][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.145676][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.150872][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.155725][T14000] do_SYSENTER_32+0x73/0x90 [ 616.160227][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.166538][T14000] [ 616.168897][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 616.175781][T14000] do_recvmmsg+0xc5/0x1ee0 [ 616.180206][T14000] do_recvmmsg+0xc5/0x1ee0 [ 616.370115][T14000] not chained 2060000 origins [ 616.374831][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 616.383494][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 616.393542][T14000] Call Trace: [ 616.396923][T14000] dump_stack+0x1df/0x240 [ 616.401282][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 616.407041][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 616.412189][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 616.417302][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 616.423114][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 616.429184][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 616.434126][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 616.439240][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 616.444792][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 616.450868][T14000] ? _copy_from_user+0x15b/0x260 [ 616.455808][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 616.461445][T14000] __msan_chain_origin+0x50/0x90 [ 616.466390][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.471525][T14000] get_compat_msghdr+0x108/0x270 [ 616.476482][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.481023][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 616.486683][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 616.491800][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 616.497431][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 616.502717][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 616.507480][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 616.512245][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 616.517452][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.522136][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.528643][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 616.535056][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.541211][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.546419][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.551270][T14000] do_SYSENTER_32+0x73/0x90 [ 616.555773][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.562104][T14000] RIP: 0023:0xf7fd1549 [ 616.566169][T14000] Code: Bad RIP value. [ 616.570234][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 616.578749][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 616.586718][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 616.594713][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 616.602686][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 616.610657][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 616.618646][T14000] Uninit was stored to memory at: [ 616.623672][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.629388][T14000] __msan_chain_origin+0x50/0x90 [ 616.634326][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.639436][T14000] get_compat_msghdr+0x108/0x270 [ 616.644377][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.652881][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.657559][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.663618][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.669767][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.674966][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.679817][T14000] do_SYSENTER_32+0x73/0x90 [ 616.684844][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.691154][T14000] [ 616.693484][T14000] Uninit was stored to memory at: [ 616.698507][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.704223][T14000] __msan_chain_origin+0x50/0x90 [ 616.709164][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.714274][T14000] get_compat_msghdr+0x108/0x270 [ 616.719207][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.723705][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.728384][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.734629][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.740780][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.745979][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.750911][T14000] do_SYSENTER_32+0x73/0x90 [ 616.755411][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.761722][T14000] [ 616.764040][T14000] Uninit was stored to memory at: [ 616.769177][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.774896][T14000] __msan_chain_origin+0x50/0x90 [ 616.779828][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.784948][T14000] get_compat_msghdr+0x108/0x270 [ 616.789888][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.794386][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.799060][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.805120][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.811284][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.816479][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.821330][T14000] do_SYSENTER_32+0x73/0x90 [ 616.825827][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.832138][T14000] [ 616.834457][T14000] Uninit was stored to memory at: [ 616.839479][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.845190][T14000] __msan_chain_origin+0x50/0x90 [ 616.850153][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.855274][T14000] get_compat_msghdr+0x108/0x270 [ 616.860207][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.864706][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.869376][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.875437][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.881595][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.886793][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.891639][T14000] do_SYSENTER_32+0x73/0x90 [ 616.896152][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.902462][T14000] [ 616.904780][T14000] Uninit was stored to memory at: [ 616.909888][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.915604][T14000] __msan_chain_origin+0x50/0x90 [ 616.920553][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.925659][T14000] get_compat_msghdr+0x108/0x270 [ 616.930678][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 616.935201][T14000] __sys_recvmmsg+0x4ca/0x510 [ 616.939871][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.946033][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.952187][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 616.957386][T14000] do_fast_syscall_32+0x6b/0xd0 [ 616.962236][T14000] do_SYSENTER_32+0x73/0x90 [ 616.966733][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.973042][T14000] [ 616.975363][T14000] Uninit was stored to memory at: [ 616.980387][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 616.986103][T14000] __msan_chain_origin+0x50/0x90 [ 616.991127][T14000] __get_compat_msghdr+0x5be/0x890 [ 616.996239][T14000] get_compat_msghdr+0x108/0x270 [ 617.001171][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.005669][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.010338][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.016400][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.022555][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.027751][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.032683][T14000] do_SYSENTER_32+0x73/0x90 [ 617.037179][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.043487][T14000] [ 617.045803][T14000] Uninit was stored to memory at: [ 617.050827][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.056557][T14000] __msan_chain_origin+0x50/0x90 [ 617.061496][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.066714][T14000] get_compat_msghdr+0x108/0x270 [ 617.071668][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.076180][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.080855][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.086918][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.093068][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.098276][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.103135][T14000] do_SYSENTER_32+0x73/0x90 [ 617.107636][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.113948][T14000] [ 617.116878][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 617.123549][T14000] do_recvmmsg+0xc5/0x1ee0 [ 617.127963][T14000] do_recvmmsg+0xc5/0x1ee0 [ 617.313207][T14000] not chained 2070000 origins [ 617.317932][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 617.326596][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.336644][T14000] Call Trace: [ 617.339939][T14000] dump_stack+0x1df/0x240 [ 617.348451][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 617.354185][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 617.359298][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 617.364409][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 617.370222][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 617.376285][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 617.381339][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 617.386452][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 617.392003][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.398077][T14000] ? _copy_from_user+0x15b/0x260 [ 617.403265][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 617.408531][T14000] __msan_chain_origin+0x50/0x90 [ 617.413486][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.418614][T14000] get_compat_msghdr+0x108/0x270 [ 617.423565][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.428079][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 617.433726][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 617.438837][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 617.444571][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 617.449952][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 617.454714][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 617.459480][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 617.464680][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.469367][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.475444][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 617.481687][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.487840][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.493052][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.497909][T14000] do_SYSENTER_32+0x73/0x90 [ 617.502498][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.508818][T14000] RIP: 0023:0xf7fd1549 [ 617.512874][T14000] Code: Bad RIP value. [ 617.516928][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 617.525433][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 617.533399][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 617.541368][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 617.549332][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 617.557298][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 617.565272][T14000] Uninit was stored to memory at: [ 617.570296][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.576013][T14000] __msan_chain_origin+0x50/0x90 [ 617.580960][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.586067][T14000] get_compat_msghdr+0x108/0x270 [ 617.591001][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.595607][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.600289][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.606351][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.612502][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.617697][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.622544][T14000] do_SYSENTER_32+0x73/0x90 [ 617.627048][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.633359][T14000] [ 617.635675][T14000] Uninit was stored to memory at: [ 617.640692][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.646403][T14000] __msan_chain_origin+0x50/0x90 [ 617.651341][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.656448][T14000] get_compat_msghdr+0x108/0x270 [ 617.661383][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.665880][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.670552][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.676616][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.682872][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.688068][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.692913][T14000] do_SYSENTER_32+0x73/0x90 [ 617.697415][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.703723][T14000] [ 617.706052][T14000] Uninit was stored to memory at: [ 617.711072][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.716783][T14000] __msan_chain_origin+0x50/0x90 [ 617.721719][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.726827][T14000] get_compat_msghdr+0x108/0x270 [ 617.731763][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.736271][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.741045][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.747109][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.753277][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.758483][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.763349][T14000] do_SYSENTER_32+0x73/0x90 [ 617.767967][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.774279][T14000] [ 617.776599][T14000] Uninit was stored to memory at: [ 617.781722][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.787436][T14000] __msan_chain_origin+0x50/0x90 [ 617.792373][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.797478][T14000] get_compat_msghdr+0x108/0x270 [ 617.802410][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.806911][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.811591][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.817653][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.823803][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.828998][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.833843][T14000] do_SYSENTER_32+0x73/0x90 [ 617.838344][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.844661][T14000] [ 617.846996][T14000] Uninit was stored to memory at: [ 617.852018][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.857731][T14000] __msan_chain_origin+0x50/0x90 [ 617.862665][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.867777][T14000] get_compat_msghdr+0x108/0x270 [ 617.872713][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.877213][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.881884][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.887954][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.894102][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.899305][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.904153][T14000] do_SYSENTER_32+0x73/0x90 [ 617.908659][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.914969][T14000] [ 617.917295][T14000] Uninit was stored to memory at: [ 617.922337][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.928051][T14000] __msan_chain_origin+0x50/0x90 [ 617.932992][T14000] __get_compat_msghdr+0x5be/0x890 [ 617.938099][T14000] get_compat_msghdr+0x108/0x270 [ 617.943033][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 617.947532][T14000] __sys_recvmmsg+0x4ca/0x510 [ 617.952204][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.958268][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.964418][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 617.969611][T14000] do_fast_syscall_32+0x6b/0xd0 [ 617.974458][T14000] do_SYSENTER_32+0x73/0x90 [ 617.978955][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.985267][T14000] [ 617.987600][T14000] Uninit was stored to memory at: [ 617.992620][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 617.998332][T14000] __msan_chain_origin+0x50/0x90 [ 618.003266][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.008371][T14000] get_compat_msghdr+0x108/0x270 [ 618.013314][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.017822][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.022529][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.028593][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.034745][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.039941][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.044789][T14000] do_SYSENTER_32+0x73/0x90 [ 618.049283][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.055591][T14000] [ 618.057916][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 618.064584][T14000] do_recvmmsg+0xc5/0x1ee0 [ 618.068994][T14000] do_recvmmsg+0xc5/0x1ee0 [ 618.261131][T14000] not chained 2080000 origins [ 618.265848][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 618.274515][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 618.284567][T14000] Call Trace: [ 618.287860][T14000] dump_stack+0x1df/0x240 [ 618.292196][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 618.297921][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 618.303033][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 618.308153][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 618.313971][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 618.320046][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 618.324993][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 618.330107][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 618.335653][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 618.341726][T14000] ? _copy_from_user+0x15b/0x260 [ 618.346661][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 618.351772][T14000] __msan_chain_origin+0x50/0x90 [ 618.356713][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.361841][T14000] get_compat_msghdr+0x108/0x270 [ 618.366785][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.371299][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 618.376944][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 618.382060][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 618.387693][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 618.393073][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 618.397834][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 618.402597][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 618.407794][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.412477][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.418543][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 618.424778][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.430936][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.436143][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.441001][T14000] do_SYSENTER_32+0x73/0x90 [ 618.445504][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.451828][T14000] RIP: 0023:0xf7fd1549 [ 618.455880][T14000] Code: Bad RIP value. [ 618.459940][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 618.468347][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 618.476400][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 618.484365][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 618.492328][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 618.500294][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 618.508265][T14000] Uninit was stored to memory at: [ 618.513291][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.519010][T14000] __msan_chain_origin+0x50/0x90 [ 618.523947][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.529057][T14000] get_compat_msghdr+0x108/0x270 [ 618.533993][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.538492][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.543165][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.549226][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.555384][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.560579][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.565431][T14000] do_SYSENTER_32+0x73/0x90 [ 618.569931][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.576246][T14000] [ 618.578564][T14000] Uninit was stored to memory at: [ 618.583588][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.589303][T14000] __msan_chain_origin+0x50/0x90 [ 618.594240][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.599419][T14000] get_compat_msghdr+0x108/0x270 [ 618.604440][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.608936][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.613607][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.619678][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.626105][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.632035][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.636888][T14000] do_SYSENTER_32+0x73/0x90 [ 618.641399][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.647716][T14000] [ 618.650035][T14000] Uninit was stored to memory at: [ 618.655057][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.660771][T14000] __msan_chain_origin+0x50/0x90 [ 618.665715][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.670832][T14000] get_compat_msghdr+0x108/0x270 [ 618.675768][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.680268][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.684942][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.691058][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.697225][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.702439][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.707291][T14000] do_SYSENTER_32+0x73/0x90 [ 618.711799][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.718206][T14000] [ 618.720524][T14000] Uninit was stored to memory at: [ 618.725561][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.731295][T14000] __msan_chain_origin+0x50/0x90 [ 618.736252][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.741381][T14000] get_compat_msghdr+0x108/0x270 [ 618.746327][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.750838][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.755518][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.761587][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.767828][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.773028][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.777900][T14000] do_SYSENTER_32+0x73/0x90 [ 618.782408][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.788934][T14000] [ 618.791266][T14000] Uninit was stored to memory at: [ 618.796297][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.802029][T14000] __msan_chain_origin+0x50/0x90 [ 618.806974][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.812087][T14000] get_compat_msghdr+0x108/0x270 [ 618.817030][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.821530][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.826209][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.832388][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.838546][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.843741][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.848584][T14000] do_SYSENTER_32+0x73/0x90 [ 618.853081][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.859394][T14000] [ 618.861710][T14000] Uninit was stored to memory at: [ 618.866748][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.872467][T14000] __msan_chain_origin+0x50/0x90 [ 618.877403][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.882510][T14000] get_compat_msghdr+0x108/0x270 [ 618.887457][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.891956][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.896635][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.902788][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.908943][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.914146][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.919023][T14000] do_SYSENTER_32+0x73/0x90 [ 618.923528][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.929848][T14000] [ 618.932168][T14000] Uninit was stored to memory at: [ 618.937200][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 618.942918][T14000] __msan_chain_origin+0x50/0x90 [ 618.947864][T14000] __get_compat_msghdr+0x5be/0x890 [ 618.952976][T14000] get_compat_msghdr+0x108/0x270 [ 618.957913][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 618.962421][T14000] __sys_recvmmsg+0x4ca/0x510 [ 618.967092][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.973157][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.979328][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 618.984536][T14000] do_fast_syscall_32+0x6b/0xd0 [ 618.989429][T14000] do_SYSENTER_32+0x73/0x90 [ 618.993940][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.000261][T14000] [ 619.002586][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 619.009256][T14000] do_recvmmsg+0xc5/0x1ee0 [ 619.013669][T14000] do_recvmmsg+0xc5/0x1ee0 [ 619.204402][T14000] not chained 2090000 origins [ 619.209131][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 619.217800][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.227851][T14000] Call Trace: [ 619.231143][T14000] dump_stack+0x1df/0x240 [ 619.235482][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 619.241206][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 619.246353][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 619.251465][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 619.257273][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 619.263335][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 619.268274][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 619.273388][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 619.278936][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.285004][T14000] ? _copy_from_user+0x15b/0x260 [ 619.289941][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 619.295052][T14000] __msan_chain_origin+0x50/0x90 [ 619.300004][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.305132][T14000] get_compat_msghdr+0x108/0x270 [ 619.310091][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.314613][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 619.320263][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 619.325377][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 619.331011][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 619.336297][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 619.341063][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 619.345824][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 619.351020][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.355709][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.361780][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 619.368021][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.374175][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.379381][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.384233][T14000] do_SYSENTER_32+0x73/0x90 [ 619.388735][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.395053][T14000] RIP: 0023:0xf7fd1549 [ 619.399107][T14000] Code: Bad RIP value. [ 619.403161][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 619.411569][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 619.419535][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 619.427499][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 619.435465][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 619.443425][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 619.451379][T14000] Uninit was stored to memory at: [ 619.457268][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.462962][T14000] __msan_chain_origin+0x50/0x90 [ 619.467874][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.472957][T14000] get_compat_msghdr+0x108/0x270 [ 619.477868][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.482393][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.487052][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.493098][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.499234][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.504415][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.509239][T14000] do_SYSENTER_32+0x73/0x90 [ 619.513722][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.520450][T14000] [ 619.522751][T14000] Uninit was stored to memory at: [ 619.527750][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.533444][T14000] __msan_chain_origin+0x50/0x90 [ 619.538366][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.543461][T14000] get_compat_msghdr+0x108/0x270 [ 619.548377][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.552898][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.557546][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.563582][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.569709][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.574879][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.579704][T14000] do_SYSENTER_32+0x73/0x90 [ 619.584182][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.590473][T14000] [ 619.592773][T14000] Uninit was stored to memory at: [ 619.597770][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.603459][T14000] __msan_chain_origin+0x50/0x90 [ 619.608487][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.613585][T14000] get_compat_msghdr+0x108/0x270 [ 619.618521][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.622999][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.627646][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.633683][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.639825][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.644997][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.649909][T14000] do_SYSENTER_32+0x73/0x90 [ 619.654386][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.660678][T14000] [ 619.662980][T14000] Uninit was stored to memory at: [ 619.667976][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.673686][T14000] __msan_chain_origin+0x50/0x90 [ 619.678599][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.683683][T14000] get_compat_msghdr+0x108/0x270 [ 619.688592][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.693066][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.697744][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.703867][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.709993][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.715183][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.720006][T14000] do_SYSENTER_32+0x73/0x90 [ 619.724480][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.730771][T14000] [ 619.733071][T14000] Uninit was stored to memory at: [ 619.738068][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.743757][T14000] __msan_chain_origin+0x50/0x90 [ 619.748670][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.753759][T14000] get_compat_msghdr+0x108/0x270 [ 619.758776][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.763256][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.767908][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.773949][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.780092][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.785263][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.790086][T14000] do_SYSENTER_32+0x73/0x90 [ 619.794576][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.800869][T14000] [ 619.803170][T14000] Uninit was stored to memory at: [ 619.808168][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.813868][T14000] __msan_chain_origin+0x50/0x90 [ 619.818779][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.823863][T14000] get_compat_msghdr+0x108/0x270 [ 619.828794][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.833379][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.838030][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.844073][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.850289][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.855467][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.860291][T14000] do_SYSENTER_32+0x73/0x90 [ 619.864771][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.871847][T14000] [ 619.874148][T14000] Uninit was stored to memory at: [ 619.879149][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 619.884848][T14000] __msan_chain_origin+0x50/0x90 [ 619.889773][T14000] __get_compat_msghdr+0x5be/0x890 [ 619.894857][T14000] get_compat_msghdr+0x108/0x270 [ 619.899770][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 619.904251][T14000] __sys_recvmmsg+0x4ca/0x510 [ 619.908924][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.914964][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.921090][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 619.926260][T14000] do_fast_syscall_32+0x6b/0xd0 [ 619.931195][T14000] do_SYSENTER_32+0x73/0x90 [ 619.935685][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.941984][T14000] [ 619.944286][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 619.950935][T14000] do_recvmmsg+0xc5/0x1ee0 [ 619.955326][T14000] do_recvmmsg+0xc5/0x1ee0 [ 620.139284][T14000] not chained 2100000 origins [ 620.143999][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 620.152663][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 620.162713][T14000] Call Trace: [ 620.166008][T14000] dump_stack+0x1df/0x240 [ 620.170518][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 620.176244][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 620.181362][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 620.186470][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 620.192276][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 620.198339][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 620.203280][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 620.208389][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 620.213934][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 620.220003][T14000] ? _copy_from_user+0x15b/0x260 [ 620.224941][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 620.230155][T14000] __msan_chain_origin+0x50/0x90 [ 620.235103][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.240236][T14000] get_compat_msghdr+0x108/0x270 [ 620.245182][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.249694][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 620.255337][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 620.260446][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 620.266089][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 620.271382][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 620.276184][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 620.280960][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 620.286159][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.290851][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.296916][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 620.303167][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.309340][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.314550][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.319411][T14000] do_SYSENTER_32+0x73/0x90 [ 620.323917][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.330241][T14000] RIP: 0023:0xf7fd1549 [ 620.334295][T14000] Code: Bad RIP value. [ 620.338350][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 620.346757][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 620.354723][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 620.362686][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 620.370652][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 620.378618][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 620.386592][T14000] Uninit was stored to memory at: [ 620.391620][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.397336][T14000] __msan_chain_origin+0x50/0x90 [ 620.402271][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.407391][T14000] get_compat_msghdr+0x108/0x270 [ 620.412332][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.416833][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.421510][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.427575][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.433724][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.438920][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.443766][T14000] do_SYSENTER_32+0x73/0x90 [ 620.448268][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.454580][T14000] [ 620.456900][T14000] Uninit was stored to memory at: [ 620.461921][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.467634][T14000] __msan_chain_origin+0x50/0x90 [ 620.472581][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.477687][T14000] get_compat_msghdr+0x108/0x270 [ 620.482621][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.487123][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.491881][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.497939][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.504088][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.509283][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.514218][T14000] do_SYSENTER_32+0x73/0x90 [ 620.518727][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.525036][T14000] [ 620.527362][T14000] Uninit was stored to memory at: [ 620.532386][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.538099][T14000] __msan_chain_origin+0x50/0x90 [ 620.543035][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.548145][T14000] get_compat_msghdr+0x108/0x270 [ 620.553176][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.557673][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.562344][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.568404][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.574553][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.579747][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.584593][T14000] do_SYSENTER_32+0x73/0x90 [ 620.589094][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.595402][T14000] [ 620.597722][T14000] Uninit was stored to memory at: [ 620.602749][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.608466][T14000] __msan_chain_origin+0x50/0x90 [ 620.613405][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.618514][T14000] get_compat_msghdr+0x108/0x270 [ 620.623464][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.627967][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.632640][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.638703][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.644851][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.650053][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.654899][T14000] do_SYSENTER_32+0x73/0x90 [ 620.659396][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.665802][T14000] [ 620.668240][T14000] Uninit was stored to memory at: [ 620.673700][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.679414][T14000] __msan_chain_origin+0x50/0x90 [ 620.684348][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.689462][T14000] get_compat_msghdr+0x108/0x270 [ 620.694398][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.698895][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.703566][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.709629][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.715781][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.720975][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.725819][T14000] do_SYSENTER_32+0x73/0x90 [ 620.730318][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.736630][T14000] [ 620.738946][T14000] Uninit was stored to memory at: [ 620.743967][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.749679][T14000] __msan_chain_origin+0x50/0x90 [ 620.754614][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.759723][T14000] get_compat_msghdr+0x108/0x270 [ 620.764660][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.769157][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.773862][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.779925][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.786342][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.791543][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.796390][T14000] do_SYSENTER_32+0x73/0x90 [ 620.800890][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.807224][T14000] [ 620.809542][T14000] Uninit was stored to memory at: [ 620.814562][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 620.820274][T14000] __msan_chain_origin+0x50/0x90 [ 620.825205][T14000] __get_compat_msghdr+0x5be/0x890 [ 620.830312][T14000] get_compat_msghdr+0x108/0x270 [ 620.835244][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 620.839743][T14000] __sys_recvmmsg+0x4ca/0x510 [ 620.844419][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.850479][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.856714][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 620.861912][T14000] do_fast_syscall_32+0x6b/0xd0 [ 620.866766][T14000] do_SYSENTER_32+0x73/0x90 [ 620.871264][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.877575][T14000] [ 620.879894][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 620.886561][T14000] do_recvmmsg+0xc5/0x1ee0 [ 620.890973][T14000] do_recvmmsg+0xc5/0x1ee0 [ 621.141333][T14000] not chained 2110000 origins [ 621.146131][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 621.154792][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.164839][T14000] Call Trace: [ 621.168131][T14000] dump_stack+0x1df/0x240 [ 621.172466][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 621.178188][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 621.183386][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 621.188499][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 621.194306][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 621.200389][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 621.205326][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 621.210435][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 621.215980][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.222051][T14000] ? _copy_from_user+0x15b/0x260 [ 621.226983][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 621.232090][T14000] __msan_chain_origin+0x50/0x90 [ 621.237027][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.242151][T14000] get_compat_msghdr+0x108/0x270 [ 621.247092][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.251601][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 621.257246][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 621.262355][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 621.267984][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 621.273289][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 621.278062][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 621.282829][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 621.288029][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.292718][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.298785][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 621.305030][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.311193][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.316401][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.321260][T14000] do_SYSENTER_32+0x73/0x90 [ 621.325760][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.334430][T14000] RIP: 0023:0xf7fd1549 [ 621.338571][T14000] Code: Bad RIP value. [ 621.342630][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 621.351039][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 621.359005][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 621.367056][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 621.375019][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 621.383158][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 621.391129][T14000] Uninit was stored to memory at: [ 621.396155][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.401872][T14000] __msan_chain_origin+0x50/0x90 [ 621.406808][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.411916][T14000] get_compat_msghdr+0x108/0x270 [ 621.416850][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.421348][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.426020][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.432079][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.438230][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.443430][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.448276][T14000] do_SYSENTER_32+0x73/0x90 [ 621.452775][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.459086][T14000] [ 621.461488][T14000] Uninit was stored to memory at: [ 621.466507][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.472232][T14000] __msan_chain_origin+0x50/0x90 [ 621.477166][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.482302][T14000] get_compat_msghdr+0x108/0x270 [ 621.487233][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.491731][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.496401][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.502464][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.508609][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.513801][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.518647][T14000] do_SYSENTER_32+0x73/0x90 [ 621.523144][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.529538][T14000] [ 621.531855][T14000] Uninit was stored to memory at: [ 621.536872][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.542673][T14000] __msan_chain_origin+0x50/0x90 [ 621.547608][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.552715][T14000] get_compat_msghdr+0x108/0x270 [ 621.557647][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.562146][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.566819][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.572880][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.579054][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.584250][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.589095][T14000] do_SYSENTER_32+0x73/0x90 [ 621.593592][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.599913][T14000] [ 621.602243][T14000] Uninit was stored to memory at: [ 621.607262][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.612975][T14000] __msan_chain_origin+0x50/0x90 [ 621.617910][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.623102][T14000] get_compat_msghdr+0x108/0x270 [ 621.628127][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.632644][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.637315][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.643374][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.649542][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.654735][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.659592][T14000] do_SYSENTER_32+0x73/0x90 [ 621.664526][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.670833][T14000] [ 621.673164][T14000] Uninit was stored to memory at: [ 621.678186][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.683900][T14000] __msan_chain_origin+0x50/0x90 [ 621.688833][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.693938][T14000] get_compat_msghdr+0x108/0x270 [ 621.698876][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.703375][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.708048][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.714110][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.720265][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.725466][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.730314][T14000] do_SYSENTER_32+0x73/0x90 [ 621.734818][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.741131][T14000] [ 621.743449][T14000] Uninit was stored to memory at: [ 621.750816][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.756546][T14000] __msan_chain_origin+0x50/0x90 [ 621.761490][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.766602][T14000] get_compat_msghdr+0x108/0x270 [ 621.771542][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.776044][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.780717][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.786781][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.792932][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.798135][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.802985][T14000] do_SYSENTER_32+0x73/0x90 [ 621.807486][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.813800][T14000] [ 621.816124][T14000] Uninit was stored to memory at: [ 621.821185][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 621.826902][T14000] __msan_chain_origin+0x50/0x90 [ 621.831845][T14000] __get_compat_msghdr+0x5be/0x890 [ 621.836958][T14000] get_compat_msghdr+0x108/0x270 [ 621.841896][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 621.846401][T14000] __sys_recvmmsg+0x4ca/0x510 [ 621.851083][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.857148][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.863315][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 621.868522][T14000] do_fast_syscall_32+0x6b/0xd0 [ 621.873374][T14000] do_SYSENTER_32+0x73/0x90 [ 621.877875][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.884189][T14000] [ 621.886517][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 621.893197][T14000] do_recvmmsg+0xc5/0x1ee0 [ 621.897616][T14000] do_recvmmsg+0xc5/0x1ee0 [ 622.126104][T14000] not chained 2120000 origins [ 622.130959][T14000] CPU: 0 PID: 14000 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 622.139617][T14000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.150363][T14000] Call Trace: [ 622.153649][T14000] dump_stack+0x1df/0x240 [ 622.157971][T14000] kmsan_internal_chain_origin+0x6f/0x130 [ 622.163677][T14000] ? skb_recv_datagram+0x3ec/0x480 [ 622.168774][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 622.173934][T14000] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 622.179728][T14000] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 622.185780][T14000] ? bt_sock_recvmsg+0x564/0xa00 [ 622.191491][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 622.196597][T14000] ? kmsan_set_origin_checked+0x95/0xf0 [ 622.202308][T14000] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.208546][T14000] ? _copy_from_user+0x15b/0x260 [ 622.213482][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 622.218585][T14000] __msan_chain_origin+0x50/0x90 [ 622.223515][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.228623][T14000] get_compat_msghdr+0x108/0x270 [ 622.233555][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.238055][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 622.243752][T14000] ? kmsan_get_metadata+0x4f/0x180 [ 622.248850][T14000] ? kmsan_internal_set_origin+0x75/0xb0 [ 622.254595][T14000] ? __msan_poison_alloca+0xf0/0x120 [ 622.259869][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 622.264620][T14000] ? __sys_recvmmsg+0xb4/0x510 [ 622.269370][T14000] ? kmsan_get_metadata+0x11d/0x180 [ 622.274555][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.279221][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.285303][T14000] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 622.291703][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.297907][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.303148][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.308082][T14000] do_SYSENTER_32+0x73/0x90 [ 622.312582][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.318905][T14000] RIP: 0023:0xf7fd1549 [ 622.322956][T14000] Code: Bad RIP value. [ 622.327083][T14000] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 622.335601][T14000] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 622.343567][T14000] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 622.351530][T14000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 622.359547][T14000] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 622.367507][T14000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 622.375479][T14000] Uninit was stored to memory at: [ 622.380549][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.386250][T14000] __msan_chain_origin+0x50/0x90 [ 622.397078][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.402174][T14000] get_compat_msghdr+0x108/0x270 [ 622.407097][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.411650][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.416313][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.422548][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.428688][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.433873][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.438709][T14000] do_SYSENTER_32+0x73/0x90 [ 622.443197][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.449586][T14000] [ 622.451895][T14000] Uninit was stored to memory at: [ 622.456902][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.462690][T14000] __msan_chain_origin+0x50/0x90 [ 622.467618][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.472714][T14000] get_compat_msghdr+0x108/0x270 [ 622.477636][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.482125][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.486785][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.492922][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.499059][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.504242][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.509079][T14000] do_SYSENTER_32+0x73/0x90 [ 622.513565][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.519869][T14000] [ 622.522179][T14000] Uninit was stored to memory at: [ 622.527361][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.533066][T14000] __msan_chain_origin+0x50/0x90 [ 622.537990][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.543087][T14000] get_compat_msghdr+0x108/0x270 [ 622.548011][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.552499][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.557166][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.563218][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.569379][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.574565][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.579403][T14000] do_SYSENTER_32+0x73/0x90 [ 622.583897][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.590203][T14000] [ 622.592574][T14000] Uninit was stored to memory at: [ 622.597680][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.603474][T14000] __msan_chain_origin+0x50/0x90 [ 622.608400][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.613496][T14000] get_compat_msghdr+0x108/0x270 [ 622.618423][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.623177][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.627924][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.633971][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.640122][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.645302][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.650138][T14000] do_SYSENTER_32+0x73/0x90 [ 622.654624][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.660926][T14000] [ 622.663237][T14000] Uninit was stored to memory at: [ 622.668386][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.674089][T14000] __msan_chain_origin+0x50/0x90 [ 622.679013][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.684109][T14000] get_compat_msghdr+0x108/0x270 [ 622.689035][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.693588][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.698338][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.704386][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.710645][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.715828][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.720753][T14000] do_SYSENTER_32+0x73/0x90 [ 622.726293][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.732596][T14000] [ 622.734907][T14000] Uninit was stored to memory at: [ 622.740089][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.745790][T14000] __msan_chain_origin+0x50/0x90 [ 622.750714][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.755878][T14000] get_compat_msghdr+0x108/0x270 [ 622.760801][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.765288][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.770039][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.776096][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.782233][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.787575][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.792411][T14000] do_SYSENTER_32+0x73/0x90 [ 622.796897][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.803201][T14000] [ 622.805513][T14000] Uninit was stored to memory at: [ 622.810520][T14000] kmsan_internal_chain_origin+0xad/0x130 [ 622.816306][T14000] __msan_chain_origin+0x50/0x90 [ 622.821225][T14000] __get_compat_msghdr+0x5be/0x890 [ 622.826336][T14000] get_compat_msghdr+0x108/0x270 [ 622.831271][T14000] do_recvmmsg+0xa6a/0x1ee0 [ 622.835845][T14000] __sys_recvmmsg+0x4ca/0x510 [ 622.840591][T14000] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.846676][T14000] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.852816][T14000] __do_fast_syscall_32+0x2aa/0x400 [ 622.858002][T14000] do_fast_syscall_32+0x6b/0xd0 [ 622.862835][T14000] do_SYSENTER_32+0x73/0x90 [ 622.867327][T14000] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.873676][T14000] [ 622.875990][T14000] Local variable ----msg_sys@do_recvmmsg created at: [ 622.882734][T14000] do_recvmmsg+0xc5/0x1ee0 [ 622.887151][T14000] do_recvmmsg+0xc5/0x1ee0 01:22:25 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:22:25 executing program 2: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8d, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000041c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000bc0)=""/98, 0x62}, 0x405}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000500)) write$P9_RGETLOCK(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="3500000000aa1900000000000a0000000800000000000000cabccf258f89fc6d85a8c395aa018d83e0c6356cc7e99c74d427ae852bf95b80b95c85957da97fba0896741c3b4a18e6934167ddbe0c0570d3438eccb779ee1311dcdfdf829060face36020a87829ad8dc6794ba8425204fd2014fcb7feb8c886459fe1c0d6e07cda33131a6a09c45c70cf070478828dd436506c7f9e71402c4c9f4a71128e7727ee3582fe45a878994ce3dab322c7846ef0af2772489d8", @ANYRES32, @ANYBLOB="17007573657ac194cad36d8e047cd054613d26efaada8aea06"], 0x35) ioctl$IOC_PR_CLEAR(r3, 0x401070cd, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3}, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x363) r4 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x49b00, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x0, 0xffff}, 0x0, 0x2, r4, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_dev$usbfs(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x4000000000000071, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 01:22:25 executing program 1: r0 = getpgid(0x0) r1 = perf_event_open(&(0x7f0000000700)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003980), 0x40000000000012b, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0x5, 0x9, 0x9, 0x40, 0x0, 0x404f, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xe9b, 0x4, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x7, 0x1000, 0x0, 0x0, 0x0, 0x3}, r0, 0xe, r1, 0x1) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x40, 0x0) ioctl$PPPIOCSFLAGS1(r4, 0x40047459, &(0x7f0000000380)) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x2, 0x0) r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r7, &(0x7f00000017c0), 0x218, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468000000001800020014"], 0x48}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="4800000024000705000000000000000000001f00", @ANYRES32=r8, @ANYBLOB="00000400f1ffffff0000000008000100687462001c0002001800020003000000000100000000"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=@delchain={0x70, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x900}, {0x0, 0xffff}}, [@filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x40, 0x2, [@TCA_CGROUP_ACT={0x3c, 0x1, [@m_xt={0x38, 0x0, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x28, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x4}}}]}]}}]}, 0x70}}, 0x0) 01:22:25 executing program 3: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_QUERYCTRL(r0, 0xc0445624, &(0x7f00000002c0)={0xfffffffb, 0x0, "70cac08180a7105da6ea6a26db2814f5136f4cfbb4acd33fc47126af09b7b3d8"}) 01:22:25 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:22:25 executing program 4: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r1, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x30009, 0x0) [ 623.216222][T14033] HTB: quantum of class FFFF0900 is small. Consider r2q change. 01:22:26 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8d, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000041c0)=[{{&(0x7f0000000780)=@xdp, 0x80, 0x0, 0x0, &(0x7f0000000bc0)=""/98, 0x62}, 0x405}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) write$P9_RGETLOCK(r2, &(0x7f00000003c0)=ANY=[@ANYRESOCT, @ANYRES32, @ANYRESHEX=r0], 0x35) ioctl$IOC_PR_CLEAR(r3, 0x401070cd, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3}, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x363) r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x0, 0xffff}, 0x0, 0x2, r4, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syz_open_dev$usbfs(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x4000000000000071, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 01:22:26 executing program 2: 01:22:26 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:22:26 executing program 1: 01:22:26 executing program 2: 01:22:26 executing program 3: [ 624.395132][T14055] not chained 2130000 origins [ 624.400043][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 624.408728][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.418887][T14055] Call Trace: [ 624.422286][T14055] dump_stack+0x1df/0x240 [ 624.426751][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 624.432495][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 624.437625][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 624.442894][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 624.448720][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 624.454893][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 624.459861][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 624.465086][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 624.470648][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.476819][T14055] ? _copy_from_user+0x15b/0x260 [ 624.481773][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 624.486898][T14055] __msan_chain_origin+0x50/0x90 [ 624.491886][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.497036][T14055] get_compat_msghdr+0x108/0x270 [ 624.502000][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.506675][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 624.512767][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 624.518428][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 624.523552][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 624.529200][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 624.534507][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 624.539284][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 624.544060][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 624.549287][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.553988][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.560161][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 624.566673][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.572838][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.578142][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.583212][T14055] do_SYSENTER_32+0x73/0x90 [ 624.587815][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.594152][T14055] RIP: 0023:0xf7fd1549 [ 624.598335][T14055] Code: Bad RIP value. [ 624.602407][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 624.610826][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 624.618809][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 624.626793][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 624.634775][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 624.643058][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 624.651138][T14055] Uninit was stored to memory at: [ 624.656313][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 624.662131][T14055] __msan_chain_origin+0x50/0x90 [ 624.667214][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.672338][T14055] get_compat_msghdr+0x108/0x270 [ 624.677314][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.681825][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.686543][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.692657][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.698824][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.704050][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.709063][T14055] do_SYSENTER_32+0x73/0x90 [ 624.713578][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.720013][T14055] [ 624.722432][T14055] Uninit was stored to memory at: [ 624.727474][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 624.733204][T14055] __msan_chain_origin+0x50/0x90 [ 624.738163][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.743290][T14055] get_compat_msghdr+0x108/0x270 [ 624.748239][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.752756][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.757446][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.763526][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.769832][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.775044][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.779923][T14055] do_SYSENTER_32+0x73/0x90 [ 624.784447][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.790771][T14055] [ 624.793103][T14055] Uninit was stored to memory at: [ 624.798145][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 624.803878][T14055] __msan_chain_origin+0x50/0x90 [ 624.808833][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.813960][T14055] get_compat_msghdr+0x108/0x270 [ 624.818910][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.823436][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.828126][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.834203][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.840370][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.845708][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.850576][T14055] do_SYSENTER_32+0x73/0x90 [ 624.855097][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.861544][T14055] [ 624.863880][T14055] Uninit was stored to memory at: [ 624.868926][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 624.874663][T14055] __msan_chain_origin+0x50/0x90 [ 624.879617][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.884830][T14055] get_compat_msghdr+0x108/0x270 [ 624.889779][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.895510][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.900200][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.906280][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.912452][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.917695][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.922569][T14055] do_SYSENTER_32+0x73/0x90 [ 624.927093][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.933420][T14055] [ 624.935752][T14055] Uninit was stored to memory at: [ 624.940790][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 624.946611][T14055] __msan_chain_origin+0x50/0x90 [ 624.951595][T14055] __get_compat_msghdr+0x5be/0x890 [ 624.956817][T14055] get_compat_msghdr+0x108/0x270 [ 624.961771][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 624.966288][T14055] __sys_recvmmsg+0x4ca/0x510 [ 624.971110][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.977195][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.983530][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 624.988750][T14055] do_fast_syscall_32+0x6b/0xd0 [ 624.993621][T14055] do_SYSENTER_32+0x73/0x90 [ 624.998172][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.004498][T14055] [ 625.006835][T14055] Uninit was stored to memory at: [ 625.011877][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 625.017729][T14055] __msan_chain_origin+0x50/0x90 [ 625.022688][T14055] __get_compat_msghdr+0x5be/0x890 [ 625.027822][T14055] get_compat_msghdr+0x108/0x270 [ 625.032779][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 625.037299][T14055] __sys_recvmmsg+0x4ca/0x510 [ 625.041998][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.048079][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.054244][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 625.059463][T14055] do_fast_syscall_32+0x6b/0xd0 [ 625.064334][T14055] do_SYSENTER_32+0x73/0x90 [ 625.068854][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.075180][T14055] [ 625.077515][T14055] Uninit was stored to memory at: [ 625.082557][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 625.088292][T14055] __msan_chain_origin+0x50/0x90 [ 625.093245][T14055] __get_compat_msghdr+0x5be/0x890 [ 625.098372][T14055] get_compat_msghdr+0x108/0x270 [ 625.103321][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 625.107832][T14055] __sys_recvmmsg+0x4ca/0x510 [ 625.112657][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.118734][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.124897][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 625.130094][T14055] do_fast_syscall_32+0x6b/0xd0 [ 625.134946][T14055] do_SYSENTER_32+0x73/0x90 [ 625.139449][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.145803][T14055] [ 625.148125][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 625.154796][T14055] do_recvmmsg+0xc5/0x1ee0 [ 625.159210][T14055] do_recvmmsg+0xc5/0x1ee0 [ 625.939008][T14055] not chained 2140000 origins [ 625.943887][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 625.952744][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 625.962897][T14055] Call Trace: [ 625.966208][T14055] dump_stack+0x1df/0x240 [ 625.970561][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 625.976302][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 625.981433][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 625.986653][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 625.992475][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 625.998553][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 626.003508][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 626.008644][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 626.014206][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.020293][T14055] ? _copy_from_user+0x15b/0x260 [ 626.025330][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 626.030459][T14055] __msan_chain_origin+0x50/0x90 [ 626.035415][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.040650][T14055] get_compat_msghdr+0x108/0x270 [ 626.045613][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.050134][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 626.056229][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 626.061889][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 626.067024][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 626.072677][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 626.077983][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 626.082844][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 626.087780][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 626.092994][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.097697][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.103869][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 626.110123][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.118640][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.123863][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.128732][T14055] do_SYSENTER_32+0x73/0x90 [ 626.133247][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.139579][T14055] RIP: 0023:0xf7fd1549 [ 626.143653][T14055] Code: Bad RIP value. [ 626.147724][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 626.156240][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 626.164223][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 626.172206][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 626.180328][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 626.188445][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 626.196436][T14055] Uninit was stored to memory at: [ 626.201477][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.207344][T14055] __msan_chain_origin+0x50/0x90 [ 626.212297][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.217419][T14055] get_compat_msghdr+0x108/0x270 [ 626.222526][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.227037][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.231727][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.237889][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.244049][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.249257][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.254116][T14055] do_SYSENTER_32+0x73/0x90 [ 626.258636][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.264958][T14055] [ 626.267285][T14055] Uninit was stored to memory at: [ 626.272471][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.279005][T14055] __msan_chain_origin+0x50/0x90 [ 626.283968][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.289095][T14055] get_compat_msghdr+0x108/0x270 [ 626.294046][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.298561][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.303246][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.309446][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.315916][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.321215][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.326077][T14055] do_SYSENTER_32+0x73/0x90 [ 626.330590][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.336911][T14055] [ 626.339332][T14055] Uninit was stored to memory at: [ 626.344365][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.350093][T14055] __msan_chain_origin+0x50/0x90 [ 626.355043][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.360169][T14055] get_compat_msghdr+0x108/0x270 [ 626.365200][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.369711][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.374395][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.380765][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.386928][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.392328][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.397187][T14055] do_SYSENTER_32+0x73/0x90 [ 626.401696][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.408018][T14055] [ 626.410349][T14055] Uninit was stored to memory at: [ 626.415383][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.421128][T14055] __msan_chain_origin+0x50/0x90 [ 626.426082][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.431291][T14055] get_compat_msghdr+0x108/0x270 [ 626.436329][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.440838][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.445532][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.451605][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.457770][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.462977][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.467836][T14055] do_SYSENTER_32+0x73/0x90 [ 626.472348][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.478671][T14055] [ 626.480999][T14055] Uninit was stored to memory at: [ 626.486735][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.492467][T14055] __msan_chain_origin+0x50/0x90 [ 626.497422][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.502542][T14055] get_compat_msghdr+0x108/0x270 [ 626.507491][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.512002][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.516689][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.522766][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.528930][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.534139][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.539001][T14055] do_SYSENTER_32+0x73/0x90 [ 626.543515][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.549926][T14055] [ 626.552259][T14055] Uninit was stored to memory at: [ 626.557293][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.563106][T14055] __msan_chain_origin+0x50/0x90 [ 626.568171][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.573308][T14055] get_compat_msghdr+0x108/0x270 [ 626.578256][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.582767][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.587449][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.593523][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.599683][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.604888][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.609770][T14055] do_SYSENTER_32+0x73/0x90 [ 626.614281][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.620607][T14055] [ 626.622932][T14055] Uninit was stored to memory at: [ 626.627961][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 626.633688][T14055] __msan_chain_origin+0x50/0x90 [ 626.642976][T14055] __get_compat_msghdr+0x5be/0x890 [ 626.648097][T14055] get_compat_msghdr+0x108/0x270 [ 626.653040][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 626.657639][T14055] __sys_recvmmsg+0x4ca/0x510 [ 626.662322][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.668389][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.674575][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 626.679779][T14055] do_fast_syscall_32+0x6b/0xd0 [ 626.684633][T14055] do_SYSENTER_32+0x73/0x90 [ 626.689141][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.695459][T14055] [ 626.697820][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 626.704676][T14055] do_recvmmsg+0xc5/0x1ee0 [ 626.709352][T14055] do_recvmmsg+0xc5/0x1ee0 [ 626.912851][T14055] not chained 2150000 origins [ 626.917582][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 626.926252][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 626.936308][T14055] Call Trace: [ 626.939611][T14055] dump_stack+0x1df/0x240 [ 626.944068][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 626.949889][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 626.955014][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 626.960135][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 626.965946][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 626.972021][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 626.976982][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 626.982102][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 626.987754][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.993837][T14055] ? _copy_from_user+0x15b/0x260 [ 626.998785][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 627.003906][T14055] __msan_chain_origin+0x50/0x90 [ 627.008858][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.013993][T14055] get_compat_msghdr+0x108/0x270 [ 627.018956][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.023478][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 627.029549][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 627.035328][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 627.040566][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 627.046291][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 627.051791][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 627.056567][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 627.061337][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 627.066651][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.071347][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.077552][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 627.083807][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.090055][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.095270][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.100128][T14055] do_SYSENTER_32+0x73/0x90 [ 627.104634][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.111077][T14055] RIP: 0023:0xf7fd1549 [ 627.115140][T14055] Code: Bad RIP value. [ 627.119208][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 627.127796][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 627.135890][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 627.143865][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 627.151935][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 627.159911][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 627.167896][T14055] Uninit was stored to memory at: [ 627.172934][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.178747][T14055] __msan_chain_origin+0x50/0x90 [ 627.183870][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.189023][T14055] get_compat_msghdr+0x108/0x270 [ 627.193969][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.198486][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.203422][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.209725][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.215895][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.221215][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.226074][T14055] do_SYSENTER_32+0x73/0x90 [ 627.230589][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.236914][T14055] [ 627.239261][T14055] Uninit was stored to memory at: [ 627.244297][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.250024][T14055] __msan_chain_origin+0x50/0x90 [ 627.254981][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.260106][T14055] get_compat_msghdr+0x108/0x270 [ 627.265051][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.269776][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.274641][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.280916][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.287238][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.292455][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.297323][T14055] do_SYSENTER_32+0x73/0x90 [ 627.301833][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.308158][T14055] [ 627.310669][T14055] Uninit was stored to memory at: [ 627.315844][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.321665][T14055] __msan_chain_origin+0x50/0x90 [ 627.326618][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.331743][T14055] get_compat_msghdr+0x108/0x270 [ 627.336690][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.341201][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.345885][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.352081][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.358388][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.363617][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.368593][T14055] do_SYSENTER_32+0x73/0x90 [ 627.373106][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.379430][T14055] [ 627.381757][T14055] Uninit was stored to memory at: [ 627.386795][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.392640][T14055] __msan_chain_origin+0x50/0x90 [ 627.397590][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.402798][T14055] get_compat_msghdr+0x108/0x270 [ 627.407743][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.412252][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.416940][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.423019][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.429326][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.434540][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.439400][T14055] do_SYSENTER_32+0x73/0x90 [ 627.443918][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.450360][T14055] [ 627.452708][T14055] Uninit was stored to memory at: [ 627.457747][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.463645][T14055] __msan_chain_origin+0x50/0x90 [ 627.468616][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.473736][T14055] get_compat_msghdr+0x108/0x270 [ 627.478685][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.483196][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.487976][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.494053][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.500211][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.505417][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.510277][T14055] do_SYSENTER_32+0x73/0x90 [ 627.514792][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.521119][T14055] [ 627.523454][T14055] Uninit was stored to memory at: [ 627.528489][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.534215][T14055] __msan_chain_origin+0x50/0x90 [ 627.539275][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.544394][T14055] get_compat_msghdr+0x108/0x270 [ 627.549342][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.553859][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.558548][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.564618][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.570783][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.575993][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.580858][T14055] do_SYSENTER_32+0x73/0x90 [ 627.585368][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.591691][T14055] [ 627.594026][T14055] Uninit was stored to memory at: [ 627.599062][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 627.604793][T14055] __msan_chain_origin+0x50/0x90 [ 627.609740][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.614862][T14055] get_compat_msghdr+0x108/0x270 [ 627.619808][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 627.624318][T14055] __sys_recvmmsg+0x4ca/0x510 [ 627.629024][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.635191][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.641361][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 627.646570][T14055] do_fast_syscall_32+0x6b/0xd0 [ 627.651491][T14055] do_SYSENTER_32+0x73/0x90 [ 627.656008][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.662330][T14055] [ 627.664665][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 627.671347][T14055] do_recvmmsg+0xc5/0x1ee0 [ 627.675775][T14055] do_recvmmsg+0xc5/0x1ee0 [ 627.891085][T14055] not chained 2160000 origins [ 627.896017][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 627.904693][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.914754][T14055] Call Trace: [ 627.918062][T14055] dump_stack+0x1df/0x240 [ 627.922410][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 627.928147][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 627.933277][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 627.938403][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 627.944219][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 627.950302][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 627.955255][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 627.960376][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 627.965932][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 627.972021][T14055] ? _copy_from_user+0x15b/0x260 [ 627.977080][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 627.982206][T14055] __msan_chain_origin+0x50/0x90 [ 627.987158][T14055] __get_compat_msghdr+0x5be/0x890 [ 627.992298][T14055] get_compat_msghdr+0x108/0x270 [ 627.997257][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.001778][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 628.007857][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.013515][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 628.018639][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.024286][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 628.029586][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 628.034360][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 628.039134][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 628.044429][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.049123][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.055200][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 628.061450][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.067709][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.072926][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.077878][T14055] do_SYSENTER_32+0x73/0x90 [ 628.082392][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.088851][T14055] RIP: 0023:0xf7fd1549 [ 628.092920][T14055] Code: Bad RIP value. [ 628.096994][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 628.105409][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 628.113388][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 628.121525][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 628.129513][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 628.137495][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 628.145486][T14055] Uninit was stored to memory at: [ 628.150541][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.156268][T14055] __msan_chain_origin+0x50/0x90 [ 628.161218][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.166353][T14055] get_compat_msghdr+0x108/0x270 [ 628.171297][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.175809][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.180576][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.186666][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.192840][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.198047][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.203031][T14055] do_SYSENTER_32+0x73/0x90 [ 628.207540][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.213932][T14055] [ 628.216263][T14055] Uninit was stored to memory at: [ 628.221382][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.227103][T14055] __msan_chain_origin+0x50/0x90 [ 628.232051][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.237178][T14055] get_compat_msghdr+0x108/0x270 [ 628.242214][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.246729][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.251477][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.257564][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.263813][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.269032][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.273902][T14055] do_SYSENTER_32+0x73/0x90 [ 628.278417][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.286302][T14055] [ 628.288790][T14055] Uninit was stored to memory at: [ 628.293989][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.299725][T14055] __msan_chain_origin+0x50/0x90 [ 628.304675][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.309922][T14055] get_compat_msghdr+0x108/0x270 [ 628.314867][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.319377][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.324061][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.330225][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.336476][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.341686][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.346543][T14055] do_SYSENTER_32+0x73/0x90 [ 628.351138][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.357461][T14055] [ 628.359791][T14055] Uninit was stored to memory at: [ 628.365055][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.370788][T14055] __msan_chain_origin+0x50/0x90 [ 628.375735][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.380853][T14055] get_compat_msghdr+0x108/0x270 [ 628.385797][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.390394][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.395077][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.401156][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.407337][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.412545][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.417404][T14055] do_SYSENTER_32+0x73/0x90 [ 628.422127][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.428459][T14055] [ 628.430788][T14055] Uninit was stored to memory at: [ 628.435819][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.441544][T14055] __msan_chain_origin+0x50/0x90 [ 628.446488][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.451720][T14055] get_compat_msghdr+0x108/0x270 [ 628.456661][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.461191][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.465870][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.471942][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.478107][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.483315][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.488299][T14055] do_SYSENTER_32+0x73/0x90 [ 628.492807][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.499134][T14055] [ 628.501560][T14055] Uninit was stored to memory at: [ 628.506592][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.512495][T14055] __msan_chain_origin+0x50/0x90 [ 628.517521][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.522643][T14055] get_compat_msghdr+0x108/0x270 [ 628.527697][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.532206][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.536889][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.542966][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.549125][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.554422][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.559281][T14055] do_SYSENTER_32+0x73/0x90 [ 628.563792][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.570248][T14055] [ 628.572583][T14055] Uninit was stored to memory at: [ 628.577635][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 628.583365][T14055] __msan_chain_origin+0x50/0x90 [ 628.588318][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.593572][T14055] get_compat_msghdr+0x108/0x270 [ 628.598527][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.603037][T14055] __sys_recvmmsg+0x4ca/0x510 [ 628.607720][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 628.613793][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 628.620042][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 628.625246][T14055] do_fast_syscall_32+0x6b/0xd0 [ 628.630104][T14055] do_SYSENTER_32+0x73/0x90 [ 628.634616][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 628.640951][T14055] [ 628.643281][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 628.650085][T14055] do_recvmmsg+0xc5/0x1ee0 [ 628.654513][T14055] do_recvmmsg+0xc5/0x1ee0 [ 628.847026][T14055] not chained 2170000 origins [ 628.851751][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 628.860425][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 628.870574][T14055] Call Trace: [ 628.873880][T14055] dump_stack+0x1df/0x240 [ 628.878224][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 628.884081][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 628.889201][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 628.894323][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 628.900135][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 628.906208][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 628.911160][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 628.916279][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 628.921840][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 628.927923][T14055] ? _copy_from_user+0x15b/0x260 [ 628.932877][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 628.937997][T14055] __msan_chain_origin+0x50/0x90 [ 628.943082][T14055] __get_compat_msghdr+0x5be/0x890 [ 628.948222][T14055] get_compat_msghdr+0x108/0x270 [ 628.953198][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 628.957722][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 628.963799][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.969681][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 628.974805][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 628.980447][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 628.985748][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 628.990609][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 628.995380][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 629.000593][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.005290][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.011371][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 629.017754][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.024047][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.032739][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.037607][T14055] do_SYSENTER_32+0x73/0x90 [ 629.042132][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.048549][T14055] RIP: 0023:0xf7fd1549 [ 629.052706][T14055] Code: Bad RIP value. [ 629.056775][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 629.065192][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 629.073303][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 629.081289][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 629.089340][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 629.097472][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 629.105461][T14055] Uninit was stored to memory at: [ 629.110861][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.116589][T14055] __msan_chain_origin+0x50/0x90 [ 629.121777][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.126894][T14055] get_compat_msghdr+0x108/0x270 [ 629.131843][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.136366][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.141049][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.147326][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.153494][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.158704][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.163564][T14055] do_SYSENTER_32+0x73/0x90 [ 629.168078][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.174399][T14055] [ 629.176729][T14055] Uninit was stored to memory at: [ 629.181851][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.187690][T14055] __msan_chain_origin+0x50/0x90 [ 629.192807][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.197928][T14055] get_compat_msghdr+0x108/0x270 [ 629.202871][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.207384][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.212086][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.218157][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.224492][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.229875][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.234736][T14055] do_SYSENTER_32+0x73/0x90 [ 629.239355][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.245849][T14055] [ 629.248197][T14055] Uninit was stored to memory at: [ 629.253229][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.258950][T14055] __msan_chain_origin+0x50/0x90 [ 629.263898][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.269227][T14055] get_compat_msghdr+0x108/0x270 [ 629.274179][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.278687][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.283488][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.289559][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.295717][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.300925][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.305783][T14055] do_SYSENTER_32+0x73/0x90 [ 629.310469][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.316807][T14055] [ 629.319226][T14055] Uninit was stored to memory at: [ 629.324268][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.330007][T14055] __msan_chain_origin+0x50/0x90 [ 629.334956][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.340075][T14055] get_compat_msghdr+0x108/0x270 [ 629.345016][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.349528][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.354224][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.360291][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.366449][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.371663][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.376520][T14055] do_SYSENTER_32+0x73/0x90 [ 629.381035][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.387353][T14055] [ 629.389695][T14055] Uninit was stored to memory at: [ 629.394727][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.400465][T14055] __msan_chain_origin+0x50/0x90 [ 629.405415][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.410538][T14055] get_compat_msghdr+0x108/0x270 [ 629.415485][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.419997][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.424676][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.430743][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.436920][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.442214][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.447069][T14055] do_SYSENTER_32+0x73/0x90 [ 629.451577][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.457899][T14055] [ 629.460224][T14055] Uninit was stored to memory at: [ 629.465255][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.470980][T14055] __msan_chain_origin+0x50/0x90 [ 629.476053][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.481530][T14055] get_compat_msghdr+0x108/0x270 [ 629.486475][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.491074][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.495757][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.501825][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.508075][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.513281][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.518139][T14055] do_SYSENTER_32+0x73/0x90 [ 629.522735][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.529055][T14055] [ 629.531384][T14055] Uninit was stored to memory at: [ 629.536472][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 629.542199][T14055] __msan_chain_origin+0x50/0x90 [ 629.547142][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.552569][T14055] get_compat_msghdr+0x108/0x270 [ 629.557518][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.562030][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.566712][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.572786][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.579209][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.584438][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.589336][T14055] do_SYSENTER_32+0x73/0x90 [ 629.593849][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.600289][T14055] [ 629.602611][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 629.609376][T14055] do_recvmmsg+0xc5/0x1ee0 [ 629.613799][T14055] do_recvmmsg+0xc5/0x1ee0 [ 629.800429][T14055] not chained 2180000 origins [ 629.805151][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 629.813819][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 629.823874][T14055] Call Trace: [ 629.827173][T14055] dump_stack+0x1df/0x240 [ 629.831651][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 629.837380][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 629.842683][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 629.847823][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 629.853636][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 629.859708][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 629.864655][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 629.869863][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 629.875419][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 629.881502][T14055] ? _copy_from_user+0x15b/0x260 [ 629.886444][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 629.891569][T14055] __msan_chain_origin+0x50/0x90 [ 629.896601][T14055] __get_compat_msghdr+0x5be/0x890 [ 629.901881][T14055] get_compat_msghdr+0x108/0x270 [ 629.906831][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 629.911347][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 629.917425][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 629.923086][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 629.928207][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 629.933934][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 629.939230][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 629.944238][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 629.949004][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 629.954210][T14055] __sys_recvmmsg+0x4ca/0x510 [ 629.958917][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 629.965009][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 629.971258][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 629.977423][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 629.982636][T14055] do_fast_syscall_32+0x6b/0xd0 [ 629.987501][T14055] do_SYSENTER_32+0x73/0x90 [ 629.992013][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 629.998342][T14055] RIP: 0023:0xf7fd1549 [ 630.002415][T14055] Code: Bad RIP value. [ 630.006475][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 630.014897][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 630.022872][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 630.030953][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 630.038924][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 630.046894][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 630.055077][T14055] Uninit was stored to memory at: [ 630.060107][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.065976][T14055] __msan_chain_origin+0x50/0x90 [ 630.070920][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.076039][T14055] get_compat_msghdr+0x108/0x270 [ 630.080991][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.085500][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.090178][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.096248][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.102404][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.107619][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.112580][T14055] do_SYSENTER_32+0x73/0x90 [ 630.117264][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.123588][T14055] [ 630.126006][T14055] Uninit was stored to memory at: [ 630.131122][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.136840][T14055] __msan_chain_origin+0x50/0x90 [ 630.141970][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.147094][T14055] get_compat_msghdr+0x108/0x270 [ 630.152035][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.156541][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.161218][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.167286][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.173449][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.178671][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.183617][T14055] do_SYSENTER_32+0x73/0x90 [ 630.188122][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.194443][T14055] [ 630.196765][T14055] Uninit was stored to memory at: [ 630.201809][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.207527][T14055] __msan_chain_origin+0x50/0x90 [ 630.212491][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.217607][T14055] get_compat_msghdr+0x108/0x270 [ 630.222636][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.227137][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.231815][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.237886][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.244220][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.249441][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.254384][T14055] do_SYSENTER_32+0x73/0x90 [ 630.258887][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.265269][T14055] [ 630.267591][T14055] Uninit was stored to memory at: [ 630.272633][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.278444][T14055] __msan_chain_origin+0x50/0x90 [ 630.283475][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.288589][T14055] get_compat_msghdr+0x108/0x270 [ 630.293618][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.298209][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.302888][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.309044][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.315209][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.320415][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.325292][T14055] do_SYSENTER_32+0x73/0x90 [ 630.333473][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.339878][T14055] [ 630.342205][T14055] Uninit was stored to memory at: [ 630.347252][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.352994][T14055] __msan_chain_origin+0x50/0x90 [ 630.357947][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.363196][T14055] get_compat_msghdr+0x108/0x270 [ 630.368143][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.372653][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.377409][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.383571][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.389732][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.394938][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.399798][T14055] do_SYSENTER_32+0x73/0x90 [ 630.404307][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.410627][T14055] [ 630.412955][T14055] Uninit was stored to memory at: [ 630.417991][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.423804][T14055] __msan_chain_origin+0x50/0x90 [ 630.428750][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.433868][T14055] get_compat_msghdr+0x108/0x270 [ 630.438808][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.443313][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.447995][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.454064][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.460225][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.465429][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.470281][T14055] do_SYSENTER_32+0x73/0x90 [ 630.474786][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.481106][T14055] [ 630.483436][T14055] Uninit was stored to memory at: [ 630.488468][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 630.494277][T14055] __msan_chain_origin+0x50/0x90 [ 630.499227][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.504342][T14055] get_compat_msghdr+0x108/0x270 [ 630.509290][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.513803][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.518489][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.524563][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.530727][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.535933][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.540788][T14055] do_SYSENTER_32+0x73/0x90 [ 630.545293][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.551705][T14055] [ 630.554034][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 630.560714][T14055] do_recvmmsg+0xc5/0x1ee0 [ 630.565167][T14055] do_recvmmsg+0xc5/0x1ee0 [ 630.760385][T14055] not chained 2190000 origins [ 630.765122][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 630.774000][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 630.784181][T14055] Call Trace: [ 630.787490][T14055] dump_stack+0x1df/0x240 [ 630.791830][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 630.797579][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 630.802702][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 630.807822][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 630.813636][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 630.819705][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 630.824649][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 630.829769][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 630.835323][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 630.841398][T14055] ? _copy_from_user+0x15b/0x260 [ 630.846344][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 630.851581][T14055] __msan_chain_origin+0x50/0x90 [ 630.856533][T14055] __get_compat_msghdr+0x5be/0x890 [ 630.861758][T14055] get_compat_msghdr+0x108/0x270 [ 630.866740][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 630.871260][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 630.877339][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 630.883094][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 630.888213][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 630.893859][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 630.899276][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 630.904046][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 630.908814][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 630.914206][T14055] __sys_recvmmsg+0x4ca/0x510 [ 630.918994][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 630.925073][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 630.931324][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 630.937494][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 630.942710][T14055] do_fast_syscall_32+0x6b/0xd0 [ 630.947572][T14055] do_SYSENTER_32+0x73/0x90 [ 630.952082][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 630.958585][T14055] RIP: 0023:0xf7fd1549 [ 630.962739][T14055] Code: Bad RIP value. [ 630.966944][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 630.975359][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 630.983336][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 630.991313][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 630.999378][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 631.007357][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 631.015467][T14055] Uninit was stored to memory at: [ 631.020689][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.026441][T14055] __msan_chain_origin+0x50/0x90 [ 631.031392][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.036566][T14055] get_compat_msghdr+0x108/0x270 [ 631.041533][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.046128][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.050804][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.056875][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.063185][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.068392][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.073369][T14055] do_SYSENTER_32+0x73/0x90 [ 631.077889][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.084208][T14055] [ 631.086674][T14055] Uninit was stored to memory at: [ 631.091713][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.097451][T14055] __msan_chain_origin+0x50/0x90 [ 631.102405][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.107923][T14055] get_compat_msghdr+0x108/0x270 [ 631.112968][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.117479][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.122184][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.128373][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.134849][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.140059][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.144918][T14055] do_SYSENTER_32+0x73/0x90 [ 631.149441][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.155772][T14055] [ 631.158102][T14055] Uninit was stored to memory at: [ 631.163255][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.168980][T14055] __msan_chain_origin+0x50/0x90 [ 631.174987][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.180105][T14055] get_compat_msghdr+0x108/0x270 [ 631.185049][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.189648][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.194332][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.200403][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.207086][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.212297][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.217155][T14055] do_SYSENTER_32+0x73/0x90 [ 631.221663][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.227981][T14055] [ 631.230309][T14055] Uninit was stored to memory at: [ 631.235342][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.241182][T14055] __msan_chain_origin+0x50/0x90 [ 631.247253][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.252461][T14055] get_compat_msghdr+0x108/0x270 [ 631.257405][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.262130][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.266816][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.272984][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.279233][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.284444][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.289456][T14055] do_SYSENTER_32+0x73/0x90 [ 631.293965][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.300287][T14055] [ 631.302614][T14055] Uninit was stored to memory at: [ 631.307869][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.313687][T14055] __msan_chain_origin+0x50/0x90 [ 631.318635][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.323754][T14055] get_compat_msghdr+0x108/0x270 [ 631.328699][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.333325][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.338011][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.344176][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.350472][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.355698][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.360555][T14055] do_SYSENTER_32+0x73/0x90 [ 631.365060][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.371399][T14055] [ 631.373774][T14055] Uninit was stored to memory at: [ 631.378980][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.384707][T14055] __msan_chain_origin+0x50/0x90 [ 631.389656][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.394773][T14055] get_compat_msghdr+0x108/0x270 [ 631.399729][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.404235][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.409004][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.415074][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.421350][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.426559][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.431489][T14055] do_SYSENTER_32+0x73/0x90 [ 631.436012][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.442749][T14055] [ 631.445071][T14055] Uninit was stored to memory at: [ 631.450094][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.455836][T14055] __msan_chain_origin+0x50/0x90 [ 631.460781][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.466247][T14055] get_compat_msghdr+0x108/0x270 [ 631.471193][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.475707][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.480393][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.486473][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.492637][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.497940][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.502793][T14055] do_SYSENTER_32+0x73/0x90 [ 631.507299][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.513621][T14055] [ 631.515961][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 631.522900][T14055] do_recvmmsg+0xc5/0x1ee0 [ 631.527324][T14055] do_recvmmsg+0xc5/0x1ee0 [ 631.730055][T14055] not chained 2200000 origins [ 631.734869][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 631.743628][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 631.753687][T14055] Call Trace: [ 631.756989][T14055] dump_stack+0x1df/0x240 [ 631.761498][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 631.767457][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 631.776235][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 631.781360][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 631.787361][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 631.793432][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 631.798389][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 631.803505][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 631.809062][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 631.815138][T14055] ? _copy_from_user+0x15b/0x260 [ 631.820079][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 631.825193][T14055] __msan_chain_origin+0x50/0x90 [ 631.830142][T14055] __get_compat_msghdr+0x5be/0x890 [ 631.835278][T14055] get_compat_msghdr+0x108/0x270 [ 631.840229][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 631.844739][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 631.850819][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 631.856466][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 631.861583][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 631.867330][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 631.872648][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 631.877419][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 631.882189][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 631.887396][T14055] __sys_recvmmsg+0x4ca/0x510 [ 631.892093][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 631.898169][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 631.904413][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 631.910603][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 631.915901][T14055] do_fast_syscall_32+0x6b/0xd0 [ 631.920760][T14055] do_SYSENTER_32+0x73/0x90 [ 631.925269][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 631.931615][T14055] RIP: 0023:0xf7fd1549 [ 631.935681][T14055] Code: Bad RIP value. [ 631.939746][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 631.948163][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 631.956224][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 631.964203][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 631.972265][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 631.980242][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 631.988401][T14055] Uninit was stored to memory at: [ 631.993438][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 631.999164][T14055] __msan_chain_origin+0x50/0x90 [ 632.004116][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.009238][T14055] get_compat_msghdr+0x108/0x270 [ 632.014181][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.018688][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.023378][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.029447][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.035604][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.040809][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.045665][T14055] do_SYSENTER_32+0x73/0x90 [ 632.050169][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.056491][T14055] [ 632.058899][T14055] Uninit was stored to memory at: [ 632.063934][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.069654][T14055] __msan_chain_origin+0x50/0x90 [ 632.074596][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.079708][T14055] get_compat_msghdr+0x108/0x270 [ 632.084646][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.089152][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.093830][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.099896][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.106053][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.111252][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.116103][T14055] do_SYSENTER_32+0x73/0x90 [ 632.120611][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.126925][T14055] [ 632.129247][T14055] Uninit was stored to memory at: [ 632.134270][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.139988][T14055] __msan_chain_origin+0x50/0x90 [ 632.144928][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.150044][T14055] get_compat_msghdr+0x108/0x270 [ 632.154985][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.159490][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.164165][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.170226][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.176378][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.181574][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.186412][T14055] do_SYSENTER_32+0x73/0x90 [ 632.192210][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.198520][T14055] [ 632.200838][T14055] Uninit was stored to memory at: [ 632.205852][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.211567][T14055] __msan_chain_origin+0x50/0x90 [ 632.216511][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.221620][T14055] get_compat_msghdr+0x108/0x270 [ 632.226558][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.231055][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.235721][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.241778][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.247925][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.253127][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.257979][T14055] do_SYSENTER_32+0x73/0x90 [ 632.262473][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.268782][T14055] [ 632.271117][T14055] Uninit was stored to memory at: [ 632.276144][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.281857][T14055] __msan_chain_origin+0x50/0x90 [ 632.286792][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.291895][T14055] get_compat_msghdr+0x108/0x270 [ 632.296824][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.301326][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.305999][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.312064][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.318217][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.323414][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.328264][T14055] do_SYSENTER_32+0x73/0x90 [ 632.332761][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.339071][T14055] [ 632.341384][T14055] Uninit was stored to memory at: [ 632.346401][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.352120][T14055] __msan_chain_origin+0x50/0x90 [ 632.359920][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.365026][T14055] get_compat_msghdr+0x108/0x270 [ 632.369960][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.374464][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.379134][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.385312][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.391485][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.396679][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.401538][T14055] do_SYSENTER_32+0x73/0x90 [ 632.406033][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.412438][T14055] [ 632.414757][T14055] Uninit was stored to memory at: [ 632.419778][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.425519][T14055] __msan_chain_origin+0x50/0x90 [ 632.430465][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.435585][T14055] get_compat_msghdr+0x108/0x270 [ 632.440515][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.445015][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.449685][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.455743][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.461892][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.467174][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.472022][T14055] do_SYSENTER_32+0x73/0x90 [ 632.476521][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.482831][T14055] [ 632.485151][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 632.491821][T14055] do_recvmmsg+0xc5/0x1ee0 [ 632.496318][T14055] do_recvmmsg+0xc5/0x1ee0 [ 632.691029][T14055] not chained 2210000 origins [ 632.695740][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 632.704414][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 632.714464][T14055] Call Trace: [ 632.717754][T14055] dump_stack+0x1df/0x240 [ 632.722174][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 632.727901][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 632.733018][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 632.738153][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 632.743957][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 632.750024][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 632.754965][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 632.760175][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 632.765719][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 632.771788][T14055] ? _copy_from_user+0x15b/0x260 [ 632.776724][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 632.781834][T14055] __msan_chain_origin+0x50/0x90 [ 632.786775][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.791900][T14055] get_compat_msghdr+0x108/0x270 [ 632.796840][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.801342][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 632.807403][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 632.813050][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 632.818163][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 632.823800][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 632.829113][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 632.833874][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 632.838639][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 632.843835][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.848520][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.854585][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 632.860838][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.867014][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.872219][T14055] do_fast_syscall_32+0x6b/0xd0 [ 632.877070][T14055] do_SYSENTER_32+0x73/0x90 [ 632.881575][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 632.887892][T14055] RIP: 0023:0xf7fd1549 [ 632.891944][T14055] Code: Bad RIP value. [ 632.896001][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 632.904420][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 632.912388][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 632.920352][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 632.928321][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 632.936373][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 632.944346][T14055] Uninit was stored to memory at: [ 632.949383][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 632.955092][T14055] __msan_chain_origin+0x50/0x90 [ 632.960039][T14055] __get_compat_msghdr+0x5be/0x890 [ 632.965145][T14055] get_compat_msghdr+0x108/0x270 [ 632.970090][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 632.974609][T14055] __sys_recvmmsg+0x4ca/0x510 [ 632.979287][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 632.985347][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 632.991533][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 632.996729][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.001576][T14055] do_SYSENTER_32+0x73/0x90 [ 633.006073][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.012381][T14055] [ 633.014700][T14055] Uninit was stored to memory at: [ 633.019724][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.025437][T14055] __msan_chain_origin+0x50/0x90 [ 633.030375][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.035488][T14055] get_compat_msghdr+0x108/0x270 [ 633.040421][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.044921][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.049595][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.055653][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.061935][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.067131][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.071986][T14055] do_SYSENTER_32+0x73/0x90 [ 633.076495][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.082838][T14055] [ 633.085159][T14055] Uninit was stored to memory at: [ 633.090182][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.095918][T14055] __msan_chain_origin+0x50/0x90 [ 633.100854][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.105960][T14055] get_compat_msghdr+0x108/0x270 [ 633.110894][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.115392][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.120083][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.126142][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.132294][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.137490][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.142366][T14055] do_SYSENTER_32+0x73/0x90 [ 633.146862][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.153175][T14055] [ 633.155530][T14055] Uninit was stored to memory at: [ 633.160555][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.166267][T14055] __msan_chain_origin+0x50/0x90 [ 633.171201][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.176323][T14055] get_compat_msghdr+0x108/0x270 [ 633.181259][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.185776][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.190446][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.196624][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.202774][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.207976][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.212829][T14055] do_SYSENTER_32+0x73/0x90 [ 633.217326][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.223635][T14055] [ 633.225955][T14055] Uninit was stored to memory at: [ 633.230977][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.238172][T14055] __msan_chain_origin+0x50/0x90 [ 633.243107][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.248215][T14055] get_compat_msghdr+0x108/0x270 [ 633.253148][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.257643][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.262351][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.268417][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.274588][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.279801][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.284653][T14055] do_SYSENTER_32+0x73/0x90 [ 633.289240][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.295553][T14055] [ 633.297869][T14055] Uninit was stored to memory at: [ 633.302892][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.308625][T14055] __msan_chain_origin+0x50/0x90 [ 633.313572][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.318686][T14055] get_compat_msghdr+0x108/0x270 [ 633.323621][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.328134][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.332812][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.338995][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.345144][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.350342][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.355185][T14055] do_SYSENTER_32+0x73/0x90 [ 633.359684][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.366359][T14055] [ 633.368683][T14055] Uninit was stored to memory at: [ 633.373701][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.379416][T14055] __msan_chain_origin+0x50/0x90 [ 633.384352][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.389463][T14055] get_compat_msghdr+0x108/0x270 [ 633.394399][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.398907][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.403585][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.409646][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.415796][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.420991][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.425948][T14055] do_SYSENTER_32+0x73/0x90 [ 633.430460][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.436770][T14055] [ 633.439089][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 633.445759][T14055] do_recvmmsg+0xc5/0x1ee0 [ 633.450163][T14055] do_recvmmsg+0xc5/0x1ee0 [ 633.619856][T14055] not chained 2220000 origins [ 633.624570][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 633.633231][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 633.643286][T14055] Call Trace: [ 633.646605][T14055] dump_stack+0x1df/0x240 [ 633.650939][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 633.656658][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 633.661768][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 633.666878][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 633.672684][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 633.678749][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 633.683689][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 633.688797][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 633.694341][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 633.700410][T14055] ? _copy_from_user+0x15b/0x260 [ 633.705345][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 633.710463][T14055] __msan_chain_origin+0x50/0x90 [ 633.715402][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.720538][T14055] get_compat_msghdr+0x108/0x270 [ 633.725475][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.729981][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 633.736044][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 633.741690][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 633.746798][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 633.752431][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 633.757717][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 633.762478][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 633.767259][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 633.772464][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.777150][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.783218][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 633.789460][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.795617][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.800820][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.805690][T14055] do_SYSENTER_32+0x73/0x90 [ 633.810315][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.816634][T14055] RIP: 0023:0xf7fd1549 [ 633.820721][T14055] Code: Bad RIP value. [ 633.824792][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 633.833196][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 633.841160][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 633.849212][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 633.857274][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 633.868037][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 633.876012][T14055] Uninit was stored to memory at: [ 633.881035][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.886749][T14055] __msan_chain_origin+0x50/0x90 [ 633.891685][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.896824][T14055] get_compat_msghdr+0x108/0x270 [ 633.901763][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.906260][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.910931][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.916991][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.923140][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.928339][T14055] do_fast_syscall_32+0x6b/0xd0 [ 633.933184][T14055] do_SYSENTER_32+0x73/0x90 [ 633.937685][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 633.944001][T14055] [ 633.946318][T14055] Uninit was stored to memory at: [ 633.951337][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 633.957157][T14055] __msan_chain_origin+0x50/0x90 [ 633.962092][T14055] __get_compat_msghdr+0x5be/0x890 [ 633.967199][T14055] get_compat_msghdr+0x108/0x270 [ 633.972133][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 633.976633][T14055] __sys_recvmmsg+0x4ca/0x510 [ 633.981306][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 633.987409][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 633.993568][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 633.998766][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.003616][T14055] do_SYSENTER_32+0x73/0x90 [ 634.008114][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.014437][T14055] [ 634.016752][T14055] Uninit was stored to memory at: [ 634.021769][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.027482][T14055] __msan_chain_origin+0x50/0x90 [ 634.032417][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.037529][T14055] get_compat_msghdr+0x108/0x270 [ 634.042486][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.046993][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.051666][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.057728][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.063878][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.069074][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.073920][T14055] do_SYSENTER_32+0x73/0x90 [ 634.078420][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.084730][T14055] [ 634.087050][T14055] Uninit was stored to memory at: [ 634.092072][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.097793][T14055] __msan_chain_origin+0x50/0x90 [ 634.102728][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.108060][T14055] get_compat_msghdr+0x108/0x270 [ 634.113002][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.117502][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.122179][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.128235][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.134382][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.139578][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.144422][T14055] do_SYSENTER_32+0x73/0x90 [ 634.148927][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.155239][T14055] [ 634.157563][T14055] Uninit was stored to memory at: [ 634.162599][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.168317][T14055] __msan_chain_origin+0x50/0x90 [ 634.173251][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.178531][T14055] get_compat_msghdr+0x108/0x270 [ 634.183467][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.188007][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.192694][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.198760][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.204910][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.210111][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.214957][T14055] do_SYSENTER_32+0x73/0x90 [ 634.219454][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.225761][T14055] [ 634.228078][T14055] Uninit was stored to memory at: [ 634.233112][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.238824][T14055] __msan_chain_origin+0x50/0x90 [ 634.243759][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.248955][T14055] get_compat_msghdr+0x108/0x270 [ 634.253900][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.258404][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.263083][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.269156][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.275368][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.280585][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.285454][T14055] do_SYSENTER_32+0x73/0x90 [ 634.289957][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.296271][T14055] [ 634.298587][T14055] Uninit was stored to memory at: [ 634.303610][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.309942][T14055] __msan_chain_origin+0x50/0x90 [ 634.314971][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.320083][T14055] get_compat_msghdr+0x108/0x270 [ 634.325018][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.329518][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.334188][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.340338][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.346488][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.351689][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.356672][T14055] do_SYSENTER_32+0x73/0x90 [ 634.361174][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.367492][T14055] [ 634.369812][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 634.376480][T14055] do_recvmmsg+0xc5/0x1ee0 [ 634.380975][T14055] do_recvmmsg+0xc5/0x1ee0 [ 634.548717][T14055] not chained 2230000 origins [ 634.553446][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 634.562103][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 634.572235][T14055] Call Trace: [ 634.575527][T14055] dump_stack+0x1df/0x240 [ 634.579857][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 634.585577][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 634.590691][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 634.595799][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 634.601598][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 634.607659][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 634.612611][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 634.617717][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 634.623350][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 634.629423][T14055] ? _copy_from_user+0x15b/0x260 [ 634.634359][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 634.639470][T14055] __msan_chain_origin+0x50/0x90 [ 634.644410][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.649544][T14055] get_compat_msghdr+0x108/0x270 [ 634.654485][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.659081][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 634.665141][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 634.670774][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 634.675879][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 634.681504][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 634.686784][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 634.691544][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 634.696304][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 634.701499][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.706179][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.712248][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 634.718485][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.724645][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.729847][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.734700][T14055] do_SYSENTER_32+0x73/0x90 [ 634.739200][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.745515][T14055] RIP: 0023:0xf7fd1549 [ 634.749571][T14055] Code: Bad RIP value. [ 634.753629][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 634.762123][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 634.770179][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 634.778166][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 634.786142][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 634.794104][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 634.802081][T14055] Uninit was stored to memory at: [ 634.807102][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.812818][T14055] __msan_chain_origin+0x50/0x90 [ 634.817754][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.822859][T14055] get_compat_msghdr+0x108/0x270 [ 634.827787][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.832284][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.836952][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.843008][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.849151][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.854340][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.859187][T14055] do_SYSENTER_32+0x73/0x90 [ 634.863694][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.870004][T14055] [ 634.872348][T14055] Uninit was stored to memory at: [ 634.877364][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.883176][T14055] __msan_chain_origin+0x50/0x90 [ 634.888106][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.893206][T14055] get_compat_msghdr+0x108/0x270 [ 634.898140][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.902720][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.907388][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.913458][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.919602][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.924801][T14055] do_fast_syscall_32+0x6b/0xd0 [ 634.929646][T14055] do_SYSENTER_32+0x73/0x90 [ 634.934142][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 634.940541][T14055] [ 634.942856][T14055] Uninit was stored to memory at: [ 634.947885][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 634.953602][T14055] __msan_chain_origin+0x50/0x90 [ 634.958534][T14055] __get_compat_msghdr+0x5be/0x890 [ 634.963642][T14055] get_compat_msghdr+0x108/0x270 [ 634.968574][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 634.973072][T14055] __sys_recvmmsg+0x4ca/0x510 [ 634.977743][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 634.983800][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 634.989963][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 634.995164][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.000118][T14055] do_SYSENTER_32+0x73/0x90 [ 635.004616][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.010925][T14055] [ 635.013241][T14055] Uninit was stored to memory at: [ 635.018257][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.023981][T14055] __msan_chain_origin+0x50/0x90 [ 635.028933][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.034047][T14055] get_compat_msghdr+0x108/0x270 [ 635.038984][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.043509][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.048184][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.054244][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.060395][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.065591][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.070438][T14055] do_SYSENTER_32+0x73/0x90 [ 635.074951][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.081259][T14055] [ 635.083589][T14055] Uninit was stored to memory at: [ 635.088625][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.094341][T14055] __msan_chain_origin+0x50/0x90 [ 635.099272][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.104468][T14055] get_compat_msghdr+0x108/0x270 [ 635.109416][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.113912][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.118613][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.124674][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.130825][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.136020][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.140876][T14055] do_SYSENTER_32+0x73/0x90 [ 635.145375][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.151688][T14055] [ 635.154006][T14055] Uninit was stored to memory at: [ 635.159028][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.164734][T14055] __msan_chain_origin+0x50/0x90 [ 635.169775][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.174889][T14055] get_compat_msghdr+0x108/0x270 [ 635.179824][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.184318][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.188989][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.195051][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.201193][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.206387][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.211234][T14055] do_SYSENTER_32+0x73/0x90 [ 635.215729][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.222056][T14055] [ 635.224364][T14055] Uninit was stored to memory at: [ 635.229489][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.235197][T14055] __msan_chain_origin+0x50/0x90 [ 635.240131][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.245248][T14055] get_compat_msghdr+0x108/0x270 [ 635.250187][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.254687][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.259351][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.265405][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.271651][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.276851][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.281779][T14055] do_SYSENTER_32+0x73/0x90 [ 635.286270][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.292582][T14055] [ 635.294911][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 635.301583][T14055] do_recvmmsg+0xc5/0x1ee0 [ 635.306002][T14055] do_recvmmsg+0xc5/0x1ee0 [ 635.468785][T14055] not chained 2240000 origins [ 635.473498][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 635.482172][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 635.492221][T14055] Call Trace: [ 635.495516][T14055] dump_stack+0x1df/0x240 [ 635.499850][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 635.505572][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 635.510690][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 635.515798][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 635.521606][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 635.527670][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 635.532618][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 635.537734][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 635.543279][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 635.549441][T14055] ? _copy_from_user+0x15b/0x260 [ 635.554374][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 635.559491][T14055] __msan_chain_origin+0x50/0x90 [ 635.564430][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.569566][T14055] get_compat_msghdr+0x108/0x270 [ 635.574519][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.579028][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 635.585093][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 635.590751][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 635.595875][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 635.601509][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 635.606789][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 635.611556][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 635.616328][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 635.621523][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.626208][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.632278][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 635.638518][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.644669][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.649885][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.654736][T14055] do_SYSENTER_32+0x73/0x90 [ 635.659260][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.665617][T14055] RIP: 0023:0xf7fd1549 [ 635.669676][T14055] Code: Bad RIP value. [ 635.673860][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 635.682263][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 635.690223][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 635.698192][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 635.706246][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 635.714732][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 635.722706][T14055] Uninit was stored to memory at: [ 635.727729][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.733451][T14055] __msan_chain_origin+0x50/0x90 [ 635.738401][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.743533][T14055] get_compat_msghdr+0x108/0x270 [ 635.748469][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.752965][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.757652][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.763718][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.769864][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.775076][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.779921][T14055] do_SYSENTER_32+0x73/0x90 [ 635.784417][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.790737][T14055] [ 635.793053][T14055] Uninit was stored to memory at: [ 635.798089][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.803819][T14055] __msan_chain_origin+0x50/0x90 [ 635.810678][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.815793][T14055] get_compat_msghdr+0x108/0x270 [ 635.820724][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.825218][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.829888][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.836033][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.842178][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.847451][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.852311][T14055] do_SYSENTER_32+0x73/0x90 [ 635.856809][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.863130][T14055] [ 635.865442][T14055] Uninit was stored to memory at: [ 635.870465][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.876178][T14055] __msan_chain_origin+0x50/0x90 [ 635.881119][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.886220][T14055] get_compat_msghdr+0x108/0x270 [ 635.891149][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.895641][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.900311][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.906368][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.912872][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.918063][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.922906][T14055] do_SYSENTER_32+0x73/0x90 [ 635.927398][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 635.933712][T14055] [ 635.936042][T14055] Uninit was stored to memory at: [ 635.941062][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 635.946780][T14055] __msan_chain_origin+0x50/0x90 [ 635.951715][T14055] __get_compat_msghdr+0x5be/0x890 [ 635.956823][T14055] get_compat_msghdr+0x108/0x270 [ 635.961754][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 635.966285][T14055] __sys_recvmmsg+0x4ca/0x510 [ 635.970972][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 635.977030][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 635.983176][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 635.988371][T14055] do_fast_syscall_32+0x6b/0xd0 [ 635.993217][T14055] do_SYSENTER_32+0x73/0x90 [ 635.997724][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.004033][T14055] [ 636.006355][T14055] Uninit was stored to memory at: [ 636.011733][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.017450][T14055] __msan_chain_origin+0x50/0x90 [ 636.022383][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.027505][T14055] get_compat_msghdr+0x108/0x270 [ 636.032461][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.036969][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.041659][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.047719][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.053875][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.059070][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.063915][T14055] do_SYSENTER_32+0x73/0x90 [ 636.068409][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.074742][T14055] [ 636.077065][T14055] Uninit was stored to memory at: [ 636.082089][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.087807][T14055] __msan_chain_origin+0x50/0x90 [ 636.092755][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.097863][T14055] get_compat_msghdr+0x108/0x270 [ 636.102802][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.107642][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.112314][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.118371][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.124528][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.129724][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.134572][T14055] do_SYSENTER_32+0x73/0x90 [ 636.139083][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.145519][T14055] [ 636.147839][T14055] Uninit was stored to memory at: [ 636.152871][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.158582][T14055] __msan_chain_origin+0x50/0x90 [ 636.163515][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.168621][T14055] get_compat_msghdr+0x108/0x270 [ 636.173567][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.178065][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.182733][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.188795][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.194949][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.200144][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.204991][T14055] do_SYSENTER_32+0x73/0x90 [ 636.209490][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.215798][T14055] [ 636.218115][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 636.224777][T14055] do_recvmmsg+0xc5/0x1ee0 [ 636.229188][T14055] do_recvmmsg+0xc5/0x1ee0 [ 636.391867][T14055] not chained 2250000 origins [ 636.396583][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 636.405242][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 636.415294][T14055] Call Trace: [ 636.418584][T14055] dump_stack+0x1df/0x240 [ 636.422914][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 636.431088][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 636.436193][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 636.441315][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 636.447114][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 636.453174][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 636.458110][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 636.463213][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 636.468758][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 636.474861][T14055] ? _copy_from_user+0x15b/0x260 [ 636.479969][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 636.485072][T14055] __msan_chain_origin+0x50/0x90 [ 636.490018][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.495135][T14055] get_compat_msghdr+0x108/0x270 [ 636.500524][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.505028][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 636.511091][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 636.516731][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 636.521840][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 636.527473][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 636.532762][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 636.537522][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 636.542293][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 636.547500][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.552303][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.558369][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 636.564617][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.570766][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.575972][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.580828][T14055] do_SYSENTER_32+0x73/0x90 [ 636.585339][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.591659][T14055] RIP: 0023:0xf7fd1549 [ 636.595715][T14055] Code: Bad RIP value. [ 636.599786][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 636.608273][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 636.616245][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 636.624210][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 636.632176][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 636.640143][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 636.648140][T14055] Uninit was stored to memory at: [ 636.653157][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.658865][T14055] __msan_chain_origin+0x50/0x90 [ 636.663800][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.668906][T14055] get_compat_msghdr+0x108/0x270 [ 636.673861][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.678358][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.683123][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.689287][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.695433][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.700624][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.705464][T14055] do_SYSENTER_32+0x73/0x90 [ 636.709962][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.716293][T14055] [ 636.718603][T14055] Uninit was stored to memory at: [ 636.723619][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.729349][T14055] __msan_chain_origin+0x50/0x90 [ 636.734281][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.739383][T14055] get_compat_msghdr+0x108/0x270 [ 636.744397][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.748894][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.753574][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.759649][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.765787][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.770980][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.775827][T14055] do_SYSENTER_32+0x73/0x90 [ 636.780337][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.786638][T14055] [ 636.789035][T14055] Uninit was stored to memory at: [ 636.794074][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.799783][T14055] __msan_chain_origin+0x50/0x90 [ 636.804710][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.809823][T14055] get_compat_msghdr+0x108/0x270 [ 636.814756][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.819255][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.823927][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.829989][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.836131][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.841322][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.846161][T14055] do_SYSENTER_32+0x73/0x90 [ 636.850655][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.857072][T14055] [ 636.859406][T14055] Uninit was stored to memory at: [ 636.865119][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.870828][T14055] __msan_chain_origin+0x50/0x90 [ 636.876368][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.881466][T14055] get_compat_msghdr+0x108/0x270 [ 636.886395][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.892196][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.896865][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.902920][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.915017][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.920234][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.925079][T14055] do_SYSENTER_32+0x73/0x90 [ 636.929575][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 636.935887][T14055] [ 636.938203][T14055] Uninit was stored to memory at: [ 636.943221][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 636.948933][T14055] __msan_chain_origin+0x50/0x90 [ 636.953876][T14055] __get_compat_msghdr+0x5be/0x890 [ 636.958986][T14055] get_compat_msghdr+0x108/0x270 [ 636.963934][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 636.968432][T14055] __sys_recvmmsg+0x4ca/0x510 [ 636.973107][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 636.979163][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 636.985303][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 636.990490][T14055] do_fast_syscall_32+0x6b/0xd0 [ 636.995330][T14055] do_SYSENTER_32+0x73/0x90 [ 636.999823][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.006130][T14055] [ 637.008449][T14055] Uninit was stored to memory at: [ 637.013466][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.019176][T14055] __msan_chain_origin+0x50/0x90 [ 637.024120][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.029232][T14055] get_compat_msghdr+0x108/0x270 [ 637.034164][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.038662][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.043345][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.049403][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.055666][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.060861][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.065716][T14055] do_SYSENTER_32+0x73/0x90 [ 637.070231][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.076544][T14055] [ 637.078873][T14055] Uninit was stored to memory at: [ 637.083891][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.089692][T14055] __msan_chain_origin+0x50/0x90 [ 637.094626][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.099733][T14055] get_compat_msghdr+0x108/0x270 [ 637.104662][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.109170][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.113840][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.119896][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.126045][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.131242][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.136100][T14055] do_SYSENTER_32+0x73/0x90 [ 637.140598][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.146909][T14055] [ 637.149230][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 637.155909][T14055] do_recvmmsg+0xc5/0x1ee0 [ 637.160318][T14055] do_recvmmsg+0xc5/0x1ee0 [ 637.324039][T14055] not chained 2260000 origins [ 637.328750][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 637.337406][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 637.347455][T14055] Call Trace: [ 637.350753][T14055] dump_stack+0x1df/0x240 [ 637.355101][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 637.360824][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 637.365938][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 637.371049][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 637.376855][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 637.382920][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 637.387857][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 637.392963][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 637.398504][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 637.404572][T14055] ? _copy_from_user+0x15b/0x260 [ 637.409507][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 637.414614][T14055] __msan_chain_origin+0x50/0x90 [ 637.419565][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.424689][T14055] get_compat_msghdr+0x108/0x270 [ 637.429634][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.434141][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 637.440202][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 637.445841][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 637.450945][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 637.456573][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 637.461865][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 637.466625][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 637.471389][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 637.476613][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.481316][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.487384][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 637.493625][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.499793][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.504994][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.509846][T14055] do_SYSENTER_32+0x73/0x90 [ 637.514349][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.520664][T14055] RIP: 0023:0xf7fd1549 [ 637.524723][T14055] Code: Bad RIP value. [ 637.528780][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 637.537183][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 637.545150][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 637.553122][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 637.561088][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 637.569051][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 637.577038][T14055] Uninit was stored to memory at: [ 637.582060][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.587768][T14055] __msan_chain_origin+0x50/0x90 [ 637.592701][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.597813][T14055] get_compat_msghdr+0x108/0x270 [ 637.602744][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.607243][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.611912][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.617968][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.624110][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.629408][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.634258][T14055] do_SYSENTER_32+0x73/0x90 [ 637.638772][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.645081][T14055] [ 637.647395][T14055] Uninit was stored to memory at: [ 637.652427][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.658146][T14055] __msan_chain_origin+0x50/0x90 [ 637.663076][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.668186][T14055] get_compat_msghdr+0x108/0x270 [ 637.673119][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.677617][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.682288][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.688363][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.694511][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.699710][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.704557][T14055] do_SYSENTER_32+0x73/0x90 [ 637.709058][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.715371][T14055] [ 637.717689][T14055] Uninit was stored to memory at: [ 637.722710][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.728423][T14055] __msan_chain_origin+0x50/0x90 [ 637.733376][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.738488][T14055] get_compat_msghdr+0x108/0x270 [ 637.743418][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.747917][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.752590][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.758648][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.764794][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.769993][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.774861][T14055] do_SYSENTER_32+0x73/0x90 [ 637.779356][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.785667][T14055] [ 637.787981][T14055] Uninit was stored to memory at: [ 637.793002][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.798716][T14055] __msan_chain_origin+0x50/0x90 [ 637.803668][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.808786][T14055] get_compat_msghdr+0x108/0x270 [ 637.813723][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.818232][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.822903][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.828963][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.835112][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.840319][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.845166][T14055] do_SYSENTER_32+0x73/0x90 [ 637.849665][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.855979][T14055] [ 637.858298][T14055] Uninit was stored to memory at: [ 637.863337][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.869142][T14055] __msan_chain_origin+0x50/0x90 [ 637.874079][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.879622][T14055] get_compat_msghdr+0x108/0x270 [ 637.884556][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.889055][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.893726][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.899788][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.905938][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.911133][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.915981][T14055] do_SYSENTER_32+0x73/0x90 [ 637.920497][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 637.926830][T14055] [ 637.929155][T14055] Uninit was stored to memory at: [ 637.934177][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 637.939891][T14055] __msan_chain_origin+0x50/0x90 [ 637.944824][T14055] __get_compat_msghdr+0x5be/0x890 [ 637.956185][T14055] get_compat_msghdr+0x108/0x270 [ 637.961119][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 637.965617][T14055] __sys_recvmmsg+0x4ca/0x510 [ 637.970289][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 637.976347][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 637.982499][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 637.987696][T14055] do_fast_syscall_32+0x6b/0xd0 [ 637.992557][T14055] do_SYSENTER_32+0x73/0x90 [ 637.997054][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.003366][T14055] [ 638.005684][T14055] Uninit was stored to memory at: [ 638.010706][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.016419][T14055] __msan_chain_origin+0x50/0x90 [ 638.021356][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.026471][T14055] get_compat_msghdr+0x108/0x270 [ 638.031406][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.035915][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.040587][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.046643][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.052790][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.057982][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.062879][T14055] do_SYSENTER_32+0x73/0x90 [ 638.067390][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.073698][T14055] [ 638.076016][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 638.082684][T14055] do_recvmmsg+0xc5/0x1ee0 [ 638.087091][T14055] do_recvmmsg+0xc5/0x1ee0 [ 638.279003][T14055] not chained 2270000 origins [ 638.283802][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 638.292551][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 638.302599][T14055] Call Trace: [ 638.305898][T14055] dump_stack+0x1df/0x240 [ 638.310236][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 638.315959][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 638.321175][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 638.326297][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 638.332102][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 638.338167][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 638.343189][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 638.348303][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 638.353847][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 638.359923][T14055] ? _copy_from_user+0x15b/0x260 [ 638.364858][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 638.369966][T14055] __msan_chain_origin+0x50/0x90 [ 638.374908][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.380031][T14055] get_compat_msghdr+0x108/0x270 [ 638.384982][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.389495][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 638.395564][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 638.401313][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 638.406422][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 638.412054][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 638.417340][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 638.422098][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 638.426906][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 638.432106][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.436795][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.442860][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 638.449104][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.455256][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.460460][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.465311][T14055] do_SYSENTER_32+0x73/0x90 [ 638.469812][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.476132][T14055] RIP: 0023:0xf7fd1549 [ 638.480185][T14055] Code: Bad RIP value. [ 638.484241][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 638.492644][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 638.500635][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 638.508597][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 638.516560][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 638.524610][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 638.532581][T14055] Uninit was stored to memory at: [ 638.537697][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.543514][T14055] __msan_chain_origin+0x50/0x90 [ 638.548453][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.553566][T14055] get_compat_msghdr+0x108/0x270 [ 638.558508][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.563018][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.567690][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.573754][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.579908][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.585238][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.590084][T14055] do_SYSENTER_32+0x73/0x90 [ 638.594692][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.601001][T14055] [ 638.603317][T14055] Uninit was stored to memory at: [ 638.608333][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.614040][T14055] __msan_chain_origin+0x50/0x90 [ 638.618973][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.626687][T14055] get_compat_msghdr+0x108/0x270 [ 638.631712][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.636208][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.640883][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.646942][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.653192][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.658402][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.663249][T14055] do_SYSENTER_32+0x73/0x90 [ 638.667746][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.674060][T14055] [ 638.676377][T14055] Uninit was stored to memory at: [ 638.682005][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.687719][T14055] __msan_chain_origin+0x50/0x90 [ 638.692655][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.697772][T14055] get_compat_msghdr+0x108/0x270 [ 638.702745][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.707242][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.711914][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.717975][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.724123][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.729326][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.734172][T14055] do_SYSENTER_32+0x73/0x90 [ 638.738690][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.745000][T14055] [ 638.747315][T14055] Uninit was stored to memory at: [ 638.752338][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.758051][T14055] __msan_chain_origin+0x50/0x90 [ 638.762999][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.768114][T14055] get_compat_msghdr+0x108/0x270 [ 638.773056][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.777562][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.782235][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.788296][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.794536][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.799740][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.804586][T14055] do_SYSENTER_32+0x73/0x90 [ 638.809086][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.815405][T14055] [ 638.817724][T14055] Uninit was stored to memory at: [ 638.822741][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.828449][T14055] __msan_chain_origin+0x50/0x90 [ 638.833385][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.838503][T14055] get_compat_msghdr+0x108/0x270 [ 638.843498][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.847994][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.852664][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.858731][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.864883][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.870082][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.874935][T14055] do_SYSENTER_32+0x73/0x90 [ 638.879434][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.885744][T14055] [ 638.888057][T14055] Uninit was stored to memory at: [ 638.893077][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.898792][T14055] __msan_chain_origin+0x50/0x90 [ 638.903731][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.908837][T14055] get_compat_msghdr+0x108/0x270 [ 638.913771][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.918268][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.922972][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.929044][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 638.935278][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 638.940488][T14055] do_fast_syscall_32+0x6b/0xd0 [ 638.945333][T14055] do_SYSENTER_32+0x73/0x90 [ 638.949830][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 638.956147][T14055] [ 638.958463][T14055] Uninit was stored to memory at: [ 638.963485][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 638.969199][T14055] __msan_chain_origin+0x50/0x90 [ 638.974134][T14055] __get_compat_msghdr+0x5be/0x890 [ 638.979241][T14055] get_compat_msghdr+0x108/0x270 [ 638.984175][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 638.988673][T14055] __sys_recvmmsg+0x4ca/0x510 [ 638.993344][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 638.999408][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.005567][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.010763][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.015615][T14055] do_SYSENTER_32+0x73/0x90 [ 639.020116][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.026424][T14055] [ 639.028745][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 639.035414][T14055] do_recvmmsg+0xc5/0x1ee0 [ 639.039841][T14055] do_recvmmsg+0xc5/0x1ee0 [ 639.225488][T14055] not chained 2280000 origins [ 639.230205][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 639.239036][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 639.249080][T14055] Call Trace: [ 639.252372][T14055] dump_stack+0x1df/0x240 [ 639.256707][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 639.262431][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 639.267551][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 639.272663][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 639.278470][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 639.284531][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 639.289490][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 639.294686][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 639.300228][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 639.306388][T14055] ? _copy_from_user+0x15b/0x260 [ 639.311496][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 639.316604][T14055] __msan_chain_origin+0x50/0x90 [ 639.321545][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.326677][T14055] get_compat_msghdr+0x108/0x270 [ 639.331628][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.336137][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 639.342220][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 639.347863][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 639.352993][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 639.358623][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 639.363905][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 639.368662][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 639.373424][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 639.378623][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.383305][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.389371][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 639.395614][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.401766][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.406967][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.411814][T14055] do_SYSENTER_32+0x73/0x90 [ 639.416314][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.422634][T14055] RIP: 0023:0xf7fd1549 [ 639.426687][T14055] Code: Bad RIP value. [ 639.430741][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 639.439142][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 639.447103][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 639.455069][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 639.463033][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 639.470994][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 639.478966][T14055] Uninit was stored to memory at: [ 639.483988][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.489699][T14055] __msan_chain_origin+0x50/0x90 [ 639.494636][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.499742][T14055] get_compat_msghdr+0x108/0x270 [ 639.504670][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.509164][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.513860][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.519922][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.526066][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.531258][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.536105][T14055] do_SYSENTER_32+0x73/0x90 [ 639.540604][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.546913][T14055] [ 639.549231][T14055] Uninit was stored to memory at: [ 639.554251][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.559958][T14055] __msan_chain_origin+0x50/0x90 [ 639.564890][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.569997][T14055] get_compat_msghdr+0x108/0x270 [ 639.574927][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.579426][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.584096][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.590158][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.596307][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.601513][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.606363][T14055] do_SYSENTER_32+0x73/0x90 [ 639.610860][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.617167][T14055] [ 639.619481][T14055] Uninit was stored to memory at: [ 639.624501][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.630209][T14055] __msan_chain_origin+0x50/0x90 [ 639.635137][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.640239][T14055] get_compat_msghdr+0x108/0x270 [ 639.645187][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.649681][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.654347][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.660403][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.666545][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.671745][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.676688][T14055] do_SYSENTER_32+0x73/0x90 [ 639.681181][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.687664][T14055] [ 639.689989][T14055] Uninit was stored to memory at: [ 639.695008][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.700717][T14055] __msan_chain_origin+0x50/0x90 [ 639.705649][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.710755][T14055] get_compat_msghdr+0x108/0x270 [ 639.715687][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.720186][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.724858][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.730913][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.737057][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.742510][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.747354][T14055] do_SYSENTER_32+0x73/0x90 [ 639.751852][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.758161][T14055] [ 639.760474][T14055] Uninit was stored to memory at: [ 639.765493][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.771201][T14055] __msan_chain_origin+0x50/0x90 [ 639.776129][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.781231][T14055] get_compat_msghdr+0x108/0x270 [ 639.786158][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.790656][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.795327][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.801385][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.807551][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.812746][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.817668][T14055] do_SYSENTER_32+0x73/0x90 [ 639.822269][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.828576][T14055] [ 639.830888][T14055] Uninit was stored to memory at: [ 639.835906][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.841615][T14055] __msan_chain_origin+0x50/0x90 [ 639.846669][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.851771][T14055] get_compat_msghdr+0x108/0x270 [ 639.856729][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.861219][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.865887][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.871965][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.878111][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.883301][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.888142][T14055] do_SYSENTER_32+0x73/0x90 [ 639.892724][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.899028][T14055] [ 639.901338][T14055] Uninit was stored to memory at: [ 639.906618][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 639.912330][T14055] __msan_chain_origin+0x50/0x90 [ 639.917259][T14055] __get_compat_msghdr+0x5be/0x890 [ 639.922359][T14055] get_compat_msghdr+0x108/0x270 [ 639.927284][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 639.931779][T14055] __sys_recvmmsg+0x4ca/0x510 [ 639.936449][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 639.942514][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 639.948661][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 639.953856][T14055] do_fast_syscall_32+0x6b/0xd0 [ 639.958704][T14055] do_SYSENTER_32+0x73/0x90 [ 639.963198][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 639.969507][T14055] [ 639.971823][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 639.978505][T14055] do_recvmmsg+0xc5/0x1ee0 [ 639.982930][T14055] do_recvmmsg+0xc5/0x1ee0 [ 640.165324][T14055] not chained 2290000 origins [ 640.170037][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 640.178711][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 640.188765][T14055] Call Trace: [ 640.192056][T14055] dump_stack+0x1df/0x240 [ 640.196388][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 640.202109][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 640.207220][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 640.212329][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 640.218131][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 640.224195][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 640.229136][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 640.234243][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 640.239789][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 640.245863][T14055] ? _copy_from_user+0x15b/0x260 [ 640.250881][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 640.255991][T14055] __msan_chain_origin+0x50/0x90 [ 640.260926][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.266045][T14055] get_compat_msghdr+0x108/0x270 [ 640.270988][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.275492][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 640.281551][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 640.287189][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 640.292294][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 640.297919][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 640.303204][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 640.307966][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 640.312729][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 640.317928][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.322632][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.328694][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 640.334953][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.341083][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.346255][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.351077][T14055] do_SYSENTER_32+0x73/0x90 [ 640.355555][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.361854][T14055] RIP: 0023:0xf7fd1549 [ 640.365888][T14055] Code: Bad RIP value. [ 640.369925][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 640.378315][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 640.386259][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 640.394201][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 640.402145][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 640.410086][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 640.418035][T14055] Uninit was stored to memory at: [ 640.423033][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.428723][T14055] __msan_chain_origin+0x50/0x90 [ 640.433630][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.438713][T14055] get_compat_msghdr+0x108/0x270 [ 640.443619][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.448088][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.452735][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.458768][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.464910][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.470078][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.474898][T14055] do_SYSENTER_32+0x73/0x90 [ 640.479371][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.485659][T14055] [ 640.487956][T14055] Uninit was stored to memory at: [ 640.492954][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.498642][T14055] __msan_chain_origin+0x50/0x90 [ 640.503549][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.508645][T14055] get_compat_msghdr+0x108/0x270 [ 640.513549][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.518031][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.522679][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.528716][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.534839][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.540009][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.544829][T14055] do_SYSENTER_32+0x73/0x90 [ 640.549326][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.555631][T14055] [ 640.557929][T14055] Uninit was stored to memory at: [ 640.562925][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.568621][T14055] __msan_chain_origin+0x50/0x90 [ 640.573528][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.578628][T14055] get_compat_msghdr+0x108/0x270 [ 640.583533][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.588008][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.592658][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.598694][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.604817][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.609985][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.614807][T14055] do_SYSENTER_32+0x73/0x90 [ 640.619282][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.625586][T14055] [ 640.627884][T14055] Uninit was stored to memory at: [ 640.632881][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.638570][T14055] __msan_chain_origin+0x50/0x90 [ 640.643496][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.648591][T14055] get_compat_msghdr+0x108/0x270 [ 640.653495][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.657980][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.662623][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.668676][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.674799][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.680055][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.684876][T14055] do_SYSENTER_32+0x73/0x90 [ 640.689396][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.695686][T14055] [ 640.697984][T14055] Uninit was stored to memory at: [ 640.702979][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.708667][T14055] __msan_chain_origin+0x50/0x90 [ 640.713574][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.718698][T14055] get_compat_msghdr+0x108/0x270 [ 640.723605][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.728078][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.732727][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.739167][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.745287][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.750456][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.755292][T14055] do_SYSENTER_32+0x73/0x90 [ 640.759774][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.766079][T14055] [ 640.768384][T14055] Uninit was stored to memory at: [ 640.773383][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.779074][T14055] __msan_chain_origin+0x50/0x90 [ 640.783984][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.789071][T14055] get_compat_msghdr+0x108/0x270 [ 640.793983][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.798462][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.803244][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.809279][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.815401][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.820568][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.825404][T14055] do_SYSENTER_32+0x73/0x90 [ 640.829878][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.836169][T14055] [ 640.838487][T14055] Uninit was stored to memory at: [ 640.843481][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 640.849169][T14055] __msan_chain_origin+0x50/0x90 [ 640.854076][T14055] __get_compat_msghdr+0x5be/0x890 [ 640.859166][T14055] get_compat_msghdr+0x108/0x270 [ 640.864078][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 640.868555][T14055] __sys_recvmmsg+0x4ca/0x510 [ 640.873220][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 640.879257][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 640.885394][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 640.890577][T14055] do_fast_syscall_32+0x6b/0xd0 [ 640.895397][T14055] do_SYSENTER_32+0x73/0x90 [ 640.899872][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 640.906160][T14055] [ 640.908460][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 640.915117][T14055] do_recvmmsg+0xc5/0x1ee0 [ 640.919502][T14055] do_recvmmsg+0xc5/0x1ee0 [ 641.101746][T14055] not chained 2300000 origins [ 641.106455][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 641.115123][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 641.125167][T14055] Call Trace: [ 641.128470][T14055] dump_stack+0x1df/0x240 [ 641.132805][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 641.138524][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 641.143642][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 641.148754][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 641.154561][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 641.160624][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 641.165561][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 641.170699][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 641.176270][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 641.182353][T14055] ? _copy_from_user+0x15b/0x260 [ 641.187289][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 641.192399][T14055] __msan_chain_origin+0x50/0x90 [ 641.197352][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.202482][T14055] get_compat_msghdr+0x108/0x270 [ 641.207425][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.211936][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 641.218001][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 641.223642][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 641.228748][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 641.234381][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 641.239752][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 641.244510][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 641.249267][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 641.255766][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.260452][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.266519][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 641.272864][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.279018][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.284220][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.289070][T14055] do_SYSENTER_32+0x73/0x90 [ 641.293573][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.299990][T14055] RIP: 0023:0xf7fd1549 [ 641.304045][T14055] Code: Bad RIP value. [ 641.308103][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 641.316547][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 641.324519][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 641.332659][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 641.340630][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 641.348597][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 641.356578][T14055] Uninit was stored to memory at: [ 641.361607][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.367318][T14055] __msan_chain_origin+0x50/0x90 [ 641.372264][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.377371][T14055] get_compat_msghdr+0x108/0x270 [ 641.382303][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.386800][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.391476][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.397541][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.403695][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.408902][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.413749][T14055] do_SYSENTER_32+0x73/0x90 [ 641.418248][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.424555][T14055] [ 641.426879][T14055] Uninit was stored to memory at: [ 641.431904][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.437615][T14055] __msan_chain_origin+0x50/0x90 [ 641.442547][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.447655][T14055] get_compat_msghdr+0x108/0x270 [ 641.452592][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.457090][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.461756][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.467815][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.473963][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.479154][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.483996][T14055] do_SYSENTER_32+0x73/0x90 [ 641.488495][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.494805][T14055] [ 641.497121][T14055] Uninit was stored to memory at: [ 641.502135][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.507845][T14055] __msan_chain_origin+0x50/0x90 [ 641.512778][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.517879][T14055] get_compat_msghdr+0x108/0x270 [ 641.522809][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.527308][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.531976][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.538035][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.544273][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.549472][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.554321][T14055] do_SYSENTER_32+0x73/0x90 [ 641.558816][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.565122][T14055] [ 641.567439][T14055] Uninit was stored to memory at: [ 641.572460][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.578170][T14055] __msan_chain_origin+0x50/0x90 [ 641.583117][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.588225][T14055] get_compat_msghdr+0x108/0x270 [ 641.593158][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.597655][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.602326][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.608388][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.614535][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.619727][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.624578][T14055] do_SYSENTER_32+0x73/0x90 [ 641.629073][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.635385][T14055] [ 641.637703][T14055] Uninit was stored to memory at: [ 641.642852][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.648562][T14055] __msan_chain_origin+0x50/0x90 [ 641.653507][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.658620][T14055] get_compat_msghdr+0x108/0x270 [ 641.663556][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.668054][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.672730][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.682526][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.688676][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.693870][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.698713][T14055] do_SYSENTER_32+0x73/0x90 [ 641.703207][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.709517][T14055] [ 641.711832][T14055] Uninit was stored to memory at: [ 641.716855][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.722574][T14055] __msan_chain_origin+0x50/0x90 [ 641.727509][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.732617][T14055] get_compat_msghdr+0x108/0x270 [ 641.737589][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.742106][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.746784][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.753116][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.759264][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.764458][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.769304][T14055] do_SYSENTER_32+0x73/0x90 [ 641.773800][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.780108][T14055] [ 641.782426][T14055] Uninit was stored to memory at: [ 641.787446][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 641.793156][T14055] __msan_chain_origin+0x50/0x90 [ 641.798090][T14055] __get_compat_msghdr+0x5be/0x890 [ 641.803203][T14055] get_compat_msghdr+0x108/0x270 [ 641.808161][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 641.812658][T14055] __sys_recvmmsg+0x4ca/0x510 [ 641.817329][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 641.823390][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 641.829539][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 641.834735][T14055] do_fast_syscall_32+0x6b/0xd0 [ 641.839595][T14055] do_SYSENTER_32+0x73/0x90 [ 641.849925][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 641.856236][T14055] [ 641.858557][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 641.865280][T14055] do_recvmmsg+0xc5/0x1ee0 [ 641.869780][T14055] do_recvmmsg+0xc5/0x1ee0 [ 642.053098][T14055] not chained 2310000 origins [ 642.057806][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 642.066469][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 642.076516][T14055] Call Trace: [ 642.079807][T14055] dump_stack+0x1df/0x240 [ 642.084142][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 642.089864][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 642.094979][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 642.100091][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 642.105900][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 642.111965][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 642.116903][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 642.122008][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 642.127550][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 642.133625][T14055] ? _copy_from_user+0x15b/0x260 [ 642.138567][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 642.143678][T14055] __msan_chain_origin+0x50/0x90 [ 642.148617][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.153750][T14055] get_compat_msghdr+0x108/0x270 [ 642.158698][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.163205][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 642.169266][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 642.174907][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 642.180016][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 642.185647][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 642.190934][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 642.195694][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 642.200457][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 642.205655][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.210343][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.216409][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 642.222649][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.228799][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.234005][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.238853][T14055] do_SYSENTER_32+0x73/0x90 [ 642.243351][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.249670][T14055] RIP: 0023:0xf7fd1549 [ 642.253725][T14055] Code: Bad RIP value. [ 642.257783][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 642.266191][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 642.274157][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 642.282132][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 642.290094][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 642.298062][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 642.306036][T14055] Uninit was stored to memory at: [ 642.311066][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.316782][T14055] __msan_chain_origin+0x50/0x90 [ 642.321718][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.326823][T14055] get_compat_msghdr+0x108/0x270 [ 642.331769][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.336267][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.340937][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.346999][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.353149][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.358343][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.363188][T14055] do_SYSENTER_32+0x73/0x90 [ 642.367682][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.374008][T14055] [ 642.376323][T14055] Uninit was stored to memory at: [ 642.381338][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.387047][T14055] __msan_chain_origin+0x50/0x90 [ 642.391981][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.397090][T14055] get_compat_msghdr+0x108/0x270 [ 642.402026][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.406526][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.411198][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.417259][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.423536][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.428728][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.433569][T14055] do_SYSENTER_32+0x73/0x90 [ 642.438066][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.444378][T14055] [ 642.446703][T14055] Uninit was stored to memory at: [ 642.451723][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.457433][T14055] __msan_chain_origin+0x50/0x90 [ 642.462463][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.467567][T14055] get_compat_msghdr+0x108/0x270 [ 642.472501][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.477000][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.481673][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.487731][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.493910][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.499105][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.503947][T14055] do_SYSENTER_32+0x73/0x90 [ 642.508446][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.514755][T14055] [ 642.517073][T14055] Uninit was stored to memory at: [ 642.522092][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.527802][T14055] __msan_chain_origin+0x50/0x90 [ 642.532734][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.537836][T14055] get_compat_msghdr+0x108/0x270 [ 642.542765][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.547276][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.551953][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.558017][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.564164][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.569384][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.574258][T14055] do_SYSENTER_32+0x73/0x90 [ 642.578758][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.585077][T14055] [ 642.587394][T14055] Uninit was stored to memory at: [ 642.592436][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.598152][T14055] __msan_chain_origin+0x50/0x90 [ 642.603091][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.608199][T14055] get_compat_msghdr+0x108/0x270 [ 642.613140][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.617655][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.622328][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.628391][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.634543][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.639742][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.644589][T14055] do_SYSENTER_32+0x73/0x90 [ 642.649087][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.655397][T14055] [ 642.657718][T14055] Uninit was stored to memory at: [ 642.662739][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.668493][T14055] __msan_chain_origin+0x50/0x90 [ 642.673433][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.678540][T14055] get_compat_msghdr+0x108/0x270 [ 642.683469][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.687988][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.692745][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.698804][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.704951][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.710149][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.715004][T14055] do_SYSENTER_32+0x73/0x90 [ 642.719499][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.725820][T14055] [ 642.728137][T14055] Uninit was stored to memory at: [ 642.733157][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 642.738871][T14055] __msan_chain_origin+0x50/0x90 [ 642.743801][T14055] __get_compat_msghdr+0x5be/0x890 [ 642.748933][T14055] get_compat_msghdr+0x108/0x270 [ 642.754820][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 642.759315][T14055] __sys_recvmmsg+0x4ca/0x510 [ 642.763981][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 642.770198][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 642.776397][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 642.781613][T14055] do_fast_syscall_32+0x6b/0xd0 [ 642.786462][T14055] do_SYSENTER_32+0x73/0x90 [ 642.790964][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 642.797277][T14055] [ 642.799597][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 642.806269][T14055] do_recvmmsg+0xc5/0x1ee0 [ 642.810786][T14055] do_recvmmsg+0xc5/0x1ee0 [ 642.994982][T14055] not chained 2320000 origins [ 642.999692][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 643.008351][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 643.018396][T14055] Call Trace: [ 643.021686][T14055] dump_stack+0x1df/0x240 [ 643.026018][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 643.031827][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 643.036936][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.042049][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 643.047851][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 643.053909][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 643.058845][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.063949][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 643.069492][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 643.075561][T14055] ? _copy_from_user+0x15b/0x260 [ 643.080493][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.085611][T14055] __msan_chain_origin+0x50/0x90 [ 643.090545][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.095669][T14055] get_compat_msghdr+0x108/0x270 [ 643.100613][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.105125][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 643.111186][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 643.116835][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.121936][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 643.127562][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 643.132854][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 643.137619][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 643.142375][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 643.147571][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.152261][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.158342][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 643.164582][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.170731][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.175933][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.180781][T14055] do_SYSENTER_32+0x73/0x90 [ 643.185278][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.191601][T14055] RIP: 0023:0xf7fd1549 [ 643.195653][T14055] Code: Bad RIP value. [ 643.199710][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 643.208111][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 643.216075][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 643.224036][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 643.232007][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 643.239969][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 643.247941][T14055] Uninit was stored to memory at: [ 643.252964][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.258673][T14055] __msan_chain_origin+0x50/0x90 [ 643.263627][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.268736][T14055] get_compat_msghdr+0x108/0x270 [ 643.273671][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.278169][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.282835][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.288900][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.295046][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.300245][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.305095][T14055] do_SYSENTER_32+0x73/0x90 [ 643.309594][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.315903][T14055] [ 643.318222][T14055] Uninit was stored to memory at: [ 643.323241][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.328949][T14055] __msan_chain_origin+0x50/0x90 [ 643.333880][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.339110][T14055] get_compat_msghdr+0x108/0x270 [ 643.344044][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.348541][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.353310][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.359366][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.365510][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.370703][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.375542][T14055] do_SYSENTER_32+0x73/0x90 [ 643.380045][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.386350][T14055] [ 643.388664][T14055] Uninit was stored to memory at: [ 643.393678][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.399387][T14055] __msan_chain_origin+0x50/0x90 [ 643.404321][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.409426][T14055] get_compat_msghdr+0x108/0x270 [ 643.414361][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.418859][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.423530][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.429590][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.435740][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.440935][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.445786][T14055] do_SYSENTER_32+0x73/0x90 [ 643.450285][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.456596][T14055] [ 643.458912][T14055] Uninit was stored to memory at: [ 643.464013][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.469724][T14055] __msan_chain_origin+0x50/0x90 [ 643.474659][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.479762][T14055] get_compat_msghdr+0x108/0x270 [ 643.484690][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.489182][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.493858][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.499918][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.506066][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.511258][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.516111][T14055] do_SYSENTER_32+0x73/0x90 [ 643.520609][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.526919][T14055] [ 643.529235][T14055] Uninit was stored to memory at: [ 643.534252][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.539963][T14055] __msan_chain_origin+0x50/0x90 [ 643.544908][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.550011][T14055] get_compat_msghdr+0x108/0x270 [ 643.554943][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.559454][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.564124][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.570182][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.576329][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.581608][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.586459][T14055] do_SYSENTER_32+0x73/0x90 [ 643.591246][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.597640][T14055] [ 643.599958][T14055] Uninit was stored to memory at: [ 643.604975][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.610683][T14055] __msan_chain_origin+0x50/0x90 [ 643.615609][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.620709][T14055] get_compat_msghdr+0x108/0x270 [ 643.625634][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.630125][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.634791][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.640858][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.647002][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.652199][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.657040][T14055] do_SYSENTER_32+0x73/0x90 [ 643.661527][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.667831][T14055] [ 643.670143][T14055] Uninit was stored to memory at: [ 643.675160][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 643.680867][T14055] __msan_chain_origin+0x50/0x90 [ 643.685809][T14055] __get_compat_msghdr+0x5be/0x890 [ 643.690921][T14055] get_compat_msghdr+0x108/0x270 [ 643.695856][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 643.700357][T14055] __sys_recvmmsg+0x4ca/0x510 [ 643.705028][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 643.711294][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 643.717438][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 643.722742][T14055] do_fast_syscall_32+0x6b/0xd0 [ 643.727587][T14055] do_SYSENTER_32+0x73/0x90 [ 643.732082][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 643.738389][T14055] [ 643.740697][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 643.747361][T14055] do_recvmmsg+0xc5/0x1ee0 [ 643.751768][T14055] do_recvmmsg+0xc5/0x1ee0 [ 643.922344][T14055] not chained 2330000 origins [ 643.927021][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 643.935660][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 643.945686][T14055] Call Trace: [ 643.948950][T14055] dump_stack+0x1df/0x240 [ 643.953253][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 643.958948][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 643.964028][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.969112][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 643.974889][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 643.980930][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 643.985844][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 643.990928][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 643.996450][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 644.002538][T14055] ? _copy_from_user+0x15b/0x260 [ 644.007458][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.012545][T14055] __msan_chain_origin+0x50/0x90 [ 644.017461][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.022552][T14055] get_compat_msghdr+0x108/0x270 [ 644.027468][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.031946][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 644.037987][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 644.043607][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.048728][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 644.054332][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 644.059593][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 644.064329][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 644.069062][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 644.074244][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.078898][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.084937][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 644.091150][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.097292][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.102469][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.107295][T14055] do_SYSENTER_32+0x73/0x90 [ 644.111775][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.118069][T14055] RIP: 0023:0xf7fd1549 [ 644.122104][T14055] Code: Bad RIP value. [ 644.126139][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 644.134522][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 644.142464][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 644.150405][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 644.158355][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 644.166295][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 644.174241][T14055] Uninit was stored to memory at: [ 644.179237][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.184926][T14055] __msan_chain_origin+0x50/0x90 [ 644.189837][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.194920][T14055] get_compat_msghdr+0x108/0x270 [ 644.199846][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.204320][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.208974][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.215031][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.221154][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.226330][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.231184][T14055] do_SYSENTER_32+0x73/0x90 [ 644.235667][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.241976][T14055] [ 644.244276][T14055] Uninit was stored to memory at: [ 644.249293][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.254980][T14055] __msan_chain_origin+0x50/0x90 [ 644.259886][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.264965][T14055] get_compat_msghdr+0x108/0x270 [ 644.269871][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.274384][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.279029][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.285064][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.291186][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.296357][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.301178][T14055] do_SYSENTER_32+0x73/0x90 [ 644.305652][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.311950][T14055] [ 644.314254][T14055] Uninit was stored to memory at: [ 644.319255][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.324944][T14055] __msan_chain_origin+0x50/0x90 [ 644.329852][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.334933][T14055] get_compat_msghdr+0x108/0x270 [ 644.339859][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.344346][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.348993][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.355031][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.361153][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.366320][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.371142][T14055] do_SYSENTER_32+0x73/0x90 [ 644.375619][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.381910][T14055] [ 644.384208][T14055] Uninit was stored to memory at: [ 644.389222][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.394915][T14055] __msan_chain_origin+0x50/0x90 [ 644.399833][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.406044][T14055] get_compat_msghdr+0x108/0x270 [ 644.410955][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.415449][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.420098][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.426176][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.432301][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.437471][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.442302][T14055] do_SYSENTER_32+0x73/0x90 [ 644.446773][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.453062][T14055] [ 644.455359][T14055] Uninit was stored to memory at: [ 644.460352][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.466047][T14055] __msan_chain_origin+0x50/0x90 [ 644.470953][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.476033][T14055] get_compat_msghdr+0x108/0x270 [ 644.480939][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.485412][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.490059][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.496094][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.502308][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.507479][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.512409][T14055] do_SYSENTER_32+0x73/0x90 [ 644.516908][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.523201][T14055] [ 644.525505][T14055] Uninit was stored to memory at: [ 644.530628][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.536321][T14055] __msan_chain_origin+0x50/0x90 [ 644.541231][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.546315][T14055] get_compat_msghdr+0x108/0x270 [ 644.551227][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.555699][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.560481][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.566521][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.572651][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.577844][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.582755][T14055] do_SYSENTER_32+0x73/0x90 [ 644.587229][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.593523][T14055] [ 644.595864][T14055] Uninit was stored to memory at: [ 644.600859][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 644.606555][T14055] __msan_chain_origin+0x50/0x90 [ 644.611522][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.616617][T14055] get_compat_msghdr+0x108/0x270 [ 644.621530][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.626009][T14055] __sys_recvmmsg+0x4ca/0x510 [ 644.630656][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 644.636694][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 644.642819][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 644.647986][T14055] do_fast_syscall_32+0x6b/0xd0 [ 644.652806][T14055] do_SYSENTER_32+0x73/0x90 [ 644.657279][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 644.663594][T14055] [ 644.665903][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 644.672552][T14055] do_recvmmsg+0xc5/0x1ee0 [ 644.677070][T14055] do_recvmmsg+0xc5/0x1ee0 [ 644.855356][T14055] not chained 2340000 origins [ 644.860096][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 644.868754][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 644.878797][T14055] Call Trace: [ 644.882085][T14055] dump_stack+0x1df/0x240 [ 644.886415][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 644.892136][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 644.897240][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.902476][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 644.908284][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 644.914345][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 644.919283][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.924392][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 644.929947][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 644.936018][T14055] ? _copy_from_user+0x15b/0x260 [ 644.940955][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.946062][T14055] __msan_chain_origin+0x50/0x90 [ 644.951026][T14055] __get_compat_msghdr+0x5be/0x890 [ 644.956167][T14055] get_compat_msghdr+0x108/0x270 [ 644.961110][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 644.965616][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 644.971682][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 644.977320][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 644.982424][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 644.988143][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 644.997157][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 645.001914][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 645.006675][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 645.011872][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.016556][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.022620][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 645.028850][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.035085][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.040286][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.045134][T14055] do_SYSENTER_32+0x73/0x90 [ 645.049634][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.055969][T14055] RIP: 0023:0xf7fd1549 [ 645.060023][T14055] Code: Bad RIP value. [ 645.064077][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 645.072485][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 645.080445][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 645.088416][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 645.096389][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 645.104357][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 645.112331][T14055] Uninit was stored to memory at: [ 645.117354][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.123071][T14055] __msan_chain_origin+0x50/0x90 [ 645.128006][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.133121][T14055] get_compat_msghdr+0x108/0x270 [ 645.138139][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.142657][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.147330][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.153393][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.159551][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.164746][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.169595][T14055] do_SYSENTER_32+0x73/0x90 [ 645.174185][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.180501][T14055] [ 645.182814][T14055] Uninit was stored to memory at: [ 645.187832][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.193544][T14055] __msan_chain_origin+0x50/0x90 [ 645.198498][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.203606][T14055] get_compat_msghdr+0x108/0x270 [ 645.208554][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.213050][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.217719][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.223780][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.229927][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.235212][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.240144][T14055] do_SYSENTER_32+0x73/0x90 [ 645.244642][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.250955][T14055] [ 645.253269][T14055] Uninit was stored to memory at: [ 645.258290][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.263997][T14055] __msan_chain_origin+0x50/0x90 [ 645.268928][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.274040][T14055] get_compat_msghdr+0x108/0x270 [ 645.278971][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.283463][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.288225][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.294285][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.300436][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.305631][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.310607][T14055] do_SYSENTER_32+0x73/0x90 [ 645.315107][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.321418][T14055] [ 645.323754][T14055] Uninit was stored to memory at: [ 645.328787][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.334503][T14055] __msan_chain_origin+0x50/0x90 [ 645.339439][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.344542][T14055] get_compat_msghdr+0x108/0x270 [ 645.349473][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.353973][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.358638][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.364694][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.370845][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.376038][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.380889][T14055] do_SYSENTER_32+0x73/0x90 [ 645.385387][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.391696][T14055] [ 645.394011][T14055] Uninit was stored to memory at: [ 645.399030][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.404741][T14055] __msan_chain_origin+0x50/0x90 [ 645.409673][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.414778][T14055] get_compat_msghdr+0x108/0x270 [ 645.419712][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.424207][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.428878][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.434937][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.441086][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.446281][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.451122][T14055] do_SYSENTER_32+0x73/0x90 [ 645.455620][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.461928][T14055] [ 645.464250][T14055] Uninit was stored to memory at: [ 645.469267][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.474985][T14055] __msan_chain_origin+0x50/0x90 [ 645.479920][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.485026][T14055] get_compat_msghdr+0x108/0x270 [ 645.489956][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.494456][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.499122][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.505182][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.511331][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.516523][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.521394][T14055] do_SYSENTER_32+0x73/0x90 [ 645.525888][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.532196][T14055] [ 645.534514][T14055] Uninit was stored to memory at: [ 645.539531][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 645.545248][T14055] __msan_chain_origin+0x50/0x90 [ 645.550183][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.555286][T14055] get_compat_msghdr+0x108/0x270 [ 645.560214][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.564706][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.569375][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.575430][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.581588][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.586800][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.591649][T14055] do_SYSENTER_32+0x73/0x90 [ 645.596155][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.602462][T14055] [ 645.604781][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 645.611459][T14055] do_recvmmsg+0xc5/0x1ee0 [ 645.615888][T14055] do_recvmmsg+0xc5/0x1ee0 [ 645.798006][T14055] not chained 2350000 origins [ 645.802710][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 645.811366][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 645.821496][T14055] Call Trace: [ 645.824786][T14055] dump_stack+0x1df/0x240 [ 645.829117][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 645.834842][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 645.839953][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 645.845063][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 645.850868][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 645.856931][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 645.861901][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 645.867009][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 645.872557][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 645.878624][T14055] ? _copy_from_user+0x15b/0x260 [ 645.883554][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 645.888659][T14055] __msan_chain_origin+0x50/0x90 [ 645.893596][T14055] __get_compat_msghdr+0x5be/0x890 [ 645.898724][T14055] get_compat_msghdr+0x108/0x270 [ 645.903671][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 645.908180][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 645.914245][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 645.919890][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 645.925000][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 645.930631][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 645.935920][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 645.940679][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 645.945436][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 645.950642][T14055] __sys_recvmmsg+0x4ca/0x510 [ 645.955322][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 645.961386][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 645.967620][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 645.973771][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 645.978976][T14055] do_fast_syscall_32+0x6b/0xd0 [ 645.983826][T14055] do_SYSENTER_32+0x73/0x90 [ 645.988325][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 645.994643][T14055] RIP: 0023:0xf7fd1549 [ 645.998696][T14055] Code: Bad RIP value. [ 646.002752][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 646.011158][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 646.019206][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 646.027169][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 646.035131][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 646.043096][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 646.051078][T14055] Uninit was stored to memory at: [ 646.056188][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.061902][T14055] __msan_chain_origin+0x50/0x90 [ 646.066836][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.071942][T14055] get_compat_msghdr+0x108/0x270 [ 646.076880][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.081378][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.086045][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.092107][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.098252][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.103442][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.108286][T14055] do_SYSENTER_32+0x73/0x90 [ 646.112780][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.119105][T14055] [ 646.121423][T14055] Uninit was stored to memory at: [ 646.126442][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.132156][T14055] __msan_chain_origin+0x50/0x90 [ 646.137099][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.142200][T14055] get_compat_msghdr+0x108/0x270 [ 646.147135][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.151645][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.156318][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.162380][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.168542][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.173744][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.178599][T14055] do_SYSENTER_32+0x73/0x90 [ 646.183093][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.189402][T14055] [ 646.191722][T14055] Uninit was stored to memory at: [ 646.196773][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.202487][T14055] __msan_chain_origin+0x50/0x90 [ 646.207428][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.212536][T14055] get_compat_msghdr+0x108/0x270 [ 646.217472][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.221974][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.226644][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.232715][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.238857][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.244050][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.248981][T14055] do_SYSENTER_32+0x73/0x90 [ 646.253479][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.259794][T14055] [ 646.262117][T14055] Uninit was stored to memory at: [ 646.267145][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.272862][T14055] __msan_chain_origin+0x50/0x90 [ 646.277801][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.282913][T14055] get_compat_msghdr+0x108/0x270 [ 646.287844][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.292341][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.297024][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.303097][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.309257][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.314452][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.319306][T14055] do_SYSENTER_32+0x73/0x90 [ 646.323802][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.330114][T14055] [ 646.332445][T14055] Uninit was stored to memory at: [ 646.337472][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.343220][T14055] __msan_chain_origin+0x50/0x90 [ 646.348156][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.353262][T14055] get_compat_msghdr+0x108/0x270 [ 646.358202][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.362700][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.367369][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.373428][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.379586][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.384782][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.389627][T14055] do_SYSENTER_32+0x73/0x90 [ 646.394125][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.400432][T14055] [ 646.402748][T14055] Uninit was stored to memory at: [ 646.407763][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.413483][T14055] __msan_chain_origin+0x50/0x90 [ 646.418418][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.423528][T14055] get_compat_msghdr+0x108/0x270 [ 646.428472][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.432973][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.437647][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.443708][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.449855][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.455049][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.459898][T14055] do_SYSENTER_32+0x73/0x90 [ 646.464520][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.470916][T14055] [ 646.473233][T14055] Uninit was stored to memory at: [ 646.478255][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 646.484076][T14055] __msan_chain_origin+0x50/0x90 [ 646.489016][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.494124][T14055] get_compat_msghdr+0x108/0x270 [ 646.499055][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.503551][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.508221][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.514277][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.520425][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.525620][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.530472][T14055] do_SYSENTER_32+0x73/0x90 [ 646.534967][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.541295][T14055] [ 646.543612][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 646.550279][T14055] do_recvmmsg+0xc5/0x1ee0 [ 646.554690][T14055] do_recvmmsg+0xc5/0x1ee0 [ 646.736675][T14055] not chained 2360000 origins [ 646.741380][T14055] CPU: 0 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 646.750040][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 646.760085][T14055] Call Trace: [ 646.763394][T14055] dump_stack+0x1df/0x240 [ 646.767729][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 646.773452][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 646.778568][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 646.783675][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 646.789489][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 646.795552][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 646.800496][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 646.805616][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 646.811168][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 646.817236][T14055] ? _copy_from_user+0x15b/0x260 [ 646.822168][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 646.827277][T14055] __msan_chain_origin+0x50/0x90 [ 646.832219][T14055] __get_compat_msghdr+0x5be/0x890 [ 646.837347][T14055] get_compat_msghdr+0x108/0x270 [ 646.842294][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 646.846885][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 646.852951][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 646.858594][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 646.863794][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 646.869432][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 646.874725][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 646.879497][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 646.884263][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 646.889530][T14055] __sys_recvmmsg+0x4ca/0x510 [ 646.894212][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 646.900277][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 646.906517][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 646.912675][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 646.917882][T14055] do_fast_syscall_32+0x6b/0xd0 [ 646.922743][T14055] do_SYSENTER_32+0x73/0x90 [ 646.927243][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 646.933561][T14055] RIP: 0023:0xf7fd1549 [ 646.937616][T14055] Code: Bad RIP value. [ 646.941670][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 646.950075][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 646.958039][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 646.966003][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 646.973968][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 646.981995][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 646.989967][T14055] Uninit was stored to memory at: [ 646.995004][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.000740][T14055] __msan_chain_origin+0x50/0x90 [ 647.005680][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.010792][T14055] get_compat_msghdr+0x108/0x270 [ 647.015728][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.020227][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.024915][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.030984][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.037135][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.042327][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.047175][T14055] do_SYSENTER_32+0x73/0x90 [ 647.051675][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.057986][T14055] [ 647.060301][T14055] Uninit was stored to memory at: [ 647.065325][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.071034][T14055] __msan_chain_origin+0x50/0x90 [ 647.075968][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.081074][T14055] get_compat_msghdr+0x108/0x270 [ 647.086009][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.090528][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.095197][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.101259][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.107422][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.112621][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.117470][T14055] do_SYSENTER_32+0x73/0x90 [ 647.121970][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.128276][T14055] [ 647.130604][T14055] Uninit was stored to memory at: [ 647.135621][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.141348][T14055] __msan_chain_origin+0x50/0x90 [ 647.146409][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.151541][T14055] get_compat_msghdr+0x108/0x270 [ 647.156475][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.160971][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.165665][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.171728][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.177878][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.183157][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.188002][T14055] do_SYSENTER_32+0x73/0x90 [ 647.192499][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.198809][T14055] [ 647.201124][T14055] Uninit was stored to memory at: [ 647.206145][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.211860][T14055] __msan_chain_origin+0x50/0x90 [ 647.216792][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.221894][T14055] get_compat_msghdr+0x108/0x270 [ 647.226826][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.231324][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.236005][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.242064][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.248207][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.253400][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.258332][T14055] do_SYSENTER_32+0x73/0x90 [ 647.262838][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.269162][T14055] [ 647.271481][T14055] Uninit was stored to memory at: [ 647.276504][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.282217][T14055] __msan_chain_origin+0x50/0x90 [ 647.287151][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.292342][T14055] get_compat_msghdr+0x108/0x270 [ 647.297284][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.301778][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.306451][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.312514][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.318668][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.323867][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.328714][T14055] do_SYSENTER_32+0x73/0x90 [ 647.333212][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.339521][T14055] [ 647.341840][T14055] Uninit was stored to memory at: [ 647.346859][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.352575][T14055] __msan_chain_origin+0x50/0x90 [ 647.357510][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.362619][T14055] get_compat_msghdr+0x108/0x270 [ 647.367553][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.372138][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.376820][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.382889][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.389035][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.394222][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.399064][T14055] do_SYSENTER_32+0x73/0x90 [ 647.403558][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.409867][T14055] [ 647.412184][T14055] Uninit was stored to memory at: [ 647.417215][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.422941][T14055] __msan_chain_origin+0x50/0x90 [ 647.427894][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.433017][T14055] get_compat_msghdr+0x108/0x270 [ 647.437964][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.442464][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.447130][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.453189][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.459351][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.464558][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.469403][T14055] do_SYSENTER_32+0x73/0x90 [ 647.473898][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.480236][T14055] [ 647.482556][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 647.489219][T14055] do_recvmmsg+0xc5/0x1ee0 [ 647.493626][T14055] do_recvmmsg+0xc5/0x1ee0 [ 647.669799][T14055] not chained 2370000 origins [ 647.674525][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 647.683183][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.693226][T14055] Call Trace: [ 647.696518][T14055] dump_stack+0x1df/0x240 [ 647.700887][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 647.706613][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 647.711725][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 647.716833][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 647.722755][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 647.728817][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 647.733758][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 647.738869][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 647.744410][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 647.750490][T14055] ? _copy_from_user+0x15b/0x260 [ 647.755423][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 647.760540][T14055] __msan_chain_origin+0x50/0x90 [ 647.765500][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.770631][T14055] get_compat_msghdr+0x108/0x270 [ 647.775589][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.780089][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.786153][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 647.791799][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 647.796907][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 647.802545][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 647.807827][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 647.812589][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 647.817369][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 647.822560][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.827239][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.833391][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 647.839625][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.845774][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.850978][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.855826][T14055] do_SYSENTER_32+0x73/0x90 [ 647.860327][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.866652][T14055] RIP: 0023:0xf7fd1549 [ 647.870707][T14055] Code: Bad RIP value. [ 647.874764][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 647.883167][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 647.891129][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 647.899091][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 647.907074][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 647.915037][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 647.923008][T14055] Uninit was stored to memory at: [ 647.928028][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 647.933738][T14055] __msan_chain_origin+0x50/0x90 [ 647.938669][T14055] __get_compat_msghdr+0x5be/0x890 [ 647.943764][T14055] get_compat_msghdr+0x108/0x270 [ 647.948697][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 647.953190][T14055] __sys_recvmmsg+0x4ca/0x510 [ 647.957857][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.963912][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.970096][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 647.975287][T14055] do_fast_syscall_32+0x6b/0xd0 [ 647.980127][T14055] do_SYSENTER_32+0x73/0x90 [ 647.984620][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.990927][T14055] [ 647.993239][T14055] Uninit was stored to memory at: [ 647.998273][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.003986][T14055] __msan_chain_origin+0x50/0x90 [ 648.008918][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.014027][T14055] get_compat_msghdr+0x108/0x270 [ 648.018967][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.023471][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.028134][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.034200][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.040344][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.045661][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.050531][T14055] do_SYSENTER_32+0x73/0x90 [ 648.055024][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.061334][T14055] [ 648.063649][T14055] Uninit was stored to memory at: [ 648.068663][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.074376][T14055] __msan_chain_origin+0x50/0x90 [ 648.079305][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.084404][T14055] get_compat_msghdr+0x108/0x270 [ 648.089333][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.093831][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.098502][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.104564][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.110714][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.117473][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.122317][T14055] do_SYSENTER_32+0x73/0x90 [ 648.126813][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.133134][T14055] [ 648.135450][T14055] Uninit was stored to memory at: [ 648.140470][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.146197][T14055] __msan_chain_origin+0x50/0x90 [ 648.151131][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.156237][T14055] get_compat_msghdr+0x108/0x270 [ 648.161168][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.165661][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.170335][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.176396][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.182543][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.187746][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.192676][T14055] do_SYSENTER_32+0x73/0x90 [ 648.197181][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.203489][T14055] [ 648.205808][T14055] Uninit was stored to memory at: [ 648.210913][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.216751][T14055] __msan_chain_origin+0x50/0x90 [ 648.221695][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.226798][T14055] get_compat_msghdr+0x108/0x270 [ 648.231728][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.236224][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.240888][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.246942][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.253092][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.258279][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.263118][T14055] do_SYSENTER_32+0x73/0x90 [ 648.267609][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.273917][T14055] [ 648.276232][T14055] Uninit was stored to memory at: [ 648.281252][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.286966][T14055] __msan_chain_origin+0x50/0x90 [ 648.291901][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.297007][T14055] get_compat_msghdr+0x108/0x270 [ 648.301944][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.306438][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.311120][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.317224][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.323370][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.328560][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.333408][T14055] do_SYSENTER_32+0x73/0x90 [ 648.337903][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.344210][T14055] [ 648.346520][T14055] Uninit was stored to memory at: [ 648.351536][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.357275][T14055] __msan_chain_origin+0x50/0x90 [ 648.362218][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.367319][T14055] get_compat_msghdr+0x108/0x270 [ 648.372248][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.376747][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.381412][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.387466][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.393613][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.398815][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.403656][T14055] do_SYSENTER_32+0x73/0x90 [ 648.408147][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.414455][T14055] [ 648.416770][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 648.423434][T14055] do_recvmmsg+0xc5/0x1ee0 [ 648.427842][T14055] do_recvmmsg+0xc5/0x1ee0 [ 648.628520][T14055] not chained 2380000 origins [ 648.633321][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 648.641984][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 648.652119][T14055] Call Trace: [ 648.655407][T14055] dump_stack+0x1df/0x240 [ 648.659742][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 648.665467][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 648.670583][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 648.675702][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 648.681505][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 648.687568][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 648.692511][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 648.697968][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 648.703508][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 648.709580][T14055] ? _copy_from_user+0x15b/0x260 [ 648.714509][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 648.719624][T14055] __msan_chain_origin+0x50/0x90 [ 648.724656][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.729780][T14055] get_compat_msghdr+0x108/0x270 [ 648.734818][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.739411][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 648.745478][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 648.751121][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 648.756229][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 648.761860][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 648.767231][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 648.772003][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 648.776762][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 648.781958][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.786641][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.792713][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 648.798953][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.805101][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.810344][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.815204][T14055] do_SYSENTER_32+0x73/0x90 [ 648.819709][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.826144][T14055] RIP: 0023:0xf7fd1549 [ 648.830199][T14055] Code: Bad RIP value. [ 648.834254][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 648.842653][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 648.850615][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 648.858580][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 648.866541][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 648.874508][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 648.882495][T14055] Uninit was stored to memory at: [ 648.887605][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.893318][T14055] __msan_chain_origin+0x50/0x90 [ 648.898253][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.903356][T14055] get_compat_msghdr+0x108/0x270 [ 648.908284][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.912778][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.917455][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.923604][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.929750][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 648.935116][T14055] do_fast_syscall_32+0x6b/0xd0 [ 648.939962][T14055] do_SYSENTER_32+0x73/0x90 [ 648.944489][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.950803][T14055] [ 648.953121][T14055] Uninit was stored to memory at: [ 648.958142][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 648.963983][T14055] __msan_chain_origin+0x50/0x90 [ 648.968946][T14055] __get_compat_msghdr+0x5be/0x890 [ 648.974053][T14055] get_compat_msghdr+0x108/0x270 [ 648.979070][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 648.983562][T14055] __sys_recvmmsg+0x4ca/0x510 [ 648.988235][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.994293][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.000457][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.005749][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.010597][T14055] do_SYSENTER_32+0x73/0x90 [ 649.015093][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.021400][T14055] [ 649.023733][T14055] Uninit was stored to memory at: [ 649.028782][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.034514][T14055] __msan_chain_origin+0x50/0x90 [ 649.039451][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.044558][T14055] get_compat_msghdr+0x108/0x270 [ 649.049522][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.054019][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.058687][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.064747][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.070895][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.076104][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.080946][T14055] do_SYSENTER_32+0x73/0x90 [ 649.085445][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.091754][T14055] [ 649.094069][T14055] Uninit was stored to memory at: [ 649.099165][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.104978][T14055] __msan_chain_origin+0x50/0x90 [ 649.109916][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.115027][T14055] get_compat_msghdr+0x108/0x270 [ 649.119959][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.124454][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.129122][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.135183][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.141331][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.146529][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.151379][T14055] do_SYSENTER_32+0x73/0x90 [ 649.155876][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.162183][T14055] [ 649.164501][T14055] Uninit was stored to memory at: [ 649.169519][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.175236][T14055] __msan_chain_origin+0x50/0x90 [ 649.180173][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.185280][T14055] get_compat_msghdr+0x108/0x270 [ 649.190216][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.194724][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.199397][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.205458][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.211613][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.216813][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.221658][T14055] do_SYSENTER_32+0x73/0x90 [ 649.226150][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.232465][T14055] [ 649.234786][T14055] Uninit was stored to memory at: [ 649.239810][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.245521][T14055] __msan_chain_origin+0x50/0x90 [ 649.250472][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.255578][T14055] get_compat_msghdr+0x108/0x270 [ 649.260508][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.265004][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.269676][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.275735][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.281883][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.287083][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.291932][T14055] do_SYSENTER_32+0x73/0x90 [ 649.296429][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.302741][T14055] [ 649.305055][T14055] Uninit was stored to memory at: [ 649.310078][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.315801][T14055] __msan_chain_origin+0x50/0x90 [ 649.320735][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.325840][T14055] get_compat_msghdr+0x108/0x270 [ 649.330786][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.335285][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.339952][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.346010][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.352156][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.357350][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.362192][T14055] do_SYSENTER_32+0x73/0x90 [ 649.366685][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.372990][T14055] [ 649.375307][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 649.381974][T14055] do_recvmmsg+0xc5/0x1ee0 [ 649.386383][T14055] do_recvmmsg+0xc5/0x1ee0 [ 649.561240][T14055] not chained 2390000 origins [ 649.565940][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 649.574580][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 649.584619][T14055] Call Trace: [ 649.587914][T14055] dump_stack+0x1df/0x240 [ 649.592246][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 649.597969][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 649.603069][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 649.608176][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 649.613965][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 649.620017][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 649.624942][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 649.630026][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 649.635548][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 649.641591][T14055] ? _copy_from_user+0x15b/0x260 [ 649.646502][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 649.651588][T14055] __msan_chain_origin+0x50/0x90 [ 649.656503][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.661600][T14055] get_compat_msghdr+0x108/0x270 [ 649.666528][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.671005][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 649.677130][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 649.682744][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 649.687827][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 649.693435][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 649.698824][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 649.703583][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 649.708339][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 649.713521][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.718212][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.724265][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 649.731352][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.737489][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.742674][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.747510][T14055] do_SYSENTER_32+0x73/0x90 [ 649.752073][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.758387][T14055] RIP: 0023:0xf7fd1549 [ 649.762430][T14055] Code: Bad RIP value. [ 649.766474][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 649.774856][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 649.782802][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 649.790745][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 649.798705][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 649.806662][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 649.814618][T14055] Uninit was stored to memory at: [ 649.819628][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.825335][T14055] __msan_chain_origin+0x50/0x90 [ 649.830256][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.835351][T14055] get_compat_msghdr+0x108/0x270 [ 649.840265][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.844739][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.849415][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.855460][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.861589][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.866759][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.871600][T14055] do_SYSENTER_32+0x73/0x90 [ 649.876074][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.882384][T14055] [ 649.884689][T14055] Uninit was stored to memory at: [ 649.889707][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.895398][T14055] __msan_chain_origin+0x50/0x90 [ 649.900310][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.905396][T14055] get_compat_msghdr+0x108/0x270 [ 649.910306][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.914785][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.919449][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.925503][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 649.931633][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 649.936807][T14055] do_fast_syscall_32+0x6b/0xd0 [ 649.941636][T14055] do_SYSENTER_32+0x73/0x90 [ 649.946138][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 649.952432][T14055] [ 649.954755][T14055] Uninit was stored to memory at: [ 649.959777][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 649.965485][T14055] __msan_chain_origin+0x50/0x90 [ 649.970408][T14055] __get_compat_msghdr+0x5be/0x890 [ 649.975636][T14055] get_compat_msghdr+0x108/0x270 [ 649.980547][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 649.985021][T14055] __sys_recvmmsg+0x4ca/0x510 [ 649.989670][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 649.995706][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.001835][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.007007][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.011830][T14055] do_SYSENTER_32+0x73/0x90 [ 650.016307][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.022600][T14055] [ 650.024897][T14055] Uninit was stored to memory at: [ 650.029903][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.035603][T14055] __msan_chain_origin+0x50/0x90 [ 650.040524][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.045616][T14055] get_compat_msghdr+0x108/0x270 [ 650.050540][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.055044][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.059710][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.065759][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.071887][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.077061][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.081887][T14055] do_SYSENTER_32+0x73/0x90 [ 650.086362][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.092654][T14055] [ 650.094969][T14055] Uninit was stored to memory at: [ 650.099978][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.105682][T14055] __msan_chain_origin+0x50/0x90 [ 650.110610][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.115693][T14055] get_compat_msghdr+0x108/0x270 [ 650.120615][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.125101][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.129750][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.135801][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.141935][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.147224][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.152227][T14055] do_SYSENTER_32+0x73/0x90 [ 650.156721][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.163022][T14055] [ 650.165329][T14055] Uninit was stored to memory at: [ 650.170325][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.176015][T14055] __msan_chain_origin+0x50/0x90 [ 650.180926][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.186007][T14055] get_compat_msghdr+0x108/0x270 [ 650.190916][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.195386][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.200047][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.206094][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.212218][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.217386][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.222209][T14055] do_SYSENTER_32+0x73/0x90 [ 650.226682][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.232971][T14055] [ 650.235268][T14055] Uninit was stored to memory at: [ 650.240274][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.245974][T14055] __msan_chain_origin+0x50/0x90 [ 650.250910][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.256098][T14055] get_compat_msghdr+0x108/0x270 [ 650.261017][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.265499][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.270683][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.276732][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.282858][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.288029][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.292851][T14055] do_SYSENTER_32+0x73/0x90 [ 650.297327][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.303622][T14055] [ 650.305927][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 650.312591][T14055] do_recvmmsg+0xc5/0x1ee0 [ 650.316982][T14055] do_recvmmsg+0xc5/0x1ee0 [ 650.468805][T14055] not chained 2400000 origins [ 650.473613][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 650.482371][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 650.492515][T14055] Call Trace: [ 650.495806][T14055] dump_stack+0x1df/0x240 [ 650.500159][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 650.505881][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 650.510992][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 650.516101][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 650.521930][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 650.527998][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 650.532943][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 650.538055][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 650.543602][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 650.549671][T14055] ? _copy_from_user+0x15b/0x260 [ 650.554605][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 650.559715][T14055] __msan_chain_origin+0x50/0x90 [ 650.564657][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.569785][T14055] get_compat_msghdr+0x108/0x270 [ 650.574742][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.579249][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 650.585319][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 650.590968][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 650.596076][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 650.601705][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 650.606991][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 650.611750][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 650.616508][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 650.621706][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.626391][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.632465][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 650.638718][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.644871][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.650073][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.654924][T14055] do_SYSENTER_32+0x73/0x90 [ 650.659422][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.665741][T14055] RIP: 0023:0xf7fd1549 [ 650.669800][T14055] Code: Bad RIP value. [ 650.673857][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 650.682259][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 650.690217][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 650.698180][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 650.706144][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 650.714225][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 650.722205][T14055] Uninit was stored to memory at: [ 650.727232][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.732953][T14055] __msan_chain_origin+0x50/0x90 [ 650.737895][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.743016][T14055] get_compat_msghdr+0x108/0x270 [ 650.748048][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.752543][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.757228][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.763285][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.769517][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.774752][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.779618][T14055] do_SYSENTER_32+0x73/0x90 [ 650.784126][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.790437][T14055] [ 650.792755][T14055] Uninit was stored to memory at: [ 650.797779][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.803493][T14055] __msan_chain_origin+0x50/0x90 [ 650.808475][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.813582][T14055] get_compat_msghdr+0x108/0x270 [ 650.818516][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.823023][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.827692][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.833750][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.839895][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.845091][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.849944][T14055] do_SYSENTER_32+0x73/0x90 [ 650.854492][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.860799][T14055] [ 650.863110][T14055] Uninit was stored to memory at: [ 650.868128][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.873839][T14055] __msan_chain_origin+0x50/0x90 [ 650.878773][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.883873][T14055] get_compat_msghdr+0x108/0x270 [ 650.888798][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.893290][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.897963][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.904025][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.910175][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.915373][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.920221][T14055] do_SYSENTER_32+0x73/0x90 [ 650.924739][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.931064][T14055] [ 650.933377][T14055] Uninit was stored to memory at: [ 650.938406][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 650.944114][T14055] __msan_chain_origin+0x50/0x90 [ 650.949044][T14055] __get_compat_msghdr+0x5be/0x890 [ 650.954147][T14055] get_compat_msghdr+0x108/0x270 [ 650.959076][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 650.963590][T14055] __sys_recvmmsg+0x4ca/0x510 [ 650.968258][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.974322][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.980478][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 650.985671][T14055] do_fast_syscall_32+0x6b/0xd0 [ 650.990514][T14055] do_SYSENTER_32+0x73/0x90 [ 650.995012][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.001337][T14055] [ 651.003654][T14055] Uninit was stored to memory at: [ 651.008676][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.014387][T14055] __msan_chain_origin+0x50/0x90 [ 651.019325][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.024426][T14055] get_compat_msghdr+0x108/0x270 [ 651.029356][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.033851][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.038525][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.044585][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.050731][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.055936][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.060791][T14055] do_SYSENTER_32+0x73/0x90 [ 651.065285][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.071682][T14055] [ 651.074000][T14055] Uninit was stored to memory at: [ 651.079135][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.084853][T14055] __msan_chain_origin+0x50/0x90 [ 651.089785][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.094890][T14055] get_compat_msghdr+0x108/0x270 [ 651.099825][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.104325][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.108997][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.115143][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.121381][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.126577][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.131424][T14055] do_SYSENTER_32+0x73/0x90 [ 651.135935][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.142262][T14055] [ 651.144587][T14055] Uninit was stored to memory at: [ 651.149614][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.155333][T14055] __msan_chain_origin+0x50/0x90 [ 651.160282][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.165408][T14055] get_compat_msghdr+0x108/0x270 [ 651.170346][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.174853][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.179524][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.185584][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.191740][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.196935][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.201783][T14055] do_SYSENTER_32+0x73/0x90 [ 651.206281][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.212597][T14055] [ 651.214915][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 651.221585][T14055] do_recvmmsg+0xc5/0x1ee0 [ 651.225993][T14055] do_recvmmsg+0xc5/0x1ee0 [ 651.380400][T14055] not chained 2410000 origins [ 651.385113][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 651.393862][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.403922][T14055] Call Trace: [ 651.407214][T14055] dump_stack+0x1df/0x240 [ 651.411550][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 651.417274][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 651.422387][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 651.427499][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 651.433307][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 651.439374][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 651.444336][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 651.449530][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 651.455077][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 651.461149][T14055] ? _copy_from_user+0x15b/0x260 [ 651.466092][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 651.471202][T14055] __msan_chain_origin+0x50/0x90 [ 651.476143][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.481268][T14055] get_compat_msghdr+0x108/0x270 [ 651.486239][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.490750][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 651.496817][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 651.502459][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 651.507572][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 651.513200][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 651.518490][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 651.523255][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 651.528016][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 651.533213][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.538333][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.544400][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 651.550645][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.556794][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.562018][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.566864][T14055] do_SYSENTER_32+0x73/0x90 [ 651.571365][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.577700][T14055] RIP: 0023:0xf7fd1549 [ 651.581756][T14055] Code: Bad RIP value. [ 651.585812][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 651.594219][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 651.602186][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 651.610151][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 651.618117][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 651.626083][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 651.634054][T14055] Uninit was stored to memory at: [ 651.639090][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.644806][T14055] __msan_chain_origin+0x50/0x90 [ 651.649740][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.654860][T14055] get_compat_msghdr+0x108/0x270 [ 651.659794][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.664294][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.668968][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.675028][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.681176][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.686371][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.691225][T14055] do_SYSENTER_32+0x73/0x90 [ 651.695722][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.702030][T14055] [ 651.704346][T14055] Uninit was stored to memory at: [ 651.709368][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.715083][T14055] __msan_chain_origin+0x50/0x90 [ 651.720105][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.725214][T14055] get_compat_msghdr+0x108/0x270 [ 651.730150][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.734651][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.739324][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.745383][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.751542][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.756740][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.761585][T14055] do_SYSENTER_32+0x73/0x90 [ 651.766081][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.772391][T14055] [ 651.774706][T14055] Uninit was stored to memory at: [ 651.779722][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.785433][T14055] __msan_chain_origin+0x50/0x90 [ 651.790368][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.795472][T14055] get_compat_msghdr+0x108/0x270 [ 651.800403][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.804905][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.809588][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.815649][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.821909][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.827100][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.831946][T14055] do_SYSENTER_32+0x73/0x90 [ 651.836443][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.842805][T14055] [ 651.845121][T14055] Uninit was stored to memory at: [ 651.850147][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.855861][T14055] __msan_chain_origin+0x50/0x90 [ 651.860793][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.865902][T14055] get_compat_msghdr+0x108/0x270 [ 651.870836][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.875348][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.880028][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.886115][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.892265][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.897462][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.902315][T14055] do_SYSENTER_32+0x73/0x90 [ 651.906811][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.913120][T14055] [ 651.915441][T14055] Uninit was stored to memory at: [ 651.920464][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.926176][T14055] __msan_chain_origin+0x50/0x90 [ 651.931112][T14055] __get_compat_msghdr+0x5be/0x890 [ 651.936216][T14055] get_compat_msghdr+0x108/0x270 [ 651.941152][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 651.945649][T14055] __sys_recvmmsg+0x4ca/0x510 [ 651.950322][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.956399][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.962550][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 651.967836][T14055] do_fast_syscall_32+0x6b/0xd0 [ 651.972686][T14055] do_SYSENTER_32+0x73/0x90 [ 651.977183][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.983495][T14055] [ 651.985823][T14055] Uninit was stored to memory at: [ 651.990842][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 651.996558][T14055] __msan_chain_origin+0x50/0x90 [ 652.001496][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.006607][T14055] get_compat_msghdr+0x108/0x270 [ 652.011540][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.016039][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.020706][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.026765][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.032912][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.038115][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.043062][T14055] do_SYSENTER_32+0x73/0x90 [ 652.047559][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.053870][T14055] [ 652.056187][T14055] Uninit was stored to memory at: [ 652.061208][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.066916][T14055] __msan_chain_origin+0x50/0x90 [ 652.071853][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.076960][T14055] get_compat_msghdr+0x108/0x270 [ 652.081901][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.086403][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.091077][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.097140][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.103290][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.108489][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.113337][T14055] do_SYSENTER_32+0x73/0x90 [ 652.117948][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.124261][T14055] [ 652.126579][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 652.133249][T14055] do_recvmmsg+0xc5/0x1ee0 [ 652.137677][T14055] do_recvmmsg+0xc5/0x1ee0 [ 652.293768][T14055] not chained 2420000 origins [ 652.298541][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 652.307310][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 652.317359][T14055] Call Trace: [ 652.320650][T14055] dump_stack+0x1df/0x240 [ 652.324991][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 652.330805][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 652.335919][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 652.341030][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 652.346834][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 652.352903][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 652.357857][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 652.362967][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 652.368518][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 652.379103][T14055] ? _copy_from_user+0x15b/0x260 [ 652.384037][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 652.389330][T14055] __msan_chain_origin+0x50/0x90 [ 652.394279][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.399406][T14055] get_compat_msghdr+0x108/0x270 [ 652.404440][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.408950][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 652.415018][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 652.420660][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 652.425769][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 652.431395][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 652.436675][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 652.441436][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 652.446196][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 652.451398][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.456090][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.462163][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 652.468579][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.474733][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.479941][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.484807][T14055] do_SYSENTER_32+0x73/0x90 [ 652.489328][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.495647][T14055] RIP: 0023:0xf7fd1549 [ 652.499705][T14055] Code: Bad RIP value. [ 652.503762][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 652.512169][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 652.520134][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 652.528100][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 652.536069][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 652.544040][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 652.552012][T14055] Uninit was stored to memory at: [ 652.557041][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.562752][T14055] __msan_chain_origin+0x50/0x90 [ 652.567722][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.572833][T14055] get_compat_msghdr+0x108/0x270 [ 652.577776][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.582273][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.586946][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.593010][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.599159][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.604351][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.609202][T14055] do_SYSENTER_32+0x73/0x90 [ 652.613699][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.620006][T14055] [ 652.622321][T14055] Uninit was stored to memory at: [ 652.627339][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.633053][T14055] __msan_chain_origin+0x50/0x90 [ 652.637996][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.643137][T14055] get_compat_msghdr+0x108/0x270 [ 652.648070][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.652582][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.657263][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.663324][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.669472][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.674667][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.679526][T14055] do_SYSENTER_32+0x73/0x90 [ 652.684025][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.690347][T14055] [ 652.692663][T14055] Uninit was stored to memory at: [ 652.697683][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.703394][T14055] __msan_chain_origin+0x50/0x90 [ 652.708331][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.713438][T14055] get_compat_msghdr+0x108/0x270 [ 652.718375][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.722876][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.727557][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.733726][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.739877][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.745071][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.749921][T14055] do_SYSENTER_32+0x73/0x90 [ 652.754417][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.760726][T14055] [ 652.763049][T14055] Uninit was stored to memory at: [ 652.768065][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.773776][T14055] __msan_chain_origin+0x50/0x90 [ 652.778717][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.783822][T14055] get_compat_msghdr+0x108/0x270 [ 652.788754][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.793254][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.797927][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.804005][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.810155][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.815464][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.820396][T14055] do_SYSENTER_32+0x73/0x90 [ 652.824916][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.831242][T14055] [ 652.833558][T14055] Uninit was stored to memory at: [ 652.838591][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.844304][T14055] __msan_chain_origin+0x50/0x90 [ 652.849239][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.854608][T14055] get_compat_msghdr+0x108/0x270 [ 652.859648][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.864339][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.869094][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.875152][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.881299][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.886493][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.891337][T14055] do_SYSENTER_32+0x73/0x90 [ 652.895832][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.902140][T14055] [ 652.904456][T14055] Uninit was stored to memory at: [ 652.909474][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.915188][T14055] __msan_chain_origin+0x50/0x90 [ 652.920134][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.925328][T14055] get_compat_msghdr+0x108/0x270 [ 652.930358][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 652.934855][T14055] __sys_recvmmsg+0x4ca/0x510 [ 652.939547][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.945691][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.951928][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 652.957126][T14055] do_fast_syscall_32+0x6b/0xd0 [ 652.961971][T14055] do_SYSENTER_32+0x73/0x90 [ 652.966474][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.972796][T14055] [ 652.975216][T14055] Uninit was stored to memory at: [ 652.980237][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 652.985949][T14055] __msan_chain_origin+0x50/0x90 [ 652.991031][T14055] __get_compat_msghdr+0x5be/0x890 [ 652.996143][T14055] get_compat_msghdr+0x108/0x270 [ 653.001216][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.005722][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.010398][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.016461][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.022656][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.027853][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.032697][T14055] do_SYSENTER_32+0x73/0x90 [ 653.037194][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.043505][T14055] [ 653.045825][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 653.052497][T14055] do_recvmmsg+0xc5/0x1ee0 [ 653.057111][T14055] do_recvmmsg+0xc5/0x1ee0 [ 653.246029][T14055] not chained 2430000 origins [ 653.250742][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 653.259398][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 653.269468][T14055] Call Trace: [ 653.272762][T14055] dump_stack+0x1df/0x240 [ 653.277096][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 653.282815][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 653.287925][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 653.293039][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 653.298840][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 653.304905][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 653.309850][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 653.314963][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 653.320534][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 653.326603][T14055] ? _copy_from_user+0x15b/0x260 [ 653.331558][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 653.336665][T14055] __msan_chain_origin+0x50/0x90 [ 653.341602][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.346726][T14055] get_compat_msghdr+0x108/0x270 [ 653.351669][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.356181][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 653.362241][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 653.367876][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 653.372999][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 653.378630][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 653.383922][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 653.388671][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 653.393426][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 653.398621][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.403303][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.409368][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 653.415608][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.421757][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.427668][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.432523][T14055] do_SYSENTER_32+0x73/0x90 [ 653.437026][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.443343][T14055] RIP: 0023:0xf7fd1549 [ 653.447398][T14055] Code: Bad RIP value. [ 653.451465][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 653.459871][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 653.467836][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 653.475802][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 653.483766][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 653.491732][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 653.499702][T14055] Uninit was stored to memory at: [ 653.504721][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.510429][T14055] __msan_chain_origin+0x50/0x90 [ 653.515359][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.520466][T14055] get_compat_msghdr+0x108/0x270 [ 653.525400][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.529897][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.534567][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.540624][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.546774][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.551973][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.556818][T14055] do_SYSENTER_32+0x73/0x90 [ 653.561308][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.567609][T14055] [ 653.569937][T14055] Uninit was stored to memory at: [ 653.574960][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.580691][T14055] __msan_chain_origin+0x50/0x90 [ 653.585620][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.590723][T14055] get_compat_msghdr+0x108/0x270 [ 653.595654][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.600149][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.604814][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.610883][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.617025][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.622214][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.627058][T14055] do_SYSENTER_32+0x73/0x90 [ 653.631570][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.637878][T14055] [ 653.640191][T14055] Uninit was stored to memory at: [ 653.645206][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.650920][T14055] __msan_chain_origin+0x50/0x90 [ 653.655854][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.660956][T14055] get_compat_msghdr+0x108/0x270 [ 653.665889][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.670407][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.675079][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.681139][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.687292][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.692489][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.697336][T14055] do_SYSENTER_32+0x73/0x90 [ 653.701833][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.708142][T14055] [ 653.710457][T14055] Uninit was stored to memory at: [ 653.715501][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.721210][T14055] __msan_chain_origin+0x50/0x90 [ 653.726141][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.731348][T14055] get_compat_msghdr+0x108/0x270 [ 653.736276][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.740767][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.745432][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.751491][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.757643][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.762846][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.767689][T14055] do_SYSENTER_32+0x73/0x90 [ 653.772183][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.778492][T14055] [ 653.780806][T14055] Uninit was stored to memory at: [ 653.785825][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.791556][T14055] __msan_chain_origin+0x50/0x90 [ 653.796490][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.801593][T14055] get_compat_msghdr+0x108/0x270 [ 653.806538][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.811034][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.815704][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.821759][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.827905][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.833094][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.837933][T14055] do_SYSENTER_32+0x73/0x90 [ 653.842439][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.848763][T14055] [ 653.851078][T14055] Uninit was stored to memory at: [ 653.856094][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.861815][T14055] __msan_chain_origin+0x50/0x90 [ 653.866745][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.871849][T14055] get_compat_msghdr+0x108/0x270 [ 653.876777][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.881269][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.885934][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.891998][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.898151][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.903339][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.908179][T14055] do_SYSENTER_32+0x73/0x90 [ 653.912670][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.918994][T14055] [ 653.921304][T14055] Uninit was stored to memory at: [ 653.926314][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 653.932025][T14055] __msan_chain_origin+0x50/0x90 [ 653.936958][T14055] __get_compat_msghdr+0x5be/0x890 [ 653.942066][T14055] get_compat_msghdr+0x108/0x270 [ 653.947012][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 653.951511][T14055] __sys_recvmmsg+0x4ca/0x510 [ 653.956178][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.962248][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.968391][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 653.973584][T14055] do_fast_syscall_32+0x6b/0xd0 [ 653.978428][T14055] do_SYSENTER_32+0x73/0x90 [ 653.982921][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.989227][T14055] [ 653.991554][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 653.998222][T14055] do_recvmmsg+0xc5/0x1ee0 [ 654.002635][T14055] do_recvmmsg+0xc5/0x1ee0 [ 654.189968][T14055] not chained 2440000 origins [ 654.194694][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 654.203355][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 654.213402][T14055] Call Trace: [ 654.216700][T14055] dump_stack+0x1df/0x240 [ 654.221036][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 654.226772][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 654.231904][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 654.237014][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 654.242938][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 654.249059][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 654.254003][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 654.259111][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 654.264657][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 654.270730][T14055] ? _copy_from_user+0x15b/0x260 [ 654.275753][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 654.280860][T14055] __msan_chain_origin+0x50/0x90 [ 654.285799][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.290921][T14055] get_compat_msghdr+0x108/0x270 [ 654.295866][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.300490][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 654.306555][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 654.312207][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 654.317321][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 654.322957][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 654.328256][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 654.333034][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 654.337807][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 654.343009][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.347699][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.353773][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 654.360026][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.366177][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.371385][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.376248][T14055] do_SYSENTER_32+0x73/0x90 [ 654.380768][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.387089][T14055] RIP: 0023:0xf7fd1549 [ 654.391144][T14055] Code: Bad RIP value. [ 654.395201][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 654.403721][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 654.411772][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 654.419740][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 654.427702][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 654.435761][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 654.443732][T14055] Uninit was stored to memory at: [ 654.448870][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.454583][T14055] __msan_chain_origin+0x50/0x90 [ 654.459527][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.464758][T14055] get_compat_msghdr+0x108/0x270 [ 654.469689][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.474186][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.478857][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.484914][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.491063][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.496282][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.501126][T14055] do_SYSENTER_32+0x73/0x90 [ 654.505619][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.511959][T14055] [ 654.514334][T14055] Uninit was stored to memory at: [ 654.519354][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.525069][T14055] __msan_chain_origin+0x50/0x90 [ 654.530013][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.535122][T14055] get_compat_msghdr+0x108/0x270 [ 654.540059][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.544642][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.549315][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.555388][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.561539][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.566732][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.571668][T14055] do_SYSENTER_32+0x73/0x90 [ 654.576178][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.582486][T14055] [ 654.584805][T14055] Uninit was stored to memory at: [ 654.589853][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.595565][T14055] __msan_chain_origin+0x50/0x90 [ 654.600498][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.605726][T14055] get_compat_msghdr+0x108/0x270 [ 654.610656][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.615238][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.619911][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.625968][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.632119][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.637313][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.642157][T14055] do_SYSENTER_32+0x73/0x90 [ 654.646652][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.652962][T14055] [ 654.655280][T14055] Uninit was stored to memory at: [ 654.660301][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.666017][T14055] __msan_chain_origin+0x50/0x90 [ 654.671086][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.676190][T14055] get_compat_msghdr+0x108/0x270 [ 654.681122][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.685619][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.690289][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.696346][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.702502][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.707696][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.712564][T14055] do_SYSENTER_32+0x73/0x90 [ 654.717074][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.723384][T14055] [ 654.725700][T14055] Uninit was stored to memory at: [ 654.730717][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.736424][T14055] __msan_chain_origin+0x50/0x90 [ 654.741365][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.746479][T14055] get_compat_msghdr+0x108/0x270 [ 654.751411][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.755907][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.760581][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.766638][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.772788][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.777981][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.782832][T14055] do_SYSENTER_32+0x73/0x90 [ 654.787326][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.793637][T14055] [ 654.795955][T14055] Uninit was stored to memory at: [ 654.800976][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.806690][T14055] __msan_chain_origin+0x50/0x90 [ 654.811626][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.816731][T14055] get_compat_msghdr+0x108/0x270 [ 654.821660][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.826157][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.830834][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.836889][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.843034][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.848219][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.853056][T14055] do_SYSENTER_32+0x73/0x90 [ 654.857557][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.863865][T14055] [ 654.866179][T14055] Uninit was stored to memory at: [ 654.871194][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 654.876901][T14055] __msan_chain_origin+0x50/0x90 [ 654.881834][T14055] __get_compat_msghdr+0x5be/0x890 [ 654.886937][T14055] get_compat_msghdr+0x108/0x270 [ 654.891866][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 654.896360][T14055] __sys_recvmmsg+0x4ca/0x510 [ 654.901027][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.907083][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.913230][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 654.918431][T14055] do_fast_syscall_32+0x6b/0xd0 [ 654.923360][T14055] do_SYSENTER_32+0x73/0x90 [ 654.927854][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.934158][T14055] [ 654.936478][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 654.943149][T14055] do_recvmmsg+0xc5/0x1ee0 [ 654.947559][T14055] do_recvmmsg+0xc5/0x1ee0 [ 655.143422][T14055] not chained 2450000 origins [ 655.148123][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 655.156871][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 655.166915][T14055] Call Trace: [ 655.170200][T14055] dump_stack+0x1df/0x240 [ 655.174528][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 655.180249][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 655.185358][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 655.190474][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 655.196277][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 655.202349][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 655.207285][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 655.212394][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 655.217935][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 655.224003][T14055] ? _copy_from_user+0x15b/0x260 [ 655.228928][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 655.234050][T14055] __msan_chain_origin+0x50/0x90 [ 655.238990][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.244121][T14055] get_compat_msghdr+0x108/0x270 [ 655.249060][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.253737][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 655.259804][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 655.265448][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 655.270558][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 655.276187][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 655.281472][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 655.286230][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 655.290994][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 655.296190][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.300986][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.307060][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 655.313299][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.319449][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.324644][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.329504][T14055] do_SYSENTER_32+0x73/0x90 [ 655.334007][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.340332][T14055] RIP: 0023:0xf7fd1549 [ 655.344380][T14055] Code: Bad RIP value. [ 655.348451][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 655.356868][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 655.364831][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 655.372790][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 655.380751][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 655.388713][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 655.396687][T14055] Uninit was stored to memory at: [ 655.401737][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.407448][T14055] __msan_chain_origin+0x50/0x90 [ 655.412386][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.417493][T14055] get_compat_msghdr+0x108/0x270 [ 655.422446][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.426948][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.431617][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.437677][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.443825][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.449018][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.453865][T14055] do_SYSENTER_32+0x73/0x90 [ 655.458358][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.464664][T14055] [ 655.466977][T14055] Uninit was stored to memory at: [ 655.472003][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.477716][T14055] __msan_chain_origin+0x50/0x90 [ 655.482646][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.487751][T14055] get_compat_msghdr+0x108/0x270 [ 655.492680][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.497186][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.501861][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.507926][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.514072][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.519270][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.524114][T14055] do_SYSENTER_32+0x73/0x90 [ 655.528621][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.535313][T14055] [ 655.537637][T14055] Uninit was stored to memory at: [ 655.542661][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.548370][T14055] __msan_chain_origin+0x50/0x90 [ 655.553387][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.558495][T14055] get_compat_msghdr+0x108/0x270 [ 655.563424][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.567932][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.572601][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.578662][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.584803][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.589987][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.594823][T14055] do_SYSENTER_32+0x73/0x90 [ 655.599330][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.605641][T14055] [ 655.608008][T14055] Uninit was stored to memory at: [ 655.613028][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.618738][T14055] __msan_chain_origin+0x50/0x90 [ 655.623665][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.628781][T14055] get_compat_msghdr+0x108/0x270 [ 655.633707][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.638215][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.642884][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.648943][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.655087][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.660422][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.665273][T14055] do_SYSENTER_32+0x73/0x90 [ 655.669786][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.676353][T14055] [ 655.678668][T14055] Uninit was stored to memory at: [ 655.683691][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.689399][T14055] __msan_chain_origin+0x50/0x90 [ 655.694328][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.699448][T14055] get_compat_msghdr+0x108/0x270 [ 655.704384][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.708876][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.713560][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.719617][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.725762][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.730958][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.735805][T14055] do_SYSENTER_32+0x73/0x90 [ 655.740301][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.746626][T14055] [ 655.748948][T14055] Uninit was stored to memory at: [ 655.753978][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.759707][T14055] __msan_chain_origin+0x50/0x90 [ 655.764635][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.769739][T14055] get_compat_msghdr+0x108/0x270 [ 655.774756][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.779343][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.784016][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.790083][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.796232][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.801426][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.806281][T14055] do_SYSENTER_32+0x73/0x90 [ 655.810786][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.817118][T14055] [ 655.819434][T14055] Uninit was stored to memory at: [ 655.824449][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 655.830180][T14055] __msan_chain_origin+0x50/0x90 [ 655.835123][T14055] __get_compat_msghdr+0x5be/0x890 [ 655.840229][T14055] get_compat_msghdr+0x108/0x270 [ 655.845177][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 655.849690][T14055] __sys_recvmmsg+0x4ca/0x510 [ 655.854387][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.860470][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.866620][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 655.871832][T14055] do_fast_syscall_32+0x6b/0xd0 [ 655.876675][T14055] do_SYSENTER_32+0x73/0x90 [ 655.881170][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.887481][T14055] [ 655.889796][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 655.896465][T14055] do_recvmmsg+0xc5/0x1ee0 [ 655.900876][T14055] do_recvmmsg+0xc5/0x1ee0 [ 656.084431][T14055] not chained 2460000 origins [ 656.089227][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 656.097973][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 656.108021][T14055] Call Trace: [ 656.111308][T14055] dump_stack+0x1df/0x240 [ 656.115642][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 656.121361][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 656.126476][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 656.131585][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 656.137384][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 656.143553][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 656.148499][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 656.153606][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 656.159149][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 656.165230][T14055] ? _copy_from_user+0x15b/0x260 [ 656.170165][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 656.175276][T14055] __msan_chain_origin+0x50/0x90 [ 656.180217][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.185356][T14055] get_compat_msghdr+0x108/0x270 [ 656.190300][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.194886][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 656.200945][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 656.206595][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 656.211706][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 656.217351][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 656.222638][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 656.227447][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 656.232207][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 656.237404][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.242085][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.248149][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 656.254394][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.260560][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.265764][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.270623][T14055] do_SYSENTER_32+0x73/0x90 [ 656.275124][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.281440][T14055] RIP: 0023:0xf7fd1549 [ 656.285495][T14055] Code: Bad RIP value. [ 656.289556][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 656.298144][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 656.306112][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 656.314201][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 656.322165][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 656.330128][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 656.338105][T14055] Uninit was stored to memory at: [ 656.343125][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.348835][T14055] __msan_chain_origin+0x50/0x90 [ 656.353777][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.358879][T14055] get_compat_msghdr+0x108/0x270 [ 656.363804][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.368296][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.372965][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.379023][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.385176][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.390369][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.395212][T14055] do_SYSENTER_32+0x73/0x90 [ 656.399725][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.406045][T14055] [ 656.408363][T14055] Uninit was stored to memory at: [ 656.413383][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.419100][T14055] __msan_chain_origin+0x50/0x90 [ 656.424058][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.429161][T14055] get_compat_msghdr+0x108/0x270 [ 656.434087][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.438584][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.443251][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.449322][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.455465][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.460660][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.465501][T14055] do_SYSENTER_32+0x73/0x90 [ 656.469997][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.476318][T14055] [ 656.478637][T14055] Uninit was stored to memory at: [ 656.483675][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.489385][T14055] __msan_chain_origin+0x50/0x90 [ 656.494312][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.499423][T14055] get_compat_msghdr+0x108/0x270 [ 656.504360][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.508855][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.513523][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.519580][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.525725][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.530920][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.535767][T14055] do_SYSENTER_32+0x73/0x90 [ 656.540261][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.546570][T14055] [ 656.548883][T14055] Uninit was stored to memory at: [ 656.553900][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.559612][T14055] __msan_chain_origin+0x50/0x90 [ 656.564536][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.569637][T14055] get_compat_msghdr+0x108/0x270 [ 656.574566][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.579063][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.583730][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.589804][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.595948][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.601164][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.606008][T14055] do_SYSENTER_32+0x73/0x90 [ 656.610508][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.616814][T14055] [ 656.619132][T14055] Uninit was stored to memory at: [ 656.624152][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.629862][T14055] __msan_chain_origin+0x50/0x90 [ 656.634790][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.639903][T14055] get_compat_msghdr+0x108/0x270 [ 656.644832][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.649347][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.654020][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.660083][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.666232][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.671423][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.676281][T14055] do_SYSENTER_32+0x73/0x90 [ 656.680777][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.687083][T14055] [ 656.689396][T14055] Uninit was stored to memory at: [ 656.694411][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.700117][T14055] __msan_chain_origin+0x50/0x90 [ 656.705046][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.710159][T14055] get_compat_msghdr+0x108/0x270 [ 656.715087][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.719584][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.724335][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.730391][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.736538][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.741728][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.746571][T14055] do_SYSENTER_32+0x73/0x90 [ 656.751069][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.757378][T14055] [ 656.759695][T14055] Uninit was stored to memory at: [ 656.764715][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 656.770424][T14055] __msan_chain_origin+0x50/0x90 [ 656.775365][T14055] __get_compat_msghdr+0x5be/0x890 [ 656.780471][T14055] get_compat_msghdr+0x108/0x270 [ 656.785412][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 656.792255][T14055] __sys_recvmmsg+0x4ca/0x510 [ 656.796924][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.802985][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.809133][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 656.814320][T14055] do_fast_syscall_32+0x6b/0xd0 [ 656.819162][T14055] do_SYSENTER_32+0x73/0x90 [ 656.823678][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.829987][T14055] [ 656.832304][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 656.839060][T14055] do_recvmmsg+0xc5/0x1ee0 [ 656.843467][T14055] do_recvmmsg+0xc5/0x1ee0 [ 657.044042][T14055] not chained 2470000 origins [ 657.048744][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 657.057401][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.067444][T14055] Call Trace: [ 657.070748][T14055] dump_stack+0x1df/0x240 [ 657.075081][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 657.080827][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 657.085941][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 657.091059][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 657.096865][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 657.102921][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 657.107859][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 657.112968][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 657.118507][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 657.124571][T14055] ? _copy_from_user+0x15b/0x260 [ 657.129516][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 657.134617][T14055] __msan_chain_origin+0x50/0x90 [ 657.139573][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.144713][T14055] get_compat_msghdr+0x108/0x270 [ 657.149651][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.154174][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 657.160232][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 657.165870][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 657.170991][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 657.176618][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 657.181905][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 657.186667][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 657.191427][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 657.196639][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.201321][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.207391][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 657.214173][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.220325][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.225530][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.230381][T14055] do_SYSENTER_32+0x73/0x90 [ 657.234895][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.241227][T14055] RIP: 0023:0xf7fd1549 [ 657.245281][T14055] Code: Bad RIP value. [ 657.249360][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 657.257763][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 657.265814][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 657.273789][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 657.281750][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 657.289713][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 657.297682][T14055] Uninit was stored to memory at: [ 657.302705][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.308417][T14055] __msan_chain_origin+0x50/0x90 [ 657.313358][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.318474][T14055] get_compat_msghdr+0x108/0x270 [ 657.323406][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.327905][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.332583][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.338649][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.344799][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.349991][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.354836][T14055] do_SYSENTER_32+0x73/0x90 [ 657.359333][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.365640][T14055] [ 657.367957][T14055] Uninit was stored to memory at: [ 657.372986][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.378710][T14055] __msan_chain_origin+0x50/0x90 [ 657.383728][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.388834][T14055] get_compat_msghdr+0x108/0x270 [ 657.393767][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.398263][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.402934][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.409220][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.415384][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.420578][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.425509][T14055] do_SYSENTER_32+0x73/0x90 [ 657.430025][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.436419][T14055] [ 657.438737][T14055] Uninit was stored to memory at: [ 657.443834][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.449540][T14055] __msan_chain_origin+0x50/0x90 [ 657.454478][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.459582][T14055] get_compat_msghdr+0x108/0x270 [ 657.464527][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.469023][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.473691][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.479747][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.485983][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.491182][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.496025][T14055] do_SYSENTER_32+0x73/0x90 [ 657.500519][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.506913][T14055] [ 657.509228][T14055] Uninit was stored to memory at: [ 657.514249][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.519961][T14055] __msan_chain_origin+0x50/0x90 [ 657.524900][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.530008][T14055] get_compat_msghdr+0x108/0x270 [ 657.534940][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.539450][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.544120][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.550172][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.556315][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.561529][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.566375][T14055] do_SYSENTER_32+0x73/0x90 [ 657.570869][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.577175][T14055] [ 657.579489][T14055] Uninit was stored to memory at: [ 657.584506][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.590318][T14055] __msan_chain_origin+0x50/0x90 [ 657.595277][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.600379][T14055] get_compat_msghdr+0x108/0x270 [ 657.605342][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.609868][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.614546][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.620603][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.626764][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.631977][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.636821][T14055] do_SYSENTER_32+0x73/0x90 [ 657.641333][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.647644][T14055] [ 657.649973][T14055] Uninit was stored to memory at: [ 657.655018][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.660724][T14055] __msan_chain_origin+0x50/0x90 [ 657.665655][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.670773][T14055] get_compat_msghdr+0x108/0x270 [ 657.675702][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.680315][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.684993][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.691049][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.697195][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.702390][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.707235][T14055] do_SYSENTER_32+0x73/0x90 [ 657.711731][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.718042][T14055] [ 657.720360][T14055] Uninit was stored to memory at: [ 657.725384][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 657.731094][T14055] __msan_chain_origin+0x50/0x90 [ 657.736028][T14055] __get_compat_msghdr+0x5be/0x890 [ 657.741132][T14055] get_compat_msghdr+0x108/0x270 [ 657.746058][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 657.750557][T14055] __sys_recvmmsg+0x4ca/0x510 [ 657.755228][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.761285][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.767431][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 657.772647][T14055] do_fast_syscall_32+0x6b/0xd0 [ 657.777496][T14055] do_SYSENTER_32+0x73/0x90 [ 657.782001][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.788307][T14055] [ 657.790657][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 657.797327][T14055] do_recvmmsg+0xc5/0x1ee0 [ 657.801740][T14055] do_recvmmsg+0xc5/0x1ee0 [ 657.986382][T14055] not chained 2480000 origins [ 657.991225][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 657.999882][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.009954][T14055] Call Trace: [ 658.013242][T14055] dump_stack+0x1df/0x240 [ 658.017572][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 658.023295][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 658.028457][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.033563][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 658.039366][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 658.045442][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 658.050376][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.055479][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 658.061033][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.067102][T14055] ? _copy_from_user+0x15b/0x260 [ 658.072039][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.077146][T14055] __msan_chain_origin+0x50/0x90 [ 658.082088][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.087213][T14055] get_compat_msghdr+0x108/0x270 [ 658.092160][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.096668][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 658.102735][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 658.108387][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.113508][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 658.119157][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 658.126181][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 658.130958][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 658.135718][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 658.140937][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.145621][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.151690][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 658.157925][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.164084][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.169351][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.174217][T14055] do_SYSENTER_32+0x73/0x90 [ 658.178734][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.185062][T14055] RIP: 0023:0xf7fd1549 [ 658.189142][T14055] Code: Bad RIP value. [ 658.193208][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 658.201622][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 658.209590][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 658.217554][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 658.225523][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 658.233490][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 658.241467][T14055] Uninit was stored to memory at: [ 658.246494][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.252208][T14055] __msan_chain_origin+0x50/0x90 [ 658.257150][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.262269][T14055] get_compat_msghdr+0x108/0x270 [ 658.267217][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.271723][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.276410][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.282478][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.288634][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.293834][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.298683][T14055] do_SYSENTER_32+0x73/0x90 [ 658.303198][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.309513][T14055] [ 658.311833][T14055] Uninit was stored to memory at: [ 658.316857][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.322572][T14055] __msan_chain_origin+0x50/0x90 [ 658.327509][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.332619][T14055] get_compat_msghdr+0x108/0x270 [ 658.337569][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.342064][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.346747][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.352805][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.359040][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.364230][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.369070][T14055] do_SYSENTER_32+0x73/0x90 [ 658.373564][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.379875][T14055] [ 658.382187][T14055] Uninit was stored to memory at: [ 658.387270][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.392987][T14055] __msan_chain_origin+0x50/0x90 [ 658.397924][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.403036][T14055] get_compat_msghdr+0x108/0x270 [ 658.407963][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.412464][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.417136][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.423287][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.429434][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.434630][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.439477][T14055] do_SYSENTER_32+0x73/0x90 [ 658.443969][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.450274][T14055] [ 658.452590][T14055] Uninit was stored to memory at: [ 658.457619][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.463348][T14055] __msan_chain_origin+0x50/0x90 [ 658.468292][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.473394][T14055] get_compat_msghdr+0x108/0x270 [ 658.478327][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.482828][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.487532][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.493600][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.499750][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.504944][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.509791][T14055] do_SYSENTER_32+0x73/0x90 [ 658.514290][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.520597][T14055] [ 658.522913][T14055] Uninit was stored to memory at: [ 658.527935][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.533647][T14055] __msan_chain_origin+0x50/0x90 [ 658.538586][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.543691][T14055] get_compat_msghdr+0x108/0x270 [ 658.548618][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.553107][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.557778][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.563848][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.570004][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.575199][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.580042][T14055] do_SYSENTER_32+0x73/0x90 [ 658.585340][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.591783][T14055] [ 658.594096][T14055] Uninit was stored to memory at: [ 658.599117][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.604827][T14055] __msan_chain_origin+0x50/0x90 [ 658.609758][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.614996][T14055] get_compat_msghdr+0x108/0x270 [ 658.619937][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.624433][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.629112][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.635171][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.642016][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.647210][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.652055][T14055] do_SYSENTER_32+0x73/0x90 [ 658.656552][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.662875][T14055] [ 658.665188][T14055] Uninit was stored to memory at: [ 658.670204][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 658.675925][T14055] __msan_chain_origin+0x50/0x90 [ 658.680856][T14055] __get_compat_msghdr+0x5be/0x890 [ 658.685957][T14055] get_compat_msghdr+0x108/0x270 [ 658.690888][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 658.695383][T14055] __sys_recvmmsg+0x4ca/0x510 [ 658.700067][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.706120][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.712264][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 658.717453][T14055] do_fast_syscall_32+0x6b/0xd0 [ 658.722301][T14055] do_SYSENTER_32+0x73/0x90 [ 658.726793][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.733101][T14055] [ 658.735420][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 658.742106][T14055] do_recvmmsg+0xc5/0x1ee0 [ 658.746517][T14055] do_recvmmsg+0xc5/0x1ee0 [ 658.916421][T14055] not chained 2490000 origins [ 658.921131][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 658.929786][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.939917][T14055] Call Trace: [ 658.943203][T14055] dump_stack+0x1df/0x240 [ 658.947625][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 658.953350][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 658.958464][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.963589][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 658.969585][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 658.975651][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 658.980595][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 658.985702][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 658.991248][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.997317][T14055] ? _copy_from_user+0x15b/0x260 [ 659.002251][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.007356][T14055] __msan_chain_origin+0x50/0x90 [ 659.012297][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.017419][T14055] get_compat_msghdr+0x108/0x270 [ 659.022361][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.026860][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 659.032922][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 659.038560][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.043661][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 659.049291][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 659.054583][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 659.059336][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 659.064087][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 659.069280][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.073963][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.080028][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 659.086266][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.092419][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.097621][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.102479][T14055] do_SYSENTER_32+0x73/0x90 [ 659.107002][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.113321][T14055] RIP: 0023:0xf7fd1549 [ 659.117372][T14055] Code: Bad RIP value. [ 659.121515][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 659.129919][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 659.138059][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 659.146030][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 659.153996][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 659.161957][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 659.169927][T14055] Uninit was stored to memory at: [ 659.174954][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.180665][T14055] __msan_chain_origin+0x50/0x90 [ 659.185597][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.190705][T14055] get_compat_msghdr+0x108/0x270 [ 659.195640][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.200146][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.204817][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.210884][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.217044][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.222241][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.227083][T14055] do_SYSENTER_32+0x73/0x90 [ 659.231605][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.237915][T14055] [ 659.240235][T14055] Uninit was stored to memory at: [ 659.245247][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.250979][T14055] __msan_chain_origin+0x50/0x90 [ 659.255920][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.261029][T14055] get_compat_msghdr+0x108/0x270 [ 659.266048][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.270551][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.275231][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.281286][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.287434][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.292648][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.297504][T14055] do_SYSENTER_32+0x73/0x90 [ 659.302009][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.308327][T14055] [ 659.310647][T14055] Uninit was stored to memory at: [ 659.315671][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.321382][T14055] __msan_chain_origin+0x50/0x90 [ 659.326312][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.331422][T14055] get_compat_msghdr+0x108/0x270 [ 659.336354][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.340851][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.345534][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.351596][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.357749][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.362941][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.367785][T14055] do_SYSENTER_32+0x73/0x90 [ 659.372284][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.378597][T14055] [ 659.380920][T14055] Uninit was stored to memory at: [ 659.385938][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.391654][T14055] __msan_chain_origin+0x50/0x90 [ 659.396587][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.401695][T14055] get_compat_msghdr+0x108/0x270 [ 659.406627][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.411133][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.415803][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.421863][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.428104][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.433297][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.438141][T14055] do_SYSENTER_32+0x73/0x90 [ 659.442649][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.448956][T14055] [ 659.451280][T14055] Uninit was stored to memory at: [ 659.456301][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.462020][T14055] __msan_chain_origin+0x50/0x90 [ 659.466985][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.472100][T14055] get_compat_msghdr+0x108/0x270 [ 659.477043][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.481536][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.486199][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.492258][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.498406][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.503593][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.508435][T14055] do_SYSENTER_32+0x73/0x90 [ 659.512928][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.519235][T14055] [ 659.521548][T14055] Uninit was stored to memory at: [ 659.526568][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.532280][T14055] __msan_chain_origin+0x50/0x90 [ 659.537215][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.542319][T14055] get_compat_msghdr+0x108/0x270 [ 659.547244][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.551743][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.556416][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.562477][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.568669][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.574324][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.579166][T14055] do_SYSENTER_32+0x73/0x90 [ 659.583657][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.589962][T14055] [ 659.592283][T14055] Uninit was stored to memory at: [ 659.597306][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 659.603024][T14055] __msan_chain_origin+0x50/0x90 [ 659.608087][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.613193][T14055] get_compat_msghdr+0x108/0x270 [ 659.618134][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.622639][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.627308][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.633370][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.639515][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 659.644706][T14055] do_fast_syscall_32+0x6b/0xd0 [ 659.649552][T14055] do_SYSENTER_32+0x73/0x90 [ 659.654051][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.660355][T14055] [ 659.662669][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 659.669335][T14055] do_recvmmsg+0xc5/0x1ee0 [ 659.673741][T14055] do_recvmmsg+0xc5/0x1ee0 [ 659.837128][T14055] not chained 2500000 origins [ 659.841831][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 659.850488][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.860530][T14055] Call Trace: [ 659.863817][T14055] dump_stack+0x1df/0x240 [ 659.868157][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 659.873894][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 659.879011][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.884116][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 659.890040][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 659.896097][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 659.901041][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.906159][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 659.911707][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 659.917790][T14055] ? _copy_from_user+0x15b/0x260 [ 659.922720][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.927906][T14055] __msan_chain_origin+0x50/0x90 [ 659.932840][T14055] __get_compat_msghdr+0x5be/0x890 [ 659.937962][T14055] get_compat_msghdr+0x108/0x270 [ 659.942902][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 659.947400][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 659.953465][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 659.959108][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 659.964212][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 659.969837][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 659.975118][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 659.979877][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 659.984630][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 659.989823][T14055] __sys_recvmmsg+0x4ca/0x510 [ 659.994508][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.000576][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 660.006817][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.012967][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.018172][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.023025][T14055] do_SYSENTER_32+0x73/0x90 [ 660.027542][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.033868][T14055] RIP: 0023:0xf7fd1549 [ 660.037920][T14055] Code: Bad RIP value. [ 660.041974][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 660.050371][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 660.058339][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 660.066308][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 660.074277][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 660.082244][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 660.090362][T14055] Uninit was stored to memory at: [ 660.095383][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.101100][T14055] __msan_chain_origin+0x50/0x90 [ 660.106042][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.111147][T14055] get_compat_msghdr+0x108/0x270 [ 660.116174][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.120681][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.125353][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.131428][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.137585][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.142775][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.147612][T14055] do_SYSENTER_32+0x73/0x90 [ 660.152106][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.158415][T14055] [ 660.160744][T14055] Uninit was stored to memory at: [ 660.165758][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.171479][T14055] __msan_chain_origin+0x50/0x90 [ 660.176441][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.181548][T14055] get_compat_msghdr+0x108/0x270 [ 660.186478][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.191066][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.195741][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.201802][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.207952][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.213148][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.217998][T14055] do_SYSENTER_32+0x73/0x90 [ 660.222513][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.228820][T14055] [ 660.231135][T14055] Uninit was stored to memory at: [ 660.236155][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.241872][T14055] __msan_chain_origin+0x50/0x90 [ 660.246804][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.251912][T14055] get_compat_msghdr+0x108/0x270 [ 660.256866][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.261361][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.266030][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.272091][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.278337][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.283531][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.288374][T14055] do_SYSENTER_32+0x73/0x90 [ 660.292868][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.299175][T14055] [ 660.301490][T14055] Uninit was stored to memory at: [ 660.306512][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.312229][T14055] __msan_chain_origin+0x50/0x90 [ 660.317161][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.322352][T14055] get_compat_msghdr+0x108/0x270 [ 660.327295][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.331787][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.336455][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.342606][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.348760][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.353949][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.358791][T14055] do_SYSENTER_32+0x73/0x90 [ 660.363386][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.370562][T14055] [ 660.372894][T14055] Uninit was stored to memory at: [ 660.377914][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.383627][T14055] __msan_chain_origin+0x50/0x90 [ 660.388558][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.393682][T14055] get_compat_msghdr+0x108/0x270 [ 660.398618][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.403108][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.407780][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.413841][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.419988][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.425179][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.430022][T14055] do_SYSENTER_32+0x73/0x90 [ 660.434519][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.440832][T14055] [ 660.443151][T14055] Uninit was stored to memory at: [ 660.448171][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.453882][T14055] __msan_chain_origin+0x50/0x90 [ 660.458815][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.463968][T14055] get_compat_msghdr+0x108/0x270 [ 660.468900][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.473398][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.478068][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.484127][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.490271][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.495461][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.500308][T14055] do_SYSENTER_32+0x73/0x90 [ 660.504828][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.511134][T14055] [ 660.513450][T14055] Uninit was stored to memory at: [ 660.518473][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 660.524181][T14055] __msan_chain_origin+0x50/0x90 [ 660.529115][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.534219][T14055] get_compat_msghdr+0x108/0x270 [ 660.539150][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.543647][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.548332][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.554385][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.560528][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.565722][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.570563][T14055] do_SYSENTER_32+0x73/0x90 [ 660.575057][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.581362][T14055] [ 660.583681][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 660.590349][T14055] do_recvmmsg+0xc5/0x1ee0 [ 660.594766][T14055] do_recvmmsg+0xc5/0x1ee0 [ 660.766337][T14055] not chained 2510000 origins [ 660.771035][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 660.779695][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 660.789739][T14055] Call Trace: [ 660.793034][T14055] dump_stack+0x1df/0x240 [ 660.797370][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 660.803086][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 660.808195][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 660.813315][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 660.819119][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 660.825179][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 660.830112][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 660.835218][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 660.840755][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 660.846916][T14055] ? _copy_from_user+0x15b/0x260 [ 660.851846][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 660.856951][T14055] __msan_chain_origin+0x50/0x90 [ 660.861888][T14055] __get_compat_msghdr+0x5be/0x890 [ 660.867007][T14055] get_compat_msghdr+0x108/0x270 [ 660.871949][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 660.876456][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 660.882524][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 660.888251][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 660.893356][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 660.898987][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 660.904271][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 660.909029][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 660.913786][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 660.918982][T14055] __sys_recvmmsg+0x4ca/0x510 [ 660.923666][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.929735][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 660.935971][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.942130][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 660.947336][T14055] do_fast_syscall_32+0x6b/0xd0 [ 660.952189][T14055] do_SYSENTER_32+0x73/0x90 [ 660.956688][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.963006][T14055] RIP: 0023:0xf7fd1549 [ 660.967089][T14055] Code: Bad RIP value. [ 660.971145][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 660.979556][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 660.987519][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 660.995493][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 661.003479][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 661.011448][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 661.019446][T14055] Uninit was stored to memory at: [ 661.024484][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.030202][T14055] __msan_chain_origin+0x50/0x90 [ 661.035140][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.040252][T14055] get_compat_msghdr+0x108/0x270 [ 661.045183][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.049680][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.054348][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.060409][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.066557][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.071757][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.076605][T14055] do_SYSENTER_32+0x73/0x90 [ 661.081102][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.087412][T14055] [ 661.089729][T14055] Uninit was stored to memory at: [ 661.094751][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.100462][T14055] __msan_chain_origin+0x50/0x90 [ 661.105401][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.110510][T14055] get_compat_msghdr+0x108/0x270 [ 661.115441][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.119941][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.124609][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.130668][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.136816][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.142022][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.146874][T14055] do_SYSENTER_32+0x73/0x90 [ 661.151376][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.157688][T14055] [ 661.160015][T14055] Uninit was stored to memory at: [ 661.165037][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.170780][T14055] __msan_chain_origin+0x50/0x90 [ 661.175719][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.180827][T14055] get_compat_msghdr+0x108/0x270 [ 661.185756][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.190256][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.194925][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.200987][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.207137][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.212332][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.217193][T14055] do_SYSENTER_32+0x73/0x90 [ 661.221691][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.228000][T14055] [ 661.230315][T14055] Uninit was stored to memory at: [ 661.235332][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.241042][T14055] __msan_chain_origin+0x50/0x90 [ 661.245973][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.251082][T14055] get_compat_msghdr+0x108/0x270 [ 661.256014][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.260513][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.265181][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.271241][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.277390][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.282590][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.287431][T14055] do_SYSENTER_32+0x73/0x90 [ 661.291928][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.298236][T14055] [ 661.300555][T14055] Uninit was stored to memory at: [ 661.305684][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.311402][T14055] __msan_chain_origin+0x50/0x90 [ 661.316353][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.321462][T14055] get_compat_msghdr+0x108/0x270 [ 661.326395][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.330892][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.335562][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.341625][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.347772][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.352969][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.357817][T14055] do_SYSENTER_32+0x73/0x90 [ 661.362314][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.368642][T14055] [ 661.370962][T14055] Uninit was stored to memory at: [ 661.375986][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.381704][T14055] __msan_chain_origin+0x50/0x90 [ 661.386639][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.391745][T14055] get_compat_msghdr+0x108/0x270 [ 661.396688][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.401186][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.405857][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.411919][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.418068][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.423262][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.428110][T14055] do_SYSENTER_32+0x73/0x90 [ 661.432611][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.438919][T14055] [ 661.441236][T14055] Uninit was stored to memory at: [ 661.446257][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.451968][T14055] __msan_chain_origin+0x50/0x90 [ 661.456908][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.462019][T14055] get_compat_msghdr+0x108/0x270 [ 661.466950][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.471448][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.476135][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.482197][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.488344][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.493538][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.498387][T14055] do_SYSENTER_32+0x73/0x90 [ 661.502884][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.509194][T14055] [ 661.511509][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 661.518181][T14055] do_recvmmsg+0xc5/0x1ee0 [ 661.522597][T14055] do_recvmmsg+0xc5/0x1ee0 [ 661.692453][T14055] not chained 2520000 origins [ 661.697158][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 661.705816][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 661.715859][T14055] Call Trace: [ 661.719152][T14055] dump_stack+0x1df/0x240 [ 661.723482][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 661.729204][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 661.734319][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 661.739427][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 661.745231][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 661.751292][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 661.756228][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 661.761438][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 661.766979][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 661.773048][T14055] ? _copy_from_user+0x15b/0x260 [ 661.777986][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 661.783097][T14055] __msan_chain_origin+0x50/0x90 [ 661.788042][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.793163][T14055] get_compat_msghdr+0x108/0x270 [ 661.798107][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.802614][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 661.808785][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 661.814443][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 661.819552][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 661.825191][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 661.830476][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 661.835426][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 661.840183][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 661.845386][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.850096][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.856163][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 661.862396][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.868544][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.873742][T14055] do_fast_syscall_32+0x6b/0xd0 [ 661.878587][T14055] do_SYSENTER_32+0x73/0x90 [ 661.883086][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.889417][T14055] RIP: 0023:0xf7fd1549 [ 661.893487][T14055] Code: Bad RIP value. [ 661.897544][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 661.905949][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 661.914027][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 661.922079][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 661.930041][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 661.938017][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 661.945991][T14055] Uninit was stored to memory at: [ 661.951021][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 661.956732][T14055] __msan_chain_origin+0x50/0x90 [ 661.961666][T14055] __get_compat_msghdr+0x5be/0x890 [ 661.966770][T14055] get_compat_msghdr+0x108/0x270 [ 661.971701][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 661.976199][T14055] __sys_recvmmsg+0x4ca/0x510 [ 661.980865][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.986937][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.993083][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 661.998278][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.003121][T14055] do_SYSENTER_32+0x73/0x90 [ 662.007619][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.013927][T14055] [ 662.016240][T14055] Uninit was stored to memory at: [ 662.021262][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.027059][T14055] __msan_chain_origin+0x50/0x90 [ 662.032004][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.037113][T14055] get_compat_msghdr+0x108/0x270 [ 662.042043][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.046537][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.051214][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.057269][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.063414][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.068618][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.073465][T14055] do_SYSENTER_32+0x73/0x90 [ 662.077961][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.084270][T14055] [ 662.086586][T14055] Uninit was stored to memory at: [ 662.091608][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.097321][T14055] __msan_chain_origin+0x50/0x90 [ 662.102254][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.107360][T14055] get_compat_msghdr+0x108/0x270 [ 662.112293][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.116792][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.121463][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.127523][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.133678][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.138878][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.143726][T14055] do_SYSENTER_32+0x73/0x90 [ 662.148223][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.154540][T14055] [ 662.156868][T14055] Uninit was stored to memory at: [ 662.161973][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.167685][T14055] __msan_chain_origin+0x50/0x90 [ 662.172618][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.177724][T14055] get_compat_msghdr+0x108/0x270 [ 662.182656][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.187154][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.191828][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.197893][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.204044][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.209238][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.214082][T14055] do_SYSENTER_32+0x73/0x90 [ 662.218578][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.224887][T14055] [ 662.227203][T14055] Uninit was stored to memory at: [ 662.232222][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.237936][T14055] __msan_chain_origin+0x50/0x90 [ 662.242870][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.247994][T14055] get_compat_msghdr+0x108/0x270 [ 662.252926][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.257422][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.262100][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.268170][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.274408][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.279601][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.284445][T14055] do_SYSENTER_32+0x73/0x90 [ 662.288945][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.295251][T14055] [ 662.297564][T14055] Uninit was stored to memory at: [ 662.302588][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.308316][T14055] __msan_chain_origin+0x50/0x90 [ 662.313252][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.318360][T14055] get_compat_msghdr+0x108/0x270 [ 662.323296][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.327793][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.332467][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.338530][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.344687][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.349889][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.354754][T14055] do_SYSENTER_32+0x73/0x90 [ 662.359249][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.365647][T14055] [ 662.367977][T14055] Uninit was stored to memory at: [ 662.372996][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.378707][T14055] __msan_chain_origin+0x50/0x90 [ 662.383638][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.388741][T14055] get_compat_msghdr+0x108/0x270 [ 662.393685][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.398182][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.402851][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.408905][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.415049][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.420241][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.425080][T14055] do_SYSENTER_32+0x73/0x90 [ 662.429573][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.435880][T14055] [ 662.438200][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 662.444865][T14055] do_recvmmsg+0xc5/0x1ee0 [ 662.449276][T14055] do_recvmmsg+0xc5/0x1ee0 [ 662.665159][T14055] not chained 2530000 origins [ 662.669862][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 662.678520][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 662.688569][T14055] Call Trace: [ 662.691853][T14055] dump_stack+0x1df/0x240 [ 662.696185][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 662.701905][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 662.707013][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 662.712312][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 662.718115][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 662.724174][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 662.729112][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 662.734216][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 662.739756][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 662.745819][T14055] ? _copy_from_user+0x15b/0x260 [ 662.750755][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 662.755863][T14055] __msan_chain_origin+0x50/0x90 [ 662.760799][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.765918][T14055] get_compat_msghdr+0x108/0x270 [ 662.770860][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.775360][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 662.781419][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 662.787056][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 662.792164][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 662.797794][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 662.803075][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 662.807831][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 662.812588][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 662.817794][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.822477][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.828547][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 662.834797][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.840960][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.846163][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.851012][T14055] do_SYSENTER_32+0x73/0x90 [ 662.855509][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.861829][T14055] RIP: 0023:0xf7fd1549 [ 662.865880][T14055] Code: Bad RIP value. [ 662.869936][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 662.878428][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 662.886400][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 662.894363][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 662.902346][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 662.910306][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 662.918276][T14055] Uninit was stored to memory at: [ 662.923304][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.929032][T14055] __msan_chain_origin+0x50/0x90 [ 662.933962][T14055] __get_compat_msghdr+0x5be/0x890 [ 662.939064][T14055] get_compat_msghdr+0x108/0x270 [ 662.943992][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 662.948484][T14055] __sys_recvmmsg+0x4ca/0x510 [ 662.953147][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.959204][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.965349][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 662.970547][T14055] do_fast_syscall_32+0x6b/0xd0 [ 662.975391][T14055] do_SYSENTER_32+0x73/0x90 [ 662.979893][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.986198][T14055] [ 662.988513][T14055] Uninit was stored to memory at: [ 662.993540][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 662.999248][T14055] __msan_chain_origin+0x50/0x90 [ 663.004178][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.009283][T14055] get_compat_msghdr+0x108/0x270 [ 663.014215][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.018710][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.023378][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.029433][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.035577][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.040767][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.045609][T14055] do_SYSENTER_32+0x73/0x90 [ 663.050114][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.056437][T14055] [ 663.058755][T14055] Uninit was stored to memory at: [ 663.063775][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.069488][T14055] __msan_chain_origin+0x50/0x90 [ 663.074424][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.079531][T14055] get_compat_msghdr+0x108/0x270 [ 663.084470][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.088966][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.093634][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.099795][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.105940][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.111136][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.115982][T14055] do_SYSENTER_32+0x73/0x90 [ 663.120580][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.126891][T14055] [ 663.129209][T14055] Uninit was stored to memory at: [ 663.134228][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.139959][T14055] __msan_chain_origin+0x50/0x90 [ 663.144982][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.150089][T14055] get_compat_msghdr+0x108/0x270 [ 663.155020][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.159521][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.164186][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.170244][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.176398][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.181595][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.186439][T14055] do_SYSENTER_32+0x73/0x90 [ 663.190942][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.197247][T14055] [ 663.199558][T14055] Uninit was stored to memory at: [ 663.204572][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.210279][T14055] __msan_chain_origin+0x50/0x90 [ 663.215206][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.220309][T14055] get_compat_msghdr+0x108/0x270 [ 663.225235][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.229725][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.234390][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.240444][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.246594][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.251785][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.256627][T14055] do_SYSENTER_32+0x73/0x90 [ 663.261119][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.267423][T14055] [ 663.269741][T14055] Uninit was stored to memory at: [ 663.274762][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.280468][T14055] __msan_chain_origin+0x50/0x90 [ 663.285399][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.290504][T14055] get_compat_msghdr+0x108/0x270 [ 663.295431][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.299923][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.304588][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.310649][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.316800][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.321993][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.326835][T14055] do_SYSENTER_32+0x73/0x90 [ 663.331327][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.337657][T14055] [ 663.339971][T14055] Uninit was stored to memory at: [ 663.344985][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.350696][T14055] __msan_chain_origin+0x50/0x90 [ 663.355627][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.360734][T14055] get_compat_msghdr+0x108/0x270 [ 663.365666][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.370177][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.374867][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.380927][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.387071][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.392264][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.397109][T14055] do_SYSENTER_32+0x73/0x90 [ 663.401602][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.407909][T14055] [ 663.410224][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 663.416890][T14055] do_recvmmsg+0xc5/0x1ee0 [ 663.421300][T14055] do_recvmmsg+0xc5/0x1ee0 [ 663.620978][T14055] not chained 2540000 origins [ 663.625680][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 663.634336][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 663.644382][T14055] Call Trace: [ 663.647671][T14055] dump_stack+0x1df/0x240 [ 663.652001][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 663.657720][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 663.662831][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 663.667936][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 663.673825][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 663.679882][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 663.684817][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 663.689917][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 663.695457][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 663.701527][T14055] ? _copy_from_user+0x15b/0x260 [ 663.706458][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 663.711569][T14055] __msan_chain_origin+0x50/0x90 [ 663.716516][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.721634][T14055] get_compat_msghdr+0x108/0x270 [ 663.726572][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.731078][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 663.737140][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 663.742784][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 663.747892][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 663.753524][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 663.758808][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 663.763569][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 663.768329][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 663.773546][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.778230][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.784294][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 663.790528][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.796690][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.801890][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.806739][T14055] do_SYSENTER_32+0x73/0x90 [ 663.811256][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.817589][T14055] RIP: 0023:0xf7fd1549 [ 663.821640][T14055] Code: Bad RIP value. [ 663.825697][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 663.834213][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 663.842280][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 663.850254][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 663.858217][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 663.866177][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 663.874146][T14055] Uninit was stored to memory at: [ 663.879171][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.884888][T14055] __msan_chain_origin+0x50/0x90 [ 663.889825][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.894933][T14055] get_compat_msghdr+0x108/0x270 [ 663.899864][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.904358][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.909027][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.915100][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.921258][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.926449][T14055] do_fast_syscall_32+0x6b/0xd0 [ 663.931297][T14055] do_SYSENTER_32+0x73/0x90 [ 663.935791][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.942188][T14055] [ 663.944517][T14055] Uninit was stored to memory at: [ 663.949637][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 663.955357][T14055] __msan_chain_origin+0x50/0x90 [ 663.960286][T14055] __get_compat_msghdr+0x5be/0x890 [ 663.965399][T14055] get_compat_msghdr+0x108/0x270 [ 663.970329][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 663.974820][T14055] __sys_recvmmsg+0x4ca/0x510 [ 663.979501][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.985571][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.991729][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 663.996920][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.001766][T14055] do_SYSENTER_32+0x73/0x90 [ 664.006261][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.012567][T14055] [ 664.014967][T14055] Uninit was stored to memory at: [ 664.019982][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.025778][T14055] __msan_chain_origin+0x50/0x90 [ 664.030709][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.035811][T14055] get_compat_msghdr+0x108/0x270 [ 664.040835][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.045348][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.050015][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.056072][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.062217][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.067497][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.072340][T14055] do_SYSENTER_32+0x73/0x90 [ 664.076833][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.083141][T14055] [ 664.085629][T14055] Uninit was stored to memory at: [ 664.090661][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.096376][T14055] __msan_chain_origin+0x50/0x90 [ 664.101320][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.106428][T14055] get_compat_msghdr+0x108/0x270 [ 664.111361][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.115860][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.120532][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.126595][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.132745][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.137939][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.142871][T14055] do_SYSENTER_32+0x73/0x90 [ 664.147368][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.153677][T14055] [ 664.155993][T14055] Uninit was stored to memory at: [ 664.161011][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.166721][T14055] __msan_chain_origin+0x50/0x90 [ 664.171655][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.176762][T14055] get_compat_msghdr+0x108/0x270 [ 664.181695][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.186191][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.190862][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.196920][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.203067][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.208259][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.213104][T14055] do_SYSENTER_32+0x73/0x90 [ 664.217599][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.223906][T14055] [ 664.226224][T14055] Uninit was stored to memory at: [ 664.231245][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.236955][T14055] __msan_chain_origin+0x50/0x90 [ 664.241888][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.246991][T14055] get_compat_msghdr+0x108/0x270 [ 664.251922][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.256421][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.261092][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.267152][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.273302][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.278505][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.283349][T14055] do_SYSENTER_32+0x73/0x90 [ 664.287845][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.294153][T14055] [ 664.296468][T14055] Uninit was stored to memory at: [ 664.301497][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.307206][T14055] __msan_chain_origin+0x50/0x90 [ 664.312229][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.317336][T14055] get_compat_msghdr+0x108/0x270 [ 664.322270][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.326768][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.331460][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.337536][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.343692][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.348886][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.353743][T14055] do_SYSENTER_32+0x73/0x90 [ 664.358241][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.364560][T14055] [ 664.366876][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 664.373546][T14055] do_recvmmsg+0xc5/0x1ee0 [ 664.377962][T14055] do_recvmmsg+0xc5/0x1ee0 [ 664.612132][T14055] not chained 2550000 origins [ 664.616838][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 664.625498][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 664.635542][T14055] Call Trace: [ 664.638834][T14055] dump_stack+0x1df/0x240 [ 664.643162][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 664.648883][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 664.653997][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 664.659104][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 664.664913][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 664.671065][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 664.676005][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 664.681112][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 664.686653][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 664.692722][T14055] ? _copy_from_user+0x15b/0x260 [ 664.697659][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 664.702768][T14055] __msan_chain_origin+0x50/0x90 [ 664.707707][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.712829][T14055] get_compat_msghdr+0x108/0x270 [ 664.717772][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.722277][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 664.728345][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 664.733984][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 664.739091][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 664.744720][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 664.750000][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 664.754764][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 664.759521][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 664.764719][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.769403][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.775471][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 664.781710][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.787946][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.793151][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.798001][T14055] do_SYSENTER_32+0x73/0x90 [ 664.802499][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.808820][T14055] RIP: 0023:0xf7fd1549 [ 664.812871][T14055] Code: Bad RIP value. [ 664.816926][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 664.825326][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 664.833293][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 664.841255][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 664.849216][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 664.857192][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 664.865159][T14055] Uninit was stored to memory at: [ 664.870179][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.875892][T14055] __msan_chain_origin+0x50/0x90 [ 664.880821][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.885923][T14055] get_compat_msghdr+0x108/0x270 [ 664.890873][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.895367][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.900037][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.906096][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.912242][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.917433][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.922281][T14055] do_SYSENTER_32+0x73/0x90 [ 664.926777][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.933090][T14055] [ 664.935402][T14055] Uninit was stored to memory at: [ 664.940421][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 664.946134][T14055] __msan_chain_origin+0x50/0x90 [ 664.951069][T14055] __get_compat_msghdr+0x5be/0x890 [ 664.956176][T14055] get_compat_msghdr+0x108/0x270 [ 664.961107][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 664.965605][T14055] __sys_recvmmsg+0x4ca/0x510 [ 664.970271][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.976328][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.982477][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 664.987674][T14055] do_fast_syscall_32+0x6b/0xd0 [ 664.992518][T14055] do_SYSENTER_32+0x73/0x90 [ 664.997012][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.003323][T14055] [ 665.005636][T14055] Uninit was stored to memory at: [ 665.010653][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.016363][T14055] __msan_chain_origin+0x50/0x90 [ 665.021297][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.026399][T14055] get_compat_msghdr+0x108/0x270 [ 665.031325][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.035820][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.040492][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.046550][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.052697][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.057888][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.062731][T14055] do_SYSENTER_32+0x73/0x90 [ 665.067229][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.073536][T14055] [ 665.075856][T14055] Uninit was stored to memory at: [ 665.080873][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.086589][T14055] __msan_chain_origin+0x50/0x90 [ 665.091543][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.096665][T14055] get_compat_msghdr+0x108/0x270 [ 665.101598][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.106094][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.110762][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.116820][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.122970][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.128175][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.133021][T14055] do_SYSENTER_32+0x73/0x90 [ 665.137518][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.143826][T14055] [ 665.146141][T14055] Uninit was stored to memory at: [ 665.151162][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.156882][T14055] __msan_chain_origin+0x50/0x90 [ 665.161818][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.166927][T14055] get_compat_msghdr+0x108/0x270 [ 665.171861][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.176358][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.181029][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.187089][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.193238][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.198432][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.203279][T14055] do_SYSENTER_32+0x73/0x90 [ 665.207774][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.214086][T14055] [ 665.216400][T14055] Uninit was stored to memory at: [ 665.221427][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.227139][T14055] __msan_chain_origin+0x50/0x90 [ 665.232073][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.237180][T14055] get_compat_msghdr+0x108/0x270 [ 665.242115][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.246609][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.251285][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.257345][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.263495][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.268778][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.273624][T14055] do_SYSENTER_32+0x73/0x90 [ 665.278120][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.284431][T14055] [ 665.286746][T14055] Uninit was stored to memory at: [ 665.291770][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.297491][T14055] __msan_chain_origin+0x50/0x90 [ 665.302427][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.307538][T14055] get_compat_msghdr+0x108/0x270 [ 665.312474][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.316976][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.321650][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.327710][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.333858][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.339056][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.343902][T14055] do_SYSENTER_32+0x73/0x90 [ 665.348401][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.354708][T14055] [ 665.357027][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 665.363694][T14055] do_recvmmsg+0xc5/0x1ee0 [ 665.368101][T14055] do_recvmmsg+0xc5/0x1ee0 [ 665.582319][T14055] not chained 2560000 origins [ 665.587024][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 665.595680][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 665.605724][T14055] Call Trace: [ 665.609014][T14055] dump_stack+0x1df/0x240 [ 665.613345][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 665.619068][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 665.624178][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 665.629286][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 665.635090][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 665.641152][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 665.646104][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 665.651215][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 665.656760][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 665.662828][T14055] ? _copy_from_user+0x15b/0x260 [ 665.667770][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 665.672880][T14055] __msan_chain_origin+0x50/0x90 [ 665.677818][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.682948][T14055] get_compat_msghdr+0x108/0x270 [ 665.687894][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.692399][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 665.698464][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 665.704114][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 665.709222][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 665.714851][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 665.720134][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 665.724895][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 665.729654][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 665.734849][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.739542][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.745612][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 665.751849][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.758196][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.763656][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.768510][T14055] do_SYSENTER_32+0x73/0x90 [ 665.773011][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.779330][T14055] RIP: 0023:0xf7fd1549 [ 665.783380][T14055] Code: Bad RIP value. [ 665.787437][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 665.795846][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 665.804243][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 665.812207][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 665.820173][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 665.828165][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 665.836138][T14055] Uninit was stored to memory at: [ 665.841163][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.846873][T14055] __msan_chain_origin+0x50/0x90 [ 665.851807][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.856912][T14055] get_compat_msghdr+0x108/0x270 [ 665.861843][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.866337][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.871005][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.877063][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.883210][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.888408][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.893257][T14055] do_SYSENTER_32+0x73/0x90 [ 665.897752][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.904067][T14055] [ 665.906381][T14055] Uninit was stored to memory at: [ 665.911427][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.917138][T14055] __msan_chain_origin+0x50/0x90 [ 665.922071][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.927177][T14055] get_compat_msghdr+0x108/0x270 [ 665.932109][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 665.936603][T14055] __sys_recvmmsg+0x4ca/0x510 [ 665.941274][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.947336][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.953485][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 665.958689][T14055] do_fast_syscall_32+0x6b/0xd0 [ 665.963534][T14055] do_SYSENTER_32+0x73/0x90 [ 665.968031][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.974343][T14055] [ 665.976667][T14055] Uninit was stored to memory at: [ 665.981690][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 665.987412][T14055] __msan_chain_origin+0x50/0x90 [ 665.992436][T14055] __get_compat_msghdr+0x5be/0x890 [ 665.997558][T14055] get_compat_msghdr+0x108/0x270 [ 666.002503][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.007619][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.012296][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.018360][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.024529][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.029727][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.034577][T14055] do_SYSENTER_32+0x73/0x90 [ 666.039079][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.045398][T14055] [ 666.047714][T14055] Uninit was stored to memory at: [ 666.052736][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.058458][T14055] __msan_chain_origin+0x50/0x90 [ 666.063405][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.068518][T14055] get_compat_msghdr+0x108/0x270 [ 666.073452][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.077952][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.082622][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.088683][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.094829][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.100029][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.105831][T14055] do_SYSENTER_32+0x73/0x90 [ 666.110330][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.116643][T14055] [ 666.119064][T14055] Uninit was stored to memory at: [ 666.124090][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.129802][T14055] __msan_chain_origin+0x50/0x90 [ 666.134735][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.139849][T14055] get_compat_msghdr+0x108/0x270 [ 666.144783][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.149282][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.153957][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.160027][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.166198][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.171425][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.176294][T14055] do_SYSENTER_32+0x73/0x90 [ 666.180799][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.187113][T14055] [ 666.189428][T14055] Uninit was stored to memory at: [ 666.194457][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.200172][T14055] __msan_chain_origin+0x50/0x90 [ 666.205113][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.210227][T14055] get_compat_msghdr+0x108/0x270 [ 666.215165][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.219668][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.224341][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.230405][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.236557][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.241751][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.246594][T14055] do_SYSENTER_32+0x73/0x90 [ 666.251197][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.257508][T14055] [ 666.259824][T14055] Uninit was stored to memory at: [ 666.264846][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.270689][T14055] __msan_chain_origin+0x50/0x90 [ 666.275640][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.280758][T14055] get_compat_msghdr+0x108/0x270 [ 666.285702][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.290204][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.294876][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.300936][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.307084][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.312279][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.317152][T14055] do_SYSENTER_32+0x73/0x90 [ 666.321652][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.327963][T14055] [ 666.330285][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 666.336954][T14055] do_recvmmsg+0xc5/0x1ee0 [ 666.341370][T14055] do_recvmmsg+0xc5/0x1ee0 [ 666.545521][T14055] not chained 2570000 origins [ 666.550229][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 666.558890][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 666.568935][T14055] Call Trace: [ 666.572224][T14055] dump_stack+0x1df/0x240 [ 666.576904][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 666.582639][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 666.587751][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 666.592861][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 666.598664][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 666.604738][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 666.609676][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 666.614790][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 666.620332][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 666.626401][T14055] ? _copy_from_user+0x15b/0x260 [ 666.631330][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 666.636434][T14055] __msan_chain_origin+0x50/0x90 [ 666.641378][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.646499][T14055] get_compat_msghdr+0x108/0x270 [ 666.651442][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.655963][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 666.662030][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 666.667672][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 666.672787][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 666.678420][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 666.683706][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 666.688463][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 666.693222][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 666.698417][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.703096][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.709156][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 666.715387][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.721538][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.726758][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.731606][T14055] do_SYSENTER_32+0x73/0x90 [ 666.736121][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.742436][T14055] RIP: 0023:0xf7fd1549 [ 666.746488][T14055] Code: Bad RIP value. [ 666.750545][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 666.758950][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 666.766914][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 666.774880][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 666.782842][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 666.790804][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 666.798777][T14055] Uninit was stored to memory at: [ 666.803811][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.809524][T14055] __msan_chain_origin+0x50/0x90 [ 666.814453][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.819558][T14055] get_compat_msghdr+0x108/0x270 [ 666.824486][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.828978][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.833643][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.839706][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.845861][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.851057][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.855897][T14055] do_SYSENTER_32+0x73/0x90 [ 666.860390][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.866701][T14055] [ 666.869015][T14055] Uninit was stored to memory at: [ 666.874029][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.879739][T14055] __msan_chain_origin+0x50/0x90 [ 666.884669][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.889778][T14055] get_compat_msghdr+0x108/0x270 [ 666.894712][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.899211][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.903885][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.909948][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.916098][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.921316][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.926183][T14055] do_SYSENTER_32+0x73/0x90 [ 666.930676][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.936988][T14055] [ 666.939305][T14055] Uninit was stored to memory at: [ 666.944322][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 666.950030][T14055] __msan_chain_origin+0x50/0x90 [ 666.954955][T14055] __get_compat_msghdr+0x5be/0x890 [ 666.960057][T14055] get_compat_msghdr+0x108/0x270 [ 666.964985][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 666.969486][T14055] __sys_recvmmsg+0x4ca/0x510 [ 666.974155][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.980224][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.986369][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 666.991565][T14055] do_fast_syscall_32+0x6b/0xd0 [ 666.996409][T14055] do_SYSENTER_32+0x73/0x90 [ 667.000909][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.007219][T14055] [ 667.009534][T14055] Uninit was stored to memory at: [ 667.014553][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.020265][T14055] __msan_chain_origin+0x50/0x90 [ 667.025197][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.030297][T14055] get_compat_msghdr+0x108/0x270 [ 667.035223][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.039724][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.044395][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.050455][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.056599][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.061792][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.066639][T14055] do_SYSENTER_32+0x73/0x90 [ 667.071139][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.077450][T14055] [ 667.079770][T14055] Uninit was stored to memory at: [ 667.084786][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.090508][T14055] __msan_chain_origin+0x50/0x90 [ 667.095441][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.100548][T14055] get_compat_msghdr+0x108/0x270 [ 667.105479][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.109979][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.114650][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.120720][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.126884][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.132080][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.136923][T14055] do_SYSENTER_32+0x73/0x90 [ 667.141520][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.147825][T14055] [ 667.150140][T14055] Uninit was stored to memory at: [ 667.155157][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.160897][T14055] __msan_chain_origin+0x50/0x90 [ 667.165934][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.171036][T14055] get_compat_msghdr+0x108/0x270 [ 667.175960][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.180480][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.185145][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.191198][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.197344][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.202536][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.207387][T14055] do_SYSENTER_32+0x73/0x90 [ 667.211885][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.218196][T14055] [ 667.220508][T14055] Uninit was stored to memory at: [ 667.225596][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.231305][T14055] __msan_chain_origin+0x50/0x90 [ 667.236236][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.241341][T14055] get_compat_msghdr+0x108/0x270 [ 667.246272][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.250762][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.255424][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.261484][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.267626][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.272816][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.277659][T14055] do_SYSENTER_32+0x73/0x90 [ 667.282154][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.288456][T14055] [ 667.290772][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 667.297439][T14055] do_recvmmsg+0xc5/0x1ee0 [ 667.301850][T14055] do_recvmmsg+0xc5/0x1ee0 [ 667.472386][T14055] not chained 2580000 origins [ 667.477097][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 667.485759][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 667.495808][T14055] Call Trace: [ 667.499101][T14055] dump_stack+0x1df/0x240 [ 667.503436][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 667.509155][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 667.514268][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 667.519389][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 667.525199][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 667.531262][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 667.536206][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 667.541315][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 667.546859][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 667.552930][T14055] ? _copy_from_user+0x15b/0x260 [ 667.557864][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 667.562976][T14055] __msan_chain_origin+0x50/0x90 [ 667.567918][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.573049][T14055] get_compat_msghdr+0x108/0x270 [ 667.577991][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.582498][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 667.588560][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 667.594198][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 667.599300][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 667.604941][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 667.610226][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 667.614985][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 667.619742][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 667.624934][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.629614][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.635682][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 667.641916][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.648066][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.653274][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.658134][T14055] do_SYSENTER_32+0x73/0x90 [ 667.662634][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.668949][T14055] RIP: 0023:0xf7fd1549 [ 667.673002][T14055] Code: Bad RIP value. [ 667.677055][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 667.685459][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 667.693424][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 667.701384][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 667.709345][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 667.717318][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 667.725290][T14055] Uninit was stored to memory at: [ 667.730310][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.736021][T14055] __msan_chain_origin+0x50/0x90 [ 667.740947][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.746043][T14055] get_compat_msghdr+0x108/0x270 [ 667.750971][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.755463][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.760128][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.766215][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.772366][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.777558][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.782397][T14055] do_SYSENTER_32+0x73/0x90 [ 667.786891][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.793197][T14055] [ 667.795513][T14055] Uninit was stored to memory at: [ 667.800526][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.806234][T14055] __msan_chain_origin+0x50/0x90 [ 667.811161][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.816265][T14055] get_compat_msghdr+0x108/0x270 [ 667.821198][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.825701][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.830369][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.836528][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.842672][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.847864][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.852711][T14055] do_SYSENTER_32+0x73/0x90 [ 667.857205][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.863511][T14055] [ 667.865820][T14055] Uninit was stored to memory at: [ 667.870838][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.876548][T14055] __msan_chain_origin+0x50/0x90 [ 667.881480][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.886582][T14055] get_compat_msghdr+0x108/0x270 [ 667.891513][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.896008][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.900675][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.906741][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.912887][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.918077][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.922939][T14055] do_SYSENTER_32+0x73/0x90 [ 667.927434][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.933740][T14055] [ 667.936079][T14055] Uninit was stored to memory at: [ 667.941111][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 667.946824][T14055] __msan_chain_origin+0x50/0x90 [ 667.951759][T14055] __get_compat_msghdr+0x5be/0x890 [ 667.956864][T14055] get_compat_msghdr+0x108/0x270 [ 667.961795][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 667.966292][T14055] __sys_recvmmsg+0x4ca/0x510 [ 667.970959][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.977012][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.983157][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 667.988351][T14055] do_fast_syscall_32+0x6b/0xd0 [ 667.993195][T14055] do_SYSENTER_32+0x73/0x90 [ 667.997692][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.003999][T14055] [ 668.006315][T14055] Uninit was stored to memory at: [ 668.011335][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.017044][T14055] __msan_chain_origin+0x50/0x90 [ 668.021976][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.027107][T14055] get_compat_msghdr+0x108/0x270 [ 668.032130][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.036627][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.041301][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.047390][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.053537][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.058728][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.063581][T14055] do_SYSENTER_32+0x73/0x90 [ 668.068075][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.074387][T14055] [ 668.076706][T14055] Uninit was stored to memory at: [ 668.081731][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.087442][T14055] __msan_chain_origin+0x50/0x90 [ 668.092378][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.097493][T14055] get_compat_msghdr+0x108/0x270 [ 668.102422][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.106917][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.111588][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.117647][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.123792][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.128987][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.133833][T14055] do_SYSENTER_32+0x73/0x90 [ 668.138332][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.144643][T14055] [ 668.146962][T14055] Uninit was stored to memory at: [ 668.151984][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.157694][T14055] __msan_chain_origin+0x50/0x90 [ 668.162787][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.167894][T14055] get_compat_msghdr+0x108/0x270 [ 668.172828][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.177327][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.181998][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.188056][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.194210][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.199431][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.204286][T14055] do_SYSENTER_32+0x73/0x90 [ 668.208797][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.215106][T14055] [ 668.217423][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 668.224091][T14055] do_recvmmsg+0xc5/0x1ee0 [ 668.228502][T14055] do_recvmmsg+0xc5/0x1ee0 [ 668.392194][T14055] not chained 2590000 origins [ 668.396987][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 668.405650][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 668.415693][T14055] Call Trace: [ 668.418987][T14055] dump_stack+0x1df/0x240 [ 668.423324][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 668.429042][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 668.434352][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 668.439465][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 668.445271][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 668.451343][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 668.456290][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 668.461399][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 668.466941][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 668.473013][T14055] ? _copy_from_user+0x15b/0x260 [ 668.477944][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 668.483048][T14055] __msan_chain_origin+0x50/0x90 [ 668.487986][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.493114][T14055] get_compat_msghdr+0x108/0x270 [ 668.498075][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.502581][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 668.508645][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 668.514291][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 668.519399][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 668.525117][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 668.530403][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 668.535162][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 668.539923][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 668.545117][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.549803][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.555873][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 668.562113][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.568266][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.573470][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.578321][T14055] do_SYSENTER_32+0x73/0x90 [ 668.582822][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.589143][T14055] RIP: 0023:0xf7fd1549 [ 668.593198][T14055] Code: Bad RIP value. [ 668.597251][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 668.605657][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 668.613620][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 668.621585][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 668.629551][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 668.637514][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 668.645485][T14055] Uninit was stored to memory at: [ 668.650505][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.656217][T14055] __msan_chain_origin+0x50/0x90 [ 668.661162][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.666356][T14055] get_compat_msghdr+0x108/0x270 [ 668.671287][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.675868][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.680534][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.686675][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.692822][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.698021][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.702864][T14055] do_SYSENTER_32+0x73/0x90 [ 668.707361][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.713676][T14055] [ 668.716014][T14055] Uninit was stored to memory at: [ 668.721033][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.726741][T14055] __msan_chain_origin+0x50/0x90 [ 668.731675][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.736779][T14055] get_compat_msghdr+0x108/0x270 [ 668.741711][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.746202][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.750959][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.757034][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.763194][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.768383][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.773245][T14055] do_SYSENTER_32+0x73/0x90 [ 668.777739][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.784045][T14055] [ 668.786358][T14055] Uninit was stored to memory at: [ 668.791372][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.797082][T14055] __msan_chain_origin+0x50/0x90 [ 668.802019][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.807127][T14055] get_compat_msghdr+0x108/0x270 [ 668.812059][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.816554][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.821224][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.827285][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.833431][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.838624][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.843466][T14055] do_SYSENTER_32+0x73/0x90 [ 668.847964][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.854277][T14055] [ 668.856597][T14055] Uninit was stored to memory at: [ 668.861623][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.867349][T14055] __msan_chain_origin+0x50/0x90 [ 668.872295][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.877402][T14055] get_compat_msghdr+0x108/0x270 [ 668.882342][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.886837][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.891594][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.897657][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.903801][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.908995][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.913836][T14055] do_SYSENTER_32+0x73/0x90 [ 668.918334][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.924640][T14055] [ 668.926951][T14055] Uninit was stored to memory at: [ 668.931969][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 668.937688][T14055] __msan_chain_origin+0x50/0x90 [ 668.942628][T14055] __get_compat_msghdr+0x5be/0x890 [ 668.947731][T14055] get_compat_msghdr+0x108/0x270 [ 668.952676][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 668.957173][T14055] __sys_recvmmsg+0x4ca/0x510 [ 668.961844][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.967905][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.974053][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 668.979243][T14055] do_fast_syscall_32+0x6b/0xd0 [ 668.984084][T14055] do_SYSENTER_32+0x73/0x90 [ 668.988581][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.994976][T14055] [ 668.997289][T14055] Uninit was stored to memory at: [ 669.002309][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.008036][T14055] __msan_chain_origin+0x50/0x90 [ 669.012965][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.018076][T14055] get_compat_msghdr+0x108/0x270 [ 669.023012][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.027507][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.032177][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.038235][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.044380][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.049587][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.054427][T14055] do_SYSENTER_32+0x73/0x90 [ 669.058922][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.065230][T14055] [ 669.067539][T14055] Uninit was stored to memory at: [ 669.072577][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.078289][T14055] __msan_chain_origin+0x50/0x90 [ 669.083216][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.088319][T14055] get_compat_msghdr+0x108/0x270 [ 669.093252][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.097745][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.102428][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.108495][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.114643][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.119843][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.124684][T14055] do_SYSENTER_32+0x73/0x90 [ 669.129176][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.135485][T14055] [ 669.137807][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 669.144507][T14055] do_recvmmsg+0xc5/0x1ee0 [ 669.148922][T14055] do_recvmmsg+0xc5/0x1ee0 [ 669.306298][T14055] not chained 2600000 origins [ 669.311026][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 669.319682][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.329857][T14055] Call Trace: [ 669.333147][T14055] dump_stack+0x1df/0x240 [ 669.337478][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 669.343216][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 669.348329][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 669.353440][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 669.359242][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 669.365300][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 669.370238][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 669.375342][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 669.380877][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 669.386941][T14055] ? _copy_from_user+0x15b/0x260 [ 669.391872][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 669.396979][T14055] __msan_chain_origin+0x50/0x90 [ 669.401917][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.407042][T14055] get_compat_msghdr+0x108/0x270 [ 669.412071][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.416575][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 669.422638][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 669.428283][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 669.433390][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 669.439020][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 669.444325][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 669.449112][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 669.453893][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 669.459093][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.463772][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.469838][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 669.476078][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.482228][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.487428][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.492283][T14055] do_SYSENTER_32+0x73/0x90 [ 669.496785][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.503103][T14055] RIP: 0023:0xf7fd1549 [ 669.507154][T14055] Code: Bad RIP value. [ 669.511207][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 669.519614][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 669.527580][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 669.535544][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 669.543509][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 669.551472][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 669.559460][T14055] Uninit was stored to memory at: [ 669.564490][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.570206][T14055] __msan_chain_origin+0x50/0x90 [ 669.575142][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.580251][T14055] get_compat_msghdr+0x108/0x270 [ 669.585181][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.589764][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.594435][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.600506][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.606649][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.611843][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.616690][T14055] do_SYSENTER_32+0x73/0x90 [ 669.621187][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.627504][T14055] [ 669.629825][T14055] Uninit was stored to memory at: [ 669.634843][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.640565][T14055] __msan_chain_origin+0x50/0x90 [ 669.645501][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.650621][T14055] get_compat_msghdr+0x108/0x270 [ 669.655550][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.660044][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.664712][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.670788][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.676936][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.682130][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.686971][T14055] do_SYSENTER_32+0x73/0x90 [ 669.691469][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.697800][T14055] [ 669.700114][T14055] Uninit was stored to memory at: [ 669.705127][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.710837][T14055] __msan_chain_origin+0x50/0x90 [ 669.715769][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.720876][T14055] get_compat_msghdr+0x108/0x270 [ 669.725804][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.730298][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.734964][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.741019][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.747248][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.752444][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.757285][T14055] do_SYSENTER_32+0x73/0x90 [ 669.761780][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.768090][T14055] [ 669.770407][T14055] Uninit was stored to memory at: [ 669.775435][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.781156][T14055] __msan_chain_origin+0x50/0x90 [ 669.786089][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.791219][T14055] get_compat_msghdr+0x108/0x270 [ 669.796150][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.800651][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.805333][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.811389][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.817534][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.822917][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.827848][T14055] do_SYSENTER_32+0x73/0x90 [ 669.832353][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.838662][T14055] [ 669.840978][T14055] Uninit was stored to memory at: [ 669.845989][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.851701][T14055] __msan_chain_origin+0x50/0x90 [ 669.856634][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.861741][T14055] get_compat_msghdr+0x108/0x270 [ 669.866672][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.871171][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.875847][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.881905][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.888050][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.893241][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.898088][T14055] do_SYSENTER_32+0x73/0x90 [ 669.902609][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.908915][T14055] [ 669.911230][T14055] Uninit was stored to memory at: [ 669.916251][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.921968][T14055] __msan_chain_origin+0x50/0x90 [ 669.926896][T14055] __get_compat_msghdr+0x5be/0x890 [ 669.932013][T14055] get_compat_msghdr+0x108/0x270 [ 669.936943][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 669.941454][T14055] __sys_recvmmsg+0x4ca/0x510 [ 669.946125][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.952180][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.958324][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 669.963520][T14055] do_fast_syscall_32+0x6b/0xd0 [ 669.968362][T14055] do_SYSENTER_32+0x73/0x90 [ 669.972855][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.979159][T14055] [ 669.981500][T14055] Uninit was stored to memory at: [ 669.986536][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 669.992247][T14055] __msan_chain_origin+0x50/0x90 [ 669.997177][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.002284][T14055] get_compat_msghdr+0x108/0x270 [ 670.007216][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.011713][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.016405][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.022460][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.028612][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.033815][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.038662][T14055] do_SYSENTER_32+0x73/0x90 [ 670.043157][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.049461][T14055] [ 670.051777][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 670.058446][T14055] do_recvmmsg+0xc5/0x1ee0 [ 670.062852][T14055] do_recvmmsg+0xc5/0x1ee0 [ 670.220537][T14055] not chained 2610000 origins [ 670.225229][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 670.233884][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 670.243930][T14055] Call Trace: [ 670.247217][T14055] dump_stack+0x1df/0x240 [ 670.251565][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 670.257287][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 670.262394][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 670.267501][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 670.273317][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 670.279380][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 670.284317][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 670.289422][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 670.294963][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 670.301042][T14055] ? _copy_from_user+0x15b/0x260 [ 670.305969][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 670.311085][T14055] __msan_chain_origin+0x50/0x90 [ 670.316020][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.321132][T14055] get_compat_msghdr+0x108/0x270 [ 670.326067][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.330567][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 670.336725][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 670.342372][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 670.347474][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 670.353102][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 670.358384][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 670.363138][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 670.367901][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 670.373092][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.377995][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.384058][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 670.390286][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.396454][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.401656][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.406512][T14055] do_SYSENTER_32+0x73/0x90 [ 670.411012][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.417331][T14055] RIP: 0023:0xf7fd1549 [ 670.421395][T14055] Code: Bad RIP value. [ 670.425452][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 670.433854][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 670.441815][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 670.449795][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 670.457753][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 670.465734][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 670.473706][T14055] Uninit was stored to memory at: [ 670.478726][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.484434][T14055] __msan_chain_origin+0x50/0x90 [ 670.489359][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.494483][T14055] get_compat_msghdr+0x108/0x270 [ 670.499418][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.503912][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.508584][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.514652][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.520803][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.525995][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.530844][T14055] do_SYSENTER_32+0x73/0x90 [ 670.535340][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.541656][T14055] [ 670.543970][T14055] Uninit was stored to memory at: [ 670.548991][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.554702][T14055] __msan_chain_origin+0x50/0x90 [ 670.559635][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.564751][T14055] get_compat_msghdr+0x108/0x270 [ 670.569683][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.574182][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.578852][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.584913][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.591066][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.596260][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.601103][T14055] do_SYSENTER_32+0x73/0x90 [ 670.605594][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.611902][T14055] [ 670.614217][T14055] Uninit was stored to memory at: [ 670.619244][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.624953][T14055] __msan_chain_origin+0x50/0x90 [ 670.629885][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.634987][T14055] get_compat_msghdr+0x108/0x270 [ 670.639910][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.644402][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.649069][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.655120][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.661264][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.666493][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.671337][T14055] do_SYSENTER_32+0x73/0x90 [ 670.675836][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.682142][T14055] [ 670.684454][T14055] Uninit was stored to memory at: [ 670.689465][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.695178][T14055] __msan_chain_origin+0x50/0x90 [ 670.700108][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.705213][T14055] get_compat_msghdr+0x108/0x270 [ 670.710143][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.714638][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.719305][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.725391][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.731557][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.736747][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.741590][T14055] do_SYSENTER_32+0x73/0x90 [ 670.746081][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.752391][T14055] [ 670.754702][T14055] Uninit was stored to memory at: [ 670.759713][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.765436][T14055] __msan_chain_origin+0x50/0x90 [ 670.770387][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.775500][T14055] get_compat_msghdr+0x108/0x270 [ 670.780433][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.784924][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.789590][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.795657][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.801795][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.806985][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.811829][T14055] do_SYSENTER_32+0x73/0x90 [ 670.816322][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.822626][T14055] [ 670.824937][T14055] Uninit was stored to memory at: [ 670.829954][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.835666][T14055] __msan_chain_origin+0x50/0x90 [ 670.840594][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.845695][T14055] get_compat_msghdr+0x108/0x270 [ 670.850624][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.855114][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.859778][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.865835][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.871979][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.877174][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.882020][T14055] do_SYSENTER_32+0x73/0x90 [ 670.886556][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.892883][T14055] [ 670.895222][T14055] Uninit was stored to memory at: [ 670.900241][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 670.905950][T14055] __msan_chain_origin+0x50/0x90 [ 670.910888][T14055] __get_compat_msghdr+0x5be/0x890 [ 670.916003][T14055] get_compat_msghdr+0x108/0x270 [ 670.920932][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 670.925427][T14055] __sys_recvmmsg+0x4ca/0x510 [ 670.930095][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.936150][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.942329][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 670.947524][T14055] do_fast_syscall_32+0x6b/0xd0 [ 670.952370][T14055] do_SYSENTER_32+0x73/0x90 [ 670.956868][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.963198][T14055] [ 670.965525][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 670.972206][T14055] do_recvmmsg+0xc5/0x1ee0 [ 670.976619][T14055] do_recvmmsg+0xc5/0x1ee0 [ 671.142244][T14055] not chained 2620000 origins [ 671.146945][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 671.155601][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 671.165645][T14055] Call Trace: [ 671.168934][T14055] dump_stack+0x1df/0x240 [ 671.173262][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 671.178984][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 671.184100][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 671.189209][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 671.195015][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 671.201079][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 671.206032][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 671.211137][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 671.216676][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 671.222743][T14055] ? _copy_from_user+0x15b/0x260 [ 671.227673][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 671.234103][T14055] __msan_chain_origin+0x50/0x90 [ 671.239042][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.244161][T14055] get_compat_msghdr+0x108/0x270 [ 671.249102][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.253617][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 671.259676][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 671.265315][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 671.270429][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 671.276061][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 671.281342][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 671.286097][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 671.290862][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 671.296065][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.300742][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.306804][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 671.313145][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.319298][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.324586][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.329431][T14055] do_SYSENTER_32+0x73/0x90 [ 671.333927][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.340240][T14055] RIP: 0023:0xf7fd1549 [ 671.344289][T14055] Code: Bad RIP value. [ 671.348344][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 671.356749][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 671.364711][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 671.372675][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 671.380638][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 671.388604][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 671.396616][T14055] Uninit was stored to memory at: [ 671.401635][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.407348][T14055] __msan_chain_origin+0x50/0x90 [ 671.412283][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.417389][T14055] get_compat_msghdr+0x108/0x270 [ 671.422321][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.426830][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.431531][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.437590][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.443733][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.448925][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.453769][T14055] do_SYSENTER_32+0x73/0x90 [ 671.458263][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.464577][T14055] [ 671.466891][T14055] Uninit was stored to memory at: [ 671.471914][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.477627][T14055] __msan_chain_origin+0x50/0x90 [ 671.482559][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.487660][T14055] get_compat_msghdr+0x108/0x270 [ 671.492593][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.497179][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.501848][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.507917][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.514063][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.519256][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.524102][T14055] do_SYSENTER_32+0x73/0x90 [ 671.528603][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.534909][T14055] [ 671.537224][T14055] Uninit was stored to memory at: [ 671.542242][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.547957][T14055] __msan_chain_origin+0x50/0x90 [ 671.552893][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.558007][T14055] get_compat_msghdr+0x108/0x270 [ 671.562935][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.567428][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.572101][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.578162][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.584333][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.589527][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.594372][T14055] do_SYSENTER_32+0x73/0x90 [ 671.598867][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.605175][T14055] [ 671.607492][T14055] Uninit was stored to memory at: [ 671.612515][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.618228][T14055] __msan_chain_origin+0x50/0x90 [ 671.623161][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.628266][T14055] get_compat_msghdr+0x108/0x270 [ 671.633199][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.637697][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.642367][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.648514][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.654656][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.659845][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.664685][T14055] do_SYSENTER_32+0x73/0x90 [ 671.669180][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.675504][T14055] [ 671.677819][T14055] Uninit was stored to memory at: [ 671.682847][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.688557][T14055] __msan_chain_origin+0x50/0x90 [ 671.693491][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.698598][T14055] get_compat_msghdr+0x108/0x270 [ 671.703525][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.708017][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.712687][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.718855][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.725004][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.730197][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.735050][T14055] do_SYSENTER_32+0x73/0x90 [ 671.739542][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.745844][T14055] [ 671.748158][T14055] Uninit was stored to memory at: [ 671.753176][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.758885][T14055] __msan_chain_origin+0x50/0x90 [ 671.763815][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.768923][T14055] get_compat_msghdr+0x108/0x270 [ 671.773938][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.778433][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.783098][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.789154][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.795298][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.800498][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.805355][T14055] do_SYSENTER_32+0x73/0x90 [ 671.809850][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.816159][T14055] [ 671.818479][T14055] Uninit was stored to memory at: [ 671.823501][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 671.830452][T14055] __msan_chain_origin+0x50/0x90 [ 671.835386][T14055] __get_compat_msghdr+0x5be/0x890 [ 671.840489][T14055] get_compat_msghdr+0x108/0x270 [ 671.845417][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 671.850173][T14055] __sys_recvmmsg+0x4ca/0x510 [ 671.854840][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.860896][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.867043][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 671.872238][T14055] do_fast_syscall_32+0x6b/0xd0 [ 671.877082][T14055] do_SYSENTER_32+0x73/0x90 [ 671.881614][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.887919][T14055] [ 671.890240][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 671.896997][T14055] do_recvmmsg+0xc5/0x1ee0 [ 671.901408][T14055] do_recvmmsg+0xc5/0x1ee0 [ 672.083165][T14055] not chained 2630000 origins [ 672.088037][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 672.096696][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 672.106744][T14055] Call Trace: [ 672.110034][T14055] dump_stack+0x1df/0x240 [ 672.114368][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 672.120085][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 672.125195][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 672.130301][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 672.136104][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 672.142163][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 672.147193][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 672.152300][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 672.157849][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 672.163917][T14055] ? _copy_from_user+0x15b/0x260 [ 672.168853][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 672.173959][T14055] __msan_chain_origin+0x50/0x90 [ 672.178905][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.184026][T14055] get_compat_msghdr+0x108/0x270 [ 672.188971][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.193479][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 672.199546][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 672.205185][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 672.210299][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 672.215927][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 672.221218][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 672.226078][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 672.230838][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 672.236033][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.240712][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.246780][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 672.253019][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.259172][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.264382][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.269320][T14055] do_SYSENTER_32+0x73/0x90 [ 672.273822][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.280141][T14055] RIP: 0023:0xf7fd1549 [ 672.284191][T14055] Code: Bad RIP value. [ 672.288245][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 672.296650][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 672.304613][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 672.312597][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 672.320561][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 672.328535][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 672.336509][T14055] Uninit was stored to memory at: [ 672.341539][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.347245][T14055] __msan_chain_origin+0x50/0x90 [ 672.352178][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.357286][T14055] get_compat_msghdr+0x108/0x270 [ 672.362217][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.366716][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.371387][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.377445][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.383595][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.388787][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.393644][T14055] do_SYSENTER_32+0x73/0x90 [ 672.398148][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.404453][T14055] [ 672.406768][T14055] Uninit was stored to memory at: [ 672.411786][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.417499][T14055] __msan_chain_origin+0x50/0x90 [ 672.422434][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.427542][T14055] get_compat_msghdr+0x108/0x270 [ 672.432478][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.436977][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.441647][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.447713][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.453864][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.459059][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.463902][T14055] do_SYSENTER_32+0x73/0x90 [ 672.468397][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.474707][T14055] [ 672.477026][T14055] Uninit was stored to memory at: [ 672.482046][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.487755][T14055] __msan_chain_origin+0x50/0x90 [ 672.492688][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.497790][T14055] get_compat_msghdr+0x108/0x270 [ 672.502721][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.507220][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.511893][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.517954][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.524113][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.529317][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.534165][T14055] do_SYSENTER_32+0x73/0x90 [ 672.538662][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.544969][T14055] [ 672.547313][T14055] Uninit was stored to memory at: [ 672.552337][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.558050][T14055] __msan_chain_origin+0x50/0x90 [ 672.562986][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.568094][T14055] get_compat_msghdr+0x108/0x270 [ 672.573031][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.577534][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.582204][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.588265][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.594410][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.599604][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.604556][T14055] do_SYSENTER_32+0x73/0x90 [ 672.609052][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.615363][T14055] [ 672.617679][T14055] Uninit was stored to memory at: [ 672.622710][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.628439][T14055] __msan_chain_origin+0x50/0x90 [ 672.633374][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.638480][T14055] get_compat_msghdr+0x108/0x270 [ 672.643410][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.647907][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.652578][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.658641][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.664889][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.670169][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.675020][T14055] do_SYSENTER_32+0x73/0x90 [ 672.679525][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.685830][T14055] [ 672.688146][T14055] Uninit was stored to memory at: [ 672.693166][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.698879][T14055] __msan_chain_origin+0x50/0x90 [ 672.703807][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.708911][T14055] get_compat_msghdr+0x108/0x270 [ 672.713841][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.718335][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.723022][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.729082][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.735228][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.740427][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.745263][T14055] do_SYSENTER_32+0x73/0x90 [ 672.749756][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.756062][T14055] [ 672.758376][T14055] Uninit was stored to memory at: [ 672.763481][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 672.769195][T14055] __msan_chain_origin+0x50/0x90 [ 672.774127][T14055] __get_compat_msghdr+0x5be/0x890 [ 672.779244][T14055] get_compat_msghdr+0x108/0x270 [ 672.784171][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 672.788673][T14055] __sys_recvmmsg+0x4ca/0x510 [ 672.793351][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.799407][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.805549][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 672.810755][T14055] do_fast_syscall_32+0x6b/0xd0 [ 672.815596][T14055] do_SYSENTER_32+0x73/0x90 [ 672.820091][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.826400][T14055] [ 672.828714][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 672.835380][T14055] do_recvmmsg+0xc5/0x1ee0 [ 672.839792][T14055] do_recvmmsg+0xc5/0x1ee0 [ 673.013996][T14055] not chained 2640000 origins [ 673.018705][T14055] CPU: 1 PID: 14055 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 673.027365][T14055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 673.037411][T14055] Call Trace: [ 673.040711][T14055] dump_stack+0x1df/0x240 [ 673.045042][T14055] kmsan_internal_chain_origin+0x6f/0x130 [ 673.050763][T14055] ? skb_recv_datagram+0x3ec/0x480 [ 673.055875][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 673.060987][T14055] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 673.066788][T14055] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 673.072850][T14055] ? bt_sock_recvmsg+0x564/0xa00 [ 673.077799][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 673.082904][T14055] ? kmsan_set_origin_checked+0x95/0xf0 [ 673.088447][T14055] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 673.094519][T14055] ? _copy_from_user+0x15b/0x260 [ 673.099463][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 673.104568][T14055] __msan_chain_origin+0x50/0x90 [ 673.109602][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.114724][T14055] get_compat_msghdr+0x108/0x270 [ 673.119783][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.124290][T14055] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 673.130355][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 673.136027][T14055] ? kmsan_get_metadata+0x4f/0x180 [ 673.141147][T14055] ? kmsan_internal_set_origin+0x75/0xb0 [ 673.146862][T14055] ? __msan_poison_alloca+0xf0/0x120 [ 673.152149][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 673.156908][T14055] ? __sys_recvmmsg+0xb4/0x510 [ 673.161666][T14055] ? kmsan_get_metadata+0x11d/0x180 [ 673.166861][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.171565][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.177637][T14055] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 673.183872][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.190025][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.195228][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.200077][T14055] do_SYSENTER_32+0x73/0x90 [ 673.204575][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.210893][T14055] RIP: 0023:0xf7fd1549 [ 673.214944][T14055] Code: Bad RIP value. [ 673.218998][T14055] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 673.227402][T14055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 673.235453][T14055] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 673.243412][T14055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 673.251372][T14055] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 673.259333][T14055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 673.267304][T14055] Uninit was stored to memory at: [ 673.272330][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.278061][T14055] __msan_chain_origin+0x50/0x90 [ 673.282998][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.288106][T14055] get_compat_msghdr+0x108/0x270 [ 673.293037][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.297535][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.302205][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.308266][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.314412][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.319698][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.324543][T14055] do_SYSENTER_32+0x73/0x90 [ 673.329055][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.335359][T14055] [ 673.337671][T14055] Uninit was stored to memory at: [ 673.342689][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.348402][T14055] __msan_chain_origin+0x50/0x90 [ 673.353351][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.358455][T14055] get_compat_msghdr+0x108/0x270 [ 673.363473][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.367973][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.372640][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.378706][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.384849][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.390039][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.394880][T14055] do_SYSENTER_32+0x73/0x90 [ 673.399381][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.405686][T14055] [ 673.408001][T14055] Uninit was stored to memory at: [ 673.413018][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.418730][T14055] __msan_chain_origin+0x50/0x90 [ 673.423665][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.428768][T14055] get_compat_msghdr+0x108/0x270 [ 673.433702][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.438221][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.442888][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.448943][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.455089][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.460278][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.465121][T14055] do_SYSENTER_32+0x73/0x90 [ 673.469618][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.475924][T14055] [ 673.478238][T14055] Uninit was stored to memory at: [ 673.483257][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.488967][T14055] __msan_chain_origin+0x50/0x90 [ 673.493899][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.499003][T14055] get_compat_msghdr+0x108/0x270 [ 673.503962][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.508455][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.513152][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.519212][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.525358][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.530551][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.535394][T14055] do_SYSENTER_32+0x73/0x90 [ 673.539891][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.546196][T14055] [ 673.548513][T14055] Uninit was stored to memory at: [ 673.553536][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.559251][T14055] __msan_chain_origin+0x50/0x90 [ 673.564183][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.569286][T14055] get_compat_msghdr+0x108/0x270 [ 673.574216][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.578711][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.583375][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.589430][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.595577][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.600777][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.605634][T14055] do_SYSENTER_32+0x73/0x90 [ 673.610129][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.616435][T14055] [ 673.618751][T14055] Uninit was stored to memory at: [ 673.623767][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.629477][T14055] __msan_chain_origin+0x50/0x90 [ 673.634416][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.639527][T14055] get_compat_msghdr+0x108/0x270 [ 673.644453][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.648947][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.653615][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.659671][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.665824][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.671012][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.675859][T14055] do_SYSENTER_32+0x73/0x90 [ 673.680353][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.686658][T14055] [ 673.688989][T14055] Uninit was stored to memory at: [ 673.694002][T14055] kmsan_internal_chain_origin+0xad/0x130 [ 673.699726][T14055] __msan_chain_origin+0x50/0x90 [ 673.704653][T14055] __get_compat_msghdr+0x5be/0x890 [ 673.709756][T14055] get_compat_msghdr+0x108/0x270 [ 673.714681][T14055] do_recvmmsg+0xa6a/0x1ee0 [ 673.719175][T14055] __sys_recvmmsg+0x4ca/0x510 [ 673.723844][T14055] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.729898][T14055] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.736041][T14055] __do_fast_syscall_32+0x2aa/0x400 [ 673.741225][T14055] do_fast_syscall_32+0x6b/0xd0 [ 673.746059][T14055] do_SYSENTER_32+0x73/0x90 [ 673.750547][T14055] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.756854][T14055] [ 673.759168][T14055] Local variable ----msg_sys@do_recvmmsg created at: [ 673.765835][T14055] do_recvmmsg+0xc5/0x1ee0 [ 673.770242][T14055] do_recvmmsg+0xc5/0x1ee0 01:23:16 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:23:16 executing program 4: 01:23:16 executing program 1: 01:23:16 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:23:16 executing program 2: 01:23:16 executing program 3: 01:23:17 executing program 4: 01:23:17 executing program 3: 01:23:17 executing program 2: 01:23:17 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:23:17 executing program 1: [ 674.602790][T14088] not chained 2650000 origins [ 674.607609][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 674.616272][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 674.626450][T14088] Call Trace: [ 674.629743][T14088] dump_stack+0x1df/0x240 [ 674.634082][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 674.639809][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 674.645139][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 674.650236][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 674.656024][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 674.662074][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 674.667001][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 674.672183][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 674.677715][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 674.683769][T14088] ? _copy_from_user+0x15b/0x260 [ 674.688688][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 674.693777][T14088] __msan_chain_origin+0x50/0x90 [ 674.698704][T14088] __get_compat_msghdr+0x5be/0x890 [ 674.703809][T14088] get_compat_msghdr+0x108/0x270 [ 674.708737][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 674.713243][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 674.718338][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 674.723949][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 674.729214][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 674.733957][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 674.738699][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 674.743876][T14088] __sys_recvmmsg+0x4ca/0x510 [ 674.748542][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.754588][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 674.760808][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.766945][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 674.772140][T14088] do_fast_syscall_32+0x6b/0xd0 [ 674.776979][T14088] do_SYSENTER_32+0x73/0x90 [ 674.781470][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.787783][T14088] RIP: 0023:0xf7fd1549 [ 674.791831][T14088] Code: Bad RIP value. [ 674.795875][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 674.804269][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 674.812222][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 674.820171][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 674.828121][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 674.836070][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 674.844026][T14088] Uninit was stored to memory at: [ 674.849032][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 674.854739][T14088] __msan_chain_origin+0x50/0x90 [ 674.859655][T14088] __get_compat_msghdr+0x5be/0x890 [ 674.864745][T14088] get_compat_msghdr+0x108/0x270 [ 674.869665][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 674.874148][T14088] __sys_recvmmsg+0x4ca/0x510 [ 674.878807][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.884855][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.891011][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 674.896190][T14088] do_fast_syscall_32+0x6b/0xd0 [ 674.901023][T14088] do_SYSENTER_32+0x73/0x90 [ 674.905511][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.911816][T14088] [ 674.914121][T14088] Uninit was stored to memory at: [ 674.919142][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 674.924839][T14088] __msan_chain_origin+0x50/0x90 [ 674.929760][T14088] __get_compat_msghdr+0x5be/0x890 [ 674.934849][T14088] get_compat_msghdr+0x108/0x270 [ 674.939769][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 674.944250][T14088] __sys_recvmmsg+0x4ca/0x510 [ 674.948903][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.954947][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.961082][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 674.966258][T14088] do_fast_syscall_32+0x6b/0xd0 [ 674.971098][T14088] do_SYSENTER_32+0x73/0x90 [ 674.975584][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.981883][T14088] [ 674.984188][T14088] Uninit was stored to memory at: [ 674.989192][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 674.994889][T14088] __msan_chain_origin+0x50/0x90 [ 674.999810][T14088] __get_compat_msghdr+0x5be/0x890 [ 675.004904][T14088] get_compat_msghdr+0x108/0x270 [ 675.009820][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 675.014301][T14088] __sys_recvmmsg+0x4ca/0x510 [ 675.018957][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.025003][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.031133][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 675.036321][T14088] do_fast_syscall_32+0x6b/0xd0 [ 675.041149][T14088] do_SYSENTER_32+0x73/0x90 [ 675.045639][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.051936][T14088] [ 675.054238][T14088] Uninit was stored to memory at: [ 675.059242][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 675.065025][T14088] __msan_chain_origin+0x50/0x90 [ 675.069954][T14088] __get_compat_msghdr+0x5be/0x890 [ 675.075070][T14088] get_compat_msghdr+0x108/0x270 [ 675.079988][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 675.084471][T14088] __sys_recvmmsg+0x4ca/0x510 [ 675.089130][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.095175][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.101306][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 675.106486][T14088] do_fast_syscall_32+0x6b/0xd0 [ 675.111323][T14088] do_SYSENTER_32+0x73/0x90 [ 675.115808][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.122118][T14088] [ 675.124422][T14088] Uninit was stored to memory at: [ 675.129436][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 675.135134][T14088] __msan_chain_origin+0x50/0x90 [ 675.140064][T14088] __get_compat_msghdr+0x5be/0x890 [ 675.145156][T14088] get_compat_msghdr+0x108/0x270 [ 675.150072][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 675.154552][T14088] __sys_recvmmsg+0x4ca/0x510 [ 675.159204][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.165249][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.171377][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 675.176552][T14088] do_fast_syscall_32+0x6b/0xd0 [ 675.181588][T14088] do_SYSENTER_32+0x73/0x90 [ 675.186068][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.192368][T14088] [ 675.194673][T14088] Uninit was stored to memory at: [ 675.199675][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 675.205372][T14088] __msan_chain_origin+0x50/0x90 [ 675.210294][T14088] __get_compat_msghdr+0x5be/0x890 [ 675.215507][T14088] get_compat_msghdr+0x108/0x270 [ 675.220424][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 675.224905][T14088] __sys_recvmmsg+0x4ca/0x510 [ 675.229563][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.235608][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.241737][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 675.246926][T14088] do_fast_syscall_32+0x6b/0xd0 [ 675.251760][T14088] do_SYSENTER_32+0x73/0x90 [ 675.256256][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.262550][T14088] [ 675.264851][T14088] Uninit was stored to memory at: [ 675.269865][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 675.275563][T14088] __msan_chain_origin+0x50/0x90 [ 675.280477][T14088] __get_compat_msghdr+0x5be/0x890 [ 675.285567][T14088] get_compat_msghdr+0x108/0x270 [ 675.290495][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 675.294979][T14088] __sys_recvmmsg+0x4ca/0x510 [ 675.299662][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.305709][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.311849][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 675.317030][T14088] do_fast_syscall_32+0x6b/0xd0 [ 675.321948][T14088] do_SYSENTER_32+0x73/0x90 [ 675.326429][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.332724][T14088] [ 675.335037][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 675.341687][T14088] do_recvmmsg+0xc5/0x1ee0 [ 675.346090][T14088] do_recvmmsg+0xc5/0x1ee0 01:23:18 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = dup2(r0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 676.865117][T14088] not chained 2660000 origins [ 676.869824][T14088] CPU: 1 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 676.878483][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 676.888538][T14088] Call Trace: [ 676.891833][T14088] dump_stack+0x1df/0x240 [ 676.896169][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 676.901894][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 676.907026][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 676.912147][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 676.917960][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 676.924035][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 676.928972][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 676.934083][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 676.939626][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 676.945694][T14088] ? _copy_from_user+0x15b/0x260 [ 676.950624][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 676.955729][T14088] __msan_chain_origin+0x50/0x90 [ 676.960673][T14088] __get_compat_msghdr+0x5be/0x890 [ 676.965796][T14088] get_compat_msghdr+0x108/0x270 [ 676.970742][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 676.975350][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 676.980463][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 676.986097][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 676.991378][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 676.996135][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 677.000894][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 677.006111][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.010795][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.016868][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 677.023109][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.029262][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.034471][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.039407][T14088] do_SYSENTER_32+0x73/0x90 [ 677.043908][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.050223][T14088] RIP: 0023:0xf7fd1549 [ 677.054274][T14088] Code: Bad RIP value. [ 677.058329][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 677.066729][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 677.074689][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 677.082655][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 677.090626][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 677.098696][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 677.106669][T14088] Uninit was stored to memory at: [ 677.111693][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.117415][T14088] __msan_chain_origin+0x50/0x90 [ 677.122348][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.127455][T14088] get_compat_msghdr+0x108/0x270 [ 677.132403][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.136906][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.141584][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.147649][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.153797][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.158992][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.163835][T14088] do_SYSENTER_32+0x73/0x90 [ 677.168333][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.174664][T14088] [ 677.176992][T14088] Uninit was stored to memory at: [ 677.182082][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.187799][T14088] __msan_chain_origin+0x50/0x90 [ 677.192733][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.197839][T14088] get_compat_msghdr+0x108/0x270 [ 677.202768][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.207261][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.211941][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.218006][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.224154][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.229348][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.234313][T14088] do_SYSENTER_32+0x73/0x90 [ 677.238810][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.245118][T14088] [ 677.247433][T14088] Uninit was stored to memory at: [ 677.252450][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.258161][T14088] __msan_chain_origin+0x50/0x90 [ 677.263106][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.268297][T14088] get_compat_msghdr+0x108/0x270 [ 677.273230][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.277728][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.282399][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.288455][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.294599][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.299788][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.304627][T14088] do_SYSENTER_32+0x73/0x90 [ 677.309127][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.315432][T14088] [ 677.317745][T14088] Uninit was stored to memory at: [ 677.322774][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.328483][T14088] __msan_chain_origin+0x50/0x90 [ 677.333415][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.338541][T14088] get_compat_msghdr+0x108/0x270 [ 677.343468][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.347965][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.352634][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.358692][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.364832][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.370055][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.374897][T14088] do_SYSENTER_32+0x73/0x90 [ 677.379397][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.385703][T14088] [ 677.388017][T14088] Uninit was stored to memory at: [ 677.393046][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.398763][T14088] __msan_chain_origin+0x50/0x90 [ 677.403692][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.408797][T14088] get_compat_msghdr+0x108/0x270 [ 677.413729][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.418228][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.422895][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.428955][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.435103][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.440295][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.445139][T14088] do_SYSENTER_32+0x73/0x90 [ 677.449648][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.455957][T14088] [ 677.458276][T14088] Uninit was stored to memory at: [ 677.463293][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.469024][T14088] __msan_chain_origin+0x50/0x90 [ 677.473967][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.479078][T14088] get_compat_msghdr+0x108/0x270 [ 677.484005][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.488502][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.493172][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.499231][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.505372][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.510563][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.515408][T14088] do_SYSENTER_32+0x73/0x90 [ 677.519900][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.526209][T14088] [ 677.528527][T14088] Uninit was stored to memory at: [ 677.533556][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 677.539267][T14088] __msan_chain_origin+0x50/0x90 [ 677.544203][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.549325][T14088] get_compat_msghdr+0x108/0x270 [ 677.554259][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.558761][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.563429][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.569499][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.575646][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.580842][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.585812][T14088] do_SYSENTER_32+0x73/0x90 [ 677.590305][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.596610][T14088] [ 677.598925][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 677.605591][T14088] do_recvmmsg+0xc5/0x1ee0 [ 677.609994][T14088] do_recvmmsg+0xc5/0x1ee0 [ 677.805664][T14088] not chained 2670000 origins [ 677.810368][T14088] CPU: 1 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 677.819024][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 677.829067][T14088] Call Trace: [ 677.832360][T14088] dump_stack+0x1df/0x240 [ 677.836688][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 677.842408][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 677.847521][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 677.852640][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 677.858441][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 677.864506][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 677.869445][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 677.874553][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 677.880094][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 677.886155][T14088] ? _copy_from_user+0x15b/0x260 [ 677.891085][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 677.896185][T14088] __msan_chain_origin+0x50/0x90 [ 677.901119][T14088] __get_compat_msghdr+0x5be/0x890 [ 677.906241][T14088] get_compat_msghdr+0x108/0x270 [ 677.911183][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 677.915697][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 677.920798][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 677.926423][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 677.931710][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 677.936469][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 677.941230][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 677.946420][T14088] __sys_recvmmsg+0x4ca/0x510 [ 677.951103][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.957169][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 677.963407][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.969647][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 677.974862][T14088] do_fast_syscall_32+0x6b/0xd0 [ 677.979734][T14088] do_SYSENTER_32+0x73/0x90 [ 677.984232][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.990543][T14088] RIP: 0023:0xf7fd1549 [ 677.994603][T14088] Code: Bad RIP value. [ 677.998659][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 678.007080][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 678.015040][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 678.023011][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 678.030973][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 678.038935][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 678.046938][T14088] Uninit was stored to memory at: [ 678.051960][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.057671][T14088] __msan_chain_origin+0x50/0x90 [ 678.062604][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.067707][T14088] get_compat_msghdr+0x108/0x270 [ 678.072653][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.077153][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.081823][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.087893][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.094038][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.099232][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.104083][T14088] do_SYSENTER_32+0x73/0x90 [ 678.108581][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.114891][T14088] [ 678.117210][T14088] Uninit was stored to memory at: [ 678.122226][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.127936][T14088] __msan_chain_origin+0x50/0x90 [ 678.132865][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.137968][T14088] get_compat_msghdr+0x108/0x270 [ 678.143039][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.147532][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.152203][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.158266][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.164414][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.169603][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.174454][T14088] do_SYSENTER_32+0x73/0x90 [ 678.178974][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.185306][T14088] [ 678.187617][T14088] Uninit was stored to memory at: [ 678.192639][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.198351][T14088] __msan_chain_origin+0x50/0x90 [ 678.203284][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.208387][T14088] get_compat_msghdr+0x108/0x270 [ 678.213317][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.217814][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.222481][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.228546][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.234721][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.239908][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.244750][T14088] do_SYSENTER_32+0x73/0x90 [ 678.249239][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.255543][T14088] [ 678.257856][T14088] Uninit was stored to memory at: [ 678.262876][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.268949][T14088] __msan_chain_origin+0x50/0x90 [ 678.273880][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.278983][T14088] get_compat_msghdr+0x108/0x270 [ 678.283911][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.288400][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.293062][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.299135][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.305279][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.310467][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.315319][T14088] do_SYSENTER_32+0x73/0x90 [ 678.319811][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.326120][T14088] [ 678.328434][T14088] Uninit was stored to memory at: [ 678.333447][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.339163][T14088] __msan_chain_origin+0x50/0x90 [ 678.344094][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.349199][T14088] get_compat_msghdr+0x108/0x270 [ 678.354128][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.358662][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.363328][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.369411][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.375556][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.380751][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.385595][T14088] do_SYSENTER_32+0x73/0x90 [ 678.390088][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.396394][T14088] [ 678.398707][T14088] Uninit was stored to memory at: [ 678.403742][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.409453][T14088] __msan_chain_origin+0x50/0x90 [ 678.414382][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.419489][T14088] get_compat_msghdr+0x108/0x270 [ 678.424424][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.429269][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.433934][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.439989][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.446130][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.451323][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.456169][T14088] do_SYSENTER_32+0x73/0x90 [ 678.460757][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.467176][T14088] [ 678.469494][T14088] Uninit was stored to memory at: [ 678.474520][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 678.480249][T14088] __msan_chain_origin+0x50/0x90 [ 678.485180][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.490287][T14088] get_compat_msghdr+0x108/0x270 [ 678.495219][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.499719][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.504386][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.510444][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.516592][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.521789][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.526630][T14088] do_SYSENTER_32+0x73/0x90 [ 678.531128][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.537437][T14088] [ 678.539753][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 678.546418][T14088] do_recvmmsg+0xc5/0x1ee0 [ 678.550848][T14088] do_recvmmsg+0xc5/0x1ee0 [ 678.747780][T14088] not chained 2680000 origins [ 678.752487][T14088] CPU: 1 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 678.761151][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 678.771212][T14088] Call Trace: [ 678.774497][T14088] dump_stack+0x1df/0x240 [ 678.778837][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 678.784561][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 678.789689][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 678.794809][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 678.800639][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 678.806705][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 678.811645][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 678.816746][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 678.822283][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 678.828343][T14088] ? _copy_from_user+0x15b/0x260 [ 678.833272][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 678.838388][T14088] __msan_chain_origin+0x50/0x90 [ 678.843317][T14088] __get_compat_msghdr+0x5be/0x890 [ 678.848431][T14088] get_compat_msghdr+0x108/0x270 [ 678.853370][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 678.857897][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 678.863007][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 678.868636][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 678.873919][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 678.878676][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 678.883435][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 678.888628][T14088] __sys_recvmmsg+0x4ca/0x510 [ 678.893325][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.899390][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 678.905621][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.911768][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 678.916964][T14088] do_fast_syscall_32+0x6b/0xd0 [ 678.921907][T14088] do_SYSENTER_32+0x73/0x90 [ 678.926488][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.932804][T14088] RIP: 0023:0xf7fd1549 [ 678.936854][T14088] Code: Bad RIP value. [ 678.940908][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 678.949309][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 678.957472][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 678.965438][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 678.973399][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 678.981358][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 678.989327][T14088] Uninit was stored to memory at: [ 678.994357][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.000084][T14088] __msan_chain_origin+0x50/0x90 [ 679.005013][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.010118][T14088] get_compat_msghdr+0x108/0x270 [ 679.015041][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.019531][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.024199][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.030252][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.036390][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.041579][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.046417][T14088] do_SYSENTER_32+0x73/0x90 [ 679.050912][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.057216][T14088] [ 679.059532][T14088] Uninit was stored to memory at: [ 679.064545][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.070253][T14088] __msan_chain_origin+0x50/0x90 [ 679.075183][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.080296][T14088] get_compat_msghdr+0x108/0x270 [ 679.085221][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.089737][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.094408][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.100463][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.106604][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.111796][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.116637][T14088] do_SYSENTER_32+0x73/0x90 [ 679.121129][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.127434][T14088] [ 679.129746][T14088] Uninit was stored to memory at: [ 679.134763][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.140477][T14088] __msan_chain_origin+0x50/0x90 [ 679.145411][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.150515][T14088] get_compat_msghdr+0x108/0x270 [ 679.155443][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.159936][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.164605][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.170663][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.176808][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.181994][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.186838][T14088] do_SYSENTER_32+0x73/0x90 [ 679.191336][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.197644][T14088] [ 679.200044][T14088] Uninit was stored to memory at: [ 679.205058][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.210767][T14088] __msan_chain_origin+0x50/0x90 [ 679.215698][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.220796][T14088] get_compat_msghdr+0x108/0x270 [ 679.225716][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.230206][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.234884][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.240936][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.247076][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.252273][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.257117][T14088] do_SYSENTER_32+0x73/0x90 [ 679.261624][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.267929][T14088] [ 679.270245][T14088] Uninit was stored to memory at: [ 679.275261][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.280969][T14088] __msan_chain_origin+0x50/0x90 [ 679.285898][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.291012][T14088] get_compat_msghdr+0x108/0x270 [ 679.295941][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.300441][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.305105][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.311180][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.317325][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.322524][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.327366][T14088] do_SYSENTER_32+0x73/0x90 [ 679.331866][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.338176][T14088] [ 679.340489][T14088] Uninit was stored to memory at: [ 679.345498][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.351205][T14088] __msan_chain_origin+0x50/0x90 [ 679.356134][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.361232][T14088] get_compat_msghdr+0x108/0x270 [ 679.366159][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.370655][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.375326][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.381382][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.387528][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.392722][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.397565][T14088] do_SYSENTER_32+0x73/0x90 [ 679.402060][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.408363][T14088] [ 679.410672][T14088] Uninit was stored to memory at: [ 679.415776][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.421483][T14088] __msan_chain_origin+0x50/0x90 [ 679.426406][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.431513][T14088] get_compat_msghdr+0x108/0x270 [ 679.436437][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.440926][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.445593][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.451651][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.457799][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.462988][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.467832][T14088] do_SYSENTER_32+0x73/0x90 [ 679.472331][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.478639][T14088] [ 679.480955][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 679.487617][T14088] do_recvmmsg+0xc5/0x1ee0 [ 679.492034][T14088] do_recvmmsg+0xc5/0x1ee0 [ 679.657798][T14088] not chained 2690000 origins [ 679.662506][T14088] CPU: 1 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 679.671172][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 679.681215][T14088] Call Trace: [ 679.684500][T14088] dump_stack+0x1df/0x240 [ 679.688831][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 679.694548][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 679.699655][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 679.704965][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 679.710861][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 679.716914][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 679.721850][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 679.726953][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 679.732492][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 679.738558][T14088] ? _copy_from_user+0x15b/0x260 [ 679.743489][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 679.748598][T14088] __msan_chain_origin+0x50/0x90 [ 679.753536][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.758659][T14088] get_compat_msghdr+0x108/0x270 [ 679.763699][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.768227][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 679.773335][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 679.779012][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 679.784296][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 679.789054][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 679.793810][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 679.799007][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.803692][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.809760][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 679.815988][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.822240][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.827441][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.832293][T14088] do_SYSENTER_32+0x73/0x90 [ 679.836792][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.843102][T14088] RIP: 0023:0xf7fd1549 [ 679.847151][T14088] Code: Bad RIP value. [ 679.851212][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 679.859615][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 679.867578][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 679.875561][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 679.883524][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 679.891516][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 679.899485][T14088] Uninit was stored to memory at: [ 679.904518][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.910230][T14088] __msan_chain_origin+0x50/0x90 [ 679.915158][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.920260][T14088] get_compat_msghdr+0x108/0x270 [ 679.925194][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.929690][T14088] __sys_recvmmsg+0x4ca/0x510 [ 679.934380][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.940432][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.946575][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 679.951797][T14088] do_fast_syscall_32+0x6b/0xd0 [ 679.956645][T14088] do_SYSENTER_32+0x73/0x90 [ 679.961141][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.967448][T14088] [ 679.969762][T14088] Uninit was stored to memory at: [ 679.974780][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 679.980491][T14088] __msan_chain_origin+0x50/0x90 [ 679.985429][T14088] __get_compat_msghdr+0x5be/0x890 [ 679.990541][T14088] get_compat_msghdr+0x108/0x270 [ 679.995469][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 679.999965][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.004645][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.010703][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.016850][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.022048][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.026895][T14088] do_SYSENTER_32+0x73/0x90 [ 680.031390][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.037697][T14088] [ 680.040012][T14088] Uninit was stored to memory at: [ 680.045040][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.050743][T14088] __msan_chain_origin+0x50/0x90 [ 680.055687][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.060791][T14088] get_compat_msghdr+0x108/0x270 [ 680.065720][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.070211][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.074875][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.080933][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.087074][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.092262][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.097106][T14088] do_SYSENTER_32+0x73/0x90 [ 680.101599][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.107905][T14088] [ 680.110218][T14088] Uninit was stored to memory at: [ 680.115235][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.120944][T14088] __msan_chain_origin+0x50/0x90 [ 680.125874][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.130981][T14088] get_compat_msghdr+0x108/0x270 [ 680.135912][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.140401][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.145061][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.151144][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.157317][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.162505][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.167346][T14088] do_SYSENTER_32+0x73/0x90 [ 680.171842][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.178147][T14088] [ 680.180459][T14088] Uninit was stored to memory at: [ 680.185482][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.191209][T14088] __msan_chain_origin+0x50/0x90 [ 680.196141][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.201331][T14088] get_compat_msghdr+0x108/0x270 [ 680.206259][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.210765][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.215427][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.221483][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.227632][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.232822][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.237665][T14088] do_SYSENTER_32+0x73/0x90 [ 680.242157][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.248549][T14088] [ 680.250861][T14088] Uninit was stored to memory at: [ 680.255876][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.261674][T14088] __msan_chain_origin+0x50/0x90 [ 680.266605][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.271713][T14088] get_compat_msghdr+0x108/0x270 [ 680.276671][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.281161][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.285823][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.291887][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.298036][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.303229][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.308120][T14088] do_SYSENTER_32+0x73/0x90 [ 680.312625][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.318936][T14088] [ 680.321251][T14088] Uninit was stored to memory at: [ 680.326267][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.331981][T14088] __msan_chain_origin+0x50/0x90 [ 680.336915][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.342022][T14088] get_compat_msghdr+0x108/0x270 [ 680.346948][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.351441][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.356109][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.362169][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.368314][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.373509][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.378442][T14088] do_SYSENTER_32+0x73/0x90 [ 680.382936][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.389242][T14088] [ 680.391557][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 680.398229][T14088] do_recvmmsg+0xc5/0x1ee0 [ 680.402651][T14088] do_recvmmsg+0xc5/0x1ee0 [ 680.613860][T14088] not chained 2700000 origins [ 680.618569][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 680.627229][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 680.637267][T14088] Call Trace: [ 680.640575][T14088] dump_stack+0x1df/0x240 [ 680.644903][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 680.650620][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 680.655728][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 680.660832][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 680.666629][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 680.672689][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 680.677628][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 680.682731][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 680.688272][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 680.697638][T14088] ? _copy_from_user+0x15b/0x260 [ 680.702577][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 680.707684][T14088] __msan_chain_origin+0x50/0x90 [ 680.712622][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.717754][T14088] get_compat_msghdr+0x108/0x270 [ 680.722699][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.727224][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 680.732335][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 680.737963][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 680.743242][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 680.747999][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 680.752757][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 680.757952][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.762632][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.768698][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 680.774927][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.781074][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.786282][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.791132][T14088] do_SYSENTER_32+0x73/0x90 [ 680.795629][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.801941][T14088] RIP: 0023:0xf7fd1549 [ 680.806010][T14088] Code: Bad RIP value. [ 680.810063][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 680.818464][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 680.826448][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 680.834402][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 680.842359][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 680.850316][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 680.858284][T14088] Uninit was stored to memory at: [ 680.863325][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.869038][T14088] __msan_chain_origin+0x50/0x90 [ 680.873972][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.879072][T14088] get_compat_msghdr+0x108/0x270 [ 680.883998][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.888497][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.893165][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.899219][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.905369][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.910577][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.915432][T14088] do_SYSENTER_32+0x73/0x90 [ 680.919929][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.926232][T14088] [ 680.928541][T14088] Uninit was stored to memory at: [ 680.933554][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 680.939264][T14088] __msan_chain_origin+0x50/0x90 [ 680.944188][T14088] __get_compat_msghdr+0x5be/0x890 [ 680.949288][T14088] get_compat_msghdr+0x108/0x270 [ 680.954303][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 680.958799][T14088] __sys_recvmmsg+0x4ca/0x510 [ 680.963466][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.969527][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.975672][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 680.980881][T14088] do_fast_syscall_32+0x6b/0xd0 [ 680.985725][T14088] do_SYSENTER_32+0x73/0x90 [ 680.990217][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.996528][T14088] [ 680.998842][T14088] Uninit was stored to memory at: [ 681.003862][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.009582][T14088] __msan_chain_origin+0x50/0x90 [ 681.014520][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.019622][T14088] get_compat_msghdr+0x108/0x270 [ 681.024549][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.029045][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.033711][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.039768][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.045907][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.051094][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.055930][T14088] do_SYSENTER_32+0x73/0x90 [ 681.060417][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.066721][T14088] [ 681.069035][T14088] Uninit was stored to memory at: [ 681.074051][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.079759][T14088] __msan_chain_origin+0x50/0x90 [ 681.084690][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.089805][T14088] get_compat_msghdr+0x108/0x270 [ 681.094734][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.099227][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.103893][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.109961][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.116101][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.121300][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.126159][T14088] do_SYSENTER_32+0x73/0x90 [ 681.130654][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.136957][T14088] [ 681.139271][T14088] Uninit was stored to memory at: [ 681.144286][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.150002][T14088] __msan_chain_origin+0x50/0x90 [ 681.154940][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.160047][T14088] get_compat_msghdr+0x108/0x270 [ 681.164979][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.169480][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.174148][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.180205][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.186347][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.191542][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.196389][T14088] do_SYSENTER_32+0x73/0x90 [ 681.200900][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.207204][T14088] [ 681.209522][T14088] Uninit was stored to memory at: [ 681.214559][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.220274][T14088] __msan_chain_origin+0x50/0x90 [ 681.225209][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.230326][T14088] get_compat_msghdr+0x108/0x270 [ 681.235257][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.243747][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.248417][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.254474][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.260621][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.265816][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.270664][T14088] do_SYSENTER_32+0x73/0x90 [ 681.275160][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.281467][T14088] [ 681.283780][T14088] Uninit was stored to memory at: [ 681.288796][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.294504][T14088] __msan_chain_origin+0x50/0x90 [ 681.299468][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.304574][T14088] get_compat_msghdr+0x108/0x270 [ 681.309514][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.314010][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.318709][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.324764][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.330906][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.336097][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.341026][T14088] do_SYSENTER_32+0x73/0x90 [ 681.345519][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.351823][T14088] [ 681.354139][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 681.360817][T14088] do_recvmmsg+0xc5/0x1ee0 [ 681.365231][T14088] do_recvmmsg+0xc5/0x1ee0 [ 681.568252][T14088] not chained 2710000 origins [ 681.572938][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 681.581578][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 681.591610][T14088] Call Trace: [ 681.594877][T14088] dump_stack+0x1df/0x240 [ 681.599184][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 681.604882][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 681.609965][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 681.615046][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 681.620855][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 681.626892][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 681.631804][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 681.636921][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 681.642440][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 681.648482][T14088] ? _copy_from_user+0x15b/0x260 [ 681.653395][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 681.658481][T14088] __msan_chain_origin+0x50/0x90 [ 681.663395][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.668507][T14088] get_compat_msghdr+0x108/0x270 [ 681.673422][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.677940][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 681.683025][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 681.688629][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 681.693898][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 681.698632][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 681.703362][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 681.708538][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.713191][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.719240][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 681.725450][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.731576][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.736752][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.741582][T14088] do_SYSENTER_32+0x73/0x90 [ 681.746058][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.752355][T14088] RIP: 0023:0xf7fd1549 [ 681.756389][T14088] Code: Bad RIP value. [ 681.760424][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 681.768813][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 681.776757][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 681.784703][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 681.792649][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 681.800595][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 681.808544][T14088] Uninit was stored to memory at: [ 681.813542][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.819231][T14088] __msan_chain_origin+0x50/0x90 [ 681.824139][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.829219][T14088] get_compat_msghdr+0x108/0x270 [ 681.834135][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.838614][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.843259][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.849294][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.855425][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.860601][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.865426][T14088] do_SYSENTER_32+0x73/0x90 [ 681.869907][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.876198][T14088] [ 681.878494][T14088] Uninit was stored to memory at: [ 681.883492][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.889183][T14088] __msan_chain_origin+0x50/0x90 [ 681.894092][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.899191][T14088] get_compat_msghdr+0x108/0x270 [ 681.904100][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.908574][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.913222][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.919260][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.925383][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 681.930554][T14088] do_fast_syscall_32+0x6b/0xd0 [ 681.935377][T14088] do_SYSENTER_32+0x73/0x90 [ 681.939937][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.946237][T14088] [ 681.948560][T14088] Uninit was stored to memory at: [ 681.953556][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 681.959267][T14088] __msan_chain_origin+0x50/0x90 [ 681.964184][T14088] __get_compat_msghdr+0x5be/0x890 [ 681.969278][T14088] get_compat_msghdr+0x108/0x270 [ 681.974186][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 681.978660][T14088] __sys_recvmmsg+0x4ca/0x510 [ 681.983315][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.989365][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.995514][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.000683][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.005705][T14088] do_SYSENTER_32+0x73/0x90 [ 682.010179][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.016479][T14088] [ 682.018778][T14088] Uninit was stored to memory at: [ 682.023772][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.029461][T14088] __msan_chain_origin+0x50/0x90 [ 682.034459][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.039542][T14088] get_compat_msghdr+0x108/0x270 [ 682.044449][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.048921][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.053567][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.059606][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.065727][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.070895][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.075716][T14088] do_SYSENTER_32+0x73/0x90 [ 682.080188][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.086571][T14088] [ 682.088866][T14088] Uninit was stored to memory at: [ 682.093863][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.099552][T14088] __msan_chain_origin+0x50/0x90 [ 682.104475][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.109561][T14088] get_compat_msghdr+0x108/0x270 [ 682.114470][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.118942][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.123589][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.129646][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.135768][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.140937][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.145758][T14088] do_SYSENTER_32+0x73/0x90 [ 682.150237][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.156526][T14088] [ 682.158824][T14088] Uninit was stored to memory at: [ 682.163818][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.169508][T14088] __msan_chain_origin+0x50/0x90 [ 682.174418][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.179500][T14088] get_compat_msghdr+0x108/0x270 [ 682.184411][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.188884][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.193532][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.199566][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.205688][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.210858][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.215675][T14088] do_SYSENTER_32+0x73/0x90 [ 682.220169][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.226485][T14088] [ 682.228787][T14088] Uninit was stored to memory at: [ 682.233799][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.239486][T14088] __msan_chain_origin+0x50/0x90 [ 682.244396][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.249474][T14088] get_compat_msghdr+0x108/0x270 [ 682.254393][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.258870][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.263518][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.269566][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.275701][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.280873][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.285695][T14088] do_SYSENTER_32+0x73/0x90 [ 682.290171][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.296547][T14088] [ 682.298847][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 682.305553][T14088] do_recvmmsg+0xc5/0x1ee0 [ 682.309941][T14088] do_recvmmsg+0xc5/0x1ee0 [ 682.490462][T14088] not chained 2720000 origins [ 682.495180][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 682.503839][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 682.513881][T14088] Call Trace: [ 682.517169][T14088] dump_stack+0x1df/0x240 [ 682.521501][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 682.527224][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 682.532343][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 682.537456][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 682.543264][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 682.549329][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 682.554267][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 682.559378][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 682.564919][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 682.570987][T14088] ? _copy_from_user+0x15b/0x260 [ 682.575922][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 682.581030][T14088] __msan_chain_origin+0x50/0x90 [ 682.585993][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.591117][T14088] get_compat_msghdr+0x108/0x270 [ 682.596061][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.600582][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 682.605702][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 682.611351][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 682.616636][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 682.621401][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 682.626160][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 682.631354][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.636028][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.642094][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 682.648599][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.654750][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.659953][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.664799][T14088] do_SYSENTER_32+0x73/0x90 [ 682.669296][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.675617][T14088] RIP: 0023:0xf7fd1549 [ 682.679668][T14088] Code: Bad RIP value. [ 682.683731][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 682.692137][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 682.700114][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 682.708076][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 682.716037][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 682.723996][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 682.731965][T14088] Uninit was stored to memory at: [ 682.736982][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.742691][T14088] __msan_chain_origin+0x50/0x90 [ 682.747627][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.752733][T14088] get_compat_msghdr+0x108/0x270 [ 682.757672][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.762187][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.766857][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.772914][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.779061][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.784255][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.789099][T14088] do_SYSENTER_32+0x73/0x90 [ 682.793600][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.799911][T14088] [ 682.802224][T14088] Uninit was stored to memory at: [ 682.807261][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.812973][T14088] __msan_chain_origin+0x50/0x90 [ 682.817902][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.823005][T14088] get_compat_msghdr+0x108/0x270 [ 682.827937][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.832429][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.837096][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.843149][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.849295][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.854486][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.859329][T14088] do_SYSENTER_32+0x73/0x90 [ 682.863825][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.870133][T14088] [ 682.872452][T14088] Uninit was stored to memory at: [ 682.877561][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.883296][T14088] __msan_chain_origin+0x50/0x90 [ 682.888229][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.893337][T14088] get_compat_msghdr+0x108/0x270 [ 682.898271][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.902770][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.907446][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.913522][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.919668][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.924858][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.929701][T14088] do_SYSENTER_32+0x73/0x90 [ 682.934196][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.940501][T14088] [ 682.942813][T14088] Uninit was stored to memory at: [ 682.947827][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 682.953560][T14088] __msan_chain_origin+0x50/0x90 [ 682.958497][T14088] __get_compat_msghdr+0x5be/0x890 [ 682.963617][T14088] get_compat_msghdr+0x108/0x270 [ 682.968564][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 682.973063][T14088] __sys_recvmmsg+0x4ca/0x510 [ 682.977735][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.983793][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.989940][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 682.995143][T14088] do_fast_syscall_32+0x6b/0xd0 [ 682.999986][T14088] do_SYSENTER_32+0x73/0x90 [ 683.004501][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.010808][T14088] [ 683.013124][T14088] Uninit was stored to memory at: [ 683.018144][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.023853][T14088] __msan_chain_origin+0x50/0x90 [ 683.028790][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.033894][T14088] get_compat_msghdr+0x108/0x270 [ 683.038821][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.043321][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.047993][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.054053][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.060199][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.065390][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.070234][T14088] do_SYSENTER_32+0x73/0x90 [ 683.074738][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.081047][T14088] [ 683.083361][T14088] Uninit was stored to memory at: [ 683.088376][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.094086][T14088] __msan_chain_origin+0x50/0x90 [ 683.099017][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.104122][T14088] get_compat_msghdr+0x108/0x270 [ 683.109051][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.113576][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.118251][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.124316][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.130464][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.135659][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.140500][T14088] do_SYSENTER_32+0x73/0x90 [ 683.144994][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.151404][T14088] [ 683.153718][T14088] Uninit was stored to memory at: [ 683.158748][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.164456][T14088] __msan_chain_origin+0x50/0x90 [ 683.169390][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.174495][T14088] get_compat_msghdr+0x108/0x270 [ 683.179427][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.183925][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.188598][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.194655][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.200798][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.205985][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.210824][T14088] do_SYSENTER_32+0x73/0x90 [ 683.215317][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.221624][T14088] [ 683.223938][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 683.230604][T14088] do_recvmmsg+0xc5/0x1ee0 [ 683.235020][T14088] do_recvmmsg+0xc5/0x1ee0 [ 683.414113][T14088] not chained 2730000 origins [ 683.418823][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 683.427487][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 683.437544][T14088] Call Trace: [ 683.440847][T14088] dump_stack+0x1df/0x240 [ 683.445176][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 683.450899][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 683.456096][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 683.461203][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 683.467005][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 683.473063][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 683.478004][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 683.483107][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 683.488649][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 683.494713][T14088] ? _copy_from_user+0x15b/0x260 [ 683.499644][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 683.504749][T14088] __msan_chain_origin+0x50/0x90 [ 683.509685][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.514801][T14088] get_compat_msghdr+0x108/0x270 [ 683.519743][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.524275][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 683.529385][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 683.535038][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 683.540320][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 683.545078][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 683.549836][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 683.555034][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.559720][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.565790][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 683.572029][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.578184][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.583389][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.588237][T14088] do_SYSENTER_32+0x73/0x90 [ 683.592737][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.599051][T14088] RIP: 0023:0xf7fd1549 [ 683.603102][T14088] Code: Bad RIP value. [ 683.607158][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 683.615562][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 683.623520][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 683.631484][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 683.639454][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 683.647417][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 683.655385][T14088] Uninit was stored to memory at: [ 683.660406][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.666118][T14088] __msan_chain_origin+0x50/0x90 [ 683.671052][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.676153][T14088] get_compat_msghdr+0x108/0x270 [ 683.681076][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.685587][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.690272][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.696327][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.702576][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.707774][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.712622][T14088] do_SYSENTER_32+0x73/0x90 [ 683.717116][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.723424][T14088] [ 683.725747][T14088] Uninit was stored to memory at: [ 683.730763][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.736471][T14088] __msan_chain_origin+0x50/0x90 [ 683.741401][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.746507][T14088] get_compat_msghdr+0x108/0x270 [ 683.751436][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.755929][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.760617][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.766677][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.772842][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.778034][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.782876][T14088] do_SYSENTER_32+0x73/0x90 [ 683.787368][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.793674][T14088] [ 683.795991][T14088] Uninit was stored to memory at: [ 683.801014][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.806726][T14088] __msan_chain_origin+0x50/0x90 [ 683.811658][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.816766][T14088] get_compat_msghdr+0x108/0x270 [ 683.821694][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.826188][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.830857][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.836914][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.843057][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.848250][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.853096][T14088] do_SYSENTER_32+0x73/0x90 [ 683.857617][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.863924][T14088] [ 683.866241][T14088] Uninit was stored to memory at: [ 683.871260][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.876965][T14088] __msan_chain_origin+0x50/0x90 [ 683.881890][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.887015][T14088] get_compat_msghdr+0x108/0x270 [ 683.891945][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.896441][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.901110][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.907183][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.913329][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.918525][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.923372][T14088] do_SYSENTER_32+0x73/0x90 [ 683.927866][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.934174][T14088] [ 683.936506][T14088] Uninit was stored to memory at: [ 683.941527][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 683.947238][T14088] __msan_chain_origin+0x50/0x90 [ 683.952170][T14088] __get_compat_msghdr+0x5be/0x890 [ 683.957272][T14088] get_compat_msghdr+0x108/0x270 [ 683.962203][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 683.966698][T14088] __sys_recvmmsg+0x4ca/0x510 [ 683.971373][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.977430][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.983572][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 683.988823][T14088] do_fast_syscall_32+0x6b/0xd0 [ 683.993666][T14088] do_SYSENTER_32+0x73/0x90 [ 683.998186][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.004531][T14088] [ 684.006878][T14088] Uninit was stored to memory at: [ 684.011893][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.017616][T14088] __msan_chain_origin+0x50/0x90 [ 684.022547][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.027663][T14088] get_compat_msghdr+0x108/0x270 [ 684.032595][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.037088][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.041759][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.047818][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.053965][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.059163][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.064007][T14088] do_SYSENTER_32+0x73/0x90 [ 684.068500][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.074825][T14088] [ 684.077138][T14088] Uninit was stored to memory at: [ 684.082156][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.087866][T14088] __msan_chain_origin+0x50/0x90 [ 684.092801][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.097904][T14088] get_compat_msghdr+0x108/0x270 [ 684.102835][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.107329][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.111999][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.118056][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.124203][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.129395][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.134240][T14088] do_SYSENTER_32+0x73/0x90 [ 684.138735][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.145045][T14088] [ 684.147360][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 684.154026][T14088] do_recvmmsg+0xc5/0x1ee0 [ 684.158440][T14088] do_recvmmsg+0xc5/0x1ee0 [ 684.371472][T14088] not chained 2740000 origins [ 684.376192][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 684.384848][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 684.394891][T14088] Call Trace: [ 684.398200][T14088] dump_stack+0x1df/0x240 [ 684.402529][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 684.408250][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 684.413359][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 684.418464][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 684.424264][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 684.430326][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 684.435262][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 684.440376][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 684.445928][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 684.451993][T14088] ? _copy_from_user+0x15b/0x260 [ 684.456923][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 684.462058][T14088] __msan_chain_origin+0x50/0x90 [ 684.466990][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.472218][T14088] get_compat_msghdr+0x108/0x270 [ 684.477157][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.481675][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 684.486778][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 684.492490][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 684.497773][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 684.502524][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 684.507274][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 684.512467][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.517161][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.523230][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 684.529467][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.535621][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.540820][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.545664][T14088] do_SYSENTER_32+0x73/0x90 [ 684.550165][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.556478][T14088] RIP: 0023:0xf7fd1549 [ 684.560530][T14088] Code: Bad RIP value. [ 684.564584][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 684.573000][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 684.581055][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 684.589019][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 684.596977][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 684.604938][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 684.612908][T14088] Uninit was stored to memory at: [ 684.617941][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.623652][T14088] __msan_chain_origin+0x50/0x90 [ 684.628587][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.633704][T14088] get_compat_msghdr+0x108/0x270 [ 684.638633][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.643129][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.647799][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.653865][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.660014][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.665203][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.670043][T14088] do_SYSENTER_32+0x73/0x90 [ 684.674540][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.680858][T14088] [ 684.683171][T14088] Uninit was stored to memory at: [ 684.688189][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.693900][T14088] __msan_chain_origin+0x50/0x90 [ 684.698834][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.703933][T14088] get_compat_msghdr+0x108/0x270 [ 684.708860][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.713442][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.718112][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.724164][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.730321][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.735524][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.740362][T14088] do_SYSENTER_32+0x73/0x90 [ 684.744858][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.751162][T14088] [ 684.753490][T14088] Uninit was stored to memory at: [ 684.758506][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.764219][T14088] __msan_chain_origin+0x50/0x90 [ 684.769152][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.774254][T14088] get_compat_msghdr+0x108/0x270 [ 684.779182][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.783674][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.788341][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.794413][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.800563][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.805753][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.810596][T14088] do_SYSENTER_32+0x73/0x90 [ 684.815100][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.821405][T14088] [ 684.823720][T14088] Uninit was stored to memory at: [ 684.828738][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.834447][T14088] __msan_chain_origin+0x50/0x90 [ 684.839390][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.844494][T14088] get_compat_msghdr+0x108/0x270 [ 684.849422][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.853913][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.858579][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.864644][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.870795][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.875984][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.880823][T14088] do_SYSENTER_32+0x73/0x90 [ 684.885313][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.891661][T14088] [ 684.893976][T14088] Uninit was stored to memory at: [ 684.899011][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.904720][T14088] __msan_chain_origin+0x50/0x90 [ 684.909675][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.914780][T14088] get_compat_msghdr+0x108/0x270 [ 684.919707][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.924198][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.928862][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.934921][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.941087][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 684.946274][T14088] do_fast_syscall_32+0x6b/0xd0 [ 684.951119][T14088] do_SYSENTER_32+0x73/0x90 [ 684.955611][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.961914][T14088] [ 684.964223][T14088] Uninit was stored to memory at: [ 684.969249][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 684.975062][T14088] __msan_chain_origin+0x50/0x90 [ 684.979992][T14088] __get_compat_msghdr+0x5be/0x890 [ 684.985104][T14088] get_compat_msghdr+0x108/0x270 [ 684.990041][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 684.994535][T14088] __sys_recvmmsg+0x4ca/0x510 [ 684.999220][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.005277][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.011417][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.016607][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.021449][T14088] do_SYSENTER_32+0x73/0x90 [ 685.025940][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.032249][T14088] [ 685.034564][T14088] Uninit was stored to memory at: [ 685.039577][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.045281][T14088] __msan_chain_origin+0x50/0x90 [ 685.050227][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.055328][T14088] get_compat_msghdr+0x108/0x270 [ 685.060255][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.064772][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.069443][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.075504][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.081648][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.086838][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.091683][T14088] do_SYSENTER_32+0x73/0x90 [ 685.096175][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.102478][T14088] [ 685.104797][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 685.111461][T14088] do_recvmmsg+0xc5/0x1ee0 [ 685.115869][T14088] do_recvmmsg+0xc5/0x1ee0 [ 685.337520][T14088] not chained 2750000 origins [ 685.342216][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 685.350870][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 685.360907][T14088] Call Trace: [ 685.364191][T14088] dump_stack+0x1df/0x240 [ 685.368518][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 685.374233][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 685.379336][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 685.384439][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 685.390254][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 685.396312][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 685.401250][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 685.406352][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 685.411910][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 685.418066][T14088] ? _copy_from_user+0x15b/0x260 [ 685.422998][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 685.428107][T14088] __msan_chain_origin+0x50/0x90 [ 685.433133][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.438254][T14088] get_compat_msghdr+0x108/0x270 [ 685.443201][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.447745][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 685.452853][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 685.458484][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 685.463764][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 685.468545][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 685.473315][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 685.478526][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.483211][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.489268][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 685.495516][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.501672][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.506869][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.511716][T14088] do_SYSENTER_32+0x73/0x90 [ 685.516212][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.522528][T14088] RIP: 0023:0xf7fd1549 [ 685.526668][T14088] Code: Bad RIP value. [ 685.530725][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 685.539127][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 685.547089][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 685.555047][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 685.563005][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 685.571049][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 685.579018][T14088] Uninit was stored to memory at: [ 685.584033][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.589739][T14088] __msan_chain_origin+0x50/0x90 [ 685.594670][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.599773][T14088] get_compat_msghdr+0x108/0x270 [ 685.604714][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.609211][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.613880][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.619935][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.626080][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.631270][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.636118][T14088] do_SYSENTER_32+0x73/0x90 [ 685.640608][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.646917][T14088] [ 685.649248][T14088] Uninit was stored to memory at: [ 685.654267][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.659976][T14088] __msan_chain_origin+0x50/0x90 [ 685.664902][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.670003][T14088] get_compat_msghdr+0x108/0x270 [ 685.674953][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.679481][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.684146][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.690204][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.696349][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.701633][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.706473][T14088] do_SYSENTER_32+0x73/0x90 [ 685.710963][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.717282][T14088] [ 685.719593][T14088] Uninit was stored to memory at: [ 685.724610][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.730319][T14088] __msan_chain_origin+0x50/0x90 [ 685.735248][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.740374][T14088] get_compat_msghdr+0x108/0x270 [ 685.745383][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.749878][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.754551][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.760610][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.766808][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.772001][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.776845][T14088] do_SYSENTER_32+0x73/0x90 [ 685.781358][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.787667][T14088] [ 685.789997][T14088] Uninit was stored to memory at: [ 685.795019][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.800726][T14088] __msan_chain_origin+0x50/0x90 [ 685.805650][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.810765][T14088] get_compat_msghdr+0x108/0x270 [ 685.815692][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.820190][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.824856][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.830912][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.837054][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.842243][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.847257][T14088] do_SYSENTER_32+0x73/0x90 [ 685.851751][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.858057][T14088] [ 685.860374][T14088] Uninit was stored to memory at: [ 685.865391][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.871098][T14088] __msan_chain_origin+0x50/0x90 [ 685.876028][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.881133][T14088] get_compat_msghdr+0x108/0x270 [ 685.886059][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.890549][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.895212][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.901269][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.907499][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.912696][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.917624][T14088] do_SYSENTER_32+0x73/0x90 [ 685.922119][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.928425][T14088] [ 685.930744][T14088] Uninit was stored to memory at: [ 685.935758][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 685.941464][T14088] __msan_chain_origin+0x50/0x90 [ 685.946390][T14088] __get_compat_msghdr+0x5be/0x890 [ 685.951492][T14088] get_compat_msghdr+0x108/0x270 [ 685.956431][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 685.960922][T14088] __sys_recvmmsg+0x4ca/0x510 [ 685.965682][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.971741][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.977886][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 685.983076][T14088] do_fast_syscall_32+0x6b/0xd0 [ 685.987934][T14088] do_SYSENTER_32+0x73/0x90 [ 685.992429][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.998735][T14088] [ 686.001049][T14088] Uninit was stored to memory at: [ 686.006060][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.011767][T14088] __msan_chain_origin+0x50/0x90 [ 686.016698][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.021798][T14088] get_compat_msghdr+0x108/0x270 [ 686.026717][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.031210][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.035876][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.041931][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.048077][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.053271][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.058113][T14088] do_SYSENTER_32+0x73/0x90 [ 686.062608][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.068913][T14088] [ 686.071226][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 686.077886][T14088] do_recvmmsg+0xc5/0x1ee0 [ 686.082293][T14088] do_recvmmsg+0xc5/0x1ee0 [ 686.191211][T14088] not chained 2760000 origins [ 686.195894][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 686.204530][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 686.214570][T14088] Call Trace: [ 686.217839][T14088] dump_stack+0x1df/0x240 [ 686.222144][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 686.227836][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 686.232922][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 686.238004][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 686.243819][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 686.249859][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 686.254768][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 686.259850][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 686.265364][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 686.271410][T14088] ? _copy_from_user+0x15b/0x260 [ 686.276519][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 686.281604][T14088] __msan_chain_origin+0x50/0x90 [ 686.286581][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.291707][T14088] get_compat_msghdr+0x108/0x270 [ 686.296622][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.301126][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 686.306208][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 686.311811][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 686.317064][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 686.321794][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 686.326553][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 686.331722][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.336374][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.342412][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 686.348641][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.354764][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.359937][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.364768][T14088] do_SYSENTER_32+0x73/0x90 [ 686.369240][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.375572][T14088] RIP: 0023:0xf7fd1549 [ 686.379608][T14088] Code: Bad RIP value. [ 686.383643][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 686.392022][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 686.399966][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 686.407919][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 686.415871][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 686.423808][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 686.431752][T14088] Uninit was stored to memory at: [ 686.436747][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.442432][T14088] __msan_chain_origin+0x50/0x90 [ 686.447338][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.452418][T14088] get_compat_msghdr+0x108/0x270 [ 686.457325][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.461812][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.466454][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.472494][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.478621][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.483791][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.488612][T14088] do_SYSENTER_32+0x73/0x90 [ 686.493093][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.499524][T14088] [ 686.501821][T14088] Uninit was stored to memory at: [ 686.506938][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.512646][T14088] __msan_chain_origin+0x50/0x90 [ 686.517552][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.522645][T14088] get_compat_msghdr+0x108/0x270 [ 686.527550][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.532023][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.536669][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.542703][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.548826][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.553996][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.558814][T14088] do_SYSENTER_32+0x73/0x90 [ 686.563287][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.569579][T14088] [ 686.571875][T14088] Uninit was stored to memory at: [ 686.576870][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.582645][T14088] __msan_chain_origin+0x50/0x90 [ 686.587553][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.592635][T14088] get_compat_msghdr+0x108/0x270 [ 686.597539][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.602011][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.606656][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.612690][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.618811][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.623989][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.628808][T14088] do_SYSENTER_32+0x73/0x90 [ 686.633282][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.639572][T14088] [ 686.641867][T14088] Uninit was stored to memory at: [ 686.646857][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.652544][T14088] __msan_chain_origin+0x50/0x90 [ 686.657463][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.662539][T14088] get_compat_msghdr+0x108/0x270 [ 686.667443][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.671914][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.676559][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.682609][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.688729][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.693897][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.698720][T14088] do_SYSENTER_32+0x73/0x90 [ 686.703189][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.709475][T14088] [ 686.711770][T14088] Uninit was stored to memory at: [ 686.716759][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.722443][T14088] __msan_chain_origin+0x50/0x90 [ 686.727360][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.732438][T14088] get_compat_msghdr+0x108/0x270 [ 686.737356][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.741827][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.746470][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.752512][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.758635][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.763804][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.768626][T14088] do_SYSENTER_32+0x73/0x90 [ 686.773101][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.779481][T14088] [ 686.781778][T14088] Uninit was stored to memory at: [ 686.786787][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.792475][T14088] __msan_chain_origin+0x50/0x90 [ 686.797391][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.802469][T14088] get_compat_msghdr+0x108/0x270 [ 686.807373][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.811847][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.816496][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.822532][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.828666][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.833835][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.838654][T14088] do_SYSENTER_32+0x73/0x90 [ 686.843124][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.849413][T14088] [ 686.851708][T14088] Uninit was stored to memory at: [ 686.856699][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 686.862381][T14088] __msan_chain_origin+0x50/0x90 [ 686.867291][T14088] __get_compat_msghdr+0x5be/0x890 [ 686.872374][T14088] get_compat_msghdr+0x108/0x270 [ 686.877280][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 686.881750][T14088] __sys_recvmmsg+0x4ca/0x510 [ 686.886392][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.892434][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.898559][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 686.903725][T14088] do_fast_syscall_32+0x6b/0xd0 [ 686.908645][T14088] do_SYSENTER_32+0x73/0x90 [ 686.913119][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.919410][T14088] [ 686.921793][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 686.928451][T14088] do_recvmmsg+0xc5/0x1ee0 [ 686.932838][T14088] do_recvmmsg+0xc5/0x1ee0 [ 687.110841][T14088] not chained 2770000 origins [ 687.115548][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 687.124287][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 687.134328][T14088] Call Trace: [ 687.137615][T14088] dump_stack+0x1df/0x240 [ 687.141943][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 687.147664][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 687.152776][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 687.157890][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 687.163696][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 687.169758][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 687.174712][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 687.179822][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 687.185359][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 687.191434][T14088] ? _copy_from_user+0x15b/0x260 [ 687.196360][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 687.201551][T14088] __msan_chain_origin+0x50/0x90 [ 687.206486][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.211615][T14088] get_compat_msghdr+0x108/0x270 [ 687.216557][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.221078][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 687.226183][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 687.231809][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 687.237087][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 687.241857][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 687.246615][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 687.251896][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.256591][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.262655][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 687.268890][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.275038][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.280237][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.285094][T14088] do_SYSENTER_32+0x73/0x90 [ 687.289589][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.295899][T14088] RIP: 0023:0xf7fd1549 [ 687.299949][T14088] Code: Bad RIP value. [ 687.304004][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 687.312410][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 687.320377][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 687.328340][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 687.336298][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 687.344254][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 687.352227][T14088] Uninit was stored to memory at: [ 687.357245][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.362955][T14088] __msan_chain_origin+0x50/0x90 [ 687.367894][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.373022][T14088] get_compat_msghdr+0x108/0x270 [ 687.377961][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.382456][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.387117][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.393185][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.399333][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.404529][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.409375][T14088] do_SYSENTER_32+0x73/0x90 [ 687.413870][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.420179][T14088] [ 687.422495][T14088] Uninit was stored to memory at: [ 687.427524][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.433241][T14088] __msan_chain_origin+0x50/0x90 [ 687.438176][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.443296][T14088] get_compat_msghdr+0x108/0x270 [ 687.448226][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.452721][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.457389][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.463447][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.469591][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.474784][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.479630][T14088] do_SYSENTER_32+0x73/0x90 [ 687.484125][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.490433][T14088] [ 687.492747][T14088] Uninit was stored to memory at: [ 687.497763][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.503489][T14088] __msan_chain_origin+0x50/0x90 [ 687.508425][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.521538][T14088] get_compat_msghdr+0x108/0x270 [ 687.526490][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.530987][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.535657][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.541712][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.547863][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.553074][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.557930][T14088] do_SYSENTER_32+0x73/0x90 [ 687.562434][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.568741][T14088] [ 687.571052][T14088] Uninit was stored to memory at: [ 687.576068][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.581774][T14088] __msan_chain_origin+0x50/0x90 [ 687.586790][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.591894][T14088] get_compat_msghdr+0x108/0x270 [ 687.596822][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.601311][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.605996][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.612051][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.618197][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.623383][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.628223][T14088] do_SYSENTER_32+0x73/0x90 [ 687.635582][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.641887][T14088] [ 687.644197][T14088] Uninit was stored to memory at: [ 687.649210][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.654915][T14088] __msan_chain_origin+0x50/0x90 [ 687.659844][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.664949][T14088] get_compat_msghdr+0x108/0x270 [ 687.669873][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.674366][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.679036][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.685094][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.691235][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.696421][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.701277][T14088] do_SYSENTER_32+0x73/0x90 [ 687.705776][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.712084][T14088] [ 687.714400][T14088] Uninit was stored to memory at: [ 687.719420][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.725125][T14088] __msan_chain_origin+0x50/0x90 [ 687.730053][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.735158][T14088] get_compat_msghdr+0x108/0x270 [ 687.740084][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.744583][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.749246][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.755320][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.761471][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.766673][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.771541][T14088] do_SYSENTER_32+0x73/0x90 [ 687.776067][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.782468][T14088] [ 687.784784][T14088] Uninit was stored to memory at: [ 687.789798][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 687.795518][T14088] __msan_chain_origin+0x50/0x90 [ 687.800463][T14088] __get_compat_msghdr+0x5be/0x890 [ 687.805587][T14088] get_compat_msghdr+0x108/0x270 [ 687.810520][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 687.815009][T14088] __sys_recvmmsg+0x4ca/0x510 [ 687.819683][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.825736][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.831880][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 687.837067][T14088] do_fast_syscall_32+0x6b/0xd0 [ 687.841903][T14088] do_SYSENTER_32+0x73/0x90 [ 687.846393][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.852708][T14088] [ 687.855020][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 687.861682][T14088] do_recvmmsg+0xc5/0x1ee0 [ 687.866092][T14088] do_recvmmsg+0xc5/0x1ee0 [ 688.042452][T14088] not chained 2780000 origins [ 688.047139][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 688.055779][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 688.065811][T14088] Call Trace: [ 688.069080][T14088] dump_stack+0x1df/0x240 [ 688.073393][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 688.079159][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 688.084524][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 688.089606][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 688.095383][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 688.101423][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 688.106337][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 688.111421][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 688.116936][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 688.122975][T14088] ? _copy_from_user+0x15b/0x260 [ 688.127883][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 688.132984][T14088] __msan_chain_origin+0x50/0x90 [ 688.137913][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.143028][T14088] get_compat_msghdr+0x108/0x270 [ 688.147954][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.152446][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 688.157531][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 688.163144][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 688.168401][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 688.173136][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 688.177873][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 688.183040][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.187690][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.193733][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 688.199947][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.206107][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.211281][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.216101][T14088] do_SYSENTER_32+0x73/0x90 [ 688.220577][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.226871][T14088] RIP: 0023:0xf7fd1549 [ 688.230902][T14088] Code: Bad RIP value. [ 688.234937][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 688.243415][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 688.251357][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 688.259307][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 688.267249][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 688.275353][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 688.283312][T14088] Uninit was stored to memory at: [ 688.288310][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.293999][T14088] __msan_chain_origin+0x50/0x90 [ 688.298906][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.303989][T14088] get_compat_msghdr+0x108/0x270 [ 688.308903][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.313386][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.318052][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.324095][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.330218][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.335386][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.340240][T14088] do_SYSENTER_32+0x73/0x90 [ 688.344715][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.351006][T14088] [ 688.353303][T14088] Uninit was stored to memory at: [ 688.358332][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.364022][T14088] __msan_chain_origin+0x50/0x90 [ 688.368931][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.374012][T14088] get_compat_msghdr+0x108/0x270 [ 688.378922][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.383397][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.388165][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.394213][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.400335][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.405506][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.410335][T14088] do_SYSENTER_32+0x73/0x90 [ 688.414815][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.421201][T14088] [ 688.423534][T14088] Uninit was stored to memory at: [ 688.428667][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.434359][T14088] __msan_chain_origin+0x50/0x90 [ 688.439272][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.444355][T14088] get_compat_msghdr+0x108/0x270 [ 688.449264][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.453750][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.458398][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.464433][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.470558][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.475760][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.480597][T14088] do_SYSENTER_32+0x73/0x90 [ 688.485065][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.491354][T14088] [ 688.493648][T14088] Uninit was stored to memory at: [ 688.498644][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.504332][T14088] __msan_chain_origin+0x50/0x90 [ 688.509241][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.514323][T14088] get_compat_msghdr+0x108/0x270 [ 688.519230][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.523701][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.528348][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.534396][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.540522][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.545814][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.550648][T14088] do_SYSENTER_32+0x73/0x90 [ 688.555131][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.561536][T14088] [ 688.563860][T14088] Uninit was stored to memory at: [ 688.568859][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.574632][T14088] __msan_chain_origin+0x50/0x90 [ 688.579542][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.584624][T14088] get_compat_msghdr+0x108/0x270 [ 688.589536][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.594009][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.598655][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.604687][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.610805][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.615970][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.620876][T14088] do_SYSENTER_32+0x73/0x90 [ 688.625350][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.631639][T14088] [ 688.633935][T14088] Uninit was stored to memory at: [ 688.639017][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.644702][T14088] __msan_chain_origin+0x50/0x90 [ 688.649610][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.654690][T14088] get_compat_msghdr+0x108/0x270 [ 688.659597][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.664068][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.668731][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.674766][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.680887][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.686056][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.690877][T14088] do_SYSENTER_32+0x73/0x90 [ 688.695347][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.701653][T14088] [ 688.703949][T14088] Uninit was stored to memory at: [ 688.708942][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 688.714649][T14088] __msan_chain_origin+0x50/0x90 [ 688.719576][T14088] __get_compat_msghdr+0x5be/0x890 [ 688.724673][T14088] get_compat_msghdr+0x108/0x270 [ 688.729593][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 688.734066][T14088] __sys_recvmmsg+0x4ca/0x510 [ 688.738715][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.744749][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.750870][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 688.756036][T14088] do_fast_syscall_32+0x6b/0xd0 [ 688.760856][T14088] do_SYSENTER_32+0x73/0x90 [ 688.765329][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.771622][T14088] [ 688.773920][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 688.780565][T14088] do_recvmmsg+0xc5/0x1ee0 [ 688.784969][T14088] do_recvmmsg+0xc5/0x1ee0 [ 688.962965][T14088] not chained 2790000 origins [ 688.967673][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 688.976328][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 688.986405][T14088] Call Trace: [ 688.989692][T14088] dump_stack+0x1df/0x240 [ 688.994021][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 688.999740][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 689.004841][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.009945][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 689.015746][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 689.021801][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 689.026727][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.031826][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 689.037364][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 689.043442][T14088] ? _copy_from_user+0x15b/0x260 [ 689.048369][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.053489][T14088] __msan_chain_origin+0x50/0x90 [ 689.058428][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.063552][T14088] get_compat_msghdr+0x108/0x270 [ 689.068514][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.073054][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.078159][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 689.083784][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 689.089062][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 689.093907][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 689.098663][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 689.103941][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.108618][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.114677][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 689.120907][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.127050][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.132247][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.137095][T14088] do_SYSENTER_32+0x73/0x90 [ 689.141593][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.147924][T14088] RIP: 0023:0xf7fd1549 [ 689.151980][T14088] Code: Bad RIP value. [ 689.156043][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 689.164446][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 689.172427][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 689.180391][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 689.188469][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 689.196428][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 689.204392][T14088] Uninit was stored to memory at: [ 689.209500][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.215211][T14088] __msan_chain_origin+0x50/0x90 [ 689.220146][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.225258][T14088] get_compat_msghdr+0x108/0x270 [ 689.230182][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.234676][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.239348][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.245418][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.251576][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.256767][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.261609][T14088] do_SYSENTER_32+0x73/0x90 [ 689.266099][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.272402][T14088] [ 689.274714][T14088] Uninit was stored to memory at: [ 689.279738][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.285448][T14088] __msan_chain_origin+0x50/0x90 [ 689.290379][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.295484][T14088] get_compat_msghdr+0x108/0x270 [ 689.300410][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.304909][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.309582][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.315640][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.321780][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.326964][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.331806][T14088] do_SYSENTER_32+0x73/0x90 [ 689.336298][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.342604][T14088] [ 689.344913][T14088] Uninit was stored to memory at: [ 689.349929][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.355634][T14088] __msan_chain_origin+0x50/0x90 [ 689.360562][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.365673][T14088] get_compat_msghdr+0x108/0x270 [ 689.370601][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.375094][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.379761][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.385820][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.391964][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.397153][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.401993][T14088] do_SYSENTER_32+0x73/0x90 [ 689.406497][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.412802][T14088] [ 689.415117][T14088] Uninit was stored to memory at: [ 689.420133][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.425838][T14088] __msan_chain_origin+0x50/0x90 [ 689.430769][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.435883][T14088] get_compat_msghdr+0x108/0x270 [ 689.440810][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.445298][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.449969][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.456040][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.462187][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.467373][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.472213][T14088] do_SYSENTER_32+0x73/0x90 [ 689.476705][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.483014][T14088] [ 689.485393][T14088] Uninit was stored to memory at: [ 689.490408][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.496219][T14088] __msan_chain_origin+0x50/0x90 [ 689.501151][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.506250][T14088] get_compat_msghdr+0x108/0x270 [ 689.511202][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.515702][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.520368][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.526424][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.532568][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.537758][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.542604][T14088] do_SYSENTER_32+0x73/0x90 [ 689.547100][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.553413][T14088] [ 689.555728][T14088] Uninit was stored to memory at: [ 689.560830][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.566561][T14088] __msan_chain_origin+0x50/0x90 [ 689.571493][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.576702][T14088] get_compat_msghdr+0x108/0x270 [ 689.581648][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.586147][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.590815][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.596873][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.603021][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.608212][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.613056][T14088] do_SYSENTER_32+0x73/0x90 [ 689.617547][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.623849][T14088] [ 689.626157][T14088] Uninit was stored to memory at: [ 689.631174][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 689.636880][T14088] __msan_chain_origin+0x50/0x90 [ 689.641803][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.646904][T14088] get_compat_msghdr+0x108/0x270 [ 689.651833][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.656327][T14088] __sys_recvmmsg+0x4ca/0x510 [ 689.660991][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.667048][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.673193][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 689.678397][T14088] do_fast_syscall_32+0x6b/0xd0 [ 689.683241][T14088] do_SYSENTER_32+0x73/0x90 [ 689.687735][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.694041][T14088] [ 689.696376][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 689.703056][T14088] do_recvmmsg+0xc5/0x1ee0 [ 689.707566][T14088] do_recvmmsg+0xc5/0x1ee0 [ 689.880531][T14088] not chained 2800000 origins [ 689.885240][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 689.893982][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 689.904050][T14088] Call Trace: [ 689.907335][T14088] dump_stack+0x1df/0x240 [ 689.911662][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 689.917381][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 689.922497][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.927695][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 689.933494][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 689.939551][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 689.944485][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.949589][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 689.955129][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 689.961187][T14088] ? _copy_from_user+0x15b/0x260 [ 689.966113][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.971215][T14088] __msan_chain_origin+0x50/0x90 [ 689.976148][T14088] __get_compat_msghdr+0x5be/0x890 [ 689.981273][T14088] get_compat_msghdr+0x108/0x270 [ 689.986212][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 689.990739][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 689.995853][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 690.001476][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 690.006772][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 690.011538][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 690.016309][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 690.021510][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.026183][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.032244][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 690.038476][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.044637][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.049833][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.054677][T14088] do_SYSENTER_32+0x73/0x90 [ 690.059183][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.065510][T14088] RIP: 0023:0xf7fd1549 [ 690.069561][T14088] Code: Bad RIP value. [ 690.073615][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 690.082013][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 690.089980][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 690.098035][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 690.106013][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 690.113976][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 690.121943][T14088] Uninit was stored to memory at: [ 690.126959][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.132668][T14088] __msan_chain_origin+0x50/0x90 [ 690.137597][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.142786][T14088] get_compat_msghdr+0x108/0x270 [ 690.147711][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.152204][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.156993][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.163058][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.169203][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.174401][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.179255][T14088] do_SYSENTER_32+0x73/0x90 [ 690.183745][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.190165][T14088] [ 690.192476][T14088] Uninit was stored to memory at: [ 690.197488][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.203193][T14088] __msan_chain_origin+0x50/0x90 [ 690.208213][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.213317][T14088] get_compat_msghdr+0x108/0x270 [ 690.218247][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.222753][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.227417][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.233471][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.239615][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.244799][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.249638][T14088] do_SYSENTER_32+0x73/0x90 [ 690.254130][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.260435][T14088] [ 690.262747][T14088] Uninit was stored to memory at: [ 690.267759][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.273492][T14088] __msan_chain_origin+0x50/0x90 [ 690.278422][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.283527][T14088] get_compat_msghdr+0x108/0x270 [ 690.288455][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.292956][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.297622][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.303674][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.309825][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.315026][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.319872][T14088] do_SYSENTER_32+0x73/0x90 [ 690.324359][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.330762][T14088] [ 690.333077][T14088] Uninit was stored to memory at: [ 690.338110][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.343819][T14088] __msan_chain_origin+0x50/0x90 [ 690.348749][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.353865][T14088] get_compat_msghdr+0x108/0x270 [ 690.358799][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.363294][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.367953][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.374004][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.380170][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.385381][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.390221][T14088] do_SYSENTER_32+0x73/0x90 [ 690.394714][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.401025][T14088] [ 690.403363][T14088] Uninit was stored to memory at: [ 690.408405][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.414117][T14088] __msan_chain_origin+0x50/0x90 [ 690.419051][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.424156][T14088] get_compat_msghdr+0x108/0x270 [ 690.429082][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.433577][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.438244][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.444296][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.450433][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.455625][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.460470][T14088] do_SYSENTER_32+0x73/0x90 [ 690.464965][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.471269][T14088] [ 690.473579][T14088] Uninit was stored to memory at: [ 690.478597][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.484303][T14088] __msan_chain_origin+0x50/0x90 [ 690.489233][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.494335][T14088] get_compat_msghdr+0x108/0x270 [ 690.499267][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.503767][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.508433][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.514491][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.520715][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.525916][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.530762][T14088] do_SYSENTER_32+0x73/0x90 [ 690.535259][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.541569][T14088] [ 690.543880][T14088] Uninit was stored to memory at: [ 690.548983][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 690.554695][T14088] __msan_chain_origin+0x50/0x90 [ 690.559624][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.564721][T14088] get_compat_msghdr+0x108/0x270 [ 690.569647][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.574143][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.578815][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.584875][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.591019][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.596204][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.601045][T14088] do_SYSENTER_32+0x73/0x90 [ 690.605536][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.611837][T14088] [ 690.614153][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 690.620921][T14088] do_recvmmsg+0xc5/0x1ee0 [ 690.625323][T14088] do_recvmmsg+0xc5/0x1ee0 [ 690.807141][T14088] not chained 2810000 origins [ 690.811944][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 690.820601][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 690.830658][T14088] Call Trace: [ 690.833944][T14088] dump_stack+0x1df/0x240 [ 690.838280][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 690.843996][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 690.849103][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 690.854221][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 690.860033][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 690.866091][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 690.871029][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 690.876128][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 690.881663][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 690.887723][T14088] ? _copy_from_user+0x15b/0x260 [ 690.892659][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 690.897779][T14088] __msan_chain_origin+0x50/0x90 [ 690.902715][T14088] __get_compat_msghdr+0x5be/0x890 [ 690.907829][T14088] get_compat_msghdr+0x108/0x270 [ 690.912780][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 690.917305][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 690.922409][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 690.928028][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 690.933307][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 690.938059][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 690.942823][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 690.948007][T14088] __sys_recvmmsg+0x4ca/0x510 [ 690.952685][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.958750][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 690.964980][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.971125][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 690.976320][T14088] do_fast_syscall_32+0x6b/0xd0 [ 690.981163][T14088] do_SYSENTER_32+0x73/0x90 [ 690.985667][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.991982][T14088] RIP: 0023:0xf7fd1549 [ 690.996035][T14088] Code: Bad RIP value. [ 691.000091][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 691.008490][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 691.016460][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 691.024421][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 691.032405][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 691.040368][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 691.048338][T14088] Uninit was stored to memory at: [ 691.053368][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.059131][T14088] __msan_chain_origin+0x50/0x90 [ 691.064077][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.069178][T14088] get_compat_msghdr+0x108/0x270 [ 691.074108][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.078602][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.083267][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.089336][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.095478][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.100666][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.105517][T14088] do_SYSENTER_32+0x73/0x90 [ 691.110010][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.116315][T14088] [ 691.118628][T14088] Uninit was stored to memory at: [ 691.123645][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.129375][T14088] __msan_chain_origin+0x50/0x90 [ 691.134308][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.139412][T14088] get_compat_msghdr+0x108/0x270 [ 691.144346][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.148847][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.153516][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.159573][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.165717][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.170905][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.175752][T14088] do_SYSENTER_32+0x73/0x90 [ 691.180247][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.186555][T14088] [ 691.188864][T14088] Uninit was stored to memory at: [ 691.193880][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.199586][T14088] __msan_chain_origin+0x50/0x90 [ 691.204545][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.209650][T14088] get_compat_msghdr+0x108/0x270 [ 691.214586][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.219179][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.223846][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.229900][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.236045][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.241235][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.246074][T14088] do_SYSENTER_32+0x73/0x90 [ 691.250568][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.256875][T14088] [ 691.259187][T14088] Uninit was stored to memory at: [ 691.264210][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.269916][T14088] __msan_chain_origin+0x50/0x90 [ 691.274864][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.279966][T14088] get_compat_msghdr+0x108/0x270 [ 691.284889][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.289464][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.294130][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.300190][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.306330][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.311533][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.316392][T14088] do_SYSENTER_32+0x73/0x90 [ 691.320880][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.327179][T14088] [ 691.329490][T14088] Uninit was stored to memory at: [ 691.334507][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.340218][T14088] __msan_chain_origin+0x50/0x90 [ 691.345148][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.350255][T14088] get_compat_msghdr+0x108/0x270 [ 691.355195][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.359690][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.364356][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.370411][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.376558][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.381750][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.386586][T14088] do_SYSENTER_32+0x73/0x90 [ 691.391078][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.397382][T14088] [ 691.399712][T14088] Uninit was stored to memory at: [ 691.404725][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.410531][T14088] __msan_chain_origin+0x50/0x90 [ 691.415462][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.420567][T14088] get_compat_msghdr+0x108/0x270 [ 691.425495][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.430014][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.434679][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.440736][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.446878][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.452070][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.456911][T14088] do_SYSENTER_32+0x73/0x90 [ 691.461419][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.467723][T14088] [ 691.470033][T14088] Uninit was stored to memory at: [ 691.475048][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 691.480755][T14088] __msan_chain_origin+0x50/0x90 [ 691.485686][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.490796][T14088] get_compat_msghdr+0x108/0x270 [ 691.495734][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.500340][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.505000][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.511047][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.517191][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.522425][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.527300][T14088] do_SYSENTER_32+0x73/0x90 [ 691.531800][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.538107][T14088] [ 691.540424][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 691.547087][T14088] do_recvmmsg+0xc5/0x1ee0 [ 691.551492][T14088] do_recvmmsg+0xc5/0x1ee0 [ 691.770379][T14088] not chained 2820000 origins [ 691.775104][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 691.783756][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 691.793800][T14088] Call Trace: [ 691.797105][T14088] dump_stack+0x1df/0x240 [ 691.801425][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 691.807164][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 691.812280][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 691.817383][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 691.823186][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 691.829257][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 691.834194][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 691.839299][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 691.844923][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 691.850984][T14088] ? _copy_from_user+0x15b/0x260 [ 691.855920][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 691.861136][T14088] __msan_chain_origin+0x50/0x90 [ 691.866070][T14088] __get_compat_msghdr+0x5be/0x890 [ 691.871186][T14088] get_compat_msghdr+0x108/0x270 [ 691.876223][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 691.880767][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 691.885868][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 691.891492][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 691.896787][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 691.901541][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 691.906291][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 691.911479][T14088] __sys_recvmmsg+0x4ca/0x510 [ 691.916171][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.922235][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 691.928470][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.934709][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 691.939914][T14088] do_fast_syscall_32+0x6b/0xd0 [ 691.944762][T14088] do_SYSENTER_32+0x73/0x90 [ 691.949259][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.955576][T14088] RIP: 0023:0xf7fd1549 [ 691.959628][T14088] Code: Bad RIP value. [ 691.963681][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 691.972082][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 691.980043][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 691.988000][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 691.995973][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 692.003934][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 692.011907][T14088] Uninit was stored to memory at: [ 692.016920][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.022621][T14088] __msan_chain_origin+0x50/0x90 [ 692.027548][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.032742][T14088] get_compat_msghdr+0x108/0x270 [ 692.037753][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.042252][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.046915][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.052971][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.059122][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.064313][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.069153][T14088] do_SYSENTER_32+0x73/0x90 [ 692.073649][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.079952][T14088] [ 692.082271][T14088] Uninit was stored to memory at: [ 692.087283][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.092984][T14088] __msan_chain_origin+0x50/0x90 [ 692.097909][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.103012][T14088] get_compat_msghdr+0x108/0x270 [ 692.107940][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.112434][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.117115][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.123164][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.129304][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.134507][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.139366][T14088] do_SYSENTER_32+0x73/0x90 [ 692.143999][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.150310][T14088] [ 692.152627][T14088] Uninit was stored to memory at: [ 692.157671][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.163380][T14088] __msan_chain_origin+0x50/0x90 [ 692.168311][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.173415][T14088] get_compat_msghdr+0x108/0x270 [ 692.178346][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.182910][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.187574][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.193635][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.199777][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.204965][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.209806][T14088] do_SYSENTER_32+0x73/0x90 [ 692.214303][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.220608][T14088] [ 692.222934][T14088] Uninit was stored to memory at: [ 692.227952][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.233662][T14088] __msan_chain_origin+0x50/0x90 [ 692.238594][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.243705][T14088] get_compat_msghdr+0x108/0x270 [ 692.248631][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.253127][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.257794][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.263847][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.269999][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.275195][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.280057][T14088] do_SYSENTER_32+0x73/0x90 [ 692.284549][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.290851][T14088] [ 692.293164][T14088] Uninit was stored to memory at: [ 692.298179][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.303892][T14088] __msan_chain_origin+0x50/0x90 [ 692.308915][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.314030][T14088] get_compat_msghdr+0x108/0x270 [ 692.318965][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.323551][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.328216][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.334268][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.340427][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.345615][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.350454][T14088] do_SYSENTER_32+0x73/0x90 [ 692.354946][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.361251][T14088] [ 692.363564][T14088] Uninit was stored to memory at: [ 692.368579][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.374289][T14088] __msan_chain_origin+0x50/0x90 [ 692.379308][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.384497][T14088] get_compat_msghdr+0x108/0x270 [ 692.389425][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.393932][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.398602][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.404659][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.410799][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.415990][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.420842][T14088] do_SYSENTER_32+0x73/0x90 [ 692.425348][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.431669][T14088] [ 692.433983][T14088] Uninit was stored to memory at: [ 692.438999][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.444712][T14088] __msan_chain_origin+0x50/0x90 [ 692.449642][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.454750][T14088] get_compat_msghdr+0x108/0x270 [ 692.459684][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.464183][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.468850][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.474905][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.481145][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.486331][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.491168][T14088] do_SYSENTER_32+0x73/0x90 [ 692.495658][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.501961][T14088] [ 692.504274][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 692.510963][T14088] do_recvmmsg+0xc5/0x1ee0 [ 692.515368][T14088] do_recvmmsg+0xc5/0x1ee0 [ 692.734042][T14088] not chained 2830000 origins [ 692.738847][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 692.747500][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 692.757557][T14088] Call Trace: [ 692.760840][T14088] dump_stack+0x1df/0x240 [ 692.765164][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 692.770884][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 692.776002][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 692.781123][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 692.786930][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 692.792990][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 692.797920][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 692.803030][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 692.808570][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 692.814631][T14088] ? _copy_from_user+0x15b/0x260 [ 692.819561][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 692.824670][T14088] __msan_chain_origin+0x50/0x90 [ 692.829603][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.834717][T14088] get_compat_msghdr+0x108/0x270 [ 692.839660][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 692.844179][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 692.849286][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 692.854910][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 692.860201][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 692.864959][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 692.869719][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 692.874912][T14088] __sys_recvmmsg+0x4ca/0x510 [ 692.879596][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.885664][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 692.891918][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.898067][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 692.903269][T14088] do_fast_syscall_32+0x6b/0xd0 [ 692.908108][T14088] do_SYSENTER_32+0x73/0x90 [ 692.912616][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.918947][T14088] RIP: 0023:0xf7fd1549 [ 692.923013][T14088] Code: Bad RIP value. [ 692.927072][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 692.935473][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 692.943433][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 692.951482][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 692.959452][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 692.967416][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 692.975401][T14088] Uninit was stored to memory at: [ 692.980414][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 692.986123][T14088] __msan_chain_origin+0x50/0x90 [ 692.991055][T14088] __get_compat_msghdr+0x5be/0x890 [ 692.996153][T14088] get_compat_msghdr+0x108/0x270 [ 693.001102][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.005594][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.010261][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.016315][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.022473][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.027663][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.032503][T14088] do_SYSENTER_32+0x73/0x90 [ 693.036998][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.043300][T14088] [ 693.045609][T14088] Uninit was stored to memory at: [ 693.050621][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.056329][T14088] __msan_chain_origin+0x50/0x90 [ 693.061343][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.066548][T14088] get_compat_msghdr+0x108/0x270 [ 693.071473][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.076067][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.080735][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.086798][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.092967][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.098154][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.102993][T14088] do_SYSENTER_32+0x73/0x90 [ 693.107491][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.113794][T14088] [ 693.116110][T14088] Uninit was stored to memory at: [ 693.121124][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.126833][T14088] __msan_chain_origin+0x50/0x90 [ 693.131762][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.136881][T14088] get_compat_msghdr+0x108/0x270 [ 693.141815][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.146309][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.150982][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.157042][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.163189][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.168377][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.173222][T14088] do_SYSENTER_32+0x73/0x90 [ 693.177717][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.184019][T14088] [ 693.186331][T14088] Uninit was stored to memory at: [ 693.191346][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.197051][T14088] __msan_chain_origin+0x50/0x90 [ 693.201980][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.207087][T14088] get_compat_msghdr+0x108/0x270 [ 693.212015][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.216507][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.221179][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.227236][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.233380][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.238571][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.243413][T14088] do_SYSENTER_32+0x73/0x90 [ 693.247905][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.254210][T14088] [ 693.256525][T14088] Uninit was stored to memory at: [ 693.261548][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.267260][T14088] __msan_chain_origin+0x50/0x90 [ 693.272195][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.277298][T14088] get_compat_msghdr+0x108/0x270 [ 693.282329][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.286821][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.291492][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.297558][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.303703][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.308898][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.313740][T14088] do_SYSENTER_32+0x73/0x90 [ 693.318242][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.324543][T14088] [ 693.326947][T14088] Uninit was stored to memory at: [ 693.332050][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.337758][T14088] __msan_chain_origin+0x50/0x90 [ 693.342688][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.347799][T14088] get_compat_msghdr+0x108/0x270 [ 693.352733][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.357238][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.361907][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.367966][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.374114][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.379309][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.384156][T14088] do_SYSENTER_32+0x73/0x90 [ 693.388651][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.394958][T14088] [ 693.397271][T14088] Uninit was stored to memory at: [ 693.402288][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.407997][T14088] __msan_chain_origin+0x50/0x90 [ 693.412930][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.418032][T14088] get_compat_msghdr+0x108/0x270 [ 693.422969][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.427472][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.432142][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.438203][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.444352][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.449545][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.454391][T14088] do_SYSENTER_32+0x73/0x90 [ 693.458990][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.465306][T14088] [ 693.467627][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 693.474292][T14088] do_recvmmsg+0xc5/0x1ee0 [ 693.478699][T14088] do_recvmmsg+0xc5/0x1ee0 [ 693.698445][T14088] not chained 2840000 origins [ 693.703136][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 693.711809][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 693.721854][T14088] Call Trace: [ 693.725120][T14088] dump_stack+0x1df/0x240 [ 693.729510][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 693.735335][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 693.740416][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 693.745621][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 693.751400][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 693.757449][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 693.762361][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 693.767441][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 693.772957][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 693.778997][T14088] ? _copy_from_user+0x15b/0x260 [ 693.783904][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 693.788986][T14088] __msan_chain_origin+0x50/0x90 [ 693.794204][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.799299][T14088] get_compat_msghdr+0x108/0x270 [ 693.804210][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.808701][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 693.813783][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 693.819387][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 693.824641][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 693.829378][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 693.834113][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 693.839284][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.843943][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.849982][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 693.856191][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.862314][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.867492][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.872317][T14088] do_SYSENTER_32+0x73/0x90 [ 693.876790][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.883079][T14088] RIP: 0023:0xf7fd1549 [ 693.887129][T14088] Code: Bad RIP value. [ 693.891164][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 693.899553][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 693.907494][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 693.915436][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 693.923378][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 693.931319][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 693.939267][T14088] Uninit was stored to memory at: [ 693.944263][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 693.949948][T14088] __msan_chain_origin+0x50/0x90 [ 693.954865][T14088] __get_compat_msghdr+0x5be/0x890 [ 693.959971][T14088] get_compat_msghdr+0x108/0x270 [ 693.964875][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 693.969348][T14088] __sys_recvmmsg+0x4ca/0x510 [ 693.973997][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.982554][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.988677][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 693.993846][T14088] do_fast_syscall_32+0x6b/0xd0 [ 693.998670][T14088] do_SYSENTER_32+0x73/0x90 [ 694.003174][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.009555][T14088] [ 694.011853][T14088] Uninit was stored to memory at: [ 694.016850][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.022539][T14088] __msan_chain_origin+0x50/0x90 [ 694.027447][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.032529][T14088] get_compat_msghdr+0x108/0x270 [ 694.037441][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.041914][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.046568][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.052612][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.058736][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.063900][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.068717][T14088] do_SYSENTER_32+0x73/0x90 [ 694.073188][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.079480][T14088] [ 694.081777][T14088] Uninit was stored to memory at: [ 694.086770][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.092457][T14088] __msan_chain_origin+0x50/0x90 [ 694.097389][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.102473][T14088] get_compat_msghdr+0x108/0x270 [ 694.107425][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.111898][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.116541][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.122570][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.128689][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.133857][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.138684][T14088] do_SYSENTER_32+0x73/0x90 [ 694.143166][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.149458][T14088] [ 694.151759][T14088] Uninit was stored to memory at: [ 694.156755][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.162531][T14088] __msan_chain_origin+0x50/0x90 [ 694.167432][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.172512][T14088] get_compat_msghdr+0x108/0x270 [ 694.177420][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.181890][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.186535][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.192571][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.198694][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.204037][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.208861][T14088] do_SYSENTER_32+0x73/0x90 [ 694.213338][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.219627][T14088] [ 694.221925][T14088] Uninit was stored to memory at: [ 694.226914][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.232600][T14088] __msan_chain_origin+0x50/0x90 [ 694.237577][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.242685][T14088] get_compat_msghdr+0x108/0x270 [ 694.247599][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.252072][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.256715][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.262747][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.268964][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.274134][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.278960][T14088] do_SYSENTER_32+0x73/0x90 [ 694.283433][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.289724][T14088] [ 694.292041][T14088] Uninit was stored to memory at: [ 694.297159][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.302846][T14088] __msan_chain_origin+0x50/0x90 [ 694.307753][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.312852][T14088] get_compat_msghdr+0x108/0x270 [ 694.317757][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.322226][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.326872][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.332908][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.339032][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.344207][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.349032][T14088] do_SYSENTER_32+0x73/0x90 [ 694.353506][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.359806][T14088] [ 694.362104][T14088] Uninit was stored to memory at: [ 694.367099][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.372794][T14088] __msan_chain_origin+0x50/0x90 [ 694.377699][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.382792][T14088] get_compat_msghdr+0x108/0x270 [ 694.387701][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.392299][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.396945][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.403061][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.409218][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.414385][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.419209][T14088] do_SYSENTER_32+0x73/0x90 [ 694.423688][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.430047][T14088] [ 694.432362][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 694.439006][T14088] do_recvmmsg+0xc5/0x1ee0 [ 694.443389][T14088] do_recvmmsg+0xc5/0x1ee0 [ 694.624067][T14088] not chained 2850000 origins [ 694.628761][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 694.637420][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 694.647460][T14088] Call Trace: [ 694.650743][T14088] dump_stack+0x1df/0x240 [ 694.655072][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 694.660798][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 694.665993][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 694.671100][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 694.676911][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 694.682962][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 694.687892][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 694.692993][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 694.698540][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 694.704618][T14088] ? _copy_from_user+0x15b/0x260 [ 694.709563][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 694.714666][T14088] __msan_chain_origin+0x50/0x90 [ 694.719598][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.724714][T14088] get_compat_msghdr+0x108/0x270 [ 694.729652][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.734172][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 694.739277][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 694.744909][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 694.750193][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 694.754965][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 694.759719][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 694.764914][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.769599][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.775660][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 694.781904][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.788049][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.793249][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.798096][T14088] do_SYSENTER_32+0x73/0x90 [ 694.802697][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.809008][T14088] RIP: 0023:0xf7fd1549 [ 694.813057][T14088] Code: Bad RIP value. [ 694.817106][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 694.825499][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 694.833547][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 694.841513][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 694.849472][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 694.857438][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 694.865411][T14088] Uninit was stored to memory at: [ 694.870436][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.876142][T14088] __msan_chain_origin+0x50/0x90 [ 694.881070][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.886169][T14088] get_compat_msghdr+0x108/0x270 [ 694.891098][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.895611][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.900282][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.906336][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.912482][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.917672][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.922514][T14088] do_SYSENTER_32+0x73/0x90 [ 694.927006][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.933310][T14088] [ 694.935624][T14088] Uninit was stored to memory at: [ 694.940642][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 694.946351][T14088] __msan_chain_origin+0x50/0x90 [ 694.951289][T14088] __get_compat_msghdr+0x5be/0x890 [ 694.956393][T14088] get_compat_msghdr+0x108/0x270 [ 694.961319][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 694.965815][T14088] __sys_recvmmsg+0x4ca/0x510 [ 694.970482][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.976540][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.982693][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 694.987882][T14088] do_fast_syscall_32+0x6b/0xd0 [ 694.992724][T14088] do_SYSENTER_32+0x73/0x90 [ 694.997233][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.003542][T14088] [ 695.005877][T14088] Uninit was stored to memory at: [ 695.010892][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.016780][T14088] __msan_chain_origin+0x50/0x90 [ 695.021709][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.026821][T14088] get_compat_msghdr+0x108/0x270 [ 695.031748][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.036256][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.040921][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.046977][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.053118][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.058304][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.063147][T14088] do_SYSENTER_32+0x73/0x90 [ 695.067640][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.073947][T14088] [ 695.076257][T14088] Uninit was stored to memory at: [ 695.081269][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.086996][T14088] __msan_chain_origin+0x50/0x90 [ 695.091926][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.097026][T14088] get_compat_msghdr+0x108/0x270 [ 695.101948][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.106441][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.111108][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.117161][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.123310][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.128515][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.133387][T14088] do_SYSENTER_32+0x73/0x90 [ 695.137884][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.144196][T14088] [ 695.146506][T14088] Uninit was stored to memory at: [ 695.151534][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.157245][T14088] __msan_chain_origin+0x50/0x90 [ 695.162176][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.167373][T14088] get_compat_msghdr+0x108/0x270 [ 695.172301][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.176794][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.181457][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.187515][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.193660][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.198850][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.203688][T14088] do_SYSENTER_32+0x73/0x90 [ 695.208181][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.214487][T14088] [ 695.216807][T14088] Uninit was stored to memory at: [ 695.221819][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.227531][T14088] __msan_chain_origin+0x50/0x90 [ 695.232467][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.237572][T14088] get_compat_msghdr+0x108/0x270 [ 695.242501][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.246991][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.251658][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.257714][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.263854][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.269048][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.273894][T14088] do_SYSENTER_32+0x73/0x90 [ 695.278387][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.284706][T14088] [ 695.287016][T14088] Uninit was stored to memory at: [ 695.292036][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.297843][T14088] __msan_chain_origin+0x50/0x90 [ 695.302768][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.307888][T14088] get_compat_msghdr+0x108/0x270 [ 695.312823][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.317322][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.321984][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.328039][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.334181][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.339372][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.344211][T14088] do_SYSENTER_32+0x73/0x90 [ 695.348716][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.355021][T14088] [ 695.357337][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 695.363999][T14088] do_recvmmsg+0xc5/0x1ee0 [ 695.368408][T14088] do_recvmmsg+0xc5/0x1ee0 [ 695.570778][T14088] not chained 2860000 origins [ 695.575481][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 695.584131][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 695.594176][T14088] Call Trace: [ 695.597459][T14088] dump_stack+0x1df/0x240 [ 695.601794][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 695.607520][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 695.612639][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 695.617751][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 695.623554][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 695.629623][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 695.634558][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 695.639661][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 695.645202][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 695.651270][T14088] ? _copy_from_user+0x15b/0x260 [ 695.656203][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 695.661344][T14088] __msan_chain_origin+0x50/0x90 [ 695.666281][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.671418][T14088] get_compat_msghdr+0x108/0x270 [ 695.676356][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.680880][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 695.685995][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 695.691625][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 695.696903][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 695.701657][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 695.706515][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 695.711708][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.716400][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.722457][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 695.728690][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.734839][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.740128][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.745111][T14088] do_SYSENTER_32+0x73/0x90 [ 695.749619][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.755935][T14088] RIP: 0023:0xf7fd1549 [ 695.759984][T14088] Code: Bad RIP value. [ 695.764037][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 695.772437][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 695.780400][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 695.788370][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 695.796332][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 695.804307][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 695.812279][T14088] Uninit was stored to memory at: [ 695.817385][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.823189][T14088] __msan_chain_origin+0x50/0x90 [ 695.828118][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.833220][T14088] get_compat_msghdr+0x108/0x270 [ 695.838143][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.842634][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.847298][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.853351][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.859497][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.864697][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.869555][T14088] do_SYSENTER_32+0x73/0x90 [ 695.874050][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.880353][T14088] [ 695.882693][T14088] Uninit was stored to memory at: [ 695.887712][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.893419][T14088] __msan_chain_origin+0x50/0x90 [ 695.898353][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.903458][T14088] get_compat_msghdr+0x108/0x270 [ 695.908387][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.912892][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.917577][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.923631][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.929784][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 695.934974][T14088] do_fast_syscall_32+0x6b/0xd0 [ 695.939816][T14088] do_SYSENTER_32+0x73/0x90 [ 695.944401][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.950712][T14088] [ 695.953029][T14088] Uninit was stored to memory at: [ 695.958051][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 695.963769][T14088] __msan_chain_origin+0x50/0x90 [ 695.968712][T14088] __get_compat_msghdr+0x5be/0x890 [ 695.973836][T14088] get_compat_msghdr+0x108/0x270 [ 695.978768][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 695.983276][T14088] __sys_recvmmsg+0x4ca/0x510 [ 695.987956][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.994016][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.000167][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.005361][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.010212][T14088] do_SYSENTER_32+0x73/0x90 [ 696.014735][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.021063][T14088] [ 696.023379][T14088] Uninit was stored to memory at: [ 696.028394][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.034102][T14088] __msan_chain_origin+0x50/0x90 [ 696.039038][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.044143][T14088] get_compat_msghdr+0x108/0x270 [ 696.049076][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.053575][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.058239][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.064286][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.070427][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.075621][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.080462][T14088] do_SYSENTER_32+0x73/0x90 [ 696.084950][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.091251][T14088] [ 696.093560][T14088] Uninit was stored to memory at: [ 696.098664][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.104373][T14088] __msan_chain_origin+0x50/0x90 [ 696.109304][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.114405][T14088] get_compat_msghdr+0x108/0x270 [ 696.119332][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.123823][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.128504][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.134566][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.140709][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.145902][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.150744][T14088] do_SYSENTER_32+0x73/0x90 [ 696.155236][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.161541][T14088] [ 696.163850][T14088] Uninit was stored to memory at: [ 696.168869][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.174582][T14088] __msan_chain_origin+0x50/0x90 [ 696.179517][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.184625][T14088] get_compat_msghdr+0x108/0x270 [ 696.189557][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.194063][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.198730][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.204797][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.211114][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.216301][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.221142][T14088] do_SYSENTER_32+0x73/0x90 [ 696.225636][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.231938][T14088] [ 696.234252][T14088] Uninit was stored to memory at: [ 696.239268][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.244981][T14088] __msan_chain_origin+0x50/0x90 [ 696.249912][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.255013][T14088] get_compat_msghdr+0x108/0x270 [ 696.260044][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.264537][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.269203][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.275260][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.281400][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.286587][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.291428][T14088] do_SYSENTER_32+0x73/0x90 [ 696.295938][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.302240][T14088] [ 696.304551][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 696.311215][T14088] do_recvmmsg+0xc5/0x1ee0 [ 696.315626][T14088] do_recvmmsg+0xc5/0x1ee0 [ 696.494149][T14088] not chained 2870000 origins [ 696.498954][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 696.507610][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 696.517738][T14088] Call Trace: [ 696.521025][T14088] dump_stack+0x1df/0x240 [ 696.525449][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 696.531170][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 696.536280][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 696.541405][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 696.547206][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 696.553267][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 696.558202][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 696.563304][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 696.568846][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 696.574911][T14088] ? _copy_from_user+0x15b/0x260 [ 696.579850][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 696.584950][T14088] __msan_chain_origin+0x50/0x90 [ 696.589883][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.595000][T14088] get_compat_msghdr+0x108/0x270 [ 696.599952][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.604475][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 696.609584][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 696.615207][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 696.620483][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 696.625236][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 696.629989][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 696.635183][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.640212][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.646279][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 696.652514][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.658675][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.663872][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.668725][T14088] do_SYSENTER_32+0x73/0x90 [ 696.673235][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.679559][T14088] RIP: 0023:0xf7fd1549 [ 696.683613][T14088] Code: Bad RIP value. [ 696.687666][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 696.696086][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 696.704046][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 696.712005][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 696.719968][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 696.727931][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 696.735897][T14088] Uninit was stored to memory at: [ 696.740914][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.746719][T14088] __msan_chain_origin+0x50/0x90 [ 696.751650][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.756751][T14088] get_compat_msghdr+0x108/0x270 [ 696.761675][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.766177][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.770851][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.776910][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.783054][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.788275][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.793116][T14088] do_SYSENTER_32+0x73/0x90 [ 696.797616][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.803922][T14088] [ 696.806320][T14088] Uninit was stored to memory at: [ 696.811428][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.817136][T14088] __msan_chain_origin+0x50/0x90 [ 696.822063][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.827165][T14088] get_compat_msghdr+0x108/0x270 [ 696.832097][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.836596][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.841262][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.847317][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.853458][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.858664][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.863508][T14088] do_SYSENTER_32+0x73/0x90 [ 696.868014][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.874318][T14088] [ 696.876630][T14088] Uninit was stored to memory at: [ 696.881654][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.887478][T14088] __msan_chain_origin+0x50/0x90 [ 696.892405][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.897516][T14088] get_compat_msghdr+0x108/0x270 [ 696.902461][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.906947][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.911629][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.917684][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.923823][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.929015][T14088] do_fast_syscall_32+0x6b/0xd0 [ 696.933859][T14088] do_SYSENTER_32+0x73/0x90 [ 696.938353][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.944658][T14088] [ 696.946966][T14088] Uninit was stored to memory at: [ 696.951983][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 696.957690][T14088] __msan_chain_origin+0x50/0x90 [ 696.962616][T14088] __get_compat_msghdr+0x5be/0x890 [ 696.967718][T14088] get_compat_msghdr+0x108/0x270 [ 696.972648][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 696.977152][T14088] __sys_recvmmsg+0x4ca/0x510 [ 696.981820][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.987876][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.994018][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 696.999207][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.004047][T14088] do_SYSENTER_32+0x73/0x90 [ 697.008545][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.014869][T14088] [ 697.017182][T14088] Uninit was stored to memory at: [ 697.022207][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.027916][T14088] __msan_chain_origin+0x50/0x90 [ 697.032845][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.037950][T14088] get_compat_msghdr+0x108/0x270 [ 697.042884][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.047378][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.052059][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.058116][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.064264][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.069454][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.074297][T14088] do_SYSENTER_32+0x73/0x90 [ 697.078791][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.085098][T14088] [ 697.087414][T14088] Uninit was stored to memory at: [ 697.092432][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.098141][T14088] __msan_chain_origin+0x50/0x90 [ 697.103064][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.108165][T14088] get_compat_msghdr+0x108/0x270 [ 697.113090][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.117578][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.122261][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.128313][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.134456][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.139654][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.144587][T14088] do_SYSENTER_32+0x73/0x90 [ 697.149085][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.155395][T14088] [ 697.157721][T14088] Uninit was stored to memory at: [ 697.162737][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.168441][T14088] __msan_chain_origin+0x50/0x90 [ 697.173405][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.178510][T14088] get_compat_msghdr+0x108/0x270 [ 697.183440][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.187931][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.192602][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.198680][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.204852][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.210060][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.214913][T14088] do_SYSENTER_32+0x73/0x90 [ 697.219403][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.225730][T14088] [ 697.228050][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 697.234718][T14088] do_recvmmsg+0xc5/0x1ee0 [ 697.239127][T14088] do_recvmmsg+0xc5/0x1ee0 [ 697.410355][T14088] not chained 2880000 origins [ 697.415069][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 697.423808][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 697.433860][T14088] Call Trace: [ 697.437139][T14088] dump_stack+0x1df/0x240 [ 697.441460][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 697.447176][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 697.452278][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 697.457470][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 697.463267][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 697.469326][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 697.474263][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 697.479366][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 697.484903][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 697.490989][T14088] ? _copy_from_user+0x15b/0x260 [ 697.495922][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 697.501027][T14088] __msan_chain_origin+0x50/0x90 [ 697.505959][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.511079][T14088] get_compat_msghdr+0x108/0x270 [ 697.516025][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.520548][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 697.525652][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 697.531286][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 697.536571][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 697.541335][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 697.546108][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 697.551304][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.555987][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.562060][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 697.568421][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.574567][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.579764][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.584619][T14088] do_SYSENTER_32+0x73/0x90 [ 697.589115][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.595432][T14088] RIP: 0023:0xf7fd1549 [ 697.599482][T14088] Code: Bad RIP value. [ 697.603535][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 697.611934][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 697.619900][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 697.627858][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 697.635815][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 697.643771][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 697.651742][T14088] Uninit was stored to memory at: [ 697.656758][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.662461][T14088] __msan_chain_origin+0x50/0x90 [ 697.667428][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.672539][T14088] get_compat_msghdr+0x108/0x270 [ 697.677470][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.681970][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.686631][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.692694][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.698838][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.704040][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.708895][T14088] do_SYSENTER_32+0x73/0x90 [ 697.713386][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.719692][T14088] [ 697.722009][T14088] Uninit was stored to memory at: [ 697.727115][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.732820][T14088] __msan_chain_origin+0x50/0x90 [ 697.737748][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.742849][T14088] get_compat_msghdr+0x108/0x270 [ 697.747780][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.752271][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.756942][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.763082][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.769228][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.774422][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.779266][T14088] do_SYSENTER_32+0x73/0x90 [ 697.783759][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.790065][T14088] [ 697.792376][T14088] Uninit was stored to memory at: [ 697.797388][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.803181][T14088] __msan_chain_origin+0x50/0x90 [ 697.808114][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.813216][T14088] get_compat_msghdr+0x108/0x270 [ 697.818143][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.822650][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.827314][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.833369][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.839517][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.844707][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.849551][T14088] do_SYSENTER_32+0x73/0x90 [ 697.854046][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.860351][T14088] [ 697.863382][T14088] Uninit was stored to memory at: [ 697.868402][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.874106][T14088] __msan_chain_origin+0x50/0x90 [ 697.879044][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.884145][T14088] get_compat_msghdr+0x108/0x270 [ 697.889079][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.893575][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.898239][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.904394][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.910555][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.915751][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.920586][T14088] do_SYSENTER_32+0x73/0x90 [ 697.925162][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.931464][T14088] [ 697.933776][T14088] Uninit was stored to memory at: [ 697.938791][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 697.944498][T14088] __msan_chain_origin+0x50/0x90 [ 697.949425][T14088] __get_compat_msghdr+0x5be/0x890 [ 697.954526][T14088] get_compat_msghdr+0x108/0x270 [ 697.959453][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 697.963949][T14088] __sys_recvmmsg+0x4ca/0x510 [ 697.968713][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.974771][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.980911][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 697.986103][T14088] do_fast_syscall_32+0x6b/0xd0 [ 697.990948][T14088] do_SYSENTER_32+0x73/0x90 [ 697.995444][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.001751][T14088] [ 698.004065][T14088] Uninit was stored to memory at: [ 698.009081][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.014787][T14088] __msan_chain_origin+0x50/0x90 [ 698.019716][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.024833][T14088] get_compat_msghdr+0x108/0x270 [ 698.029761][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.034260][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.038925][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.044976][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.051117][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.056310][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.061260][T14088] do_SYSENTER_32+0x73/0x90 [ 698.065754][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.072058][T14088] [ 698.074372][T14088] Uninit was stored to memory at: [ 698.079387][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.085095][T14088] __msan_chain_origin+0x50/0x90 [ 698.090028][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.095130][T14088] get_compat_msghdr+0x108/0x270 [ 698.100058][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.104555][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.109225][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.115278][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.121430][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.126616][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.131459][T14088] do_SYSENTER_32+0x73/0x90 [ 698.135953][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.142256][T14088] [ 698.144751][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 698.151422][T14088] do_recvmmsg+0xc5/0x1ee0 [ 698.155835][T14088] do_recvmmsg+0xc5/0x1ee0 [ 698.261672][T14088] not chained 2890000 origins [ 698.266342][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 698.274977][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 698.285001][T14088] Call Trace: [ 698.288300][T14088] dump_stack+0x1df/0x240 [ 698.292603][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 698.298306][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 698.303387][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 698.308600][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 698.314378][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 698.320417][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 698.325331][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 698.330418][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 698.335937][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 698.341976][T14088] ? _copy_from_user+0x15b/0x260 [ 698.346882][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 698.351965][T14088] __msan_chain_origin+0x50/0x90 [ 698.356879][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.361988][T14088] get_compat_msghdr+0x108/0x270 [ 698.366899][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.371386][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 698.376470][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 698.382076][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 698.387336][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 698.392074][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 698.396811][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 698.401982][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.406638][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.412678][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 698.418893][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.425017][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.430189][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.435176][T14088] do_SYSENTER_32+0x73/0x90 [ 698.439653][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.445948][T14088] RIP: 0023:0xf7fd1549 [ 698.449982][T14088] Code: Bad RIP value. [ 698.454019][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 698.462400][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 698.470364][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 698.478308][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 698.486336][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 698.494285][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 698.502244][T14088] Uninit was stored to memory at: [ 698.507236][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.512922][T14088] __msan_chain_origin+0x50/0x90 [ 698.517833][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.522914][T14088] get_compat_msghdr+0x108/0x270 [ 698.527821][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.532296][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.536944][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.542978][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.549099][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.554268][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.559087][T14088] do_SYSENTER_32+0x73/0x90 [ 698.563561][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.569850][T14088] [ 698.572151][T14088] Uninit was stored to memory at: [ 698.577144][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.582833][T14088] __msan_chain_origin+0x50/0x90 [ 698.587773][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.592861][T14088] get_compat_msghdr+0x108/0x270 [ 698.597766][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.602241][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.606888][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.612938][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.619063][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.624230][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.629050][T14088] do_SYSENTER_32+0x73/0x90 [ 698.633522][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.639815][T14088] [ 698.642114][T14088] Uninit was stored to memory at: [ 698.647109][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.652795][T14088] __msan_chain_origin+0x50/0x90 [ 698.657702][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.662780][T14088] get_compat_msghdr+0x108/0x270 [ 698.667688][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.672160][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.676815][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.682845][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.688967][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.694135][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.698955][T14088] do_SYSENTER_32+0x73/0x90 [ 698.703424][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.709712][T14088] [ 698.712010][T14088] Uninit was stored to memory at: [ 698.717001][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.722696][T14088] __msan_chain_origin+0x50/0x90 [ 698.727603][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.732687][T14088] get_compat_msghdr+0x108/0x270 [ 698.737594][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.742065][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.746710][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.752749][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.758872][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.764047][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.768976][T14088] do_SYSENTER_32+0x73/0x90 [ 698.773448][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.779839][T14088] [ 698.782138][T14088] Uninit was stored to memory at: [ 698.787129][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.792818][T14088] __msan_chain_origin+0x50/0x90 [ 698.797732][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.802824][T14088] get_compat_msghdr+0x108/0x270 [ 698.807746][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.812220][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.816867][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.822910][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.829033][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.834200][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.839046][T14088] do_SYSENTER_32+0x73/0x90 [ 698.843517][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.849810][T14088] [ 698.852105][T14088] Uninit was stored to memory at: [ 698.857096][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.862776][T14088] __msan_chain_origin+0x50/0x90 [ 698.867686][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.872768][T14088] get_compat_msghdr+0x108/0x270 [ 698.877674][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.882148][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.886794][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.892827][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.898951][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.904133][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.908952][T14088] do_SYSENTER_32+0x73/0x90 [ 698.913427][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.919718][T14088] [ 698.922020][T14088] Uninit was stored to memory at: [ 698.927020][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 698.932704][T14088] __msan_chain_origin+0x50/0x90 [ 698.937608][T14088] __get_compat_msghdr+0x5be/0x890 [ 698.942685][T14088] get_compat_msghdr+0x108/0x270 [ 698.947590][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 698.952063][T14088] __sys_recvmmsg+0x4ca/0x510 [ 698.956707][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.962737][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.968879][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 698.974056][T14088] do_fast_syscall_32+0x6b/0xd0 [ 698.978880][T14088] do_SYSENTER_32+0x73/0x90 [ 698.983353][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.989643][T14088] [ 698.991947][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 698.998624][T14088] do_recvmmsg+0xc5/0x1ee0 [ 699.003008][T14088] do_recvmmsg+0xc5/0x1ee0 [ 699.184298][T14088] not chained 2900000 origins [ 699.189017][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 699.197677][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 699.207719][T14088] Call Trace: [ 699.211011][T14088] dump_stack+0x1df/0x240 [ 699.215341][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 699.221062][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 699.226165][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 699.231293][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 699.237091][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 699.243148][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 699.248083][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 699.253204][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 699.258745][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 699.264906][T14088] ? _copy_from_user+0x15b/0x260 [ 699.269854][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 699.274959][T14088] __msan_chain_origin+0x50/0x90 [ 699.279898][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.285029][T14088] get_compat_msghdr+0x108/0x270 [ 699.290000][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.294536][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 699.299738][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 699.305362][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 699.310647][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 699.315402][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 699.320155][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 699.325344][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.330052][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.336112][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 699.342337][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.348483][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.353685][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.358531][T14088] do_SYSENTER_32+0x73/0x90 [ 699.363048][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.369362][T14088] RIP: 0023:0xf7fd1549 [ 699.373424][T14088] Code: Bad RIP value. [ 699.377478][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 699.385886][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 699.393847][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 699.401807][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 699.409873][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 699.417852][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 699.425825][T14088] Uninit was stored to memory at: [ 699.430842][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.436560][T14088] __msan_chain_origin+0x50/0x90 [ 699.441489][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.446588][T14088] get_compat_msghdr+0x108/0x270 [ 699.451509][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.456015][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.460681][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.466857][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.473004][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.478206][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.483053][T14088] do_SYSENTER_32+0x73/0x90 [ 699.487560][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.493865][T14088] [ 699.496178][T14088] Uninit was stored to memory at: [ 699.501201][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.506909][T14088] __msan_chain_origin+0x50/0x90 [ 699.511839][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.516958][T14088] get_compat_msghdr+0x108/0x270 [ 699.521969][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.526766][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.531432][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.537516][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.543757][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.548949][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.553791][T14088] do_SYSENTER_32+0x73/0x90 [ 699.558284][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.564599][T14088] [ 699.566907][T14088] Uninit was stored to memory at: [ 699.571921][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.577661][T14088] __msan_chain_origin+0x50/0x90 [ 699.582605][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.587699][T14088] get_compat_msghdr+0x108/0x270 [ 699.592637][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.597140][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.601809][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.607886][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.614028][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.619226][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.624072][T14088] do_SYSENTER_32+0x73/0x90 [ 699.628562][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.634863][T14088] [ 699.637184][T14088] Uninit was stored to memory at: [ 699.642200][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.647910][T14088] __msan_chain_origin+0x50/0x90 [ 699.652856][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.657961][T14088] get_compat_msghdr+0x108/0x270 [ 699.662903][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.667416][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.672084][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.678141][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.684283][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.689477][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.694319][T14088] do_SYSENTER_32+0x73/0x90 [ 699.698815][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.705143][T14088] [ 699.707456][T14088] Uninit was stored to memory at: [ 699.712474][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.718185][T14088] __msan_chain_origin+0x50/0x90 [ 699.723286][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.728393][T14088] get_compat_msghdr+0x108/0x270 [ 699.733320][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.737815][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.742495][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.748639][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.754793][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.759995][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.764842][T14088] do_SYSENTER_32+0x73/0x90 [ 699.769427][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.775745][T14088] [ 699.778056][T14088] Uninit was stored to memory at: [ 699.783075][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.788785][T14088] __msan_chain_origin+0x50/0x90 [ 699.793717][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.798821][T14088] get_compat_msghdr+0x108/0x270 [ 699.803758][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.808268][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.812939][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.818996][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.825137][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.830326][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.835169][T14088] do_SYSENTER_32+0x73/0x90 [ 699.839747][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.846080][T14088] [ 699.848495][T14088] Uninit was stored to memory at: [ 699.853515][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 699.859230][T14088] __msan_chain_origin+0x50/0x90 [ 699.864255][T14088] __get_compat_msghdr+0x5be/0x890 [ 699.869453][T14088] get_compat_msghdr+0x108/0x270 [ 699.874383][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 699.878901][T14088] __sys_recvmmsg+0x4ca/0x510 [ 699.883570][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.889627][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.895782][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 699.900975][T14088] do_fast_syscall_32+0x6b/0xd0 [ 699.905820][T14088] do_SYSENTER_32+0x73/0x90 [ 699.910316][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.916624][T14088] [ 699.918944][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 699.925613][T14088] do_recvmmsg+0xc5/0x1ee0 [ 699.930019][T14088] do_recvmmsg+0xc5/0x1ee0 [ 700.137243][T14088] not chained 2910000 origins [ 700.142044][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 700.150812][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 700.160852][T14088] Call Trace: [ 700.164135][T14088] dump_stack+0x1df/0x240 [ 700.168455][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 700.174171][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 700.179281][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 700.184383][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 700.190182][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 700.196243][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 700.201180][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 700.206288][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 700.211832][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 700.217895][T14088] ? _copy_from_user+0x15b/0x260 [ 700.222826][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 700.227931][T14088] __msan_chain_origin+0x50/0x90 [ 700.232880][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.238007][T14088] get_compat_msghdr+0x108/0x270 [ 700.243040][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.247556][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 700.252657][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 700.258284][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 700.263571][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 700.268326][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 700.273084][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 700.278283][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.282965][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.289046][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 700.295281][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.301429][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.306629][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.311479][T14088] do_SYSENTER_32+0x73/0x90 [ 700.315979][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.322304][T14088] RIP: 0023:0xf7fd1549 [ 700.326352][T14088] Code: Bad RIP value. [ 700.330406][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 700.338824][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 700.346787][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 700.354746][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 700.362704][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 700.370664][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 700.378631][T14088] Uninit was stored to memory at: [ 700.383646][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.389441][T14088] __msan_chain_origin+0x50/0x90 [ 700.394371][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.399497][T14088] get_compat_msghdr+0x108/0x270 [ 700.404425][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.408914][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.413593][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.419651][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.425796][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.430986][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.435826][T14088] do_SYSENTER_32+0x73/0x90 [ 700.440319][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.446619][T14088] [ 700.448931][T14088] Uninit was stored to memory at: [ 700.453965][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.459677][T14088] __msan_chain_origin+0x50/0x90 [ 700.464608][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.469714][T14088] get_compat_msghdr+0x108/0x270 [ 700.474643][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.479139][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.483810][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.489877][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.496024][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.501219][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.506147][T14088] do_SYSENTER_32+0x73/0x90 [ 700.510638][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.516941][T14088] [ 700.519255][T14088] Uninit was stored to memory at: [ 700.524369][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.530082][T14088] __msan_chain_origin+0x50/0x90 [ 700.535015][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.540124][T14088] get_compat_msghdr+0x108/0x270 [ 700.545059][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.549552][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.554222][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.560275][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.566421][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.571647][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.576502][T14088] do_SYSENTER_32+0x73/0x90 [ 700.580994][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.587301][T14088] [ 700.589615][T14088] Uninit was stored to memory at: [ 700.594630][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.600341][T14088] __msan_chain_origin+0x50/0x90 [ 700.605268][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.610371][T14088] get_compat_msghdr+0x108/0x270 [ 700.615299][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.619797][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.624467][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.630521][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.636752][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.642025][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.646887][T14088] do_SYSENTER_32+0x73/0x90 [ 700.651379][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.657700][T14088] [ 700.660040][T14088] Uninit was stored to memory at: [ 700.665062][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.670769][T14088] __msan_chain_origin+0x50/0x90 [ 700.675694][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.680792][T14088] get_compat_msghdr+0x108/0x270 [ 700.685718][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.690215][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.694877][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.700928][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.707072][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.712260][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.717097][T14088] do_SYSENTER_32+0x73/0x90 [ 700.721598][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.727988][T14088] [ 700.730304][T14088] Uninit was stored to memory at: [ 700.735322][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.741119][T14088] __msan_chain_origin+0x50/0x90 [ 700.746055][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.751159][T14088] get_compat_msghdr+0x108/0x270 [ 700.756084][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.760575][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.765241][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.771294][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.777441][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.782627][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.787464][T14088] do_SYSENTER_32+0x73/0x90 [ 700.791954][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.798263][T14088] [ 700.800575][T14088] Uninit was stored to memory at: [ 700.805604][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 700.811314][T14088] __msan_chain_origin+0x50/0x90 [ 700.816243][T14088] __get_compat_msghdr+0x5be/0x890 [ 700.821348][T14088] get_compat_msghdr+0x108/0x270 [ 700.826271][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 700.830765][T14088] __sys_recvmmsg+0x4ca/0x510 [ 700.835428][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 700.841481][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 700.847643][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 700.852825][T14088] do_fast_syscall_32+0x6b/0xd0 [ 700.857659][T14088] do_SYSENTER_32+0x73/0x90 [ 700.862149][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 700.868453][T14088] [ 700.870770][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 700.877435][T14088] do_recvmmsg+0xc5/0x1ee0 [ 700.881852][T14088] do_recvmmsg+0xc5/0x1ee0 [ 701.053509][T14088] not chained 2920000 origins [ 701.058211][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 701.066876][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 701.076914][T14088] Call Trace: [ 701.080194][T14088] dump_stack+0x1df/0x240 [ 701.084523][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 701.090249][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 701.095349][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 701.100452][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 701.106250][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 701.112309][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 701.117242][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 701.122347][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 701.127882][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 701.133947][T14088] ? _copy_from_user+0x15b/0x260 [ 701.138877][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 701.143987][T14088] __msan_chain_origin+0x50/0x90 [ 701.148922][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.154036][T14088] get_compat_msghdr+0x108/0x270 [ 701.158984][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.163499][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 701.168599][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 701.174228][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 701.179509][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 701.184352][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 701.189150][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 701.194350][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.199049][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.205110][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 701.211344][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.217490][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.222688][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.227529][T14088] do_SYSENTER_32+0x73/0x90 [ 701.232027][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.238341][T14088] RIP: 0023:0xf7fd1549 [ 701.242390][T14088] Code: Bad RIP value. [ 701.246441][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 701.254837][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 701.262793][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 701.270759][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 701.278724][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 701.286685][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 701.294659][T14088] Uninit was stored to memory at: [ 701.299683][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.305402][T14088] __msan_chain_origin+0x50/0x90 [ 701.310334][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.315461][T14088] get_compat_msghdr+0x108/0x270 [ 701.320397][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.324902][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.329567][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.335630][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.341776][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.346968][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.351822][T14088] do_SYSENTER_32+0x73/0x90 [ 701.356312][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.362617][T14088] [ 701.364926][T14088] Uninit was stored to memory at: [ 701.369942][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.375654][T14088] __msan_chain_origin+0x50/0x90 [ 701.380588][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.385698][T14088] get_compat_msghdr+0x108/0x270 [ 701.390631][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.395123][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.399793][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.405854][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.411998][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.417184][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.422023][T14088] do_SYSENTER_32+0x73/0x90 [ 701.426515][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.432824][T14088] [ 701.435139][T14088] Uninit was stored to memory at: [ 701.440154][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.445905][T14088] __msan_chain_origin+0x50/0x90 [ 701.450832][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.455935][T14088] get_compat_msghdr+0x108/0x270 [ 701.460863][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.465353][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.470020][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.476080][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.482223][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.487415][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.492258][T14088] do_SYSENTER_32+0x73/0x90 [ 701.496774][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.503079][T14088] [ 701.505400][T14088] Uninit was stored to memory at: [ 701.510440][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.516153][T14088] __msan_chain_origin+0x50/0x90 [ 701.521081][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.526187][T14088] get_compat_msghdr+0x108/0x270 [ 701.531119][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.535615][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.540283][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.546339][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.552484][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.557684][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.562535][T14088] do_SYSENTER_32+0x73/0x90 [ 701.567027][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.573337][T14088] [ 701.575664][T14088] Uninit was stored to memory at: [ 701.580676][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.586380][T14088] __msan_chain_origin+0x50/0x90 [ 701.591302][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.596400][T14088] get_compat_msghdr+0x108/0x270 [ 701.601448][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.605940][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.610607][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.616660][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.622810][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.627994][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.632852][T14088] do_SYSENTER_32+0x73/0x90 [ 701.637348][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.643653][T14088] [ 701.645964][T14088] Uninit was stored to memory at: [ 701.650981][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.656697][T14088] __msan_chain_origin+0x50/0x90 [ 701.661628][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.666740][T14088] get_compat_msghdr+0x108/0x270 [ 701.671671][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.676161][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.680840][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.686906][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.693055][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.698345][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.703182][T14088] do_SYSENTER_32+0x73/0x90 [ 701.707669][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.714078][T14088] [ 701.716392][T14088] Uninit was stored to memory at: [ 701.721405][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 701.727112][T14088] __msan_chain_origin+0x50/0x90 [ 701.732049][T14088] __get_compat_msghdr+0x5be/0x890 [ 701.737257][T14088] get_compat_msghdr+0x108/0x270 [ 701.742186][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 701.746679][T14088] __sys_recvmmsg+0x4ca/0x510 [ 701.751345][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 701.757402][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 701.763546][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 701.768737][T14088] do_fast_syscall_32+0x6b/0xd0 [ 701.773582][T14088] do_SYSENTER_32+0x73/0x90 [ 701.778082][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 701.784385][T14088] [ 701.786694][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 701.793353][T14088] do_recvmmsg+0xc5/0x1ee0 [ 701.797765][T14088] do_recvmmsg+0xc5/0x1ee0 [ 701.974871][T14088] not chained 2930000 origins [ 701.979681][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 701.988340][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 701.998496][T14088] Call Trace: [ 702.001795][T14088] dump_stack+0x1df/0x240 [ 702.006121][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 702.011840][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 702.016943][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.022053][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 702.027852][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 702.033912][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 702.038846][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.043945][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 702.049488][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 702.055552][T14088] ? _copy_from_user+0x15b/0x260 [ 702.060478][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.065581][T14088] __msan_chain_origin+0x50/0x90 [ 702.070518][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.075643][T14088] get_compat_msghdr+0x108/0x270 [ 702.080582][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.085099][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.090207][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 702.095831][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 702.101119][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 702.105874][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 702.110633][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 702.115826][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.120503][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.126563][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 702.132795][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.138947][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.144150][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.148993][T14088] do_SYSENTER_32+0x73/0x90 [ 702.153490][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.159813][T14088] RIP: 0023:0xf7fd1549 [ 702.163863][T14088] Code: Bad RIP value. [ 702.167927][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 702.176325][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 702.184297][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 702.192271][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 702.200232][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 702.208189][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 702.216152][T14088] Uninit was stored to memory at: [ 702.221183][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.226971][T14088] __msan_chain_origin+0x50/0x90 [ 702.231879][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.236960][T14088] get_compat_msghdr+0x108/0x270 [ 702.241901][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.246370][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.251016][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.257055][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.263263][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.268439][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.273262][T14088] do_SYSENTER_32+0x73/0x90 [ 702.277732][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.284021][T14088] [ 702.286319][T14088] Uninit was stored to memory at: [ 702.291311][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.296996][T14088] __msan_chain_origin+0x50/0x90 [ 702.301926][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.307009][T14088] get_compat_msghdr+0x108/0x270 [ 702.311924][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.316419][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.321070][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.327100][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.333220][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.338386][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.343199][T14088] do_SYSENTER_32+0x73/0x90 [ 702.347774][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.354062][T14088] [ 702.356382][T14088] Uninit was stored to memory at: [ 702.361375][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.367072][T14088] __msan_chain_origin+0x50/0x90 [ 702.371980][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.377059][T14088] get_compat_msghdr+0x108/0x270 [ 702.381968][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.386442][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.391090][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.397124][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.403249][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.408546][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.413369][T14088] do_SYSENTER_32+0x73/0x90 [ 702.417843][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.424146][T14088] [ 702.426445][T14088] Uninit was stored to memory at: [ 702.431445][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.437137][T14088] __msan_chain_origin+0x50/0x90 [ 702.442055][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.447146][T14088] get_compat_msghdr+0x108/0x270 [ 702.452053][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.456531][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.461181][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.467216][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.473339][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.478508][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.483417][T14088] do_SYSENTER_32+0x73/0x90 [ 702.487973][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.494262][T14088] [ 702.496558][T14088] Uninit was stored to memory at: [ 702.501558][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.507242][T14088] __msan_chain_origin+0x50/0x90 [ 702.512152][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.517229][T14088] get_compat_msghdr+0x108/0x270 [ 702.522132][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.526603][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.531250][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.537288][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.543411][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.548578][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.553396][T14088] do_SYSENTER_32+0x73/0x90 [ 702.557866][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.564156][T14088] [ 702.566455][T14088] Uninit was stored to memory at: [ 702.571465][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.577153][T14088] __msan_chain_origin+0x50/0x90 [ 702.582058][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.587137][T14088] get_compat_msghdr+0x108/0x270 [ 702.592044][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.596532][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.601190][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.607223][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.613343][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.618509][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.623328][T14088] do_SYSENTER_32+0x73/0x90 [ 702.627800][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.634088][T14088] [ 702.636392][T14088] Uninit was stored to memory at: [ 702.641385][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 702.647085][T14088] __msan_chain_origin+0x50/0x90 [ 702.651995][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.657083][T14088] get_compat_msghdr+0x108/0x270 [ 702.662007][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 702.666480][T14088] __sys_recvmmsg+0x4ca/0x510 [ 702.671128][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 702.677163][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 702.683281][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 702.688458][T14088] do_fast_syscall_32+0x6b/0xd0 [ 702.693273][T14088] do_SYSENTER_32+0x73/0x90 [ 702.697859][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 702.704146][T14088] [ 702.706446][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 702.713088][T14088] do_recvmmsg+0xc5/0x1ee0 [ 702.717471][T14088] do_recvmmsg+0xc5/0x1ee0 [ 702.897517][T14088] not chained 2940000 origins [ 702.902219][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 702.910977][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 702.921021][T14088] Call Trace: [ 702.924333][T14088] dump_stack+0x1df/0x240 [ 702.928662][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 702.934376][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 702.939481][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.944588][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 702.950381][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 702.956435][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 702.961367][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.966515][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 702.972060][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 702.978121][T14088] ? _copy_from_user+0x15b/0x260 [ 702.983048][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 702.988151][T14088] __msan_chain_origin+0x50/0x90 [ 702.993086][T14088] __get_compat_msghdr+0x5be/0x890 [ 702.998210][T14088] get_compat_msghdr+0x108/0x270 [ 703.003146][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.007668][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 703.012770][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 703.018391][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 703.023664][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 703.028420][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 703.033177][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 703.038366][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.043042][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.049109][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 703.055342][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.061486][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.066680][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.071525][T14088] do_SYSENTER_32+0x73/0x90 [ 703.076034][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.082342][T14088] RIP: 0023:0xf7fd1549 [ 703.086387][T14088] Code: Bad RIP value. [ 703.090453][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 703.098852][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 703.106809][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 703.114767][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 703.122725][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 703.130683][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 703.138654][T14088] Uninit was stored to memory at: [ 703.143781][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.149588][T14088] __msan_chain_origin+0x50/0x90 [ 703.154514][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.159613][T14088] get_compat_msghdr+0x108/0x270 [ 703.164555][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.169057][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.173734][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.179795][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.185936][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.191210][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.196051][T14088] do_SYSENTER_32+0x73/0x90 [ 703.200542][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.206858][T14088] [ 703.209194][T14088] Uninit was stored to memory at: [ 703.214206][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.219915][T14088] __msan_chain_origin+0x50/0x90 [ 703.224845][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.229945][T14088] get_compat_msghdr+0x108/0x270 [ 703.234873][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.239373][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.244043][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.250101][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.256345][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.261535][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.266385][T14088] do_SYSENTER_32+0x73/0x90 [ 703.270890][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.277203][T14088] [ 703.279516][T14088] Uninit was stored to memory at: [ 703.284537][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.290248][T14088] __msan_chain_origin+0x50/0x90 [ 703.295178][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.300279][T14088] get_compat_msghdr+0x108/0x270 [ 703.305214][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.309705][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.314377][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.320433][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.326573][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.331759][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.336598][T14088] do_SYSENTER_32+0x73/0x90 [ 703.341085][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.347388][T14088] [ 703.349697][T14088] Uninit was stored to memory at: [ 703.354714][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.360427][T14088] __msan_chain_origin+0x50/0x90 [ 703.365445][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.370543][T14088] get_compat_msghdr+0x108/0x270 [ 703.375470][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.379965][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.384633][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.390694][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.396841][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.402033][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.406877][T14088] do_SYSENTER_32+0x73/0x90 [ 703.411368][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.417677][T14088] [ 703.419995][T14088] Uninit was stored to memory at: [ 703.425108][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.430819][T14088] __msan_chain_origin+0x50/0x90 [ 703.435748][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.440847][T14088] get_compat_msghdr+0x108/0x270 [ 703.445775][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.450273][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.454944][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.461004][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.467147][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.472337][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.477194][T14088] do_SYSENTER_32+0x73/0x90 [ 703.481693][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.487998][T14088] [ 703.490310][T14088] Uninit was stored to memory at: [ 703.495325][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.501036][T14088] __msan_chain_origin+0x50/0x90 [ 703.505970][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.511074][T14088] get_compat_msghdr+0x108/0x270 [ 703.516003][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.520500][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.525254][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.531310][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.537462][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.542652][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.547489][T14088] do_SYSENTER_32+0x73/0x90 [ 703.551983][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.558287][T14088] [ 703.560593][T14088] Uninit was stored to memory at: [ 703.565606][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 703.571314][T14088] __msan_chain_origin+0x50/0x90 [ 703.576244][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.581345][T14088] get_compat_msghdr+0x108/0x270 [ 703.586272][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.590765][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.595432][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 703.601504][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 703.607911][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 703.613103][T14088] do_fast_syscall_32+0x6b/0xd0 [ 703.617943][T14088] do_SYSENTER_32+0x73/0x90 [ 703.622432][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 703.628736][T14088] [ 703.631061][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 703.637728][T14088] do_recvmmsg+0xc5/0x1ee0 [ 703.642131][T14088] do_recvmmsg+0xc5/0x1ee0 [ 703.852935][T14088] not chained 2950000 origins [ 703.857644][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 703.866294][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 703.876350][T14088] Call Trace: [ 703.879636][T14088] dump_stack+0x1df/0x240 [ 703.883962][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 703.889683][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 703.894794][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 703.899903][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 703.905705][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 703.911768][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 703.916699][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 703.921802][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 703.927686][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 703.933749][T14088] ? _copy_from_user+0x15b/0x260 [ 703.938678][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 703.943780][T14088] __msan_chain_origin+0x50/0x90 [ 703.948729][T14088] __get_compat_msghdr+0x5be/0x890 [ 703.953845][T14088] get_compat_msghdr+0x108/0x270 [ 703.958778][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 703.963295][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 703.968396][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 703.974014][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 703.979296][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 703.984080][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 703.988836][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 703.994119][T14088] __sys_recvmmsg+0x4ca/0x510 [ 703.998799][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.004863][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 704.011101][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.017255][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.022458][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.027302][T14088] do_SYSENTER_32+0x73/0x90 [ 704.031799][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.038111][T14088] RIP: 0023:0xf7fd1549 [ 704.042157][T14088] Code: Bad RIP value. [ 704.046207][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 704.054604][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 704.062566][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 704.070527][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 704.078488][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 704.086453][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 704.094421][T14088] Uninit was stored to memory at: [ 704.099441][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.105147][T14088] __msan_chain_origin+0x50/0x90 [ 704.110078][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.115184][T14088] get_compat_msghdr+0x108/0x270 [ 704.120115][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.124607][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.129288][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.135345][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.141489][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.146678][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.151519][T14088] do_SYSENTER_32+0x73/0x90 [ 704.156026][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.162335][T14088] [ 704.164666][T14088] Uninit was stored to memory at: [ 704.169682][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.175392][T14088] __msan_chain_origin+0x50/0x90 [ 704.180421][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.185542][T14088] get_compat_msghdr+0x108/0x270 [ 704.190474][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.194968][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.199639][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.205690][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.211916][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.217109][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.221955][T14088] do_SYSENTER_32+0x73/0x90 [ 704.226444][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.232746][T14088] [ 704.235059][T14088] Uninit was stored to memory at: [ 704.240075][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.245782][T14088] __msan_chain_origin+0x50/0x90 [ 704.250712][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.255812][T14088] get_compat_msghdr+0x108/0x270 [ 704.260738][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.265240][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.269905][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.275958][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.282093][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.287276][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.292116][T14088] do_SYSENTER_32+0x73/0x90 [ 704.296609][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.302916][T14088] [ 704.305231][T14088] Uninit was stored to memory at: [ 704.310259][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.315969][T14088] __msan_chain_origin+0x50/0x90 [ 704.320902][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.326007][T14088] get_compat_msghdr+0x108/0x270 [ 704.331023][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.335514][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.340178][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.346245][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.352388][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.357589][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.362433][T14088] do_SYSENTER_32+0x73/0x90 [ 704.366924][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.373248][T14088] [ 704.375559][T14088] Uninit was stored to memory at: [ 704.380591][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.386299][T14088] __msan_chain_origin+0x50/0x90 [ 704.391231][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.396333][T14088] get_compat_msghdr+0x108/0x270 [ 704.401261][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.405752][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.410419][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.416473][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.422616][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.427807][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.432649][T14088] do_SYSENTER_32+0x73/0x90 [ 704.437152][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.443462][T14088] [ 704.445785][T14088] Uninit was stored to memory at: [ 704.450804][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.456511][T14088] __msan_chain_origin+0x50/0x90 [ 704.461441][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.466544][T14088] get_compat_msghdr+0x108/0x270 [ 704.471473][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.476068][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.480732][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.486789][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.492936][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.498126][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.502970][T14088] do_SYSENTER_32+0x73/0x90 [ 704.507466][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.513770][T14088] [ 704.516082][T14088] Uninit was stored to memory at: [ 704.521100][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 704.526808][T14088] __msan_chain_origin+0x50/0x90 [ 704.531740][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.536845][T14088] get_compat_msghdr+0x108/0x270 [ 704.541780][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.546279][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.550944][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.557001][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.563141][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.568328][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.573168][T14088] do_SYSENTER_32+0x73/0x90 [ 704.577658][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.583962][T14088] [ 704.586281][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 704.592942][T14088] do_recvmmsg+0xc5/0x1ee0 [ 704.597345][T14088] do_recvmmsg+0xc5/0x1ee0 [ 704.763765][T14088] not chained 2960000 origins [ 704.768443][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 704.777167][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 704.787278][T14088] Call Trace: [ 704.790679][T14088] dump_stack+0x1df/0x240 [ 704.794986][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 704.800698][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 704.805794][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 704.810876][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 704.816651][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 704.822775][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 704.827689][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 704.832798][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 704.838316][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 704.844355][T14088] ? _copy_from_user+0x15b/0x260 [ 704.849261][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 704.854350][T14088] __msan_chain_origin+0x50/0x90 [ 704.859262][T14088] __get_compat_msghdr+0x5be/0x890 [ 704.864379][T14088] get_compat_msghdr+0x108/0x270 [ 704.869327][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 704.873816][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 704.878898][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 704.884501][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 704.889756][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 704.894488][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 704.899220][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 704.904389][T14088] __sys_recvmmsg+0x4ca/0x510 [ 704.909064][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 704.915099][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 704.921324][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 704.927535][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 704.932715][T14088] do_fast_syscall_32+0x6b/0xd0 [ 704.937540][T14088] do_SYSENTER_32+0x73/0x90 [ 704.942015][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 704.948346][T14088] RIP: 0023:0xf7fd1549 [ 704.952379][T14088] Code: Bad RIP value. [ 704.956413][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 704.964791][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 704.972763][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 704.980704][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 704.988769][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 704.996712][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 705.004661][T14088] Uninit was stored to memory at: [ 705.009660][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.015359][T14088] __msan_chain_origin+0x50/0x90 [ 705.020269][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.025352][T14088] get_compat_msghdr+0x108/0x270 [ 705.030290][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.034763][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.039541][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.045573][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.051695][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.056864][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.061682][T14088] do_SYSENTER_32+0x73/0x90 [ 705.066288][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.072583][T14088] [ 705.074906][T14088] Uninit was stored to memory at: [ 705.079899][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.085585][T14088] __msan_chain_origin+0x50/0x90 [ 705.090501][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.095666][T14088] get_compat_msghdr+0x108/0x270 [ 705.100579][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.105056][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.109720][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.115754][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.121879][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.127047][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.131867][T14088] do_SYSENTER_32+0x73/0x90 [ 705.136335][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.142626][T14088] [ 705.144928][T14088] Uninit was stored to memory at: [ 705.149922][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.155629][T14088] __msan_chain_origin+0x50/0x90 [ 705.160584][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.165693][T14088] get_compat_msghdr+0x108/0x270 [ 705.170616][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.175091][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.179739][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.185773][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.191897][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.197187][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.202006][T14088] do_SYSENTER_32+0x73/0x90 [ 705.206489][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.212780][T14088] [ 705.215076][T14088] Uninit was stored to memory at: [ 705.220071][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.225761][T14088] __msan_chain_origin+0x50/0x90 [ 705.230670][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.235750][T14088] get_compat_msghdr+0x108/0x270 [ 705.240657][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.245128][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.249816][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.255858][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.261981][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.267149][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.271971][T14088] do_SYSENTER_32+0x73/0x90 [ 705.276458][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.282744][T14088] [ 705.285039][T14088] Uninit was stored to memory at: [ 705.290036][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.295724][T14088] __msan_chain_origin+0x50/0x90 [ 705.300636][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.305723][T14088] get_compat_msghdr+0x108/0x270 [ 705.310749][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.315329][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.319977][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.326010][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.332130][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.337300][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.342121][T14088] do_SYSENTER_32+0x73/0x90 [ 705.346603][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.352894][T14088] [ 705.355189][T14088] Uninit was stored to memory at: [ 705.360185][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.365873][T14088] __msan_chain_origin+0x50/0x90 [ 705.370785][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.375869][T14088] get_compat_msghdr+0x108/0x270 [ 705.380780][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.385257][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.389908][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.395948][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.402075][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.407294][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.412126][T14088] do_SYSENTER_32+0x73/0x90 [ 705.416606][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.422903][T14088] [ 705.425208][T14088] Uninit was stored to memory at: [ 705.430213][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.435916][T14088] __msan_chain_origin+0x50/0x90 [ 705.440832][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.445924][T14088] get_compat_msghdr+0x108/0x270 [ 705.450840][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.455318][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.459973][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.466016][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.472147][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.477321][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.482146][T14088] do_SYSENTER_32+0x73/0x90 [ 705.486623][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.492918][T14088] [ 705.495220][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 705.501868][T14088] do_recvmmsg+0xc5/0x1ee0 [ 705.506258][T14088] do_recvmmsg+0xc5/0x1ee0 [ 705.685518][T14088] not chained 2970000 origins [ 705.690314][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 705.698974][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 705.709019][T14088] Call Trace: [ 705.712315][T14088] dump_stack+0x1df/0x240 [ 705.716651][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 705.722372][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 705.727503][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 705.732620][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 705.738450][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 705.744513][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 705.749473][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 705.754585][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 705.760132][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 705.766224][T14088] ? _copy_from_user+0x15b/0x260 [ 705.771159][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 705.776265][T14088] __msan_chain_origin+0x50/0x90 [ 705.781213][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.786341][T14088] get_compat_msghdr+0x108/0x270 [ 705.791289][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.795827][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 705.800940][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 705.806569][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 705.811873][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 705.816634][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 705.821392][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 705.826587][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.831267][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.837337][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 705.843581][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.849734][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.854941][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.859807][T14088] do_SYSENTER_32+0x73/0x90 [ 705.864308][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.870632][T14088] RIP: 0023:0xf7fd1549 [ 705.874689][T14088] Code: Bad RIP value. [ 705.878758][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 705.887159][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 705.895217][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 705.903184][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 705.911152][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 705.919118][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 705.927176][T14088] Uninit was stored to memory at: [ 705.932202][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 705.937916][T14088] __msan_chain_origin+0x50/0x90 [ 705.942845][T14088] __get_compat_msghdr+0x5be/0x890 [ 705.947971][T14088] get_compat_msghdr+0x108/0x270 [ 705.952906][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 705.957404][T14088] __sys_recvmmsg+0x4ca/0x510 [ 705.962077][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 705.968141][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 705.974306][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 705.979513][T14088] do_fast_syscall_32+0x6b/0xd0 [ 705.984467][T14088] do_SYSENTER_32+0x73/0x90 [ 705.988969][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 705.995278][T14088] [ 705.997593][T14088] Uninit was stored to memory at: [ 706.002616][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.008329][T14088] __msan_chain_origin+0x50/0x90 [ 706.013266][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.018377][T14088] get_compat_msghdr+0x108/0x270 [ 706.023310][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.027818][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.032493][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.038561][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.044708][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.049900][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.054774][T14088] do_SYSENTER_32+0x73/0x90 [ 706.059270][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.065585][T14088] [ 706.067899][T14088] Uninit was stored to memory at: [ 706.072916][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.078635][T14088] __msan_chain_origin+0x50/0x90 [ 706.083570][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.088675][T14088] get_compat_msghdr+0x108/0x270 [ 706.093611][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.098111][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.102782][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.108840][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.114987][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.120190][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.125033][T14088] do_SYSENTER_32+0x73/0x90 [ 706.129616][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.135926][T14088] [ 706.138469][T14088] Uninit was stored to memory at: [ 706.143512][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.149240][T14088] __msan_chain_origin+0x50/0x90 [ 706.154184][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.159309][T14088] get_compat_msghdr+0x108/0x270 [ 706.164258][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.168752][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.173419][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.179495][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.185727][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.190920][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.195784][T14088] do_SYSENTER_32+0x73/0x90 [ 706.200285][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.206685][T14088] [ 706.209000][T14088] Uninit was stored to memory at: [ 706.214015][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.219734][T14088] __msan_chain_origin+0x50/0x90 [ 706.224664][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.229771][T14088] get_compat_msghdr+0x108/0x270 [ 706.234707][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.239206][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.243879][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.249941][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.256090][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.261284][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.266133][T14088] do_SYSENTER_32+0x73/0x90 [ 706.270651][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.276965][T14088] [ 706.279367][T14088] Uninit was stored to memory at: [ 706.284385][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.290099][T14088] __msan_chain_origin+0x50/0x90 [ 706.295053][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.300161][T14088] get_compat_msghdr+0x108/0x270 [ 706.305091][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.309590][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.314267][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.320335][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.326485][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.331681][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.336528][T14088] do_SYSENTER_32+0x73/0x90 [ 706.341024][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.347336][T14088] [ 706.349664][T14088] Uninit was stored to memory at: [ 706.354681][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.360393][T14088] __msan_chain_origin+0x50/0x90 [ 706.365325][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.370777][T14088] get_compat_msghdr+0x108/0x270 [ 706.375715][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.380221][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.384895][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.390955][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.397103][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.402301][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.407150][T14088] do_SYSENTER_32+0x73/0x90 [ 706.411657][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.417965][T14088] [ 706.420287][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 706.426958][T14088] do_recvmmsg+0xc5/0x1ee0 [ 706.431374][T14088] do_recvmmsg+0xc5/0x1ee0 [ 706.645853][T14088] not chained 2980000 origins [ 706.650827][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 706.659516][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 706.669570][T14088] Call Trace: [ 706.672865][T14088] dump_stack+0x1df/0x240 [ 706.677201][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 706.682939][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 706.688048][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 706.693159][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 706.698959][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 706.705022][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 706.709980][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 706.715092][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 706.720659][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 706.726727][T14088] ? _copy_from_user+0x15b/0x260 [ 706.731752][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 706.736861][T14088] __msan_chain_origin+0x50/0x90 [ 706.741804][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.746927][T14088] get_compat_msghdr+0x108/0x270 [ 706.751880][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.756406][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 706.761523][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 706.767187][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 706.772500][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 706.777263][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 706.782110][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 706.787396][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.792086][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.798158][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 706.804405][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.810557][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.815780][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.820647][T14088] do_SYSENTER_32+0x73/0x90 [ 706.825150][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.831466][T14088] RIP: 0023:0xf7fd1549 [ 706.835522][T14088] Code: Bad RIP value. [ 706.839585][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 706.847994][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 706.855958][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 706.863925][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 706.871982][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 706.880042][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 706.888017][T14088] Uninit was stored to memory at: [ 706.893052][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.898852][T14088] __msan_chain_origin+0x50/0x90 [ 706.903783][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.908886][T14088] get_compat_msghdr+0x108/0x270 [ 706.913822][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.918329][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.923001][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.929061][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 706.935241][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 706.940442][T14088] do_fast_syscall_32+0x6b/0xd0 [ 706.945292][T14088] do_SYSENTER_32+0x73/0x90 [ 706.949877][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 706.956190][T14088] [ 706.958595][T14088] Uninit was stored to memory at: [ 706.963618][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 706.969331][T14088] __msan_chain_origin+0x50/0x90 [ 706.974270][T14088] __get_compat_msghdr+0x5be/0x890 [ 706.979378][T14088] get_compat_msghdr+0x108/0x270 [ 706.984308][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 706.988806][T14088] __sys_recvmmsg+0x4ca/0x510 [ 706.993477][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 706.999552][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.005705][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.010906][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.015754][T14088] do_SYSENTER_32+0x73/0x90 [ 707.020256][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.026566][T14088] [ 707.028880][T14088] Uninit was stored to memory at: [ 707.033903][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.039619][T14088] __msan_chain_origin+0x50/0x90 [ 707.044552][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.049663][T14088] get_compat_msghdr+0x108/0x270 [ 707.054595][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.059089][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.063792][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.069855][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.076004][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.081205][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.086056][T14088] do_SYSENTER_32+0x73/0x90 [ 707.090557][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.096868][T14088] [ 707.099184][T14088] Uninit was stored to memory at: [ 707.104205][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.110006][T14088] __msan_chain_origin+0x50/0x90 [ 707.115040][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.120149][T14088] get_compat_msghdr+0x108/0x270 [ 707.125085][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.129588][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.134265][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.140327][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.146473][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.151696][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.156554][T14088] do_SYSENTER_32+0x73/0x90 [ 707.161055][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.167385][T14088] [ 707.169708][T14088] Uninit was stored to memory at: [ 707.174731][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.180536][T14088] __msan_chain_origin+0x50/0x90 [ 707.185471][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.190584][T14088] get_compat_msghdr+0x108/0x270 [ 707.195520][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.200032][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.204723][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.210869][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.217019][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.222214][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.227063][T14088] do_SYSENTER_32+0x73/0x90 [ 707.231576][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.237904][T14088] [ 707.240224][T14088] Uninit was stored to memory at: [ 707.245247][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.251055][T14088] __msan_chain_origin+0x50/0x90 [ 707.255991][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.261103][T14088] get_compat_msghdr+0x108/0x270 [ 707.266060][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.270563][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.275245][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.281391][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.287537][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.292740][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.297672][T14088] do_SYSENTER_32+0x73/0x90 [ 707.302262][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.308575][T14088] [ 707.310893][T14088] Uninit was stored to memory at: [ 707.315916][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.321631][T14088] __msan_chain_origin+0x50/0x90 [ 707.326559][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.331670][T14088] get_compat_msghdr+0x108/0x270 [ 707.336614][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.341122][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.345792][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.351855][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.358005][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.363197][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.368123][T14088] do_SYSENTER_32+0x73/0x90 [ 707.372622][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.378949][T14088] [ 707.381270][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 707.387950][T14088] do_recvmmsg+0xc5/0x1ee0 [ 707.392380][T14088] do_recvmmsg+0xc5/0x1ee0 [ 707.616849][T14088] not chained 2990000 origins [ 707.621647][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 707.630397][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 707.640449][T14088] Call Trace: [ 707.643766][T14088] dump_stack+0x1df/0x240 [ 707.648102][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 707.653829][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 707.658940][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 707.664055][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 707.669863][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 707.675937][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 707.680879][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 707.685990][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 707.691635][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 707.697704][T14088] ? _copy_from_user+0x15b/0x260 [ 707.702724][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 707.708005][T14088] __msan_chain_origin+0x50/0x90 [ 707.712947][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.718080][T14088] get_compat_msghdr+0x108/0x270 [ 707.723030][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.727561][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 707.732673][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 707.738304][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 707.743593][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 707.748349][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 707.753111][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 707.758311][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.763017][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.769103][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 707.775335][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.781493][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.786696][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.791568][T14088] do_SYSENTER_32+0x73/0x90 [ 707.796073][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.802388][T14088] RIP: 0023:0xf7fd1549 [ 707.806440][T14088] Code: Bad RIP value. [ 707.810496][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 707.818907][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 707.826959][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 707.835012][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 707.842976][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 707.851027][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 707.859093][T14088] Uninit was stored to memory at: [ 707.864113][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.869925][T14088] __msan_chain_origin+0x50/0x90 [ 707.874949][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.880063][T14088] get_compat_msghdr+0x108/0x270 [ 707.885010][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.889793][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.894466][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.900530][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.906678][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.911875][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.916719][T14088] do_SYSENTER_32+0x73/0x90 [ 707.921212][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.927607][T14088] [ 707.929924][T14088] Uninit was stored to memory at: [ 707.934948][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 707.940669][T14088] __msan_chain_origin+0x50/0x90 [ 707.945620][T14088] __get_compat_msghdr+0x5be/0x890 [ 707.950723][T14088] get_compat_msghdr+0x108/0x270 [ 707.955657][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 707.960332][T14088] __sys_recvmmsg+0x4ca/0x510 [ 707.965004][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 707.971073][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 707.977221][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 707.982417][T14088] do_fast_syscall_32+0x6b/0xd0 [ 707.987366][T14088] do_SYSENTER_32+0x73/0x90 [ 707.991865][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 707.998196][T14088] [ 708.000515][T14088] Uninit was stored to memory at: [ 708.005542][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.011260][T14088] __msan_chain_origin+0x50/0x90 [ 708.016196][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.021300][T14088] get_compat_msghdr+0x108/0x270 [ 708.026241][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.030747][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.035428][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.041487][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.047636][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.052830][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.057673][T14088] do_SYSENTER_32+0x73/0x90 [ 708.062184][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.068493][T14088] [ 708.070899][T14088] Uninit was stored to memory at: [ 708.075916][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.081626][T14088] __msan_chain_origin+0x50/0x90 [ 708.086556][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.091663][T14088] get_compat_msghdr+0x108/0x270 [ 708.096596][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.101097][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.105765][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.111829][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.117982][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.123177][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.128023][T14088] do_SYSENTER_32+0x73/0x90 [ 708.132534][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.138847][T14088] [ 708.141166][T14088] Uninit was stored to memory at: [ 708.146190][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.151904][T14088] __msan_chain_origin+0x50/0x90 [ 708.156843][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.161955][T14088] get_compat_msghdr+0x108/0x270 [ 708.166891][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.171389][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.176072][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.182230][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.188486][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.193682][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.198537][T14088] do_SYSENTER_32+0x73/0x90 [ 708.203053][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.209455][T14088] [ 708.211776][T14088] Uninit was stored to memory at: [ 708.216880][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.222592][T14088] __msan_chain_origin+0x50/0x90 [ 708.227539][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.232646][T14088] get_compat_msghdr+0x108/0x270 [ 708.237593][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.242095][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.246769][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.252835][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.258990][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.264177][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.269024][T14088] do_SYSENTER_32+0x73/0x90 [ 708.273525][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.279839][T14088] [ 708.282159][T14088] Uninit was stored to memory at: [ 708.287182][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.292901][T14088] __msan_chain_origin+0x50/0x90 [ 708.297839][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.302945][T14088] get_compat_msghdr+0x108/0x270 [ 708.307999][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.312507][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.317182][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.323239][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.329381][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.334575][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.339427][T14088] do_SYSENTER_32+0x73/0x90 [ 708.343921][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.350231][T14088] [ 708.352557][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 708.359229][T14088] do_recvmmsg+0xc5/0x1ee0 [ 708.363642][T14088] do_recvmmsg+0xc5/0x1ee0 [ 708.515442][T14088] not chained 3000000 origins [ 708.520233][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 708.529085][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 708.539119][T14088] Call Trace: [ 708.542396][T14088] dump_stack+0x1df/0x240 [ 708.546732][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 708.552521][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 708.557612][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 708.562702][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 708.568486][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 708.574530][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 708.579455][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 708.584542][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 708.590070][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 708.596119][T14088] ? _copy_from_user+0x15b/0x260 [ 708.601033][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 708.606120][T14088] __msan_chain_origin+0x50/0x90 [ 708.611048][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.616144][T14088] get_compat_msghdr+0x108/0x270 [ 708.621063][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.625559][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 708.630652][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 708.636258][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 708.641522][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 708.646266][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 708.651007][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 708.656183][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.660845][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.666975][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 708.673192][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.679331][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.684511][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.689337][T14088] do_SYSENTER_32+0x73/0x90 [ 708.693817][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.700120][T14088] RIP: 0023:0xf7fd1549 [ 708.704158][T14088] Code: Bad RIP value. [ 708.708209][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 708.716610][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 708.724586][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 708.732536][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 708.740490][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 708.748438][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 708.756394][T14088] Uninit was stored to memory at: [ 708.761398][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.767095][T14088] __msan_chain_origin+0x50/0x90 [ 708.772010][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.777100][T14088] get_compat_msghdr+0x108/0x270 [ 708.782017][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.786494][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.791153][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.797196][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.803352][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.808531][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.813364][T14088] do_SYSENTER_32+0x73/0x90 [ 708.817843][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.824139][T14088] [ 708.826441][T14088] Uninit was stored to memory at: [ 708.831444][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.837146][T14088] __msan_chain_origin+0x50/0x90 [ 708.842061][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.847142][T14088] get_compat_msghdr+0x108/0x270 [ 708.852055][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.856534][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.861185][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.867226][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.873354][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.878560][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.883382][T14088] do_SYSENTER_32+0x73/0x90 [ 708.887868][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.894250][T14088] [ 708.896570][T14088] Uninit was stored to memory at: [ 708.901570][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.907259][T14088] __msan_chain_origin+0x50/0x90 [ 708.912263][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.917441][T14088] get_compat_msghdr+0x108/0x270 [ 708.922355][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.926830][T14088] __sys_recvmmsg+0x4ca/0x510 [ 708.931482][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 708.937524][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 708.943686][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 708.948946][T14088] do_fast_syscall_32+0x6b/0xd0 [ 708.953780][T14088] do_SYSENTER_32+0x73/0x90 [ 708.958365][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 708.964658][T14088] [ 708.966957][T14088] Uninit was stored to memory at: [ 708.971967][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 708.977749][T14088] __msan_chain_origin+0x50/0x90 [ 708.982665][T14088] __get_compat_msghdr+0x5be/0x890 [ 708.987753][T14088] get_compat_msghdr+0x108/0x270 [ 708.992675][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 708.997157][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.001812][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.007990][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.014122][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.019870][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.024698][T14088] do_SYSENTER_32+0x73/0x90 [ 709.029173][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.035467][T14088] [ 709.037768][T14088] Uninit was stored to memory at: [ 709.042767][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.048505][T14088] __msan_chain_origin+0x50/0x90 [ 709.053421][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.058534][T14088] get_compat_msghdr+0x108/0x270 [ 709.063449][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.067923][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.072575][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.078628][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.084773][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.089948][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.094772][T14088] do_SYSENTER_32+0x73/0x90 [ 709.099251][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.105546][T14088] [ 709.107847][T14088] Uninit was stored to memory at: [ 709.112846][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.118626][T14088] __msan_chain_origin+0x50/0x90 [ 709.123537][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.128624][T14088] get_compat_msghdr+0x108/0x270 [ 709.133533][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.138020][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.142670][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.148794][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.154920][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.160095][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.164974][T14088] do_SYSENTER_32+0x73/0x90 [ 709.169451][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.175749][T14088] [ 709.178141][T14088] Uninit was stored to memory at: [ 709.183143][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.188897][T14088] __msan_chain_origin+0x50/0x90 [ 709.193816][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.198904][T14088] get_compat_msghdr+0x108/0x270 [ 709.203901][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.208397][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.213137][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.219180][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.225334][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.230510][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.235336][T14088] do_SYSENTER_32+0x73/0x90 [ 709.239816][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.246126][T14088] [ 709.248432][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 709.255081][T14088] do_recvmmsg+0xc5/0x1ee0 [ 709.259560][T14088] do_recvmmsg+0xc5/0x1ee0 [ 709.433083][T14088] not chained 3010000 origins [ 709.437797][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 709.446458][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 709.456506][T14088] Call Trace: [ 709.459856][T14088] dump_stack+0x1df/0x240 [ 709.464188][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 709.469915][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 709.475041][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 709.480151][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 709.485960][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 709.492115][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 709.497061][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 709.502436][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 709.507981][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 709.514053][T14088] ? _copy_from_user+0x15b/0x260 [ 709.518993][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 709.524151][T14088] __msan_chain_origin+0x50/0x90 [ 709.529093][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.534222][T14088] get_compat_msghdr+0x108/0x270 [ 709.539175][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.543704][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 709.548814][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 709.554443][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 709.562072][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 709.566833][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 709.571593][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 709.576794][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.581487][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.587561][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 709.593800][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.599954][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.605158][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.610100][T14088] do_SYSENTER_32+0x73/0x90 [ 709.614602][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.620918][T14088] RIP: 0023:0xf7fd1549 [ 709.625060][T14088] Code: Bad RIP value. [ 709.629113][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 709.637521][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 709.645495][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 709.653467][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 709.661441][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 709.669410][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 709.677394][T14088] Uninit was stored to memory at: [ 709.682515][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.688237][T14088] __msan_chain_origin+0x50/0x90 [ 709.693180][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.698293][T14088] get_compat_msghdr+0x108/0x270 [ 709.703230][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.707735][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.712413][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.718480][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.724637][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.729836][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.734689][T14088] do_SYSENTER_32+0x73/0x90 [ 709.739192][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.745599][T14088] [ 709.747920][T14088] Uninit was stored to memory at: [ 709.752950][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.758673][T14088] __msan_chain_origin+0x50/0x90 [ 709.763625][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.768746][T14088] get_compat_msghdr+0x108/0x270 [ 709.773778][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.778281][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.782968][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.789030][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.795193][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.800392][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.805242][T14088] do_SYSENTER_32+0x73/0x90 [ 709.809767][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.816077][T14088] [ 709.818390][T14088] Uninit was stored to memory at: [ 709.823503][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.829214][T14088] __msan_chain_origin+0x50/0x90 [ 709.834149][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.839339][T14088] get_compat_msghdr+0x108/0x270 [ 709.844278][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.848856][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.853525][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.859589][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.865738][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.870938][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.875785][T14088] do_SYSENTER_32+0x73/0x90 [ 709.880286][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.886601][T14088] [ 709.888920][T14088] Uninit was stored to memory at: [ 709.893951][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.899669][T14088] __msan_chain_origin+0x50/0x90 [ 709.904612][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.909721][T14088] get_compat_msghdr+0x108/0x270 [ 709.914671][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.919165][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.923832][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 709.929896][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 709.936047][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 709.941241][T14088] do_fast_syscall_32+0x6b/0xd0 [ 709.946086][T14088] do_SYSENTER_32+0x73/0x90 [ 709.950584][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 709.956985][T14088] [ 709.959298][T14088] Uninit was stored to memory at: [ 709.964310][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 709.970022][T14088] __msan_chain_origin+0x50/0x90 [ 709.974952][T14088] __get_compat_msghdr+0x5be/0x890 [ 709.980060][T14088] get_compat_msghdr+0x108/0x270 [ 709.984996][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 709.989489][T14088] __sys_recvmmsg+0x4ca/0x510 [ 709.994165][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.000226][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.006373][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.011594][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.016441][T14088] do_SYSENTER_32+0x73/0x90 [ 710.020951][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.027262][T14088] [ 710.029580][T14088] Uninit was stored to memory at: [ 710.034603][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.040317][T14088] __msan_chain_origin+0x50/0x90 [ 710.045253][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.050545][T14088] get_compat_msghdr+0x108/0x270 [ 710.055483][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.060071][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.064745][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.070806][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.076958][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.082154][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.087002][T14088] do_SYSENTER_32+0x73/0x90 [ 710.091500][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.097811][T14088] [ 710.100132][T14088] Uninit was stored to memory at: [ 710.105169][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.110900][T14088] __msan_chain_origin+0x50/0x90 [ 710.115838][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.120967][T14088] get_compat_msghdr+0x108/0x270 [ 710.125892][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.130480][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.135157][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.141222][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.147460][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.152660][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.157524][T14088] do_SYSENTER_32+0x73/0x90 [ 710.162042][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.168362][T14088] [ 710.170769][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 710.177440][T14088] do_recvmmsg+0xc5/0x1ee0 [ 710.181853][T14088] do_recvmmsg+0xc5/0x1ee0 [ 710.360776][T14088] not chained 3020000 origins [ 710.365573][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 710.374240][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 710.384290][T14088] Call Trace: [ 710.387583][T14088] dump_stack+0x1df/0x240 [ 710.391919][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 710.397646][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 710.402760][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 710.407874][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 710.413682][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 710.419748][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 710.424695][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 710.429841][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 710.435388][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 710.441465][T14088] ? _copy_from_user+0x15b/0x260 [ 710.446401][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 710.451511][T14088] __msan_chain_origin+0x50/0x90 [ 710.456465][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.461593][T14088] get_compat_msghdr+0x108/0x270 [ 710.466538][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.471095][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 710.476212][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 710.481849][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 710.487135][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 710.491898][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 710.496663][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 710.501862][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.506556][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.512626][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 710.518871][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.525024][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.530225][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.535078][T14088] do_SYSENTER_32+0x73/0x90 [ 710.539580][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.545896][T14088] RIP: 0023:0xf7fd1549 [ 710.549949][T14088] Code: Bad RIP value. [ 710.554004][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 710.562407][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 710.570383][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 710.578344][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 710.586307][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 710.594273][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 710.602274][T14088] Uninit was stored to memory at: [ 710.607666][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.613405][T14088] __msan_chain_origin+0x50/0x90 [ 710.618339][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.623441][T14088] get_compat_msghdr+0x108/0x270 [ 710.628450][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.632952][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.637632][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.643684][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.649842][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.655035][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.659884][T14088] do_SYSENTER_32+0x73/0x90 [ 710.664386][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.670687][T14088] [ 710.673001][T14088] Uninit was stored to memory at: [ 710.678018][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.683726][T14088] __msan_chain_origin+0x50/0x90 [ 710.688654][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.693760][T14088] get_compat_msghdr+0x108/0x270 [ 710.698774][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.703268][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.708521][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.714612][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.720755][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.725940][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.730800][T14088] do_SYSENTER_32+0x73/0x90 [ 710.735304][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.741612][T14088] [ 710.743928][T14088] Uninit was stored to memory at: [ 710.748940][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.754645][T14088] __msan_chain_origin+0x50/0x90 [ 710.759580][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.764690][T14088] get_compat_msghdr+0x108/0x270 [ 710.769618][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.774109][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.778776][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.784833][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.790989][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.796175][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.801102][T14088] do_SYSENTER_32+0x73/0x90 [ 710.805686][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.812613][T14088] [ 710.814936][T14088] Uninit was stored to memory at: [ 710.819951][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.825659][T14088] __msan_chain_origin+0x50/0x90 [ 710.830589][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.835690][T14088] get_compat_msghdr+0x108/0x270 [ 710.840621][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.845114][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.849785][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.855861][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.862006][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.867196][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.872041][T14088] do_SYSENTER_32+0x73/0x90 [ 710.876529][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.882835][T14088] [ 710.885143][T14088] Uninit was stored to memory at: [ 710.890159][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.895862][T14088] __msan_chain_origin+0x50/0x90 [ 710.900789][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.905908][T14088] get_compat_msghdr+0x108/0x270 [ 710.911500][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.915996][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.920663][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.926717][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 710.932858][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 710.938044][T14088] do_fast_syscall_32+0x6b/0xd0 [ 710.942883][T14088] do_SYSENTER_32+0x73/0x90 [ 710.947368][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 710.953676][T14088] [ 710.955988][T14088] Uninit was stored to memory at: [ 710.961001][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 710.966709][T14088] __msan_chain_origin+0x50/0x90 [ 710.971635][T14088] __get_compat_msghdr+0x5be/0x890 [ 710.976741][T14088] get_compat_msghdr+0x108/0x270 [ 710.981668][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 710.986163][T14088] __sys_recvmmsg+0x4ca/0x510 [ 710.990832][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 710.996886][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.003023][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.008645][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.013483][T14088] do_SYSENTER_32+0x73/0x90 [ 711.017974][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.024277][T14088] [ 711.026586][T14088] Uninit was stored to memory at: [ 711.031603][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.037313][T14088] __msan_chain_origin+0x50/0x90 [ 711.042243][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.047344][T14088] get_compat_msghdr+0x108/0x270 [ 711.052271][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.056766][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.061440][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.067493][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.073634][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.078829][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.083672][T14088] do_SYSENTER_32+0x73/0x90 [ 711.088163][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.094468][T14088] [ 711.096785][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 711.103452][T14088] do_recvmmsg+0xc5/0x1ee0 [ 711.108137][T14088] do_recvmmsg+0xc5/0x1ee0 [ 711.282074][T14088] not chained 3030000 origins [ 711.286863][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 711.295519][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 711.305677][T14088] Call Trace: [ 711.309411][T14088] dump_stack+0x1df/0x240 [ 711.313747][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 711.319468][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 711.324579][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 711.329681][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 711.335574][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 711.341635][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 711.346582][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 711.351686][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 711.357223][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 711.363281][T14088] ? _copy_from_user+0x15b/0x260 [ 711.368207][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 711.373308][T14088] __msan_chain_origin+0x50/0x90 [ 711.378240][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.383366][T14088] get_compat_msghdr+0x108/0x270 [ 711.388302][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.392822][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 711.397923][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 711.403555][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 711.408838][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 711.413689][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 711.418452][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 711.423641][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.428316][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.434375][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 711.440610][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.446760][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.451960][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.456807][T14088] do_SYSENTER_32+0x73/0x90 [ 711.461302][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.467614][T14088] RIP: 0023:0xf7fd1549 [ 711.471686][T14088] Code: Bad RIP value. [ 711.475741][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 711.484169][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 711.492127][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 711.500089][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 711.508052][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 711.516015][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 711.523984][T14088] Uninit was stored to memory at: [ 711.529017][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.534731][T14088] __msan_chain_origin+0x50/0x90 [ 711.539673][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.544805][T14088] get_compat_msghdr+0x108/0x270 [ 711.549732][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.554238][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.558900][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.565037][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.571181][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.576369][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.581207][T14088] do_SYSENTER_32+0x73/0x90 [ 711.585699][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.592005][T14088] [ 711.594321][T14088] Uninit was stored to memory at: [ 711.599335][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.605046][T14088] __msan_chain_origin+0x50/0x90 [ 711.609980][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.615087][T14088] get_compat_msghdr+0x108/0x270 [ 711.620015][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.624542][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.629203][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.635257][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.641403][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.646604][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.651440][T14088] do_SYSENTER_32+0x73/0x90 [ 711.655935][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.662240][T14088] [ 711.664555][T14088] Uninit was stored to memory at: [ 711.669569][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.675277][T14088] __msan_chain_origin+0x50/0x90 [ 711.680208][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.685315][T14088] get_compat_msghdr+0x108/0x270 [ 711.690241][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.694742][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.699410][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.705488][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.711634][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.716829][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.721675][T14088] do_SYSENTER_32+0x73/0x90 [ 711.726258][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.732572][T14088] [ 711.734899][T14088] Uninit was stored to memory at: [ 711.739931][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.745730][T14088] __msan_chain_origin+0x50/0x90 [ 711.750677][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.755779][T14088] get_compat_msghdr+0x108/0x270 [ 711.760710][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.765203][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.769873][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.775946][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.782090][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.787293][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.792138][T14088] do_SYSENTER_32+0x73/0x90 [ 711.796631][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.802939][T14088] [ 711.805252][T14088] Uninit was stored to memory at: [ 711.810271][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.815994][T14088] __msan_chain_origin+0x50/0x90 [ 711.820926][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.826030][T14088] get_compat_msghdr+0x108/0x270 [ 711.830961][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.835455][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.840122][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.846299][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.852442][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.857632][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.862564][T14088] do_SYSENTER_32+0x73/0x90 [ 711.867070][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.873375][T14088] [ 711.875705][T14088] Uninit was stored to memory at: [ 711.880719][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.886429][T14088] __msan_chain_origin+0x50/0x90 [ 711.891361][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.896465][T14088] get_compat_msghdr+0x108/0x270 [ 711.901390][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.905883][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.910551][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.916606][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.922751][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.927942][T14088] do_fast_syscall_32+0x6b/0xd0 [ 711.932782][T14088] do_SYSENTER_32+0x73/0x90 [ 711.937271][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 711.943577][T14088] [ 711.945893][T14088] Uninit was stored to memory at: [ 711.951012][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 711.956718][T14088] __msan_chain_origin+0x50/0x90 [ 711.961764][T14088] __get_compat_msghdr+0x5be/0x890 [ 711.966869][T14088] get_compat_msghdr+0x108/0x270 [ 711.971796][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 711.976291][T14088] __sys_recvmmsg+0x4ca/0x510 [ 711.980987][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 711.987055][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 711.993289][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 711.998488][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.003418][T14088] do_SYSENTER_32+0x73/0x90 [ 712.007913][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.014222][T14088] [ 712.016539][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 712.023204][T14088] do_recvmmsg+0xc5/0x1ee0 [ 712.027608][T14088] do_recvmmsg+0xc5/0x1ee0 [ 712.203601][T14088] not chained 3040000 origins [ 712.208303][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 712.216957][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 712.226996][T14088] Call Trace: [ 712.230283][T14088] dump_stack+0x1df/0x240 [ 712.234625][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 712.240341][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 712.245451][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 712.250555][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 712.256354][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 712.262410][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 712.267343][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 712.272447][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 712.277986][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 712.284050][T14088] ? _copy_from_user+0x15b/0x260 [ 712.288990][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 712.294097][T14088] __msan_chain_origin+0x50/0x90 [ 712.299030][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.304153][T14088] get_compat_msghdr+0x108/0x270 [ 712.309108][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.313633][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 712.318738][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 712.324365][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 712.329647][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 712.334402][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 712.339153][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 712.344342][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.349130][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.355188][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 712.361421][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.367571][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.372790][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.377636][T14088] do_SYSENTER_32+0x73/0x90 [ 712.382133][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.388468][T14088] RIP: 0023:0xf7fd1549 [ 712.392517][T14088] Code: Bad RIP value. [ 712.396574][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 712.404972][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 712.412932][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 712.420894][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 712.428941][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 712.436900][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 712.444861][T14088] Uninit was stored to memory at: [ 712.449874][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.455583][T14088] __msan_chain_origin+0x50/0x90 [ 712.460516][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.465617][T14088] get_compat_msghdr+0x108/0x270 [ 712.470553][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.475048][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.479728][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.485779][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.491926][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.497114][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.501953][T14088] do_SYSENTER_32+0x73/0x90 [ 712.506445][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.512750][T14088] [ 712.515065][T14088] Uninit was stored to memory at: [ 712.520099][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.525816][T14088] __msan_chain_origin+0x50/0x90 [ 712.530750][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.535855][T14088] get_compat_msghdr+0x108/0x270 [ 712.540789][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.545282][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.549946][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.556020][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.562165][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.567354][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.572194][T14088] do_SYSENTER_32+0x73/0x90 [ 712.576702][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.583008][T14088] [ 712.585319][T14088] Uninit was stored to memory at: [ 712.590337][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.596048][T14088] __msan_chain_origin+0x50/0x90 [ 712.600972][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.606074][T14088] get_compat_msghdr+0x108/0x270 [ 712.611028][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.615531][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.620198][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.626258][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.632404][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.637592][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.642430][T14088] do_SYSENTER_32+0x73/0x90 [ 712.646922][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.653228][T14088] [ 712.655538][T14088] Uninit was stored to memory at: [ 712.660553][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.666265][T14088] __msan_chain_origin+0x50/0x90 [ 712.671202][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.676303][T14088] get_compat_msghdr+0x108/0x270 [ 712.681232][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.685720][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.690401][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.696465][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.702604][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.707792][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.712638][T14088] do_SYSENTER_32+0x73/0x90 [ 712.717139][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.723443][T14088] [ 712.725756][T14088] Uninit was stored to memory at: [ 712.730773][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.736479][T14088] __msan_chain_origin+0x50/0x90 [ 712.741402][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.746500][T14088] get_compat_msghdr+0x108/0x270 [ 712.751426][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.755916][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.760580][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.766635][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.772778][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.777968][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.782810][T14088] do_SYSENTER_32+0x73/0x90 [ 712.787303][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.793608][T14088] [ 712.795930][T14088] Uninit was stored to memory at: [ 712.800945][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.806652][T14088] __msan_chain_origin+0x50/0x90 [ 712.811585][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.816707][T14088] get_compat_msghdr+0x108/0x270 [ 712.821627][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.826116][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.830782][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.836836][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.842981][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.848166][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.853006][T14088] do_SYSENTER_32+0x73/0x90 [ 712.857497][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.863803][T14088] [ 712.866128][T14088] Uninit was stored to memory at: [ 712.871147][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 712.876860][T14088] __msan_chain_origin+0x50/0x90 [ 712.881802][T14088] __get_compat_msghdr+0x5be/0x890 [ 712.886905][T14088] get_compat_msghdr+0x108/0x270 [ 712.891919][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 712.896414][T14088] __sys_recvmmsg+0x4ca/0x510 [ 712.901079][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 712.907154][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 712.913299][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 712.918484][T14088] do_fast_syscall_32+0x6b/0xd0 [ 712.923326][T14088] do_SYSENTER_32+0x73/0x90 [ 712.927814][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 712.934116][T14088] [ 712.936428][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 712.943085][T14088] do_recvmmsg+0xc5/0x1ee0 [ 712.947485][T14088] do_recvmmsg+0xc5/0x1ee0 [ 713.062847][T14088] not chained 3050000 origins [ 713.067609][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 713.076272][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 713.086393][T14088] Call Trace: [ 713.089672][T14088] dump_stack+0x1df/0x240 [ 713.093989][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 713.099685][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 713.104787][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 713.109887][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 713.115676][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 713.121723][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 713.126634][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 713.131718][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 713.137232][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 713.143267][T14088] ? _copy_from_user+0x15b/0x260 [ 713.148178][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 713.153273][T14088] __msan_chain_origin+0x50/0x90 [ 713.158188][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.163277][T14088] get_compat_msghdr+0x108/0x270 [ 713.168201][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.172710][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 713.177790][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 713.183386][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 713.188651][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 713.193392][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 713.198153][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 713.203319][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.207972][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.214011][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 713.220223][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.226348][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.231533][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.236360][T14088] do_SYSENTER_32+0x73/0x90 [ 713.240832][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.247126][T14088] RIP: 0023:0xf7fd1549 [ 713.251161][T14088] Code: Bad RIP value. [ 713.255198][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 713.263580][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 713.271520][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 713.279548][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 713.287491][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 713.295429][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 713.303376][T14088] Uninit was stored to memory at: [ 713.308407][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.314105][T14088] __msan_chain_origin+0x50/0x90 [ 713.319013][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.324096][T14088] get_compat_msghdr+0x108/0x270 [ 713.329031][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.333516][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.338356][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.344389][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.350521][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.355701][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.360524][T14088] do_SYSENTER_32+0x73/0x90 [ 713.365001][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.371293][T14088] [ 713.373593][T14088] Uninit was stored to memory at: [ 713.378601][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.384289][T14088] __msan_chain_origin+0x50/0x90 [ 713.389212][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.394293][T14088] get_compat_msghdr+0x108/0x270 [ 713.399199][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.403671][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.408317][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.414350][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.420472][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.425641][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.430461][T14088] do_SYSENTER_32+0x73/0x90 [ 713.434933][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.441221][T14088] [ 713.443518][T14088] Uninit was stored to memory at: [ 713.448510][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.454193][T14088] __msan_chain_origin+0x50/0x90 [ 713.459099][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.464186][T14088] get_compat_msghdr+0x108/0x270 [ 713.469089][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.473561][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.478206][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.484234][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.490353][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.495518][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.500339][T14088] do_SYSENTER_32+0x73/0x90 [ 713.504807][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.511095][T14088] [ 713.513416][T14088] Uninit was stored to memory at: [ 713.518409][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.524094][T14088] __msan_chain_origin+0x50/0x90 [ 713.529001][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.534084][T14088] get_compat_msghdr+0x108/0x270 [ 713.538992][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.543467][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.548121][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.554164][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.560288][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.565463][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.570283][T14088] do_SYSENTER_32+0x73/0x90 [ 713.574753][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.581042][T14088] [ 713.583357][T14088] Uninit was stored to memory at: [ 713.588353][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.594039][T14088] __msan_chain_origin+0x50/0x90 [ 713.598949][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.604029][T14088] get_compat_msghdr+0x108/0x270 [ 713.608942][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.613428][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.618086][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.624215][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.630336][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.635502][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.640320][T14088] do_SYSENTER_32+0x73/0x90 [ 713.644789][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.651076][T14088] [ 713.653375][T14088] Uninit was stored to memory at: [ 713.658372][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.664059][T14088] __msan_chain_origin+0x50/0x90 [ 713.668965][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.674047][T14088] get_compat_msghdr+0x108/0x270 [ 713.678957][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.683439][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.688083][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.694116][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.700242][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.705411][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.710250][T14088] do_SYSENTER_32+0x73/0x90 [ 713.714723][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.721011][T14088] [ 713.723310][T14088] Uninit was stored to memory at: [ 713.728303][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 713.733987][T14088] __msan_chain_origin+0x50/0x90 [ 713.738905][T14088] __get_compat_msghdr+0x5be/0x890 [ 713.743982][T14088] get_compat_msghdr+0x108/0x270 [ 713.748888][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 713.753359][T14088] __sys_recvmmsg+0x4ca/0x510 [ 713.758016][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 713.764070][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 713.770190][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 713.775359][T14088] do_fast_syscall_32+0x6b/0xd0 [ 713.780183][T14088] do_SYSENTER_32+0x73/0x90 [ 713.784656][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 713.790945][T14088] [ 713.793245][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 713.799886][T14088] do_recvmmsg+0xc5/0x1ee0 [ 713.804269][T14088] do_recvmmsg+0xc5/0x1ee0 [ 713.978630][T14088] not chained 3060000 origins [ 713.983448][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 713.992105][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 714.002149][T14088] Call Trace: [ 714.005441][T14088] dump_stack+0x1df/0x240 [ 714.009775][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 714.015489][T14088] ? do_user_addr_fault+0x1040/0x1600 [ 714.020868][T14088] ? __msan_get_context_state+0x9/0x20 [ 714.026323][T14088] ? idtentry_exit_cond_rcu+0x12/0x50 [ 714.031687][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 714.036796][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 714.042339][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 714.048400][T14088] ? _copy_from_user+0x15b/0x260 [ 714.053362][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 714.058465][T14088] __msan_chain_origin+0x50/0x90 [ 714.063400][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.068528][T14088] get_compat_msghdr+0x108/0x270 [ 714.073477][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.077993][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 714.083100][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 714.088782][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 714.094092][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 714.098862][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 714.103617][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 714.109117][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.113797][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.119859][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 714.126087][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.132238][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.137449][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.142296][T14088] do_SYSENTER_32+0x73/0x90 [ 714.146795][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.153111][T14088] RIP: 0023:0xf7fd1549 [ 714.157275][T14088] Code: Bad RIP value. [ 714.161328][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 714.169829][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 714.177789][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 714.185748][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 714.193711][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 714.201675][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 714.209652][T14088] Uninit was stored to memory at: [ 714.214670][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.220378][T14088] __msan_chain_origin+0x50/0x90 [ 714.225420][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.230520][T14088] get_compat_msghdr+0x108/0x270 [ 714.235450][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.239962][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.244629][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.250685][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.256833][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.262026][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.266874][T14088] do_SYSENTER_32+0x73/0x90 [ 714.271463][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.277770][T14088] [ 714.280085][T14088] Uninit was stored to memory at: [ 714.285122][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.290832][T14088] __msan_chain_origin+0x50/0x90 [ 714.295763][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.300869][T14088] get_compat_msghdr+0x108/0x270 [ 714.305800][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.310302][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.314980][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.321063][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.327207][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.332397][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.337242][T14088] do_SYSENTER_32+0x73/0x90 [ 714.341738][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.348045][T14088] [ 714.350369][T14088] Uninit was stored to memory at: [ 714.355386][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.361098][T14088] __msan_chain_origin+0x50/0x90 [ 714.366028][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.371134][T14088] get_compat_msghdr+0x108/0x270 [ 714.376074][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.380564][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.385228][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.391296][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.397443][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.402633][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.407487][T14088] do_SYSENTER_32+0x73/0x90 [ 714.412009][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.418320][T14088] [ 714.420638][T14088] Uninit was stored to memory at: [ 714.425657][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.431377][T14088] __msan_chain_origin+0x50/0x90 [ 714.436306][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.441407][T14088] get_compat_msghdr+0x108/0x270 [ 714.446352][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.450845][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.455508][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.461560][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.467726][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.472917][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.477758][T14088] do_SYSENTER_32+0x73/0x90 [ 714.482256][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.488561][T14088] [ 714.490875][T14088] Uninit was stored to memory at: [ 714.495891][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.501598][T14088] __msan_chain_origin+0x50/0x90 [ 714.506526][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.511629][T14088] get_compat_msghdr+0x108/0x270 [ 714.516556][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.521051][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.527028][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.533092][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.539237][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.544428][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.549266][T14088] do_SYSENTER_32+0x73/0x90 [ 714.553763][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.560076][T14088] [ 714.562399][T14088] Uninit was stored to memory at: [ 714.567412][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.573121][T14088] __msan_chain_origin+0x50/0x90 [ 714.578051][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.583160][T14088] get_compat_msghdr+0x108/0x270 [ 714.588087][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.592608][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.597288][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.603344][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.609484][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.614668][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.619507][T14088] do_SYSENTER_32+0x73/0x90 [ 714.623999][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.630308][T14088] [ 714.632622][T14088] Uninit was stored to memory at: [ 714.637737][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 714.643445][T14088] __msan_chain_origin+0x50/0x90 [ 714.648374][T14088] __get_compat_msghdr+0x5be/0x890 [ 714.653477][T14088] get_compat_msghdr+0x108/0x270 [ 714.658405][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 714.662900][T14088] __sys_recvmmsg+0x4ca/0x510 [ 714.667564][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 714.673621][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 714.679768][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 714.684952][T14088] do_fast_syscall_32+0x6b/0xd0 [ 714.689790][T14088] do_SYSENTER_32+0x73/0x90 [ 714.694294][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 714.700609][T14088] [ 714.702926][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 714.709591][T14088] do_recvmmsg+0xc5/0x1ee0 [ 714.714000][T14088] do_recvmmsg+0xc5/0x1ee0 [ 714.997475][T14088] not chained 3070000 origins [ 715.002182][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 715.010839][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 715.020884][T14088] Call Trace: [ 715.024171][T14088] dump_stack+0x1df/0x240 [ 715.028497][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 715.034214][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 715.039339][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.044439][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 715.050243][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 715.056305][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 715.061242][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.066356][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 715.071896][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 715.077963][T14088] ? _copy_from_user+0x15b/0x260 [ 715.082918][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.088026][T14088] __msan_chain_origin+0x50/0x90 [ 715.092960][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.098081][T14088] get_compat_msghdr+0x108/0x270 [ 715.103042][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.107570][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.112679][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 715.118308][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 715.123589][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 715.128349][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 715.133100][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 715.138290][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.142975][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.149042][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 715.155268][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.161414][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.166612][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.171458][T14088] do_SYSENTER_32+0x73/0x90 [ 715.175954][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.182266][T14088] RIP: 0023:0xf7fd1549 [ 715.186316][T14088] Code: Bad RIP value. [ 715.190370][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 715.198773][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 715.207348][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 715.215309][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 715.223376][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 715.231337][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 715.239325][T14088] Uninit was stored to memory at: [ 715.244342][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.250045][T14088] __msan_chain_origin+0x50/0x90 [ 715.254987][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.260096][T14088] get_compat_msghdr+0x108/0x270 [ 715.265023][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.269525][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.274197][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.280265][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.286410][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.291608][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.296453][T14088] do_SYSENTER_32+0x73/0x90 [ 715.301036][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.307807][T14088] [ 715.310228][T14088] Uninit was stored to memory at: [ 715.315281][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.321084][T14088] __msan_chain_origin+0x50/0x90 [ 715.326015][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.331209][T14088] get_compat_msghdr+0x108/0x270 [ 715.336149][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.340643][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.345311][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.351374][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.357516][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.362706][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.367544][T14088] do_SYSENTER_32+0x73/0x90 [ 715.372038][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.378347][T14088] [ 715.380674][T14088] Uninit was stored to memory at: [ 715.385693][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.391489][T14088] __msan_chain_origin+0x50/0x90 [ 715.396505][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.401627][T14088] get_compat_msghdr+0x108/0x270 [ 715.406574][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.411068][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.415736][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.421791][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.427951][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.433140][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.437984][T14088] do_SYSENTER_32+0x73/0x90 [ 715.442486][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.448787][T14088] [ 715.451098][T14088] Uninit was stored to memory at: [ 715.456112][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.461818][T14088] __msan_chain_origin+0x50/0x90 [ 715.466746][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.471850][T14088] get_compat_msghdr+0x108/0x270 [ 715.476789][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.481368][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.486031][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.492107][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.498246][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.503434][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.508284][T14088] do_SYSENTER_32+0x73/0x90 [ 715.512775][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.519098][T14088] [ 715.521411][T14088] Uninit was stored to memory at: [ 715.526439][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.532149][T14088] __msan_chain_origin+0x50/0x90 [ 715.537079][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.542183][T14088] get_compat_msghdr+0x108/0x270 [ 715.547112][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.551605][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.556270][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.562325][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.568468][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.573659][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.578502][T14088] do_SYSENTER_32+0x73/0x90 [ 715.583016][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.589323][T14088] [ 715.591638][T14088] Uninit was stored to memory at: [ 715.596648][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.602352][T14088] __msan_chain_origin+0x50/0x90 [ 715.607629][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.612731][T14088] get_compat_msghdr+0x108/0x270 [ 715.617760][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.622251][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.626914][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.632970][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.639111][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.644379][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.649214][T14088] do_SYSENTER_32+0x73/0x90 [ 715.653714][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.660024][T14088] [ 715.662344][T14088] Uninit was stored to memory at: [ 715.667360][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 715.673159][T14088] __msan_chain_origin+0x50/0x90 [ 715.678099][T14088] __get_compat_msghdr+0x5be/0x890 [ 715.683221][T14088] get_compat_msghdr+0x108/0x270 [ 715.688154][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 715.692663][T14088] __sys_recvmmsg+0x4ca/0x510 [ 715.697328][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 715.703379][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 715.709522][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 715.714714][T14088] do_fast_syscall_32+0x6b/0xd0 [ 715.719643][T14088] do_SYSENTER_32+0x73/0x90 [ 715.724135][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 715.730442][T14088] [ 715.732757][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 715.739419][T14088] do_recvmmsg+0xc5/0x1ee0 [ 715.743834][T14088] do_recvmmsg+0xc5/0x1ee0 [ 715.927972][T14088] not chained 3080000 origins [ 715.932677][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 715.941335][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 715.951378][T14088] Call Trace: [ 715.954661][T14088] dump_stack+0x1df/0x240 [ 715.958988][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 715.964711][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 715.969818][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.974920][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 715.980721][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 715.986865][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 715.991801][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 715.996923][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 716.002458][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 716.008526][T14088] ? _copy_from_user+0x15b/0x260 [ 716.013459][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.018562][T14088] __msan_chain_origin+0x50/0x90 [ 716.023503][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.028624][T14088] get_compat_msghdr+0x108/0x270 [ 716.033578][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.038202][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.043306][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 716.048933][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 716.054214][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 716.058969][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 716.063726][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 716.068920][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.073603][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.079681][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 716.085915][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.092066][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.097306][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.102247][T14088] do_SYSENTER_32+0x73/0x90 [ 716.106739][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.113046][T14088] RIP: 0023:0xf7fd1549 [ 716.117109][T14088] Code: Bad RIP value. [ 716.121162][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 716.129562][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 716.137522][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 716.145598][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 716.153564][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 716.161527][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 716.169493][T14088] Uninit was stored to memory at: [ 716.174512][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.180217][T14088] __msan_chain_origin+0x50/0x90 [ 716.185148][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.190250][T14088] get_compat_msghdr+0x108/0x270 [ 716.195204][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.199697][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.204374][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.210430][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.216763][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.221953][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.226808][T14088] do_SYSENTER_32+0x73/0x90 [ 716.231295][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.237620][T14088] [ 716.239935][T14088] Uninit was stored to memory at: [ 716.244948][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.250659][T14088] __msan_chain_origin+0x50/0x90 [ 716.255593][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.260698][T14088] get_compat_msghdr+0x108/0x270 [ 716.265629][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.270142][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.274813][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.280871][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.287032][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.292225][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.297070][T14088] do_SYSENTER_32+0x73/0x90 [ 716.301559][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.307860][T14088] [ 716.310170][T14088] Uninit was stored to memory at: [ 716.315184][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.320892][T14088] __msan_chain_origin+0x50/0x90 [ 716.325823][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.330928][T14088] get_compat_msghdr+0x108/0x270 [ 716.335851][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.340431][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.345106][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.351248][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.357388][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.362579][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.367418][T14088] do_SYSENTER_32+0x73/0x90 [ 716.371914][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.378224][T14088] [ 716.380537][T14088] Uninit was stored to memory at: [ 716.385549][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.391258][T14088] __msan_chain_origin+0x50/0x90 [ 716.396187][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.401288][T14088] get_compat_msghdr+0x108/0x270 [ 716.406219][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.410718][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.415384][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.421445][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.427602][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.432795][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.437645][T14088] do_SYSENTER_32+0x73/0x90 [ 716.442136][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.448461][T14088] [ 716.450779][T14088] Uninit was stored to memory at: [ 716.455796][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.461509][T14088] __msan_chain_origin+0x50/0x90 [ 716.466438][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.471569][T14088] get_compat_msghdr+0x108/0x270 [ 716.476497][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.481000][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.485666][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.491721][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.497873][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.503057][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.507902][T14088] do_SYSENTER_32+0x73/0x90 [ 716.512396][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.518704][T14088] [ 716.521015][T14088] Uninit was stored to memory at: [ 716.526030][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.531750][T14088] __msan_chain_origin+0x50/0x90 [ 716.536679][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.541781][T14088] get_compat_msghdr+0x108/0x270 [ 716.546705][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.551199][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.555865][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.561921][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.568072][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.573265][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.578105][T14088] do_SYSENTER_32+0x73/0x90 [ 716.582599][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.588910][T14088] [ 716.591225][T14088] Uninit was stored to memory at: [ 716.596333][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 716.602038][T14088] __msan_chain_origin+0x50/0x90 [ 716.606970][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.612077][T14088] get_compat_msghdr+0x108/0x270 [ 716.617011][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.621504][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.626167][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.632224][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.638367][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.643554][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.648405][T14088] do_SYSENTER_32+0x73/0x90 [ 716.652895][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.659204][T14088] [ 716.661522][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 716.668202][T14088] do_recvmmsg+0xc5/0x1ee0 [ 716.672628][T14088] do_recvmmsg+0xc5/0x1ee0 [ 716.810506][T14088] not chained 3090000 origins [ 716.815271][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 716.823908][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 716.833933][T14088] Call Trace: [ 716.837198][T14088] dump_stack+0x1df/0x240 [ 716.841505][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 716.847199][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 716.852282][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.857364][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 716.863140][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 716.869175][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 716.874087][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.879167][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 716.884694][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 716.890771][T14088] ? _copy_from_user+0x15b/0x260 [ 716.895678][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.900759][T14088] __msan_chain_origin+0x50/0x90 [ 716.905672][T14088] __get_compat_msghdr+0x5be/0x890 [ 716.910762][T14088] get_compat_msghdr+0x108/0x270 [ 716.915673][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 716.920167][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 716.925357][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 716.930961][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 716.936249][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 716.940981][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 716.945715][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 716.950986][T14088] __sys_recvmmsg+0x4ca/0x510 [ 716.955642][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 716.961684][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 716.968010][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 716.974134][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 716.979305][T14088] do_fast_syscall_32+0x6b/0xd0 [ 716.984126][T14088] do_SYSENTER_32+0x73/0x90 [ 716.988600][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 716.994895][T14088] RIP: 0023:0xf7fd1549 [ 716.998932][T14088] Code: Bad RIP value. [ 717.002967][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 717.011347][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 717.019287][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 717.027261][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 717.035200][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 717.043160][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 717.051237][T14088] Uninit was stored to memory at: [ 717.056230][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.061921][T14088] __msan_chain_origin+0x50/0x90 [ 717.066837][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.071923][T14088] get_compat_msghdr+0x108/0x270 [ 717.076831][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.081304][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.085948][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.091984][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.098105][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.103288][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.108205][T14088] do_SYSENTER_32+0x73/0x90 [ 717.112685][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.118974][T14088] [ 717.121270][T14088] Uninit was stored to memory at: [ 717.126262][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.131950][T14088] __msan_chain_origin+0x50/0x90 [ 717.136856][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.141942][T14088] get_compat_msghdr+0x108/0x270 [ 717.146852][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.151326][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.155977][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.162013][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.168137][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.173401][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.178225][T14088] do_SYSENTER_32+0x73/0x90 [ 717.182703][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.188994][T14088] [ 717.191293][T14088] Uninit was stored to memory at: [ 717.196288][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.201978][T14088] __msan_chain_origin+0x50/0x90 [ 717.206923][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.212008][T14088] get_compat_msghdr+0x108/0x270 [ 717.216916][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.221390][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.226034][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.232071][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.238205][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.243386][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.248210][T14088] do_SYSENTER_32+0x73/0x90 [ 717.252683][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.258972][T14088] [ 717.261268][T14088] Uninit was stored to memory at: [ 717.266262][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.271950][T14088] __msan_chain_origin+0x50/0x90 [ 717.276859][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.281952][T14088] get_compat_msghdr+0x108/0x270 [ 717.286872][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.291345][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.295989][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.302029][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.308680][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.313941][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.318771][T14088] do_SYSENTER_32+0x73/0x90 [ 717.323244][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.329545][T14088] [ 717.331849][T14088] Uninit was stored to memory at: [ 717.336846][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.342532][T14088] __msan_chain_origin+0x50/0x90 [ 717.347440][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.352520][T14088] get_compat_msghdr+0x108/0x270 [ 717.357435][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.361909][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.366553][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.372601][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.378811][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.383979][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.388800][T14088] do_SYSENTER_32+0x73/0x90 [ 717.393274][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.399566][T14088] [ 717.401862][T14088] Uninit was stored to memory at: [ 717.406878][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.412573][T14088] __msan_chain_origin+0x50/0x90 [ 717.417481][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.422565][T14088] get_compat_msghdr+0x108/0x270 [ 717.427560][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.432076][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.436725][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.442761][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.448898][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.454062][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.458881][T14088] do_SYSENTER_32+0x73/0x90 [ 717.463351][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.469639][T14088] [ 717.471935][T14088] Uninit was stored to memory at: [ 717.476947][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.482636][T14088] __msan_chain_origin+0x50/0x90 [ 717.487543][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.492647][T14088] get_compat_msghdr+0x108/0x270 [ 717.497574][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.502045][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.506691][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.512725][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.519030][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.524200][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.529023][T14088] do_SYSENTER_32+0x73/0x90 [ 717.533498][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.539788][T14088] [ 717.542089][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 717.548730][T14088] do_recvmmsg+0xc5/0x1ee0 [ 717.553133][T14088] do_recvmmsg+0xc5/0x1ee0 [ 717.725661][T14088] not chained 3100000 origins [ 717.730469][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 717.739123][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 717.749177][T14088] Call Trace: [ 717.752463][T14088] dump_stack+0x1df/0x240 [ 717.756882][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 717.762610][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 717.767741][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 717.772866][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 717.778665][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 717.784720][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 717.789667][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 717.794773][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 717.800406][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 717.806494][T14088] ? _copy_from_user+0x15b/0x260 [ 717.811430][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 717.816627][T14088] __msan_chain_origin+0x50/0x90 [ 717.821563][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.826680][T14088] get_compat_msghdr+0x108/0x270 [ 717.831620][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.836140][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 717.841245][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 717.846880][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 717.852164][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 717.856921][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 717.861678][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 717.866871][T14088] __sys_recvmmsg+0x4ca/0x510 [ 717.871584][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 717.877644][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 717.883871][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 717.890211][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 717.895413][T14088] do_fast_syscall_32+0x6b/0xd0 [ 717.900264][T14088] do_SYSENTER_32+0x73/0x90 [ 717.904764][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 717.911081][T14088] RIP: 0023:0xf7fd1549 [ 717.915133][T14088] Code: Bad RIP value. [ 717.919181][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 717.927585][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 717.935549][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 717.943507][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 717.951467][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 717.959431][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 717.967395][T14088] Uninit was stored to memory at: [ 717.972424][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 717.978131][T14088] __msan_chain_origin+0x50/0x90 [ 717.983066][T14088] __get_compat_msghdr+0x5be/0x890 [ 717.988167][T14088] get_compat_msghdr+0x108/0x270 [ 717.993097][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 717.997590][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.002256][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.008315][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.014460][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.019740][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.024583][T14088] do_SYSENTER_32+0x73/0x90 [ 718.029094][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.035396][T14088] [ 718.037709][T14088] Uninit was stored to memory at: [ 718.042725][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.048432][T14088] __msan_chain_origin+0x50/0x90 [ 718.053366][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.058465][T14088] get_compat_msghdr+0x108/0x270 [ 718.063392][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.067904][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.072572][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.078647][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.084788][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.089971][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.094826][T14088] do_SYSENTER_32+0x73/0x90 [ 718.099316][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.105623][T14088] [ 718.107938][T14088] Uninit was stored to memory at: [ 718.112954][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.118664][T14088] __msan_chain_origin+0x50/0x90 [ 718.123609][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.128711][T14088] get_compat_msghdr+0x108/0x270 [ 718.133643][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.138134][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.142807][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.148862][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.155001][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.160187][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.165026][T14088] do_SYSENTER_32+0x73/0x90 [ 718.169519][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.175822][T14088] [ 718.178129][T14088] Uninit was stored to memory at: [ 718.183144][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.188858][T14088] __msan_chain_origin+0x50/0x90 [ 718.193790][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.198891][T14088] get_compat_msghdr+0x108/0x270 [ 718.203822][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.208312][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.212982][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.219041][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.225186][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.230382][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.235225][T14088] do_SYSENTER_32+0x73/0x90 [ 718.239715][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.246018][T14088] [ 718.248328][T14088] Uninit was stored to memory at: [ 718.253356][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.259058][T14088] __msan_chain_origin+0x50/0x90 [ 718.263983][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.269091][T14088] get_compat_msghdr+0x108/0x270 [ 718.274022][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.278518][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.283218][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.289289][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.295440][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.300649][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.305491][T14088] do_SYSENTER_32+0x73/0x90 [ 718.309980][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.316281][T14088] [ 718.318595][T14088] Uninit was stored to memory at: [ 718.323614][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.329322][T14088] __msan_chain_origin+0x50/0x90 [ 718.334265][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.339371][T14088] get_compat_msghdr+0x108/0x270 [ 718.344294][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.348780][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.353441][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.359494][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.365634][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.370822][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.375666][T14088] do_SYSENTER_32+0x73/0x90 [ 718.380154][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.386459][T14088] [ 718.388772][T14088] Uninit was stored to memory at: [ 718.393794][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.399499][T14088] __msan_chain_origin+0x50/0x90 [ 718.404427][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.409532][T14088] get_compat_msghdr+0x108/0x270 [ 718.414468][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.418964][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.423631][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.429693][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.435834][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.441025][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.445870][T14088] do_SYSENTER_32+0x73/0x90 [ 718.450361][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.456666][T14088] [ 718.458976][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 718.465638][T14088] do_recvmmsg+0xc5/0x1ee0 [ 718.470043][T14088] do_recvmmsg+0xc5/0x1ee0 [ 718.671078][T14088] not chained 3110000 origins [ 718.675772][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 718.684425][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 718.694467][T14088] Call Trace: [ 718.697751][T14088] dump_stack+0x1df/0x240 [ 718.702076][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 718.707795][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 718.712899][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 718.718017][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 718.723854][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 718.729998][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 718.734944][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 718.740043][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 718.745586][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 718.751648][T14088] ? _copy_from_user+0x15b/0x260 [ 718.756583][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 718.761701][T14088] __msan_chain_origin+0x50/0x90 [ 718.766635][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.771759][T14088] get_compat_msghdr+0x108/0x270 [ 718.776703][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.781231][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 718.786332][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 718.791961][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 718.797241][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 718.802011][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 718.806763][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 718.811956][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.816637][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.822700][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 718.828936][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.835082][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.840291][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.845149][T14088] do_SYSENTER_32+0x73/0x90 [ 718.849641][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.855948][T14088] RIP: 0023:0xf7fd1549 [ 718.860018][T14088] Code: Bad RIP value. [ 718.864063][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 718.872459][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 718.880420][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 718.888372][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 718.896331][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 718.904291][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 718.912345][T14088] Uninit was stored to memory at: [ 718.917389][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.923098][T14088] __msan_chain_origin+0x50/0x90 [ 718.928029][T14088] __get_compat_msghdr+0x5be/0x890 [ 718.933132][T14088] get_compat_msghdr+0x108/0x270 [ 718.938062][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 718.942556][T14088] __sys_recvmmsg+0x4ca/0x510 [ 718.947222][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 718.953285][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 718.959428][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 718.964617][T14088] do_fast_syscall_32+0x6b/0xd0 [ 718.969477][T14088] do_SYSENTER_32+0x73/0x90 [ 718.973976][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 718.980283][T14088] [ 718.982613][T14088] Uninit was stored to memory at: [ 718.987628][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 718.993339][T14088] __msan_chain_origin+0x50/0x90 [ 718.998267][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.003373][T14088] get_compat_msghdr+0x108/0x270 [ 719.008302][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.012798][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.017466][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.023524][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.029671][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.034858][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.039696][T14088] do_SYSENTER_32+0x73/0x90 [ 719.044183][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.050525][T14088] [ 719.052862][T14088] Uninit was stored to memory at: [ 719.057881][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.063586][T14088] __msan_chain_origin+0x50/0x90 [ 719.068512][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.073624][T14088] get_compat_msghdr+0x108/0x270 [ 719.078550][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.083042][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.087711][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.093765][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.099915][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.105109][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.110225][T14088] do_SYSENTER_32+0x73/0x90 [ 719.114718][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.121025][T14088] [ 719.123338][T14088] Uninit was stored to memory at: [ 719.128353][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.134059][T14088] __msan_chain_origin+0x50/0x90 [ 719.138993][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.144093][T14088] get_compat_msghdr+0x108/0x270 [ 719.149025][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.153521][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.158186][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.164243][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.170385][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.175589][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.180429][T14088] do_SYSENTER_32+0x73/0x90 [ 719.184912][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.191215][T14088] [ 719.193532][T14088] Uninit was stored to memory at: [ 719.198551][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.204262][T14088] __msan_chain_origin+0x50/0x90 [ 719.209729][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.214832][T14088] get_compat_msghdr+0x108/0x270 [ 719.219758][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.224249][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.228927][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.234983][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.241125][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.246310][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.251147][T14088] do_SYSENTER_32+0x73/0x90 [ 719.255642][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.261968][T14088] [ 719.264279][T14088] Uninit was stored to memory at: [ 719.269311][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.275018][T14088] __msan_chain_origin+0x50/0x90 [ 719.279946][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.285044][T14088] get_compat_msghdr+0x108/0x270 [ 719.289974][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.294480][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.299142][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.305189][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.311422][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.316617][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.321461][T14088] do_SYSENTER_32+0x73/0x90 [ 719.325950][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.332262][T14088] [ 719.334585][T14088] Uninit was stored to memory at: [ 719.339593][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.345291][T14088] __msan_chain_origin+0x50/0x90 [ 719.350217][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.355315][T14088] get_compat_msghdr+0x108/0x270 [ 719.360240][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.364726][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.369385][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.375433][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.381599][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.386787][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.391632][T14088] do_SYSENTER_32+0x73/0x90 [ 719.396125][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.402430][T14088] [ 719.404740][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 719.411403][T14088] do_recvmmsg+0xc5/0x1ee0 [ 719.415806][T14088] do_recvmmsg+0xc5/0x1ee0 [ 719.591224][T14088] not chained 3120000 origins [ 719.595927][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 719.604591][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 719.614631][T14088] Call Trace: [ 719.618006][T14088] dump_stack+0x1df/0x240 [ 719.622335][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 719.628049][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 719.633167][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 719.638271][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 719.644081][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 719.650144][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 719.655078][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 719.660178][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 719.665717][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 719.671781][T14088] ? _copy_from_user+0x15b/0x260 [ 719.676712][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 719.681818][T14088] __msan_chain_origin+0x50/0x90 [ 719.686755][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.691876][T14088] get_compat_msghdr+0x108/0x270 [ 719.696830][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.701364][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 719.706466][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 719.712093][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 719.717374][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 719.722129][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 719.726882][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 719.732095][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.736768][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.742835][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 719.749079][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.755222][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.760506][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.765354][T14088] do_SYSENTER_32+0x73/0x90 [ 719.769844][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.776156][T14088] RIP: 0023:0xf7fd1549 [ 719.780204][T14088] Code: Bad RIP value. [ 719.784256][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 719.792683][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 719.800648][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 719.808606][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 719.816562][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 719.824518][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 719.832486][T14088] Uninit was stored to memory at: [ 719.837501][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.843210][T14088] __msan_chain_origin+0x50/0x90 [ 719.848150][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.853251][T14088] get_compat_msghdr+0x108/0x270 [ 719.858177][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.862669][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.867336][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.873394][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.879538][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.884721][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.889557][T14088] do_SYSENTER_32+0x73/0x90 [ 719.894049][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.900356][T14088] [ 719.902664][T14088] Uninit was stored to memory at: [ 719.907682][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.913388][T14088] __msan_chain_origin+0x50/0x90 [ 719.918315][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.923416][T14088] get_compat_msghdr+0x108/0x270 [ 719.928352][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 719.932844][T14088] __sys_recvmmsg+0x4ca/0x510 [ 719.937510][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 719.943567][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 719.949715][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 719.954911][T14088] do_fast_syscall_32+0x6b/0xd0 [ 719.959752][T14088] do_SYSENTER_32+0x73/0x90 [ 719.964259][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 719.970571][T14088] [ 719.972907][T14088] Uninit was stored to memory at: [ 719.977923][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 719.983629][T14088] __msan_chain_origin+0x50/0x90 [ 719.988551][T14088] __get_compat_msghdr+0x5be/0x890 [ 719.993663][T14088] get_compat_msghdr+0x108/0x270 [ 719.998595][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.003094][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.007763][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.013819][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.019964][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.025155][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.029995][T14088] do_SYSENTER_32+0x73/0x90 [ 720.034485][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.040875][T14088] [ 720.043188][T14088] Uninit was stored to memory at: [ 720.048199][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.055032][T14088] __msan_chain_origin+0x50/0x90 [ 720.059962][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.065063][T14088] get_compat_msghdr+0x108/0x270 [ 720.069992][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.074484][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.079151][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.085204][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.091346][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.096535][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.101403][T14088] do_SYSENTER_32+0x73/0x90 [ 720.105898][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.112205][T14088] [ 720.114517][T14088] Uninit was stored to memory at: [ 720.119531][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.125234][T14088] __msan_chain_origin+0x50/0x90 [ 720.130157][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.135254][T14088] get_compat_msghdr+0x108/0x270 [ 720.140200][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.144695][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.149365][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.155417][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.161564][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.166759][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.171607][T14088] do_SYSENTER_32+0x73/0x90 [ 720.176102][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.182404][T14088] [ 720.184712][T14088] Uninit was stored to memory at: [ 720.189742][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.195454][T14088] __msan_chain_origin+0x50/0x90 [ 720.200384][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.205499][T14088] get_compat_msghdr+0x108/0x270 [ 720.210424][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.214915][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.219601][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.225663][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.231807][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.236993][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.241831][T14088] do_SYSENTER_32+0x73/0x90 [ 720.246320][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.252655][T14088] [ 720.254970][T14088] Uninit was stored to memory at: [ 720.259986][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.265693][T14088] __msan_chain_origin+0x50/0x90 [ 720.270624][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.275742][T14088] get_compat_msghdr+0x108/0x270 [ 720.280757][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.285259][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.289923][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.295976][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.302119][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.307314][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.312156][T14088] do_SYSENTER_32+0x73/0x90 [ 720.316655][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.322959][T14088] [ 720.325278][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 720.331944][T14088] do_recvmmsg+0xc5/0x1ee0 [ 720.336351][T14088] do_recvmmsg+0xc5/0x1ee0 [ 720.511176][T14088] not chained 3130000 origins [ 720.515883][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 720.524536][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 720.534575][T14088] Call Trace: [ 720.537864][T14088] dump_stack+0x1df/0x240 [ 720.542194][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 720.547909][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 720.553015][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 720.558125][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 720.563924][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 720.569979][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 720.574927][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 720.580028][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 720.585567][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 720.591636][T14088] ? _copy_from_user+0x15b/0x260 [ 720.596567][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 720.601672][T14088] __msan_chain_origin+0x50/0x90 [ 720.606612][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.611733][T14088] get_compat_msghdr+0x108/0x270 [ 720.616672][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.621196][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 720.626299][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 720.631932][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 720.637211][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 720.641978][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 720.646730][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 720.651946][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.656623][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.662683][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 720.668910][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.675047][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.680249][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.685095][T14088] do_SYSENTER_32+0x73/0x90 [ 720.689584][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.695900][T14088] RIP: 0023:0xf7fd1549 [ 720.699945][T14088] Code: Bad RIP value. [ 720.703993][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 720.712391][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 720.720353][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 720.728308][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 720.736382][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 720.744324][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 720.752271][T14088] Uninit was stored to memory at: [ 720.757278][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.762967][T14088] __msan_chain_origin+0x50/0x90 [ 720.767876][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.772958][T14088] get_compat_msghdr+0x108/0x270 [ 720.777876][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.782348][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.786996][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.793071][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.799192][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.804358][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.809211][T14088] do_SYSENTER_32+0x73/0x90 [ 720.813683][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.819973][T14088] [ 720.822271][T14088] Uninit was stored to memory at: [ 720.827264][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.832950][T14088] __msan_chain_origin+0x50/0x90 [ 720.837857][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.842934][T14088] get_compat_msghdr+0x108/0x270 [ 720.847839][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.852312][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.856956][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.862989][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.869110][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.874277][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.879126][T14088] do_SYSENTER_32+0x73/0x90 [ 720.883625][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.889914][T14088] [ 720.892230][T14088] Uninit was stored to memory at: [ 720.897255][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.902946][T14088] __msan_chain_origin+0x50/0x90 [ 720.907860][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.912941][T14088] get_compat_msghdr+0x108/0x270 [ 720.917850][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.922324][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.926972][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 720.933007][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 720.939247][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 720.944413][T14088] do_fast_syscall_32+0x6b/0xd0 [ 720.949316][T14088] do_SYSENTER_32+0x73/0x90 [ 720.953800][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 720.960088][T14088] [ 720.962398][T14088] Uninit was stored to memory at: [ 720.967394][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 720.973081][T14088] __msan_chain_origin+0x50/0x90 [ 720.977989][T14088] __get_compat_msghdr+0x5be/0x890 [ 720.983157][T14088] get_compat_msghdr+0x108/0x270 [ 720.988064][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 720.992537][T14088] __sys_recvmmsg+0x4ca/0x510 [ 720.997180][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.003217][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.009347][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.014512][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.019332][T14088] do_SYSENTER_32+0x73/0x90 [ 721.023805][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.030094][T14088] [ 721.032394][T14088] Uninit was stored to memory at: [ 721.037416][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.043107][T14088] __msan_chain_origin+0x50/0x90 [ 721.048011][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.053094][T14088] get_compat_msghdr+0x108/0x270 [ 721.058000][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.062470][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.067116][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.073154][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.079276][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.084450][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.089284][T14088] do_SYSENTER_32+0x73/0x90 [ 721.093761][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.100174][T14088] [ 721.102475][T14088] Uninit was stored to memory at: [ 721.107473][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.113279][T14088] __msan_chain_origin+0x50/0x90 [ 721.118202][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.123292][T14088] get_compat_msghdr+0x108/0x270 [ 721.128218][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.132704][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.137350][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.143403][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.149529][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.154700][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.159523][T14088] do_SYSENTER_32+0x73/0x90 [ 721.164000][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.170291][T14088] [ 721.172595][T14088] Uninit was stored to memory at: [ 721.177594][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.183283][T14088] __msan_chain_origin+0x50/0x90 [ 721.188284][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.193501][T14088] get_compat_msghdr+0x108/0x270 [ 721.198411][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.202884][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.207618][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.213653][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.219777][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.224943][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.229937][T14088] do_SYSENTER_32+0x73/0x90 [ 721.234407][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.240734][T14088] [ 721.243053][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 721.249695][T14088] do_recvmmsg+0xc5/0x1ee0 [ 721.254081][T14088] do_recvmmsg+0xc5/0x1ee0 [ 721.438334][T14088] not chained 3140000 origins [ 721.443044][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 721.451701][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 721.461745][T14088] Call Trace: [ 721.465031][T14088] dump_stack+0x1df/0x240 [ 721.469365][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 721.475080][T14088] ? do_user_addr_fault+0x1040/0x1600 [ 721.480460][T14088] ? __msan_get_context_state+0x9/0x20 [ 721.485915][T14088] ? idtentry_exit_cond_rcu+0x12/0x50 [ 721.491286][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 721.496393][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 721.501935][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 721.508000][T14088] ? _copy_from_user+0x15b/0x260 [ 721.512929][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 721.518036][T14088] __msan_chain_origin+0x50/0x90 [ 721.522973][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.528092][T14088] get_compat_msghdr+0x108/0x270 [ 721.533034][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.537558][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 721.542666][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 721.548295][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 721.553575][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 721.558335][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 721.563091][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 721.568283][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.572966][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.579033][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 721.585267][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.591415][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.596621][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.601472][T14088] do_SYSENTER_32+0x73/0x90 [ 721.605972][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.612290][T14088] RIP: 0023:0xf7fd1549 [ 721.616341][T14088] Code: Bad RIP value. [ 721.620394][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 721.628797][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 721.636759][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 721.644719][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 721.652688][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 721.660667][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 721.668645][T14088] Uninit was stored to memory at: [ 721.673670][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.679384][T14088] __msan_chain_origin+0x50/0x90 [ 721.684317][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.689544][T14088] get_compat_msghdr+0x108/0x270 [ 721.694479][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.698993][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.703664][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.709719][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.715866][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.721061][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.725909][T14088] do_SYSENTER_32+0x73/0x90 [ 721.730400][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.736706][T14088] [ 721.739017][T14088] Uninit was stored to memory at: [ 721.744028][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.749737][T14088] __msan_chain_origin+0x50/0x90 [ 721.754662][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.759778][T14088] get_compat_msghdr+0x108/0x270 [ 721.764704][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.769197][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.773875][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.779929][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.786087][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.791280][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.796119][T14088] do_SYSENTER_32+0x73/0x90 [ 721.800611][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.806912][T14088] [ 721.809218][T14088] Uninit was stored to memory at: [ 721.814234][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.819951][T14088] __msan_chain_origin+0x50/0x90 [ 721.824874][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.829973][T14088] get_compat_msghdr+0x108/0x270 [ 721.834897][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.839388][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.844075][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.850132][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.856277][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.861467][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.866315][T14088] do_SYSENTER_32+0x73/0x90 [ 721.870815][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.877118][T14088] [ 721.879424][T14088] Uninit was stored to memory at: [ 721.884434][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.890139][T14088] __msan_chain_origin+0x50/0x90 [ 721.895071][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.900183][T14088] get_compat_msghdr+0x108/0x270 [ 721.905104][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.909595][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.914257][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.920320][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.926460][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 721.931652][T14088] do_fast_syscall_32+0x6b/0xd0 [ 721.936492][T14088] do_SYSENTER_32+0x73/0x90 [ 721.940982][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 721.947293][T14088] [ 721.949616][T14088] Uninit was stored to memory at: [ 721.954635][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 721.960342][T14088] __msan_chain_origin+0x50/0x90 [ 721.965290][T14088] __get_compat_msghdr+0x5be/0x890 [ 721.970396][T14088] get_compat_msghdr+0x108/0x270 [ 721.975323][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 721.979816][T14088] __sys_recvmmsg+0x4ca/0x510 [ 721.984480][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 721.990529][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 721.996671][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.001860][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.006721][T14088] do_SYSENTER_32+0x73/0x90 [ 722.011213][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.017536][T14088] [ 722.019849][T14088] Uninit was stored to memory at: [ 722.024860][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.030564][T14088] __msan_chain_origin+0x50/0x90 [ 722.035514][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.040713][T14088] get_compat_msghdr+0x108/0x270 [ 722.045662][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.050155][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.054818][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.060872][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.067018][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.072209][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.077052][T14088] do_SYSENTER_32+0x73/0x90 [ 722.081549][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.087861][T14088] [ 722.090174][T14088] Uninit was stored to memory at: [ 722.095187][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.100894][T14088] __msan_chain_origin+0x50/0x90 [ 722.105823][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.110930][T14088] get_compat_msghdr+0x108/0x270 [ 722.115857][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.120346][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.125005][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.131061][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.137206][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.142393][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.147234][T14088] do_SYSENTER_32+0x73/0x90 [ 722.151730][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.158118][T14088] [ 722.160431][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 722.167093][T14088] do_recvmmsg+0xc5/0x1ee0 [ 722.171507][T14088] do_recvmmsg+0xc5/0x1ee0 [ 722.383178][T14088] not chained 3150000 origins [ 722.387887][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 722.396538][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 722.406578][T14088] Call Trace: [ 722.409864][T14088] dump_stack+0x1df/0x240 [ 722.414206][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 722.419942][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 722.425051][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 722.430161][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 722.435962][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 722.442030][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 722.446964][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 722.452071][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 722.457628][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 722.463692][T14088] ? _copy_from_user+0x15b/0x260 [ 722.468622][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 722.473736][T14088] __msan_chain_origin+0x50/0x90 [ 722.478701][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.483828][T14088] get_compat_msghdr+0x108/0x270 [ 722.488763][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.493283][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 722.498387][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 722.504047][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 722.509330][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 722.514084][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 722.518846][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 722.524059][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.528756][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.534827][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 722.541061][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.547206][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.552405][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.557252][T14088] do_SYSENTER_32+0x73/0x90 [ 722.561836][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.568149][T14088] RIP: 0023:0xf7fd1549 [ 722.572202][T14088] Code: Bad RIP value. [ 722.576257][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 722.584679][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 722.592655][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 722.600615][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 722.608569][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 722.616544][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 722.624515][T14088] Uninit was stored to memory at: [ 722.629529][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.635250][T14088] __msan_chain_origin+0x50/0x90 [ 722.640176][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.645276][T14088] get_compat_msghdr+0x108/0x270 [ 722.650202][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.654699][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.659370][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.665425][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.671589][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.676780][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.681624][T14088] do_SYSENTER_32+0x73/0x90 [ 722.686123][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.692440][T14088] [ 722.694751][T14088] Uninit was stored to memory at: [ 722.699762][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.705468][T14088] __msan_chain_origin+0x50/0x90 [ 722.710394][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.715497][T14088] get_compat_msghdr+0x108/0x270 [ 722.720426][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.724917][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.729581][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.735638][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.741870][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.747061][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.751907][T14088] do_SYSENTER_32+0x73/0x90 [ 722.756401][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.762705][T14088] [ 722.765015][T14088] Uninit was stored to memory at: [ 722.770033][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.775741][T14088] __msan_chain_origin+0x50/0x90 [ 722.780667][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.785764][T14088] get_compat_msghdr+0x108/0x270 [ 722.790710][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.795204][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.799877][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.805929][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.812076][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.817273][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.822120][T14088] do_SYSENTER_32+0x73/0x90 [ 722.826613][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.832920][T14088] [ 722.835235][T14088] Uninit was stored to memory at: [ 722.840250][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.845968][T14088] __msan_chain_origin+0x50/0x90 [ 722.850897][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.856001][T14088] get_compat_msghdr+0x108/0x270 [ 722.860937][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.865444][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.870113][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.876179][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.882324][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.887517][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.892365][T14088] do_SYSENTER_32+0x73/0x90 [ 722.896863][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.903169][T14088] [ 722.905481][T14088] Uninit was stored to memory at: [ 722.910502][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.916216][T14088] __msan_chain_origin+0x50/0x90 [ 722.921157][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.926277][T14088] get_compat_msghdr+0x108/0x270 [ 722.931209][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 722.935702][T14088] __sys_recvmmsg+0x4ca/0x510 [ 722.940369][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 722.946420][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 722.952563][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 722.957763][T14088] do_fast_syscall_32+0x6b/0xd0 [ 722.962604][T14088] do_SYSENTER_32+0x73/0x90 [ 722.967104][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 722.973414][T14088] [ 722.975728][T14088] Uninit was stored to memory at: [ 722.980747][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 722.986450][T14088] __msan_chain_origin+0x50/0x90 [ 722.991379][T14088] __get_compat_msghdr+0x5be/0x890 [ 722.996489][T14088] get_compat_msghdr+0x108/0x270 [ 723.001423][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.005922][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.010599][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.016662][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.022810][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.028016][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.032857][T14088] do_SYSENTER_32+0x73/0x90 [ 723.037353][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.043664][T14088] [ 723.045976][T14088] Uninit was stored to memory at: [ 723.050996][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 723.056704][T14088] __msan_chain_origin+0x50/0x90 [ 723.061654][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.066762][T14088] get_compat_msghdr+0x108/0x270 [ 723.071692][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.076193][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.080864][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.086926][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.093074][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.098358][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.103205][T14088] do_SYSENTER_32+0x73/0x90 [ 723.107702][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.114014][T14088] [ 723.116329][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 723.122998][T14088] do_recvmmsg+0xc5/0x1ee0 [ 723.127410][T14088] do_recvmmsg+0xc5/0x1ee0 [ 723.474303][T14088] not chained 3160000 origins [ 723.479011][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 723.487788][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 723.499062][T14088] Call Trace: [ 723.502353][T14088] dump_stack+0x1df/0x240 [ 723.506685][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 723.512406][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 723.517533][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 723.522642][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 723.528447][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 723.534513][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 723.539457][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 723.544701][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 723.550265][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 723.556336][T14088] ? _copy_from_user+0x15b/0x260 [ 723.561274][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 723.566383][T14088] __msan_chain_origin+0x50/0x90 [ 723.571339][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.576468][T14088] get_compat_msghdr+0x108/0x270 [ 723.581415][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.585936][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 723.591040][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 723.596680][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 723.601964][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 723.606721][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 723.611476][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 723.616668][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.621347][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.627413][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 723.633669][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.639821][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.645015][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.649882][T14088] do_SYSENTER_32+0x73/0x90 [ 723.654377][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.660689][T14088] RIP: 0023:0xf7fd1549 [ 723.664737][T14088] Code: Bad RIP value. [ 723.668784][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 723.677182][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 723.685140][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 723.693114][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 723.701086][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 723.709048][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 723.717021][T14088] Uninit was stored to memory at: [ 723.722042][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 723.727754][T14088] __msan_chain_origin+0x50/0x90 [ 723.732706][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.737813][T14088] get_compat_msghdr+0x108/0x270 [ 723.742747][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.747259][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.751930][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.757989][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.764133][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.769329][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.774172][T14088] do_SYSENTER_32+0x73/0x90 [ 723.778679][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.784998][T14088] [ 723.787395][T14088] Uninit was stored to memory at: [ 723.792413][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 723.798126][T14088] __msan_chain_origin+0x50/0x90 [ 723.803060][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.808170][T14088] get_compat_msghdr+0x108/0x270 [ 723.813103][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.817598][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.822264][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.828353][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.834493][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.839682][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.844525][T14088] do_SYSENTER_32+0x73/0x90 [ 723.849017][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.855321][T14088] [ 723.857633][T14088] Uninit was stored to memory at: [ 723.862654][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 723.868380][T14088] __msan_chain_origin+0x50/0x90 [ 723.873311][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.878448][T14088] get_compat_msghdr+0x108/0x270 [ 723.883380][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.887869][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.892534][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.898602][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.904749][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.909948][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.914793][T14088] do_SYSENTER_32+0x73/0x90 [ 723.919286][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.925589][T14088] [ 723.927908][T14088] Uninit was stored to memory at: [ 723.932925][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 723.938633][T14088] __msan_chain_origin+0x50/0x90 [ 723.943601][T14088] __get_compat_msghdr+0x5be/0x890 [ 723.948703][T14088] get_compat_msghdr+0x108/0x270 [ 723.953632][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 723.958126][T14088] __sys_recvmmsg+0x4ca/0x510 [ 723.962790][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 723.968845][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 723.974985][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 723.980177][T14088] do_fast_syscall_32+0x6b/0xd0 [ 723.985019][T14088] do_SYSENTER_32+0x73/0x90 [ 723.989511][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 723.995811][T14088] [ 723.998122][T14088] Uninit was stored to memory at: [ 724.003139][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.008848][T14088] __msan_chain_origin+0x50/0x90 [ 724.013777][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.018882][T14088] get_compat_msghdr+0x108/0x270 [ 724.023812][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.028306][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.032975][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.039045][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.045186][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.050373][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.055215][T14088] do_SYSENTER_32+0x73/0x90 [ 724.059718][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.066018][T14088] [ 724.068326][T14088] Uninit was stored to memory at: [ 724.073337][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.079049][T14088] __msan_chain_origin+0x50/0x90 [ 724.083979][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.089081][T14088] get_compat_msghdr+0x108/0x270 [ 724.094012][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.098504][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.103163][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.109233][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.115374][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.120574][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.125413][T14088] do_SYSENTER_32+0x73/0x90 [ 724.129907][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.136222][T14088] [ 724.138544][T14088] Uninit was stored to memory at: [ 724.143663][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.149395][T14088] __msan_chain_origin+0x50/0x90 [ 724.154324][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.159427][T14088] get_compat_msghdr+0x108/0x270 [ 724.164352][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.168843][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.173529][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.179586][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.185738][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.191018][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.195863][T14088] do_SYSENTER_32+0x73/0x90 [ 724.200357][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.206664][T14088] [ 724.208986][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 724.215649][T14088] do_recvmmsg+0xc5/0x1ee0 [ 724.220054][T14088] do_recvmmsg+0xc5/0x1ee0 [ 724.398082][T14088] not chained 3170000 origins [ 724.402902][T14088] CPU: 0 PID: 14088 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 724.411540][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 724.421566][T14088] Call Trace: [ 724.424828][T14088] dump_stack+0x1df/0x240 [ 724.429143][T14088] kmsan_internal_chain_origin+0x6f/0x130 [ 724.434860][T14088] ? skb_recv_datagram+0x3ec/0x480 [ 724.439939][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 724.445020][T14088] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 724.450811][T14088] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 724.456859][T14088] ? bt_sock_recvmsg+0x564/0xa00 [ 724.461768][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 724.466848][T14088] ? kmsan_set_origin_checked+0x95/0xf0 [ 724.472367][T14088] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 724.478407][T14088] ? _copy_from_user+0x15b/0x260 [ 724.483310][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 724.488513][T14088] __msan_chain_origin+0x50/0x90 [ 724.493437][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.498525][T14088] get_compat_msghdr+0x108/0x270 [ 724.503435][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.507922][T14088] ? kmsan_get_metadata+0x4f/0x180 [ 724.513008][T14088] ? kmsan_internal_set_origin+0x75/0xb0 [ 724.518615][T14088] ? __msan_poison_alloca+0xf0/0x120 [ 724.523870][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 724.528615][T14088] ? __sys_recvmmsg+0xb4/0x510 [ 724.533362][T14088] ? kmsan_get_metadata+0x11d/0x180 [ 724.538534][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.543197][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.549263][T14088] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 724.555488][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.561614][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.566790][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.571617][T14088] do_SYSENTER_32+0x73/0x90 [ 724.576098][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.582391][T14088] RIP: 0023:0xf7fd1549 [ 724.586423][T14088] Code: Bad RIP value. [ 724.590467][T14088] RSP: 002b:00000000f5dcc0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 724.598888][T14088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000000 [ 724.606830][T14088] RDX: 0000000004000223 RSI: 0000000000000000 RDI: 0000000000000000 [ 724.614769][T14088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 724.622730][T14088] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 724.630695][T14088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 724.638651][T14088] Uninit was stored to memory at: [ 724.643646][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.649341][T14088] __msan_chain_origin+0x50/0x90 [ 724.654270][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.659363][T14088] get_compat_msghdr+0x108/0x270 [ 724.664293][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.668898][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.673556][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.679598][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.685722][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.690898][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.695716][T14088] do_SYSENTER_32+0x73/0x90 [ 724.700185][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.706469][T14088] [ 724.708771][T14088] Uninit was stored to memory at: [ 724.713778][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.719464][T14088] __msan_chain_origin+0x50/0x90 [ 724.724369][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.729476][T14088] get_compat_msghdr+0x108/0x270 [ 724.734392][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.738866][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.743508][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.749552][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.755686][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.760851][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.765668][T14088] do_SYSENTER_32+0x73/0x90 [ 724.770152][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.776451][T14088] [ 724.778743][T14088] Uninit was stored to memory at: [ 724.783730][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.789422][T14088] __msan_chain_origin+0x50/0x90 [ 724.794339][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.799417][T14088] get_compat_msghdr+0x108/0x270 [ 724.804319][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.808796][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.813448][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.819482][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.825605][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.830772][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.835593][T14088] do_SYSENTER_32+0x73/0x90 [ 724.840059][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.846347][T14088] [ 724.848657][T14088] Uninit was stored to memory at: [ 724.853663][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.859370][T14088] __msan_chain_origin+0x50/0x90 [ 724.864290][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.869392][T14088] get_compat_msghdr+0x108/0x270 [ 724.874319][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.878787][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.883427][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.889472][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.895602][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.900773][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.905706][T14088] do_SYSENTER_32+0x73/0x90 [ 724.910187][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.916485][T14088] [ 724.918804][T14088] Uninit was stored to memory at: [ 724.923900][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.929601][T14088] __msan_chain_origin+0x50/0x90 [ 724.934517][T14088] __get_compat_msghdr+0x5be/0x890 [ 724.939594][T14088] get_compat_msghdr+0x108/0x270 [ 724.944499][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 724.948975][T14088] __sys_recvmmsg+0x4ca/0x510 [ 724.953648][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 724.959794][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 724.965973][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 724.971145][T14088] do_fast_syscall_32+0x6b/0xd0 [ 724.975974][T14088] do_SYSENTER_32+0x73/0x90 [ 724.980441][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 724.986725][T14088] [ 724.989027][T14088] Uninit was stored to memory at: [ 724.994033][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 724.999723][T14088] __msan_chain_origin+0x50/0x90 [ 725.004630][T14088] __get_compat_msghdr+0x5be/0x890 [ 725.009722][T14088] get_compat_msghdr+0x108/0x270 [ 725.014641][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 725.019111][T14088] __sys_recvmmsg+0x4ca/0x510 [ 725.023757][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 725.029801][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 725.035931][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 725.041109][T14088] do_fast_syscall_32+0x6b/0xd0 [ 725.045929][T14088] do_SYSENTER_32+0x73/0x90 [ 725.050412][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 725.056722][T14088] [ 725.059019][T14088] Uninit was stored to memory at: [ 725.064013][T14088] kmsan_internal_chain_origin+0xad/0x130 [ 725.069726][T14088] __msan_chain_origin+0x50/0x90 [ 725.074645][T14088] __get_compat_msghdr+0x5be/0x890 [ 725.079722][T14088] get_compat_msghdr+0x108/0x270 [ 725.084630][T14088] do_recvmmsg+0xa6a/0x1ee0 [ 725.089116][T14088] __sys_recvmmsg+0x4ca/0x510 [ 725.093773][T14088] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 725.099806][T14088] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 725.105926][T14088] __do_fast_syscall_32+0x2aa/0x400 [ 725.111102][T14088] do_fast_syscall_32+0x6b/0xd0 [ 725.115923][T14088] do_SYSENTER_32+0x73/0x90 [ 725.120393][T14088] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 725.126681][T14088] [ 725.128984][T14088] Local variable ----msg_sys@do_recvmmsg created at: [ 725.135643][T14088] do_recvmmsg+0xc5/0x1ee0 [ 725.140030][T14088] do_recvmmsg+0xc5/0x1ee0 01:24:08 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(0xffffffffffffffff, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x1}, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x8}, 0x1c) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x1) write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x141) close(r2) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, 0x0, 0x0, 0x0) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 01:24:08 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8208, 0x0, 0x0, 0x0, 0x2000000}, 0x0, 0xffffffffffffffff, r2, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000f36000)={&(0x7f0000000240)=ANY=[@ANYBLOB="020300090c0000000400ffffffffffff02001300020000000000000000000000030006000000000002004e20e0000001010000000000000002000100f8beffff0000000200010000030005000000000002"], 0x60}}, 0x0) 01:24:08 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:08 executing program 4: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x29c9835, 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x100000, 0x0) clone(0x70024000, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x20000000, &(0x7f0000000580)='./file0\x00', 0x0, 0x1047a4c, 0x0) 01:24:08 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(0x0) timer_create(0x9, 0x0, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f00000001c0)={{}, {0x0, 0x989680}}, &(0x7f0000000240)) [ 725.448706][T14114] IPVS: ftp: loaded support on port[0] = 21 01:24:08 executing program 1: sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="94033200", @ANYRES16=0x0, @ANYBLOB="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"], 0x394}}, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKPG(0xffffffffffffffff, 0x1269, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000240)={0x2, 0xa98ab766, 0x0, &(0x7f0000000800)}) pipe(&(0x7f0000000140)) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) 01:24:08 executing program 3: 01:24:08 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:08 executing program 2: 01:24:08 executing program 3: 01:24:08 executing program 1: [ 726.275396][T14163] IPVS: ftp: loaded support on port[0] = 21 01:24:09 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(0xffffffffffffffff, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:09 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:09 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0xffffffffffffffb5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f00000003c0)=0x6, 0x4) write$binfmt_elf64(r0, &(0x7f0000000440)=ANY=[], 0x2bcf) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000040)={'nat\x00'}, &(0x7f00000000c0)=0x78) sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x6a0000e0}, 0x6e) recvmsg(r0, &(0x7f0000001440)={0x0, 0xa, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4096, 0xf99e}], 0x2b8, 0x0, 0xff96ce4aaaa47475, 0x7115}, 0x100) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000300)={{0x1}}) r3 = dup2(r1, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 01:24:09 executing program 1: [ 726.869410][T12153] tipc: TX() has been purged, node left! 01:24:10 executing program 4: 01:24:10 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:10 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:10 executing program 1: 01:24:10 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(0xffffffffffffffff, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:10 executing program 1: 01:24:10 executing program 3: 01:24:10 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:10 executing program 4: 01:24:10 executing program 1: 01:24:10 executing program 3: 01:24:11 executing program 4: 01:24:11 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:11 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:11 executing program 1: 01:24:11 executing program 3: 01:24:11 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, 0xffffffffffffffff) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:11 executing program 4: 01:24:11 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) 01:24:11 executing program 1: 01:24:11 executing program 3: 01:24:12 executing program 4: 01:24:12 executing program 1: 01:24:12 executing program 3: 01:24:12 executing program 4: 01:24:12 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:12 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, 0xffffffffffffffff) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:12 executing program 1: 01:24:12 executing program 3: 01:24:13 executing program 4: 01:24:13 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) 01:24:13 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:13 executing program 1: 01:24:13 executing program 3: 01:24:13 executing program 4: 01:24:13 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:13 executing program 1: 01:24:13 executing program 4: 01:24:14 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, 0xffffffffffffffff) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:14 executing program 3: 01:24:14 executing program 1: 01:24:14 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:14 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) 01:24:14 executing program 4: 01:24:14 executing program 3: 01:24:14 executing program 1: 01:24:14 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:14 executing program 4: 01:24:14 executing program 3: 01:24:14 executing program 1: 01:24:15 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:15 executing program 4: 01:24:15 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f0000000200)='\n', 0xfffffdef, 0x43c49, 0x0, 0x1f4) 01:24:15 executing program 3: 01:24:15 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:15 executing program 1: 01:24:15 executing program 4: 01:24:15 executing program 3: 01:24:15 executing program 4: 01:24:15 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x43c49, 0x0, 0x0) 01:24:15 executing program 1: 01:24:15 executing program 3: 01:24:16 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:16 executing program 4: 01:24:16 executing program 1: 01:24:16 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x43c49, 0x0, 0x0) 01:24:16 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:16 executing program 3: 01:24:16 executing program 4: 01:24:16 executing program 1: 01:24:16 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x43c49, 0x0, 0x0) 01:24:16 executing program 4: 01:24:16 executing program 1: 01:24:16 executing program 3: 01:24:17 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:17 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200), 0x0, 0x43c49, 0x0, 0x0) 01:24:17 executing program 1: 01:24:17 executing program 4: 01:24:17 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:17 executing program 3: 01:24:17 executing program 4: 01:24:17 executing program 1: 01:24:17 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200), 0x0, 0x43c49, 0x0, 0x0) 01:24:17 executing program 3: 01:24:17 executing program 1: 01:24:17 executing program 4: 01:24:18 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:18 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200), 0x0, 0x43c49, 0x0, 0x0) 01:24:18 executing program 1: 01:24:18 executing program 4: 01:24:18 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0) 01:24:18 executing program 3: 01:24:18 executing program 1: 01:24:18 executing program 4: 01:24:18 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0x1, 0x0, 0x0, 0x0) 01:24:18 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:18 executing program 4: 01:24:18 executing program 1: 01:24:18 executing program 3: 01:24:18 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:19 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0x1, 0x0, 0x0, 0x0) 01:24:19 executing program 4: 01:24:19 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0) 01:24:19 executing program 3: 01:24:19 executing program 1: 01:24:19 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:19 executing program 4: 01:24:19 executing program 5: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0xe0}]}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0x1, 0x0, 0x0, 0x0) 01:24:19 executing program 1: 01:24:19 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0) 01:24:19 executing program 3: 01:24:19 executing program 4: 01:24:19 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:19 executing program 1: 01:24:20 executing program 3: 01:24:20 executing program 5: 01:24:20 executing program 4: 01:24:20 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) shutdown(0xffffffffffffffff, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:20 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) 01:24:20 executing program 1: 01:24:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:20 executing program 4: r0 = socket$kcm(0xa, 0x2, 0x73) sendmmsg$inet_sctp(r0, &(0x7f000001c840)=[{&(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @loopback={0x0, 0x7d}}, 0x1c, 0x0}], 0x37, 0xfc00) 01:24:20 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x5606, 0x0) 01:24:20 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r1, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) 01:24:20 executing program 1: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x14, &(0x7f0000000080)={r2}, 0x8) 01:24:20 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 01:24:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:21 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @remote}}) write$tun(r0, &(0x7f0000000600)={@void, @val, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "9eef7b", 0x10, 0x3a, 0x0, @empty, @mcast2, {[@hopopts], @echo_request}}}}, 0x42) 01:24:21 executing program 4: syz_open_dev$tty20(0xc, 0x4, 0x0) 01:24:21 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f0000000140)={@remote={0xfe, 0x80, [], 0xffffffffffffffff}}, 0x20) r5 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') preadv(r5, &(0x7f0000000400)=[{&(0x7f0000000000)=""/61, 0x3d}], 0x1, 0x0) 01:24:21 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) socket(0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:21 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b3c, 0x0) 01:24:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:21 executing program 4: r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000000)=[{0x80000006, 0x0, 0x0, 0x8000}]}, 0x10) pipe(&(0x7f0000000240)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, [], 0x1c}, 0xd}, 0x1c) sendto$inet6(r1, &(0x7f0000000200)='\n', 0xfffffdef, 0x40080, 0x0, 0x1f4) 01:24:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:21 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 01:24:22 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) socket(0x0, 0x0, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:22 executing program 1: r0 = socket$packet(0x11, 0x2, 0x300) fcntl$setlease(r0, 0x400, 0x2) 01:24:22 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b45, 0x0) 01:24:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) dup3(r0, r1, 0x0) 01:24:22 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000300)="6653070000053c2fbc3376003639405cb4aed12f0000001500ae", 0x1a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x3c) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x2) 01:24:22 executing program 2: socket$inet(0x2, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:23 executing program 3: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000000), &(0x7f0000000040)=0x8) 01:24:23 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 01:24:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) dup3(r0, r1, 0x0) 01:24:23 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) shmctl$IPC_INFO(0xffffffffffffffff, 0x3, 0x0) 01:24:23 executing program 3: r0 = perf_event_open(&(0x7f000025c000)={0x1, 0x84, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) open(0x0, 0x0, 0x0) sendto$inet(r2, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x53) 01:24:23 executing program 2: socket$inet(0x2, 0x0, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) dup3(r0, r1, 0x0) 01:24:23 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) getsockopt$packet_buf(r2, 0x107, 0xa, 0x0, &(0x7f0000000040)) 01:24:23 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:26 executing program 1: syz_mount_image$hfsplus(&(0x7f0000000640)='hfsplus\x00', &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="7e2c8f087af46670d37f9f4e6e4a1584ef2500"]) ioctl$VIDIOC_ENUMSTD(0xffffffffffffffff, 0xc0485619, &(0x7f0000000180)={0x2, 0xb700, "57993eb7c21e0fca13766a77f9c315c1b7981d69a21085c7", {0x9, 0x8}, 0x800}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x2000, 0x0) ioctl$sock_inet_SIOCSIFBRDADDR(r2, 0x891a, &(0x7f0000000140)={'wg1\x00', {0x2, 0x4e21, @remote}}) write$P9_RATTACH(r2, &(0x7f0000000080)={0x14, 0x69, 0x2, {0x8, 0x1}}, 0x14) memfd_create(&(0x7f00000000c0)='\r(O\\i\xf4\xf5h', 0x5) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(0xffffffffffffffff, r3, 0x0) ioctl$KVM_SET_CPUID(r4, 0x5000aea5, 0x0) dup2(r5, r4) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x4, 0x2, 0x2e, 0x6, 0x40, @private0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x17}}, 0x7800, 0x8000, 0xabe, 0x43b}}) sendmsg$can_raw(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300)={0x1d, r6}, 0x10, &(0x7f0000000380)={&(0x7f0000000340)=@can={{0x2, 0x0, 0x1}, 0x6, 0x2, 0x0, 0x0, "d4e81c8133b719ee"}, 0x10}, 0x1, 0x0, 0x0, 0x800}, 0x4020000) 01:24:26 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x24, r3, 0xf, 0x0, 0x0, {0xf}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}, @BATADV_ATTR_HOP_PENALTY={0x5}]}, 0x24}}, 0x0) 01:24:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:26 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:26 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 01:24:26 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b70, 0x0) 01:24:26 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x24, r3, 0xf, 0x0, 0x0, {0xf}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}, @BATADV_ATTR_HOP_PENALTY={0x5}]}, 0x24}}, 0x0) 01:24:26 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:26 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b34, 0x0) 01:24:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) [ 743.630413][T14665] hfsplus: unable to parse mount options 01:24:26 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b48, 0x0) [ 743.933643][T14665] hfsplus: unable to parse mount options 01:24:26 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180)='batadv\x00') sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x24, r3, 0xf, 0x0, 0x0, {0xf}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x24}}, 0x0) 01:24:26 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000002c0)="a6ec1609d0e9af7ca67394bedd38400c2b", 0x11) 01:24:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, 0xffffffffffffffff, 0x0) 01:24:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:27 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 01:24:27 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, 0xffffffffffffffff, 0x0) 01:24:27 executing program 1: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) 01:24:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup3(r0, r1, 0x0) dup2(r3, r2) 01:24:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, 0xffffffffffffffff, 0x0) 01:24:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:28 executing program 1: r0 = socket$kcm(0xa, 0x2, 0x73) sendmmsg$inet_sctp(r0, &(0x7f000001c840)=[{&(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @loopback={0x2001001000000000, 0x7d}}, 0x1c, 0x0}], 0x37, 0x0) 01:24:28 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) semctl$GETNCNT(0x0, 0x0, 0xe, 0x0) 01:24:28 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)) dup3(0xffffffffffffffff, r0, 0x0) 01:24:28 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:28 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) 01:24:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:28 executing program 1: msgrcv(0x0, 0x0, 0x0, 0xffffffffa0008000, 0x0) msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="020000565886c800"], 0x8, 0x0) 01:24:28 executing program 3: openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) syz_open_dev$amidi(&(0x7f0000000380)='/dev/amidi#\x00', 0x20000000000000, 0x0) getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000040), 0x0) ioctl$int_in(0xffffffffffffffff, 0x800000c004500a, &(0x7f0000000300)) perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000100), 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000000000), 0x0) 01:24:28 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)) dup3(0xffffffffffffffff, r0, 0x0) 01:24:29 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x541b, 0x0) 01:24:29 executing program 1: perf_event_open(&(0x7f000025c000)={0x1, 0x84, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r1, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x53) 01:24:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_SET_CPUID(r2, 0x8400ae8e, 0x0) 01:24:29 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000000c0)) dup3(0xffffffffffffffff, r0, 0x0) 01:24:29 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x541b, 0x0) [ 746.726079][T14779] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 01:24:29 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x1}}) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:29 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0) 01:24:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:29 executing program 3: clone(0x2000000024000300, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 01:24:30 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x541b, 0x0) 01:24:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0xae44, 0x0) 01:24:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:30 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f00000000c0)={"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"}) dup2(0xffffffffffffffff, 0xffffffffffffffff) 01:24:30 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x541b, 0x0) 01:24:30 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000240)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {r2}}, 0x10) 01:24:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:30 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) [ 748.052759][T14821] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=2149952708 (68798486656 ns) > initial count (1061715840 ns). Using initial count to start timer. 01:24:30 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0) 01:24:31 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x541b, 0x0) 01:24:31 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f00000000c0)={"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"}) dup2(0xffffffffffffffff, 0xffffffffffffffff) 01:24:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:31 executing program 3: clone(0x2101000ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet(0x2, 0x2000000080002, 0x0) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ftruncate(r1, 0x208200) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x2, 0x3, 0x290, 0xf0, 0x0, 0xf0, 0xf0, 0xf0, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x1f8, 0x3, 0x0, {[{{@ip={@multicast1, @multicast1, 0x0, 0x0, 'ip6gretap0\x00', '\x00', {}, {}, 0x73}, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@inet=@l2tp={{0x30, 'l2tp\x00'}, {0x0, 0x0, 0x2, 0x0, 0xc}}, @common=@ah={{0x30, 'ah\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@uncond, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f0) 01:24:31 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x541b, 0x0) [ 748.847058][T14851] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=2149952708 (68798486656 ns) > initial count (1061715840 ns). Using initial count to start timer. 01:24:31 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000300)="6653070000053c2fbc3376003639405cb4aed12f0000001500ae47a825d86800278dcff4", 0x24}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x3c) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x2) 01:24:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:32 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value, 0x8) 01:24:32 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:32 executing program 0: sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = dup2(r0, r0) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000000000), 0x4000223, 0x0, 0x0) ppoll(&(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0) [ 749.409826][T14876] sctp: [Deprecated]: syz-executor.1 (pid 14876) Use of struct sctp_assoc_value in delayed_ack socket option. [ 749.409826][T14876] Use struct sctp_sack_info instead 01:24:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:32 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000480)={0x0, 0xd, &(0x7f0000000080)}) 01:24:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:32 executing program 1: perf_event_open(&(0x7f000025c000)={0x1, 0x84, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r1, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x53) 01:24:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x541b, 0x0) 01:24:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0xae45, 0x0) 01:24:34 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x541b, 0x0) 01:24:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) 01:24:34 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) open_tree(0xffffffffffffff9c, 0x0, 0x9800) 01:24:34 executing program 2: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/timer\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000040)=""/114, 0x8}], 0x1) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 01:24:34 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) recvmmsg(r2, &(0x7f0000001880)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000440)=""/212, 0xd4}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) 01:24:35 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x541b, 0x0) 01:24:35 executing program 0: r0 = socket$kcm(0xa, 0x2, 0x73) fcntl$dupfd(r0, 0x868e0e8360384989, 0xffffffffffffffff) 01:24:35 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r5 = accept4(r4, 0x0, 0x0, 0x0) recvmmsg(r5, &(0x7f0000000780)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff4f}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/53, 0x33ff0}], 0x1}}], 0x8000000000002fe, 0x0, 0x0) 01:24:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) dup3(r0, r1, 0x0) [ 752.679220][T14943] ===================================================== [ 752.686299][T14943] BUG: KMSAN: uninit-value in kmsan_check_memory+0xd/0x10 [ 752.693414][T14943] CPU: 0 PID: 14943 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 752.702178][T14943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 752.712217][T14943] Call Trace: [ 752.715497][T14943] dump_stack+0x1df/0x240 [ 752.719830][T14943] kmsan_report+0xf7/0x1e0 [ 752.724232][T14943] kmsan_internal_check_memory+0x238/0x3d0 [ 752.730028][T14943] kmsan_check_memory+0xd/0x10 [ 752.734776][T14943] _copy_to_iter+0x3d4/0x26e0 [ 752.739437][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 752.744549][T14943] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 752.750363][T14943] __skb_datagram_iter+0x2bb/0x1220 [ 752.755545][T14943] ? skb_copy_datagram_iter+0x2b0/0x2b0 [ 752.761078][T14943] skb_copy_datagram_iter+0x292/0x2b0 [ 752.766524][T14943] packet_recvmsg+0x630/0x1c40 [ 752.771276][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 752.776392][T14943] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 752.782442][T14943] ? packet_sendmsg+0x87a0/0x87a0 [ 752.787464][T14943] ____sys_recvmsg+0xf58/0x1020 [ 752.792302][T14943] ? packet_sendmsg+0x87a0/0x87a0 [ 752.797320][T14943] ? get_compat_msghdr+0x209/0x270 [ 752.802411][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 752.807506][T14943] do_recvmmsg+0xb4b/0x1ee0 [ 752.812003][T14943] ? kmsan_internal_set_origin+0x75/0xb0 [ 752.817641][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 752.822753][T14943] ? __msan_poison_alloca+0xf0/0x120 [ 752.828021][T14943] ? __sys_recvmmsg+0xb4/0x510 [ 752.832763][T14943] ? __sys_recvmmsg+0xb4/0x510 [ 752.837517][T14943] ? kmsan_get_metadata+0x11d/0x180 [ 752.842696][T14943] __sys_recvmmsg+0x4ca/0x510 [ 752.847370][T14943] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 752.853423][T14943] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 752.859647][T14943] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 752.865784][T14943] __do_fast_syscall_32+0x2aa/0x400 [ 752.870970][T14943] do_fast_syscall_32+0x6b/0xd0 [ 752.875802][T14943] do_SYSENTER_32+0x73/0x90 [ 752.880286][T14943] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 752.886590][T14943] RIP: 0023:0xf7f09549 [ 752.890640][T14943] Code: Bad RIP value. [ 752.894684][T14943] RSP: 002b:00000000f5ce30cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 752.903072][T14943] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001880 [ 752.911019][T14943] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000 [ 752.918976][T14943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 752.926932][T14943] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 752.934896][T14943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 752.942870][T14943] [ 752.945175][T14943] Uninit was stored to memory at: [ 752.950179][T14943] kmsan_internal_chain_origin+0xad/0x130 [ 752.955874][T14943] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 752.961838][T14943] kmsan_memcpy_metadata+0xb/0x10 [ 752.966835][T14943] __msan_memcpy+0x43/0x50 [ 752.971248][T14943] pskb_expand_head+0x38b/0x1b00 [ 752.976235][T14943] batadv_skb_head_push+0x234/0x350 [ 752.981412][T14943] batadv_send_skb_packet+0x1a7/0x8c0 [ 752.986760][T14943] batadv_send_broadcast_skb+0x76/0x90 [ 752.992216][T14943] batadv_iv_send_outstanding_bat_ogm_packet+0x97e/0xd50 [ 752.999219][T14943] process_one_work+0x1540/0x1f30 [ 753.004221][T14943] worker_thread+0xed2/0x23f0 [ 753.008963][T14943] kthread+0x515/0x550 [ 753.013099][T14943] ret_from_fork+0x22/0x30 [ 753.017488][T14943] [ 753.019791][T14943] Uninit was created at: [ 753.024013][T14943] kmsan_save_stack_with_flags+0x3c/0x90 [ 753.029622][T14943] kmsan_alloc_page+0xb9/0x180 [ 753.034362][T14943] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 753.039884][T14943] page_frag_alloc+0x3ae/0x910 [ 753.044624][T14943] __netdev_alloc_skb+0x703/0xbb0 [ 753.049656][T14943] batadv_iv_ogm_queue_add+0x10da/0x1900 [ 753.055268][T14943] batadv_iv_ogm_schedule+0xd63/0x1430 [ 753.060715][T14943] batadv_iv_send_outstanding_bat_ogm_packet+0xbae/0xd50 [ 753.067709][T14943] process_one_work+0x1540/0x1f30 [ 753.072710][T14943] worker_thread+0xed2/0x23f0 [ 753.077373][T14943] kthread+0x515/0x550 [ 753.081421][T14943] ret_from_fork+0x22/0x30 [ 753.085893][T14943] [ 753.088199][T14943] Bytes 52-53 of 74 are uninitialized [ 753.093541][T14943] Memory access of size 74 starts at ffff93d16108ec40 [ 753.100273][T14943] ===================================================== [ 753.107189][T14943] Disabling lock debugging due to kernel taint [ 753.113312][T14943] Kernel panic - not syncing: panic_on_warn set ... [ 753.119877][T14943] CPU: 0 PID: 14943 Comm: syz-executor.1 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 753.129918][T14943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 753.139953][T14943] Call Trace: [ 753.143229][T14943] dump_stack+0x1df/0x240 [ 753.147539][T14943] panic+0x3d5/0xc3e [ 753.151422][T14943] kmsan_report+0x1df/0x1e0 [ 753.155905][T14943] kmsan_internal_check_memory+0x238/0x3d0 [ 753.161698][T14943] kmsan_check_memory+0xd/0x10 [ 753.166459][T14943] _copy_to_iter+0x3d4/0x26e0 [ 753.171111][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 753.176202][T14943] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 753.182004][T14943] __skb_datagram_iter+0x2bb/0x1220 [ 753.187184][T14943] ? skb_copy_datagram_iter+0x2b0/0x2b0 [ 753.192720][T14943] skb_copy_datagram_iter+0x292/0x2b0 [ 753.198085][T14943] packet_recvmsg+0x630/0x1c40 [ 753.202917][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 753.208015][T14943] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 753.214069][T14943] ? packet_sendmsg+0x87a0/0x87a0 [ 753.219077][T14943] ____sys_recvmsg+0xf58/0x1020 [ 753.223913][T14943] ? packet_sendmsg+0x87a0/0x87a0 [ 753.228926][T14943] ? get_compat_msghdr+0x209/0x270 [ 753.234019][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 753.239110][T14943] do_recvmmsg+0xb4b/0x1ee0 [ 753.243601][T14943] ? kmsan_internal_set_origin+0x75/0xb0 [ 753.249232][T14943] ? kmsan_get_metadata+0x4f/0x180 [ 753.254338][T14943] ? __msan_poison_alloca+0xf0/0x120 [ 753.259603][T14943] ? __sys_recvmmsg+0xb4/0x510 [ 753.264348][T14943] ? __sys_recvmmsg+0xb4/0x510 [ 753.269101][T14943] ? kmsan_get_metadata+0x11d/0x180 [ 753.274298][T14943] __sys_recvmmsg+0x4ca/0x510 [ 753.278967][T14943] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 753.285020][T14943] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 753.291239][T14943] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 753.297375][T14943] __do_fast_syscall_32+0x2aa/0x400 [ 753.302571][T14943] do_fast_syscall_32+0x6b/0xd0 [ 753.307403][T14943] do_SYSENTER_32+0x73/0x90 [ 753.311914][T14943] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 753.318218][T14943] RIP: 0023:0xf7f09549 [ 753.322263][T14943] Code: Bad RIP value. [ 753.326303][T14943] RSP: 002b:00000000f5ce30cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 753.334704][T14943] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001880 [ 753.342651][T14943] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000 [ 753.350598][T14943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 753.358544][T14943] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 753.366492][T14943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 753.375731][T14943] Kernel Offset: 0x14200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 753.387331][T14943] Rebooting in 86400 seconds..