0000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:51 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:51 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 385.958107][T10647] not chained 140000 origins [ 385.962859][T10647] CPU: 1 PID: 10647 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 385.971545][T10647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.981755][T10647] Call Trace: [ 385.985307][T10647] dump_stack+0x1df/0x240 [ 385.989682][T10647] kmsan_internal_chain_origin+0x6f/0x130 [ 385.995562][T10647] ? kmsan_get_metadata+0x4f/0x180 [ 386.000710][T10647] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 386.006647][T10647] ? __msan_poison_alloca+0xf0/0x120 [ 386.012068][T10647] ? kmsan_get_metadata+0x11d/0x180 [ 386.017876][T10647] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 386.023813][T10647] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 386.029907][T10647] ? kfree+0x61/0x30f0 [ 386.034004][T10647] ? kmsan_get_metadata+0x4f/0x180 [ 386.039230][T10647] ? kmsan_set_origin_checked+0x95/0xf0 [ 386.044813][T10647] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 386.051189][T10647] ? _copy_from_user+0x15b/0x260 [ 386.056158][T10647] ? kmsan_get_metadata+0x4f/0x180 [ 386.061313][T10647] __msan_chain_origin+0x50/0x90 [ 386.066406][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.071078][T10647] ? __msan_poison_alloca+0xf0/0x120 [ 386.076483][T10647] ? __se_sys_recvmmsg+0xac/0x350 [ 386.081650][T10647] ? __se_sys_recvmmsg+0xac/0x350 [ 386.087489][T10647] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 386.093508][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.099560][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.104450][T10647] do_syscall_64+0xb0/0x150 [ 386.109065][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.115164][T10647] RIP: 0033:0x45c1d9 [ 386.119076][T10647] Code: Bad RIP value. [ 386.123244][T10647] RSP: 002b:00007f550722fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 386.131679][T10647] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 386.139670][T10647] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 386.147832][T10647] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 386.155828][T10647] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 386.163941][T10647] R13: 0000000000c9fb6f R14: 00007f55072309c0 R15: 000000000078bf0c [ 386.171942][T10647] Uninit was stored to memory at: [ 386.177080][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.182816][T10647] __msan_chain_origin+0x50/0x90 [ 386.187773][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.192504][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.197555][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.202488][T10647] do_syscall_64+0xb0/0x150 [ 386.207028][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.214411][T10647] [ 386.216762][T10647] Uninit was stored to memory at: [ 386.221878][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.227619][T10647] __msan_chain_origin+0x50/0x90 [ 386.232580][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.237410][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.242381][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.247563][T10647] do_syscall_64+0xb0/0x150 [ 386.252273][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.258270][T10647] [ 386.260699][T10647] Uninit was stored to memory at: [ 386.265830][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.271566][T10647] __msan_chain_origin+0x50/0x90 [ 386.276609][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.281216][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.286290][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.291349][T10647] do_syscall_64+0xb0/0x150 [ 386.295867][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.301762][T10647] [ 386.304095][T10647] Uninit was stored to memory at: [ 386.309215][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.314951][T10647] __msan_chain_origin+0x50/0x90 [ 386.319902][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.324510][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.329557][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.334426][T10647] do_syscall_64+0xb0/0x150 [ 386.338951][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.345022][T10647] [ 386.347448][T10647] Uninit was stored to memory at: [ 386.352673][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.358586][T10647] __msan_chain_origin+0x50/0x90 [ 386.363546][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.369393][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.374504][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.379505][T10647] do_syscall_64+0xb0/0x150 [ 386.384028][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.390226][T10647] [ 386.392565][T10647] Uninit was stored to memory at: [ 386.397617][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.403358][T10647] __msan_chain_origin+0x50/0x90 [ 386.408457][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.413176][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.418335][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.423283][T10647] do_syscall_64+0xb0/0x150 [ 386.427904][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.433802][T10647] [ 386.437341][T10647] Uninit was stored to memory at: [ 386.442685][T10647] kmsan_internal_chain_origin+0xad/0x130 [ 386.448428][T10647] __msan_chain_origin+0x50/0x90 [ 386.453493][T10647] do_recvmmsg+0x105a/0x1ee0 [ 386.458101][T10647] __se_sys_recvmmsg+0x1d1/0x350 [ 386.463065][T10647] __x64_sys_recvmmsg+0x62/0x80 [ 386.468083][T10647] do_syscall_64+0xb0/0x150 [ 386.472607][T10647] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 386.478502][T10647] [ 386.480984][T10647] Local variable ----msg_sys@do_recvmmsg created at: [ 386.487679][T10647] do_recvmmsg+0xc5/0x1ee0 [ 386.492115][T10647] do_recvmmsg+0xc5/0x1ee0 23:18:52 executing program 0: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:52 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:53 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:53 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 387.754634][T10670] not chained 150000 origins [ 387.759452][T10670] CPU: 1 PID: 10670 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 387.768165][T10670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.778400][T10670] Call Trace: [ 387.781727][T10670] dump_stack+0x1df/0x240 [ 387.786102][T10670] kmsan_internal_chain_origin+0x6f/0x130 [ 387.792236][T10670] ? kmsan_get_metadata+0x4f/0x180 [ 387.797607][T10670] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 387.803616][T10670] ? __msan_poison_alloca+0xf0/0x120 [ 387.809060][T10670] ? kmsan_get_metadata+0x11d/0x180 [ 387.814475][T10670] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 387.820315][T10670] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 387.826414][T10670] ? kfree+0x61/0x30f0 [ 387.830660][T10670] ? kmsan_get_metadata+0x4f/0x180 [ 387.835808][T10670] ? kmsan_set_origin_checked+0x95/0xf0 [ 387.841437][T10670] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 387.847548][T10670] ? _copy_from_user+0x15b/0x260 [ 387.852524][T10670] ? kmsan_get_metadata+0x4f/0x180 [ 387.857760][T10670] __msan_chain_origin+0x50/0x90 [ 387.862877][T10670] do_recvmmsg+0x105a/0x1ee0 [ 387.867554][T10670] ? __msan_poison_alloca+0xf0/0x120 [ 387.872874][T10670] ? __se_sys_recvmmsg+0xac/0x350 [ 387.877927][T10670] ? __se_sys_recvmmsg+0xac/0x350 [ 387.882980][T10670] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 387.888917][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 387.894064][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 387.899182][T10670] do_syscall_64+0xb0/0x150 [ 387.903730][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 387.909645][T10670] RIP: 0033:0x45c1d9 [ 387.913557][T10670] Code: Bad RIP value. [ 387.917637][T10670] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 387.926106][T10670] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 387.934195][T10670] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 387.942187][T10670] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 387.950292][T10670] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 387.958377][T10670] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 387.966385][T10670] Uninit was stored to memory at: [ 387.971442][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 387.977178][T10670] __msan_chain_origin+0x50/0x90 [ 387.982140][T10670] do_recvmmsg+0x105a/0x1ee0 [ 387.986747][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 387.991775][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 387.996738][T10670] do_syscall_64+0xb0/0x150 23:18:53 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 388.001432][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.007329][T10670] [ 388.009665][T10670] Uninit was stored to memory at: [ 388.014712][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.020449][T10670] __msan_chain_origin+0x50/0x90 [ 388.025411][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.030021][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.035016][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.039986][T10670] do_syscall_64+0xb0/0x150 [ 388.044703][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.050624][T10670] [ 388.052965][T10670] Uninit was stored to memory at: [ 388.058046][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.063928][T10670] __msan_chain_origin+0x50/0x90 [ 388.068883][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.073488][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.078436][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.083299][T10670] do_syscall_64+0xb0/0x150 [ 388.087953][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.094097][T10670] [ 388.096435][T10670] Uninit was stored to memory at: [ 388.101475][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.107214][T10670] __msan_chain_origin+0x50/0x90 [ 388.112176][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.116795][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.121746][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.126701][T10670] do_syscall_64+0xb0/0x150 [ 388.131244][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.137139][T10670] [ 388.139477][T10670] Uninit was stored to memory at: [ 388.144523][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.150340][T10670] __msan_chain_origin+0x50/0x90 [ 388.155293][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.159903][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.164855][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.169726][T10670] do_syscall_64+0xb0/0x150 [ 388.174245][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.180135][T10670] [ 388.182616][T10670] Uninit was stored to memory at: [ 388.187830][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.193570][T10670] __msan_chain_origin+0x50/0x90 [ 388.198655][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.204043][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.209017][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.213888][T10670] do_syscall_64+0xb0/0x150 [ 388.218536][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.224429][T10670] [ 388.226763][T10670] Uninit was stored to memory at: [ 388.231984][T10670] kmsan_internal_chain_origin+0xad/0x130 [ 388.237806][T10670] __msan_chain_origin+0x50/0x90 [ 388.242758][T10670] do_recvmmsg+0x105a/0x1ee0 [ 388.247365][T10670] __se_sys_recvmmsg+0x1d1/0x350 [ 388.252412][T10670] __x64_sys_recvmmsg+0x62/0x80 [ 388.257289][T10670] do_syscall_64+0xb0/0x150 [ 388.261817][T10670] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 388.267709][T10670] [ 388.270050][T10670] Local variable ----msg_sys@do_recvmmsg created at: [ 388.276830][T10670] do_recvmmsg+0xc5/0x1ee0 [ 388.282300][T10670] do_recvmmsg+0xc5/0x1ee0 [ 388.596141][ C0] sd 0:0:1:0: [sg0] tag#7899 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 388.606880][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB: Test Unit Ready [ 388.613696][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.623668][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.633488][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.643304][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.653241][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.663052][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.673262][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.683167][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 23:18:54 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000140)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x2c, r1, 0x400, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0xff}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}]}, 0x2c}}, 0x20044801) [ 388.693326][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.703360][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.713208][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.723263][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 388.738203][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[c0]: 00 00 00 00 00 00 00 00 23:18:54 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:54 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x4000, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000040)={{{@in6=@private1, @in6=@remote}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, &(0x7f0000000140)=0xe8) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r4, @ANYBLOB="00200000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000200)=@req={0x28, &(0x7f00000001c0)={'veth1_to_team\x00', @ifru_settings={0x27, 0x1, @cisco=&(0x7f0000000180)={0x5b, 0x4}}}}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') [ 389.094616][T10683] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 389.142709][ C1] sd 0:0:1:0: [sg0] tag#4126 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 389.153596][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB: Test Unit Ready [ 389.160503][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.170404][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.180355][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.190343][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.199942][T10690] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 389.200276][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.219492][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.229559][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.239475][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.249538][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.259447][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.269375][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.279335][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.289524][ C1] sd 0:0:1:0: [sg0] tag#4126 CDB[c0]: 00 00 00 00 00 00 00 00 23:18:55 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:55 executing program 2: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:55 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000340)={0x442da469, {{0xa, 0x4e20, 0x1, @private2, 0x6}}, 0x0, 0x8, [{{0xa, 0x4e23, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x6}}, {{0xa, 0x4e24, 0x5, @mcast1, 0x4}}, {{0xa, 0x4e22, 0x40, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x400000}}, {{0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, [], 0xd}, 0x1540}}, {{0xa, 0x4e21, 0x2, @local, 0x3}}, {{0xa, 0x4e22, 0x3, @private1, 0x6}}, {{0xa, 0x4e23, 0x9, @mcast1, 0x1}}, {{0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, [], 0x42}, 0x400}}]}, 0x490) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$CAPI_REGISTER(r1, 0x400c4301, &(0x7f0000000000)={0x200, 0xde68}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 23:18:55 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 389.743069][ C0] sd 0:0:1:0: [sg0] tag#7900 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 389.753903][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB: Test Unit Ready [ 389.760612][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.770784][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.780640][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.790546][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.800385][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.810418][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.821254][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.831151][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.840987][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.850839][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.860665][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.870497][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 389.880313][ C0] sd 0:0:1:0: [sg0] tag#7900 CDB[c0]: 00 00 00 00 00 00 00 00 23:18:55 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:55 executing program 1: r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)="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") ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/tcp6\x00') r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_GET(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="78010000", @ANYRES16=r2, @ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') [ 390.168883][T10714] not chained 160000 origins [ 390.173546][T10714] CPU: 1 PID: 10714 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 390.182222][T10714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.192292][T10714] Call Trace: [ 390.195617][T10714] dump_stack+0x1df/0x240 [ 390.199977][T10714] kmsan_internal_chain_origin+0x6f/0x130 [ 390.205719][T10714] ? kmsan_get_metadata+0x4f/0x180 [ 390.210853][T10714] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 390.216770][T10714] ? __msan_poison_alloca+0xf0/0x120 [ 390.222089][T10714] ? kmsan_get_metadata+0x11d/0x180 [ 390.227323][T10714] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 390.233148][T10714] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 390.239238][T10714] ? kfree+0x61/0x30f0 [ 390.243334][T10714] ? kmsan_get_metadata+0x4f/0x180 [ 390.248465][T10714] ? kmsan_set_origin_checked+0x95/0xf0 [ 390.254046][T10714] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 390.260143][T10714] ? _copy_from_user+0x15b/0x260 [ 390.265099][T10714] ? kmsan_get_metadata+0x4f/0x180 [ 390.270238][T10714] __msan_chain_origin+0x50/0x90 [ 390.275206][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.279892][T10714] ? __msan_poison_alloca+0xf0/0x120 [ 390.285203][T10714] ? __se_sys_recvmmsg+0xac/0x350 [ 390.290252][T10714] ? __se_sys_recvmmsg+0xac/0x350 [ 390.295295][T10714] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 390.301216][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.306204][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.311085][T10714] do_syscall_64+0xb0/0x150 [ 390.315617][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.321521][T10714] RIP: 0033:0x45c1d9 [ 390.325414][T10714] Code: Bad RIP value. [ 390.329486][T10714] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 390.337913][T10714] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 390.345898][T10714] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 390.353881][T10714] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 390.361871][T10714] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 390.369864][T10714] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 390.377863][T10714] Uninit was stored to memory at: [ 390.382910][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.388648][T10714] __msan_chain_origin+0x50/0x90 [ 390.393603][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.399181][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.404139][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.409030][T10714] do_syscall_64+0xb0/0x150 [ 390.413552][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.419443][T10714] [ 390.421772][T10714] Uninit was stored to memory at: [ 390.426815][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.432551][T10714] __msan_chain_origin+0x50/0x90 [ 390.437512][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.442115][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.447066][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.451939][T10714] do_syscall_64+0xb0/0x150 [ 390.456481][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.462376][T10714] [ 390.464705][T10714] Uninit was stored to memory at: [ 390.469748][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.475487][T10714] __msan_chain_origin+0x50/0x90 [ 390.480445][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.485074][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.490026][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.494894][T10714] do_syscall_64+0xb0/0x150 [ 390.499417][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.505318][T10714] [ 390.507645][T10714] Uninit was stored to memory at: [ 390.512685][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.518416][T10714] __msan_chain_origin+0x50/0x90 [ 390.523368][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.527968][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.532917][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.537782][T10714] do_syscall_64+0xb0/0x150 [ 390.542304][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.548194][T10714] [ 390.550521][T10714] Uninit was stored to memory at: [ 390.555559][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.561314][T10714] __msan_chain_origin+0x50/0x90 [ 390.566265][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.570865][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.575812][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.580715][T10714] do_syscall_64+0xb0/0x150 [ 390.585234][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.591123][T10714] [ 390.593457][T10714] Uninit was stored to memory at: [ 390.598501][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.604230][T10714] __msan_chain_origin+0x50/0x90 [ 390.609178][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.613776][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.618729][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.623589][T10714] do_syscall_64+0xb0/0x150 [ 390.628103][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.633991][T10714] [ 390.636318][T10714] Uninit was stored to memory at: [ 390.641379][T10714] kmsan_internal_chain_origin+0xad/0x130 [ 390.647111][T10714] __msan_chain_origin+0x50/0x90 [ 390.652059][T10714] do_recvmmsg+0x105a/0x1ee0 [ 390.656661][T10714] __se_sys_recvmmsg+0x1d1/0x350 [ 390.661605][T10714] __x64_sys_recvmmsg+0x62/0x80 [ 390.666466][T10714] do_syscall_64+0xb0/0x150 [ 390.670983][T10714] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.676867][T10714] [ 390.679199][T10714] Local variable ----msg_sys@do_recvmmsg created at: [ 390.685879][T10714] do_recvmmsg+0xc5/0x1ee0 [ 390.690303][T10714] do_recvmmsg+0xc5/0x1ee0 23:18:56 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:56 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:56 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:18:56 executing program 2: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:56 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 391.383872][ C1] sd 0:0:1:0: [sg0] tag#4127 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 391.394679][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB: Test Unit Ready [ 391.401306][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.411215][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.421119][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.431048][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.440884][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.450722][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.460561][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.470421][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.480260][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.490095][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.499932][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.509767][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 391.519639][ C1] sd 0:0:1:0: [sg0] tag#4127 CDB[c0]: 00 00 00 00 00 00 00 00 23:18:57 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:57 executing program 1: r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x2, 0x80) setsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, &(0x7f0000000040), 0x4) r1 = accept(r0, 0x0, &(0x7f0000000080)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r3, 0x800443d2, &(0x7f00000001c0)={0x2, &(0x7f0000000180)=[{}, {@none}]}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x0, &(0x7f0000000200)=0x421, 0x4) getsockname$unix(r1, &(0x7f00000000c0)=@abs, &(0x7f0000000140)=0x6e) 23:18:57 executing program 2: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:57 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 392.249805][T10747] not chained 170000 origins [ 392.254442][T10747] CPU: 1 PID: 10747 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 392.263115][T10747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.273178][T10747] Call Trace: [ 392.276488][T10747] dump_stack+0x1df/0x240 [ 392.280836][T10747] kmsan_internal_chain_origin+0x6f/0x130 [ 392.286562][T10747] ? kmsan_get_metadata+0x4f/0x180 [ 392.291683][T10747] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 392.297587][T10747] ? __msan_poison_alloca+0xf0/0x120 [ 392.302898][T10747] ? kmsan_get_metadata+0x11d/0x180 [ 392.308124][T10747] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 392.313959][T10747] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 392.320039][T10747] ? kfree+0x61/0x30f0 [ 392.324126][T10747] ? kmsan_get_metadata+0x4f/0x180 [ 392.329246][T10747] ? kmsan_set_origin_checked+0x95/0xf0 [ 392.334801][T10747] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 392.340887][T10747] ? _copy_from_user+0x15b/0x260 [ 392.345832][T10747] ? kmsan_get_metadata+0x4f/0x180 [ 392.350988][T10747] __msan_chain_origin+0x50/0x90 [ 392.355945][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.360605][T10747] ? __msan_poison_alloca+0xf0/0x120 [ 392.365925][T10747] ? __se_sys_recvmmsg+0xac/0x350 [ 392.370974][T10747] ? __se_sys_recvmmsg+0xac/0x350 [ 392.376009][T10747] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 392.381915][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.386879][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.391745][T10747] do_syscall_64+0xb0/0x150 [ 392.396262][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.402160][T10747] RIP: 0033:0x45c1d9 [ 392.406045][T10747] Code: Bad RIP value. [ 392.410111][T10747] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 392.418554][T10747] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 392.426536][T10747] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 392.434513][T10747] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 392.442487][T10747] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 392.450462][T10747] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 392.458456][T10747] Uninit was stored to memory at: [ 392.463499][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.469224][T10747] __msan_chain_origin+0x50/0x90 [ 392.474187][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.478800][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.483746][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.488606][T10747] do_syscall_64+0xb0/0x150 [ 392.493121][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.499002][T10747] [ 392.501324][T10747] Uninit was stored to memory at: [ 392.506357][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.512084][T10747] __msan_chain_origin+0x50/0x90 [ 392.517033][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.521626][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.526567][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.531424][T10747] do_syscall_64+0xb0/0x150 [ 392.535946][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.541826][T10747] [ 392.544149][T10747] Uninit was stored to memory at: [ 392.549177][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.554896][T10747] __msan_chain_origin+0x50/0x90 [ 392.559839][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.564433][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.569370][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.574223][T10747] do_syscall_64+0xb0/0x150 [ 392.578728][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.584610][T10747] [ 392.586941][T10747] Uninit was stored to memory at: [ 392.591980][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.597702][T10747] __msan_chain_origin+0x50/0x90 [ 392.602645][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.607242][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.612210][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.617068][T10747] do_syscall_64+0xb0/0x150 [ 392.621572][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.627482][T10747] [ 392.629809][T10747] Uninit was stored to memory at: [ 392.634840][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.640561][T10747] __msan_chain_origin+0x50/0x90 [ 392.645507][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.650108][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.655054][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.659913][T10747] do_syscall_64+0xb0/0x150 [ 392.664418][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.670300][T10747] [ 392.672624][T10747] Uninit was stored to memory at: [ 392.677660][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.683384][T10747] __msan_chain_origin+0x50/0x90 [ 392.688328][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.692924][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.697876][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.702739][T10747] do_syscall_64+0xb0/0x150 [ 392.707249][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.713131][T10747] [ 392.715454][T10747] Uninit was stored to memory at: [ 392.730129][T10747] kmsan_internal_chain_origin+0xad/0x130 [ 392.735859][T10747] __msan_chain_origin+0x50/0x90 [ 392.740807][T10747] do_recvmmsg+0x105a/0x1ee0 [ 392.745401][T10747] __se_sys_recvmmsg+0x1d1/0x350 [ 392.750344][T10747] __x64_sys_recvmmsg+0x62/0x80 [ 392.755200][T10747] do_syscall_64+0xb0/0x150 [ 392.760425][T10747] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 392.766312][T10747] [ 392.768639][T10747] Local variable ----msg_sys@do_recvmmsg created at: [ 392.775319][T10747] do_recvmmsg+0xc5/0x1ee0 [ 392.779741][T10747] do_recvmmsg+0xc5/0x1ee0 [ 392.895320][ C1] sd 0:0:1:0: [sg0] tag#4128 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 392.905962][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB: Test Unit Ready [ 392.912710][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.922553][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.932528][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.942377][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.952219][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.962070][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.971899][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.981739][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 392.991490][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.001360][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.011196][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.021038][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.030861][ C1] sd 0:0:1:0: [sg0] tag#4128 CDB[c0]: 00 00 00 00 00 00 00 00 [ 393.227444][T10754] IPVS: ftp: loaded support on port[0] = 21 23:18:58 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:58 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000280)=0x1) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r2 = add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000940)='big_key\x00', &(0x7f00000000c0)={'syz'}, 0x0, 0x0, r2) r3 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400)="e4a889e5a1aa9ba248beeca0aab439085f21cd3142b6a2e635593a8bed94ecbf3b45d2fe6dbabc07952bd875b5260159b5dee7abbd48c93728d0039eb0d0e7224a631bf0375053c02f73033323b154ab96f58e7ff2d7b87d080072e27afaa7a487e1114a7cce544c2553a7348f6d68c50c24139998d4a096377ec7ac33275ec4aca0940ca6835537f250bebc4caa84d966adf2b755", 0x95, 0xfffffffffffffffd) keyctl$instantiate_iov(0x14, r2, &(0x7f0000000340)=[{&(0x7f0000000000)="67dd5e64feb7ea291061ffbbaa0c3feb0b274fed84808c53c75ed61ca8fe38c095625b1cd1cb80b690294cb47c15affaacfc456a895427436a62041a6517f041a369550ffdc480c8a948267328e5e9620046fd3656bf74e42df5e242c5236b87aeb0d490b0bf659499ba43908ee7c496f81305dd54171d323acf93b6d9d9f521fc3c5869a7cfbfd1472e4b5a29e2dc2b0632578fcb716c9393be2a2226a56355e32e71023849ab737b031d0ed277d8f11204cbeee56f0e4bceecd17ccc25dba363b82e1ce8c851a372bdda3de63262e68420fd34edfeb14ccd0b9646f2b6d3e15c8d95b9341eb1ba0228780bc04da86019355f26fd91", 0xf6}, {&(0x7f0000000100)="70457e489d7e0c05463028508221e0f231a1253d1f6774447465ea2831bc5872712df131791c74d1e1e4e014f133c5a49c4f63253c1b41e17a88f345", 0x3c}, {&(0x7f0000000140)="4055cb6fd6256fe4c15a493fc8af06233e59fd48c14e6a210e55be50ab02c714b56a564d76f3db836d5b45b79b7d3c3fd9b43f2411a2868edc3381f4afbc7209d6fcd795e6fbe183ac6c2e28e0bd088075df418d97a06ee127be5787a48bfeec68f940df22c113529a9d49d7c2999ab750e499a14019e55cd2f3a5788dbc2502081af5f1a216f9a45053c59f452715c4b2ef95ca438084ea5db6a98c44f33c04589c91e5a05573c9ad95bd0c29537d04", 0xb0}, {&(0x7f0000000200)="81c1f8a906ed619e310bb84057bfcb275e7a890dea5f74111d36489b1a9558e04e149e901fa9cc12e5822e75bb1ea09a6adfa7594d0d2ae17db6094091b62e68d0b9", 0x42}, {&(0x7f0000000280)}], 0x5, r3) 23:18:58 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:18:58 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 393.464995][ C0] sd 0:0:1:0: [sg0] tag#7901 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 393.475635][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB: Test Unit Ready [ 393.482362][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.492272][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.502147][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.511993][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.521864][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.531719][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.541470][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.551352][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.561213][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.571093][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.580986][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.590863][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 393.600763][ C0] sd 0:0:1:0: [sg0] tag#7901 CDB[c0]: 00 00 00 00 00 00 00 00 23:18:59 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 393.925738][T10754] chnl_net:caif_netlink_parms(): no params data found [ 394.466617][T10754] bridge0: port 1(bridge_slave_0) entered blocking state [ 394.474165][T10754] bridge0: port 1(bridge_slave_0) entered disabled state [ 394.483704][T10754] device bridge_slave_0 entered promiscuous mode [ 394.645643][T10754] bridge0: port 2(bridge_slave_1) entered blocking state [ 394.653675][T10754] bridge0: port 2(bridge_slave_1) entered disabled state [ 394.663388][T10754] device bridge_slave_1 entered promiscuous mode [ 394.666321][ C1] sd 0:0:1:0: [sg0] tag#4129 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 394.680421][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB: Test Unit Ready [ 394.687105][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.696946][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.706753][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.716648][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.726489][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.736329][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.746178][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.756027][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.765867][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.775709][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.785557][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.795396][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 394.805259][ C1] sd 0:0:1:0: [sg0] tag#4129 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:00 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r5, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x50, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x4}}, [@filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x20, 0x2, [@TCA_CGROUP_ACT={0x1c, 0x1, [@m_pedit={0x18, 0x0, 0x0, 0x0, {{0xa, 0x1, 'pedit\x00'}, {0x4}, {0x4}}}]}]}}]}, 0x50}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x4c, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x4}}, [@filter_kind_options=@f_cgroup={{0xb, 0x3, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_ACT={0x18, 0x1, [@m_ct={0x14, 0x2, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x4}, {0x4}}}]}]}}]}, 0x4c}}, 0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000000)='veth0_to_batadv\x00') 23:19:00 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 394.970621][T10754] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 395.029174][T10912] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 395.088721][ C1] sd 0:0:1:0: [sg0] tag#4130 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 395.099369][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB: Test Unit Ready [ 395.106149][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.115999][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.117821][T10754] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 395.125834][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.144764][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.154627][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.164479][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.174363][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.184212][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.194069][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.203925][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.213787][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.223654][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 395.233497][ C1] sd 0:0:1:0: [sg0] tag#4130 CDB[c0]: 00 00 00 00 00 00 00 00 [ 395.275196][T10919] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 395.354501][T10754] team0: Port device team_slave_0 added [ 395.367083][T10754] team0: Port device team_slave_1 added [ 395.416124][T10754] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 395.423276][T10754] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 395.449385][T10754] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 395.470082][T10754] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 395.477213][T10754] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 395.503342][T10754] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 395.682133][T10754] device hsr_slave_0 entered promiscuous mode [ 395.722820][T10754] device hsr_slave_1 entered promiscuous mode [ 395.748153][T10754] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 395.755936][T10754] Cannot create hsr debugfs directory [ 396.222783][T10754] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 396.298443][T10754] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 396.343157][T10754] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 396.441025][T10754] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 396.808438][T10754] 8021q: adding VLAN 0 to HW filter on device bond0 [ 396.844263][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 396.854743][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 396.879759][T10754] 8021q: adding VLAN 0 to HW filter on device team0 [ 396.913084][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 396.924608][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 396.934015][T10920] bridge0: port 1(bridge_slave_0) entered blocking state [ 396.941219][T10920] bridge0: port 1(bridge_slave_0) entered forwarding state [ 397.028883][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 397.038360][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 397.048840][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 397.058291][T10920] bridge0: port 2(bridge_slave_1) entered blocking state [ 397.065586][T10920] bridge0: port 2(bridge_slave_1) entered forwarding state [ 397.074668][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 397.085701][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 397.096675][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 397.107454][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 397.118023][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 397.128917][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 397.139368][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 397.149261][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 397.159070][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 397.169126][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 397.187322][T10754] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 397.197846][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 397.266006][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 397.275185][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 397.299193][T10754] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 397.390647][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 397.400847][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 397.467966][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 397.478741][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 397.499739][T10754] device veth0_vlan entered promiscuous mode [ 397.509629][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 397.520313][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 397.549499][T10754] device veth1_vlan entered promiscuous mode [ 397.632789][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 397.642608][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 397.652757][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 397.662882][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 397.685222][T10754] device veth0_macvtap entered promiscuous mode [ 397.722180][T10754] device veth1_macvtap entered promiscuous mode [ 397.771242][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 397.782005][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.792508][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 397.803098][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.813076][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 397.823644][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.833636][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 397.844258][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.854314][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 397.864917][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.879207][T10754] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 397.899146][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 397.908945][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 397.918638][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 397.928945][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 397.955814][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 397.966456][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.978925][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 397.989515][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.999489][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 398.010053][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 398.020052][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 398.030620][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 398.040612][T10754] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 398.051181][T10754] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 398.065350][T10754] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 398.073601][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 398.083849][T10920] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 398.398232][T10998] not chained 180000 origins [ 398.402887][T10998] CPU: 0 PID: 10998 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 398.411567][T10998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.421636][T10998] Call Trace: [ 398.424963][T10998] dump_stack+0x1df/0x240 [ 398.429329][T10998] kmsan_internal_chain_origin+0x6f/0x130 [ 398.435074][T10998] ? kmsan_get_metadata+0x4f/0x180 [ 398.440212][T10998] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 398.446137][T10998] ? __msan_poison_alloca+0xf0/0x120 [ 398.451454][T10998] ? kmsan_get_metadata+0x11d/0x180 [ 398.456687][T10998] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 398.462523][T10998] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 398.468611][T10998] ? kfree+0x61/0x30f0 [ 398.472718][T10998] ? kmsan_get_metadata+0x4f/0x180 [ 398.477850][T10998] ? kmsan_set_origin_checked+0x95/0xf0 [ 398.483431][T10998] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 398.489526][T10998] ? _copy_from_user+0x15b/0x260 [ 398.494483][T10998] ? kmsan_get_metadata+0x4f/0x180 [ 398.499612][T10998] __msan_chain_origin+0x50/0x90 [ 398.504582][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.509261][T10998] ? __msan_poison_alloca+0xf0/0x120 [ 398.514573][T10998] ? __se_sys_recvmmsg+0xac/0x350 [ 398.519618][T10998] ? __se_sys_recvmmsg+0xac/0x350 [ 398.524633][T10998] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 398.530543][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.535522][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.540400][T10998] do_syscall_64+0xb0/0x150 [ 398.544951][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.550874][T10998] RIP: 0033:0x45c1d9 [ 398.554766][T10998] Code: Bad RIP value. [ 398.558838][T10998] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 398.567269][T10998] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 398.575247][T10998] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 398.583230][T10998] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 398.591209][T10998] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 398.599196][T10998] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 398.607202][T10998] Uninit was stored to memory at: [ 398.612241][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.617978][T10998] __msan_chain_origin+0x50/0x90 [ 398.622955][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.627557][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.632506][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.637369][T10998] do_syscall_64+0xb0/0x150 [ 398.641881][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.647766][T10998] [ 398.650146][T10998] Uninit was stored to memory at: [ 398.655182][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.660908][T10998] __msan_chain_origin+0x50/0x90 [ 398.665856][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.670454][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.675403][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.680267][T10998] do_syscall_64+0xb0/0x150 [ 398.684787][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.690677][T10998] [ 398.693006][T10998] Uninit was stored to memory at: [ 398.698043][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.703775][T10998] __msan_chain_origin+0x50/0x90 [ 398.708724][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.713319][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.718261][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.723128][T10998] do_syscall_64+0xb0/0x150 [ 398.727644][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.733535][T10998] [ 398.735858][T10998] Uninit was stored to memory at: [ 398.740901][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.746630][T10998] __msan_chain_origin+0x50/0x90 [ 398.751600][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.756200][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.761168][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.766030][T10998] do_syscall_64+0xb0/0x150 [ 398.770545][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.776439][T10998] [ 398.778771][T10998] Uninit was stored to memory at: [ 398.783802][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.789526][T10998] __msan_chain_origin+0x50/0x90 [ 398.794472][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.799071][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.804017][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.808873][T10998] do_syscall_64+0xb0/0x150 [ 398.813387][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.819297][T10998] [ 398.821624][T10998] Uninit was stored to memory at: [ 398.826754][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.833116][T10998] __msan_chain_origin+0x50/0x90 [ 398.838065][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.842667][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.847613][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.852476][T10998] do_syscall_64+0xb0/0x150 [ 398.856989][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.862873][T10998] [ 398.865199][T10998] Uninit was stored to memory at: [ 398.870235][T10998] kmsan_internal_chain_origin+0xad/0x130 [ 398.875981][T10998] __msan_chain_origin+0x50/0x90 [ 398.880936][T10998] do_recvmmsg+0x105a/0x1ee0 [ 398.885536][T10998] __se_sys_recvmmsg+0x1d1/0x350 [ 398.890485][T10998] __x64_sys_recvmmsg+0x62/0x80 [ 398.895348][T10998] do_syscall_64+0xb0/0x150 [ 398.899862][T10998] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 398.905751][T10998] [ 398.908081][T10998] Local variable ----msg_sys@do_recvmmsg created at: [ 398.914763][T10998] do_recvmmsg+0xc5/0x1ee0 [ 398.919186][T10998] do_recvmmsg+0xc5/0x1ee0 23:19:04 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:04 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:04 executing program 2: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:04 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:04 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:04 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380)='devlink\x00') sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000640)={0x0, 0x36, &(0x7f0000000100)={&(0x7f0000000000)={0x3c, r2, 0x201, 0x0, 0x0, {0x21}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x3c}}, 0x0) sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000429bd7000ffdbdf25050000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000800030003000000080001007063690011000200303030303a30303a31302e300000000008000300000000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000300030000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000800030000000000"], 0xb0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4091) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') [ 399.311045][ C1] sd 0:0:1:0: [sg0] tag#4150 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 399.321851][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB: Test Unit Ready [ 399.328471][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.338392][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.348305][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.358232][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.368126][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.378011][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.387894][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.397769][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.407664][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.417517][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.427363][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.437212][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 399.447081][ C1] sd 0:0:1:0: [sg0] tag#4150 CDB[c0]: 00 00 00 00 00 00 00 00 [ 399.729579][T11021] not chained 190000 origins [ 399.734225][T11021] CPU: 1 PID: 11021 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 399.742897][T11021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.752965][T11021] Call Trace: [ 399.756287][T11021] dump_stack+0x1df/0x240 [ 399.760654][T11021] kmsan_internal_chain_origin+0x6f/0x130 [ 399.766414][T11021] ? kmsan_get_metadata+0x4f/0x180 [ 399.771548][T11021] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 399.777460][T11021] ? __msan_poison_alloca+0xf0/0x120 [ 399.782762][T11021] ? kmsan_get_metadata+0x11d/0x180 [ 399.787973][T11021] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 399.793796][T11021] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 399.799882][T11021] ? kfree+0x61/0x30f0 [ 399.803976][T11021] ? kmsan_get_metadata+0x4f/0x180 [ 399.809110][T11021] ? kmsan_set_origin_checked+0x95/0xf0 [ 399.814680][T11021] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 399.820773][T11021] ? _copy_from_user+0x15b/0x260 [ 399.825739][T11021] ? kmsan_get_metadata+0x4f/0x180 [ 399.830869][T11021] __msan_chain_origin+0x50/0x90 [ 399.835826][T11021] do_recvmmsg+0x105a/0x1ee0 [ 399.840484][T11021] ? __msan_poison_alloca+0xf0/0x120 [ 399.845788][T11021] ? __se_sys_recvmmsg+0xac/0x350 [ 399.850816][T11021] ? __se_sys_recvmmsg+0xac/0x350 [ 399.855851][T11021] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 399.861757][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 399.866725][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 399.871589][T11021] do_syscall_64+0xb0/0x150 [ 399.876113][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 399.882056][T11021] RIP: 0033:0x45c1d9 [ 399.885968][T11021] Code: Bad RIP value. [ 399.890043][T11021] RSP: 002b:00007fd7e348bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 399.898462][T11021] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 399.906438][T11021] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 399.914411][T11021] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 399.922386][T11021] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 399.930364][T11021] R13: 0000000000c9fb6f R14: 00007fd7e348c9c0 R15: 000000000078bfac [ 399.938377][T11021] Uninit was stored to memory at: [ 399.943420][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 399.949145][T11021] __msan_chain_origin+0x50/0x90 [ 399.954092][T11021] do_recvmmsg+0x105a/0x1ee0 [ 399.958685][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 399.963628][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 399.968483][T11021] do_syscall_64+0xb0/0x150 [ 399.972991][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 399.978874][T11021] [ 399.981197][T11021] Uninit was stored to memory at: [ 399.986232][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 399.991958][T11021] __msan_chain_origin+0x50/0x90 [ 399.996897][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.001488][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.006428][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.011285][T11021] do_syscall_64+0xb0/0x150 [ 400.015792][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.021670][T11021] [ 400.023995][T11021] Uninit was stored to memory at: [ 400.029032][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 400.034751][T11021] __msan_chain_origin+0x50/0x90 [ 400.039690][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.044290][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.049234][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.054131][T11021] do_syscall_64+0xb0/0x150 [ 400.058642][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.064540][T11021] [ 400.066859][T11021] Uninit was stored to memory at: [ 400.071885][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 400.077602][T11021] __msan_chain_origin+0x50/0x90 [ 400.082546][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.087210][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.092153][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.097004][T11021] do_syscall_64+0xb0/0x150 [ 400.101527][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.107415][T11021] [ 400.109740][T11021] Uninit was stored to memory at: [ 400.114776][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 400.120497][T11021] __msan_chain_origin+0x50/0x90 [ 400.125441][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.130030][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.134973][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.139822][T11021] do_syscall_64+0xb0/0x150 [ 400.144325][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.150207][T11021] [ 400.152529][T11021] Uninit was stored to memory at: [ 400.157563][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 400.163283][T11021] __msan_chain_origin+0x50/0x90 [ 400.168223][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.172815][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.177752][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.182607][T11021] do_syscall_64+0xb0/0x150 [ 400.187121][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.193026][T11021] [ 400.195356][T11021] Uninit was stored to memory at: [ 400.200389][T11021] kmsan_internal_chain_origin+0xad/0x130 [ 400.206114][T11021] __msan_chain_origin+0x50/0x90 [ 400.211073][T11021] do_recvmmsg+0x105a/0x1ee0 [ 400.215671][T11021] __se_sys_recvmmsg+0x1d1/0x350 [ 400.220620][T11021] __x64_sys_recvmmsg+0x62/0x80 [ 400.225477][T11021] do_syscall_64+0xb0/0x150 23:19:05 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:05 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:05 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 400.229994][T11021] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 400.235879][T11021] [ 400.238223][T11021] Local variable ----msg_sys@do_recvmmsg created at: [ 400.244923][T11021] do_recvmmsg+0xc5/0x1ee0 [ 400.249356][T11021] do_recvmmsg+0xc5/0x1ee0 23:19:05 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000000280)={0xa10000, 0x3, 0x1c, r5, 0x0, &(0x7f00000000c0)={0xd70ee9, 0x4, [], @value64}}) io_uring_register$IORING_REGISTER_BUFFERS(r9, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/118, 0x76}, {&(0x7f0000000400)=""/184, 0xb8}, {&(0x7f00000004c0)=""/160, 0xa0}, {&(0x7f0000000340)=""/105, 0x69}, {&(0x7f0000000580)=""/37, 0x25}], 0x5) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r10, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r10, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000000)={'vcan0\x00', {0x2, 0x4e21, @private=0xa010102}}) 23:19:05 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:06 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 400.565628][T11029] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 400.727008][ C1] sd 0:0:1:0: [sg0] tag#4151 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 400.737775][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB: Test Unit Ready [ 400.744544][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.754398][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.764244][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.774144][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.784003][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.793858][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.803707][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.813558][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.823391][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.833248][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.845007][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.854868][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 400.864711][ C1] sd 0:0:1:0: [sg0] tag#4151 CDB[c0]: 00 00 00 00 00 00 00 00 [ 400.874274][T11040] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 401.073957][T11029] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 401.107237][T11037] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 401.157724][T11057] not chained 200000 origins [ 401.162366][T11057] CPU: 1 PID: 11057 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 401.171047][T11057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.181128][T11057] Call Trace: [ 401.184462][T11057] dump_stack+0x1df/0x240 [ 401.188829][T11057] kmsan_internal_chain_origin+0x6f/0x130 [ 401.194573][T11057] ? kmsan_get_metadata+0x4f/0x180 [ 401.199716][T11057] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 401.205639][T11057] ? __msan_poison_alloca+0xf0/0x120 [ 401.210955][T11057] ? kmsan_get_metadata+0x11d/0x180 [ 401.216185][T11057] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 401.222011][T11057] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 401.228108][T11057] ? kfree+0x61/0x30f0 [ 401.232207][T11057] ? kmsan_get_metadata+0x4f/0x180 [ 401.237364][T11057] ? kmsan_set_origin_checked+0x95/0xf0 [ 401.242934][T11057] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 401.249032][T11057] ? _copy_from_user+0x15b/0x260 [ 401.253983][T11057] ? kmsan_get_metadata+0x4f/0x180 [ 401.259116][T11057] __msan_chain_origin+0x50/0x90 [ 401.264599][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.269281][T11057] ? __msan_poison_alloca+0xf0/0x120 [ 401.274593][T11057] ? __se_sys_recvmmsg+0xac/0x350 [ 401.279633][T11057] ? __se_sys_recvmmsg+0xac/0x350 [ 401.284677][T11057] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 401.290596][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.295563][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.300440][T11057] do_syscall_64+0xb0/0x150 [ 401.304962][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.310873][T11057] RIP: 0033:0x45c1d9 [ 401.314760][T11057] Code: Bad RIP value. [ 401.318823][T11057] RSP: 002b:00007fd7e348bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 401.327238][T11057] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 401.335215][T11057] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 401.343190][T11057] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 401.351176][T11057] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 401.359162][T11057] R13: 0000000000c9fb6f R14: 00007fd7e348c9c0 R15: 000000000078bfac [ 401.367162][T11057] Uninit was stored to memory at: [ 401.372207][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.377935][T11057] __msan_chain_origin+0x50/0x90 [ 401.382882][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.387482][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.392430][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.397290][T11057] do_syscall_64+0xb0/0x150 [ 401.401801][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.407681][T11057] [ 401.410006][T11057] Uninit was stored to memory at: [ 401.415039][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.420787][T11057] __msan_chain_origin+0x50/0x90 [ 401.425741][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.430342][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.435286][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.440140][T11057] do_syscall_64+0xb0/0x150 [ 401.444651][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.450535][T11057] [ 401.452857][T11057] Uninit was stored to memory at: [ 401.457890][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.463620][T11057] __msan_chain_origin+0x50/0x90 [ 401.468566][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.473164][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.478112][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.482973][T11057] do_syscall_64+0xb0/0x150 [ 401.487482][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.493376][T11057] [ 401.495717][T11057] Uninit was stored to memory at: [ 401.500750][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.506474][T11057] __msan_chain_origin+0x50/0x90 [ 401.511414][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.516007][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.520946][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.525800][T11057] do_syscall_64+0xb0/0x150 [ 401.530308][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.536188][T11057] [ 401.538511][T11057] Uninit was stored to memory at: [ 401.543548][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.549273][T11057] __msan_chain_origin+0x50/0x90 [ 401.554217][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.558811][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.563770][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.568631][T11057] do_syscall_64+0xb0/0x150 [ 401.573136][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.579016][T11057] [ 401.581333][T11057] Uninit was stored to memory at: [ 401.586359][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.592080][T11057] __msan_chain_origin+0x50/0x90 [ 401.597022][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.601614][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.606561][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.611417][T11057] do_syscall_64+0xb0/0x150 [ 401.615931][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.621813][T11057] [ 401.624137][T11057] Uninit was stored to memory at: [ 401.629188][T11057] kmsan_internal_chain_origin+0xad/0x130 [ 401.634911][T11057] __msan_chain_origin+0x50/0x90 [ 401.639956][T11057] do_recvmmsg+0x105a/0x1ee0 [ 401.644557][T11057] __se_sys_recvmmsg+0x1d1/0x350 [ 401.649503][T11057] __x64_sys_recvmmsg+0x62/0x80 [ 401.654370][T11057] do_syscall_64+0xb0/0x150 23:19:06 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 401.658887][T11057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 401.664770][T11057] [ 401.667096][T11057] Local variable ----msg_sys@do_recvmmsg created at: [ 401.673778][T11057] do_recvmmsg+0xc5/0x1ee0 [ 401.678200][T11057] do_recvmmsg+0xc5/0x1ee0 23:19:07 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:07 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:07 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:07 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x40) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r2, 0x0, 0x0) r3 = syz_open_procfs(r2, &(0x7f0000000100)='net/udp6\x00') ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x4400200) ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f00000000c0)={0x0, 0xbe, &(0x7f0000000000)="6a25de63f7c427a1bc71c48a16715cd742d1cd8d1a376f86a1a63894d538b0311a6badc22ac74b38aeb0d1d9b824de64373deda2d62ecaa5955ff2b9337d9125db9d64561b0694ee887f6b4935fc3e64a36e81a5e371e9753d82d9f9bf3e256aaf58bb34237e0adb41028f024b9ed305d6f77171d97bc968169354da3eb391cf0526549c003ae8461ca0c2461b4c132bcbce5939c612242d804df916ea2a65c08e5f5314f811ce25fd4e91d103ef5e3a2fc8c112b55167ee6d5606cc27cd"}) 23:19:07 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 402.315444][ C1] sd 0:0:1:0: [sg0] tag#4152 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 402.326279][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB: Test Unit Ready [ 402.333054][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.342909][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.352762][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.362679][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.372532][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.382410][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.392338][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.402239][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.412153][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.422066][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.431990][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.441899][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 402.451889][ C1] sd 0:0:1:0: [sg0] tag#4152 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:08 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:19:08 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 3: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:19:08 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:08 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 403.318313][T11116] not chained 210000 origins [ 403.322972][T11116] CPU: 1 PID: 11116 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 403.331654][T11116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.341712][T11116] Call Trace: [ 403.345023][T11116] dump_stack+0x1df/0x240 [ 403.349378][T11116] kmsan_internal_chain_origin+0x6f/0x130 [ 403.355134][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 403.360268][T11116] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 403.366193][T11116] ? __msan_poison_alloca+0xf0/0x120 [ 403.371518][T11116] ? kmsan_get_metadata+0x11d/0x180 [ 403.376761][T11116] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 403.382682][T11116] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 403.388788][T11116] ? kfree+0x61/0x30f0 [ 403.392883][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 403.398016][T11116] ? kmsan_set_origin_checked+0x95/0xf0 [ 403.403717][T11116] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 403.409819][T11116] ? _copy_from_user+0x15b/0x260 [ 403.414777][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 403.419905][T11116] __msan_chain_origin+0x50/0x90 [ 403.424896][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.429571][T11116] ? __msan_poison_alloca+0xf0/0x120 [ 403.434878][T11116] ? __se_sys_recvmmsg+0xac/0x350 [ 403.439915][T11116] ? __se_sys_recvmmsg+0xac/0x350 [ 403.444964][T11116] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 403.451138][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.456137][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.461008][T11116] do_syscall_64+0xb0/0x150 [ 403.465536][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.471441][T11116] RIP: 0033:0x45c1d9 [ 403.475334][T11116] Code: Bad RIP value. [ 403.479404][T11116] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 403.487831][T11116] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 403.495844][T11116] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 403.503831][T11116] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 403.511818][T11116] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 403.519802][T11116] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 403.527799][T11116] Uninit was stored to memory at: [ 403.532859][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.538617][T11116] __msan_chain_origin+0x50/0x90 [ 403.543575][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.548180][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.553140][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.557999][T11116] do_syscall_64+0xb0/0x150 [ 403.562518][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.568405][T11116] [ 403.570732][T11116] Uninit was stored to memory at: [ 403.575770][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.581508][T11116] __msan_chain_origin+0x50/0x90 [ 403.586480][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.591095][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.596042][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.600898][T11116] do_syscall_64+0xb0/0x150 [ 403.605410][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.611294][T11116] [ 403.613618][T11116] Uninit was stored to memory at: [ 403.618654][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.624397][T11116] __msan_chain_origin+0x50/0x90 [ 403.629343][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.633939][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.638885][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.643743][T11116] do_syscall_64+0xb0/0x150 [ 403.648253][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.654142][T11116] [ 403.656467][T11116] Uninit was stored to memory at: [ 403.661506][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.667260][T11116] __msan_chain_origin+0x50/0x90 [ 403.672212][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.676804][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.681751][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.686612][T11116] do_syscall_64+0xb0/0x150 [ 403.691126][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.697006][T11116] [ 403.699328][T11116] Uninit was stored to memory at: [ 403.704386][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.710145][T11116] __msan_chain_origin+0x50/0x90 [ 403.715098][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.719694][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.724637][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.729495][T11116] do_syscall_64+0xb0/0x150 [ 403.734011][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.739904][T11116] [ 403.742232][T11116] Uninit was stored to memory at: [ 403.747269][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.752994][T11116] __msan_chain_origin+0x50/0x90 [ 403.757939][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.762537][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.767487][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.772351][T11116] do_syscall_64+0xb0/0x150 [ 403.776858][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.782744][T11116] [ 403.785070][T11116] Uninit was stored to memory at: [ 403.790123][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 403.795853][T11116] __msan_chain_origin+0x50/0x90 [ 403.800802][T11116] do_recvmmsg+0x105a/0x1ee0 [ 403.805396][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 403.810340][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 403.815197][T11116] do_syscall_64+0xb0/0x150 [ 403.819705][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 403.825587][T11116] [ 403.827913][T11116] Local variable ----msg_sys@do_recvmmsg created at: [ 403.834603][T11116] do_recvmmsg+0xc5/0x1ee0 [ 403.839028][T11116] do_recvmmsg+0xc5/0x1ee0 [ 403.951360][ C0] sd 0:0:1:0: [sg0] tag#7905 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 403.962074][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB: Test Unit Ready [ 403.968748][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 403.978663][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 403.988525][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 403.998380][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.008266][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.018117][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.027971][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.037804][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.047637][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.057481][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.067324][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.077194][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 404.087031][ C0] sd 0:0:1:0: [sg0] tag#7905 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:09 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:09 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:10 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:10 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:10 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:10 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:10 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 405.810797][T11116] not chained 220000 origins [ 405.815451][T11116] CPU: 0 PID: 11116 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 405.824139][T11116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.834212][T11116] Call Trace: [ 405.837547][T11116] dump_stack+0x1df/0x240 [ 405.841925][T11116] kmsan_internal_chain_origin+0x6f/0x130 [ 405.847682][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 405.852820][T11116] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 405.858746][T11116] ? __msan_poison_alloca+0xf0/0x120 [ 405.864072][T11116] ? kmsan_get_metadata+0x11d/0x180 [ 405.869316][T11116] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 405.875156][T11116] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 405.881254][T11116] ? kfree+0x61/0x30f0 [ 405.885366][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 405.890534][T11116] ? kmsan_set_origin_checked+0x95/0xf0 [ 405.896121][T11116] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 405.902229][T11116] ? _copy_from_user+0x15b/0x260 [ 405.907192][T11116] ? kmsan_get_metadata+0x4f/0x180 [ 405.912331][T11116] __msan_chain_origin+0x50/0x90 [ 405.917306][T11116] do_recvmmsg+0x105a/0x1ee0 [ 405.922463][T11116] ? __msan_poison_alloca+0xf0/0x120 [ 405.927787][T11116] ? __se_sys_recvmmsg+0xac/0x350 [ 405.932842][T11116] ? __se_sys_recvmmsg+0xac/0x350 [ 405.937894][T11116] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 405.943830][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 405.948827][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 405.953716][T11116] do_syscall_64+0xb0/0x150 [ 405.958292][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 405.964299][T11116] RIP: 0033:0x45c1d9 [ 405.968206][T11116] Code: Bad RIP value. [ 405.972293][T11116] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 405.980824][T11116] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 405.989011][T11116] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 405.997249][T11116] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 406.005249][T11116] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 406.013380][T11116] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 406.021401][T11116] Uninit was stored to memory at: [ 406.026474][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.032242][T11116] __msan_chain_origin+0x50/0x90 [ 406.037272][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.041890][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.048601][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.053490][T11116] do_syscall_64+0xb0/0x150 [ 406.058029][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.064067][T11116] [ 406.066412][T11116] Uninit was stored to memory at: [ 406.071475][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.077397][T11116] __msan_chain_origin+0x50/0x90 [ 406.082368][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.086991][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.091967][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.096854][T11116] do_syscall_64+0xb0/0x150 [ 406.101401][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.107537][T11116] [ 406.109888][T11116] Uninit was stored to memory at: [ 406.115125][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.121187][T11116] __msan_chain_origin+0x50/0x90 [ 406.126456][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.131223][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.136191][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.141073][T11116] do_syscall_64+0xb0/0x150 [ 406.145610][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.151712][T11116] [ 406.154146][T11116] Uninit was stored to memory at: [ 406.159323][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.165068][T11116] __msan_chain_origin+0x50/0x90 [ 406.170035][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.174649][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.179617][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.184886][T11116] do_syscall_64+0xb0/0x150 [ 406.189470][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.195527][T11116] [ 406.197872][T11116] Uninit was stored to memory at: [ 406.203027][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.208951][T11116] __msan_chain_origin+0x50/0x90 [ 406.213955][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.218576][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.223549][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.228429][T11116] do_syscall_64+0xb0/0x150 [ 406.233181][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.239278][T11116] [ 406.241628][T11116] Uninit was stored to memory at: [ 406.246861][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.252801][T11116] __msan_chain_origin+0x50/0x90 [ 406.257768][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.262591][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.268062][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.273227][T11116] do_syscall_64+0xb0/0x150 [ 406.277846][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.283750][T11116] [ 406.286097][T11116] Uninit was stored to memory at: [ 406.291158][T11116] kmsan_internal_chain_origin+0xad/0x130 [ 406.297142][T11116] __msan_chain_origin+0x50/0x90 [ 406.302113][T11116] do_recvmmsg+0x105a/0x1ee0 [ 406.306735][T11116] __se_sys_recvmmsg+0x1d1/0x350 [ 406.311836][T11116] __x64_sys_recvmmsg+0x62/0x80 [ 406.316717][T11116] do_syscall_64+0xb0/0x150 [ 406.321684][T11116] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 406.327587][T11116] [ 406.330076][T11116] Local variable ----msg_sys@do_recvmmsg created at: [ 406.336777][T11116] do_recvmmsg+0xc5/0x1ee0 [ 406.341221][T11116] do_recvmmsg+0xc5/0x1ee0 23:19:12 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$PPPIOCGFLAGS(r1, 0x8004745a, &(0x7f0000000040)) 23:19:12 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r7, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="d00000000000000000", @ANYRES32=r7, @ANYBLOB="0400000000000000000000000b0001006367726f75700000200002001c000100180000000a00010070656469740000000400028004000600000007000000000000000000000008000000000000000000"], 0x50}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@getchain={0x24, 0x66, 0x2, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xb}, {0x6}, {0x2, 0x17}}}, 0x24}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'sit0\x00', r7, 0x2f, 0x9, 0x3, 0x3, 0x10, @mcast1, @mcast1, 0x8, 0x20, 0x4, 0x9a}}) r8 = pidfd_getfd(0xffffffffffffffff, r2, 0x0) setsockopt$pppl2tp_PPPOL2TP_SO_LNSMODE(r8, 0x111, 0x4, 0x0, 0x4) 23:19:12 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:12 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 407.239227][T11194] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:13 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:13 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 407.480097][T11194] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:13 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 407.673214][T11211] not chained 230000 origins [ 407.677872][T11211] CPU: 1 PID: 11211 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 407.686571][T11211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 407.696850][T11211] Call Trace: [ 407.700343][T11211] dump_stack+0x1df/0x240 [ 407.704714][T11211] kmsan_internal_chain_origin+0x6f/0x130 [ 407.710722][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 407.715953][T11211] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 407.722834][T11211] ? __msan_poison_alloca+0xf0/0x120 [ 407.728436][T11211] ? kmsan_get_metadata+0x11d/0x180 [ 407.733747][T11211] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 407.739938][T11211] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 407.746275][T11211] ? kfree+0x61/0x30f0 [ 407.750533][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 407.755675][T11211] ? kmsan_set_origin_checked+0x95/0xf0 [ 407.761408][T11211] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 407.767506][T11211] ? _copy_from_user+0x15b/0x260 [ 407.772666][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 407.777816][T11211] __msan_chain_origin+0x50/0x90 [ 407.782792][T11211] do_recvmmsg+0x105a/0x1ee0 [ 407.787469][T11211] ? __msan_poison_alloca+0xf0/0x120 [ 407.793364][T11211] ? __se_sys_recvmmsg+0xac/0x350 [ 407.798419][T11211] ? __se_sys_recvmmsg+0xac/0x350 [ 407.803750][T11211] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 407.810269][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 407.815347][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 407.820232][T11211] do_syscall_64+0xb0/0x150 [ 407.824879][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 407.831830][T11211] RIP: 0033:0x45c1d9 [ 407.835818][T11211] Code: Bad RIP value. [ 407.839901][T11211] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 407.848487][T11211] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 407.856484][T11211] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 407.864861][T11211] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 407.873641][T11211] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 407.881818][T11211] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 407.890053][T11211] Uninit was stored to memory at: [ 407.895296][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 407.901087][T11211] __msan_chain_origin+0x50/0x90 [ 407.906258][T11211] do_recvmmsg+0x105a/0x1ee0 [ 407.910873][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 407.916040][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 407.921113][T11211] do_syscall_64+0xb0/0x150 [ 407.926700][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 407.932819][T11211] [ 407.935165][T11211] Uninit was stored to memory at: [ 407.940561][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 407.946629][T11211] __msan_chain_origin+0x50/0x90 [ 407.951713][T11211] do_recvmmsg+0x105a/0x1ee0 [ 407.956330][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 407.961382][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 407.966263][T11211] do_syscall_64+0xb0/0x150 [ 407.970794][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 407.977095][T11211] [ 407.979433][T11211] Uninit was stored to memory at: [ 407.984597][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 407.990686][T11211] __msan_chain_origin+0x50/0x90 [ 407.995798][T11211] do_recvmmsg+0x105a/0x1ee0 [ 408.000898][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 408.006650][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 408.011611][T11211] do_syscall_64+0xb0/0x150 [ 408.016279][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 408.022287][T11211] [ 408.024622][T11211] Uninit was stored to memory at: [ 408.029667][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 408.035405][T11211] __msan_chain_origin+0x50/0x90 [ 408.040600][T11211] do_recvmmsg+0x105a/0x1ee0 [ 408.045307][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 408.050627][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 408.056035][T11211] do_syscall_64+0xb0/0x150 [ 408.060746][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 408.066735][T11211] [ 408.069074][T11211] Uninit was stored to memory at: [ 408.074122][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 408.080002][T11211] __msan_chain_origin+0x50/0x90 [ 408.085049][T11211] do_recvmmsg+0x105a/0x1ee0 [ 408.089815][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 408.094772][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 408.099968][T11211] do_syscall_64+0xb0/0x150 [ 408.106004][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 408.112160][T11211] [ 408.114591][T11211] Uninit was stored to memory at: [ 408.119875][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 408.125625][T11211] __msan_chain_origin+0x50/0x90 [ 408.130673][T11211] do_recvmmsg+0x105a/0x1ee0 [ 408.135286][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 408.140409][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 408.145285][T11211] do_syscall_64+0xb0/0x150 [ 408.149979][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 408.155975][T11211] [ 408.158319][T11211] Uninit was stored to memory at: [ 408.163574][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 408.169492][T11211] __msan_chain_origin+0x50/0x90 [ 408.174548][T11211] do_recvmmsg+0x105a/0x1ee0 [ 408.179164][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 408.184143][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 408.189080][T11211] do_syscall_64+0xb0/0x150 [ 408.193606][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 408.199591][T11211] [ 408.202087][T11211] Local variable ----msg_sys@do_recvmmsg created at: [ 408.209073][T11211] do_recvmmsg+0xc5/0x1ee0 [ 408.213515][T11211] do_recvmmsg+0xc5/0x1ee0 23:19:13 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:19:13 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:14 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bind$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10) syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') mq_unlink(&(0x7f0000000000)='SEG6\x00') 23:19:14 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:14 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:14 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:14 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x80, 0x0) ioctl$RTC_RD_TIME(r0, 0x80247009, &(0x7f0000000080)) 23:19:14 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 409.838887][T11211] not chained 240000 origins [ 409.843687][T11211] CPU: 0 PID: 11211 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 409.852561][T11211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.862733][T11211] Call Trace: [ 409.866150][T11211] dump_stack+0x1df/0x240 [ 409.870525][T11211] kmsan_internal_chain_origin+0x6f/0x130 [ 409.876279][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 409.881429][T11211] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 409.887370][T11211] ? __msan_poison_alloca+0xf0/0x120 [ 409.892691][T11211] ? kmsan_get_metadata+0x11d/0x180 [ 409.897922][T11211] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 409.903759][T11211] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 409.909952][T11211] ? kfree+0x61/0x30f0 [ 409.914095][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 409.919239][T11211] ? kmsan_set_origin_checked+0x95/0xf0 [ 409.924983][T11211] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 409.931090][T11211] ? _copy_from_user+0x15b/0x260 [ 409.936244][T11211] ? kmsan_get_metadata+0x4f/0x180 [ 409.941665][T11211] __msan_chain_origin+0x50/0x90 [ 409.946646][T11211] do_recvmmsg+0x105a/0x1ee0 [ 409.951522][T11211] ? __msan_poison_alloca+0xf0/0x120 [ 409.957102][T11211] ? __se_sys_recvmmsg+0xac/0x350 [ 409.962179][T11211] ? __se_sys_recvmmsg+0xac/0x350 [ 409.967242][T11211] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 409.973301][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 409.978401][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 409.983290][T11211] do_syscall_64+0xb0/0x150 [ 409.987839][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 409.993757][T11211] RIP: 0033:0x45c1d9 [ 409.997817][T11211] Code: Bad RIP value. [ 410.001906][T11211] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 410.010465][T11211] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 410.018727][T11211] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 410.026869][T11211] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 410.034875][T11211] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 410.043056][T11211] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 410.051265][T11211] Uninit was stored to memory at: [ 410.057025][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.062980][T11211] __msan_chain_origin+0x50/0x90 [ 410.067950][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.072754][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.077724][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.082605][T11211] do_syscall_64+0xb0/0x150 [ 410.087142][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.093524][T11211] [ 410.096048][T11211] Uninit was stored to memory at: [ 410.101429][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.107314][T11211] __msan_chain_origin+0x50/0x90 [ 410.112409][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.117024][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.121991][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.126873][T11211] do_syscall_64+0xb0/0x150 [ 410.131533][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.137574][T11211] [ 410.139917][T11211] Uninit was stored to memory at: [ 410.145167][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.150998][T11211] __msan_chain_origin+0x50/0x90 [ 410.156132][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.160902][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.165865][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.170745][T11211] do_syscall_64+0xb0/0x150 [ 410.175278][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.181272][T11211] [ 410.183882][T11211] Uninit was stored to memory at: [ 410.189115][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.195043][T11211] __msan_chain_origin+0x50/0x90 [ 410.200014][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.204641][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.209800][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.214690][T11211] do_syscall_64+0xb0/0x150 [ 410.219231][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.225236][T11211] [ 410.227596][T11211] Uninit was stored to memory at: [ 410.232783][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.238533][T11211] __msan_chain_origin+0x50/0x90 [ 410.243496][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.248197][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.253261][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.258155][T11211] do_syscall_64+0xb0/0x150 [ 410.262872][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.268878][T11211] [ 410.271245][T11211] Uninit was stored to memory at: [ 410.276409][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.282166][T11211] __msan_chain_origin+0x50/0x90 [ 410.287225][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.292106][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.297136][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.302032][T11211] do_syscall_64+0xb0/0x150 [ 410.306652][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.312839][T11211] [ 410.315182][T11211] Uninit was stored to memory at: [ 410.320323][T11211] kmsan_internal_chain_origin+0xad/0x130 [ 410.326067][T11211] __msan_chain_origin+0x50/0x90 [ 410.331048][T11211] do_recvmmsg+0x105a/0x1ee0 [ 410.335664][T11211] __se_sys_recvmmsg+0x1d1/0x350 [ 410.340630][T11211] __x64_sys_recvmmsg+0x62/0x80 [ 410.345511][T11211] do_syscall_64+0xb0/0x150 [ 410.350045][T11211] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 410.356072][T11211] [ 410.358422][T11211] Local variable ----msg_sys@do_recvmmsg created at: [ 410.365127][T11211] do_recvmmsg+0xc5/0x1ee0 [ 410.369660][T11211] do_recvmmsg+0xc5/0x1ee0 23:19:16 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000340)={0x1, @pix_mp={0xe997, 0xfe0, 0x47314356, 0x1, 0xa, [{0x3, 0x6}, {0x2000000, 0x80000001}, {0x7, 0x768}, {0x1, 0x5}, {0xe0, 0x10000}, {0x8, 0x1}, {0x331, 0x7fff}, {0x1, 0xb9}], 0x1, 0x4, 0x8, 0x0, 0x1}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0x0, 0x10202) getxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="063829175ac252"], &(0x7f0000000100)=""/219, 0xdb) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000280)={0xffffffffffffffff}, 0x111, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000440)={0x10, 0x30, 0xfa00, {&(0x7f0000000200), 0x2, {0xa, 0x4e21, 0x4, @loopback, 0x1}, r4}}, 0x38) ioctl$sock_inet_sctp_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) 23:19:16 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socket$isdn(0x22, 0x3, 0x11) 23:19:16 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:16 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:17 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:17 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:17 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:17 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') [ 411.614482][T11286] not chained 250000 origins [ 411.619322][T11286] CPU: 0 PID: 11286 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 411.628157][T11286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.638524][T11286] Call Trace: [ 411.641861][T11286] dump_stack+0x1df/0x240 [ 411.646507][T11286] kmsan_internal_chain_origin+0x6f/0x130 [ 411.652347][T11286] ? kmsan_get_metadata+0x4f/0x180 [ 411.657705][T11286] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 411.663627][T11286] ? __msan_poison_alloca+0xf0/0x120 [ 411.669395][T11286] ? kmsan_get_metadata+0x11d/0x180 [ 411.674629][T11286] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 411.680722][T11286] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 411.686825][T11286] ? kfree+0x61/0x30f0 [ 411.690932][T11286] ? kmsan_get_metadata+0x4f/0x180 [ 411.696201][T11286] ? kmsan_set_origin_checked+0x95/0xf0 [ 411.701789][T11286] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 411.708210][T11286] ? _copy_from_user+0x15b/0x260 [ 411.713270][T11286] ? kmsan_get_metadata+0x4f/0x180 [ 411.718412][T11286] __msan_chain_origin+0x50/0x90 [ 411.723596][T11286] do_recvmmsg+0x105a/0x1ee0 [ 411.728310][T11286] ? __msan_poison_alloca+0xf0/0x120 [ 411.733722][T11286] ? __se_sys_recvmmsg+0xac/0x350 [ 411.739001][T11286] ? __se_sys_recvmmsg+0xac/0x350 [ 411.744348][T11286] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 411.750280][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 411.755269][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 411.760411][T11286] do_syscall_64+0xb0/0x150 [ 411.765048][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 411.772252][T11286] RIP: 0033:0x45c1d9 [ 411.776161][T11286] Code: Bad RIP value. [ 411.780401][T11286] RSP: 002b:00007fd7e348bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 411.789157][T11286] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 411.797464][T11286] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 411.805714][T11286] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 411.813714][T11286] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 411.821799][T11286] R13: 0000000000c9fb6f R14: 00007fd7e348c9c0 R15: 000000000078bfac [ 411.830034][T11286] Uninit was stored to memory at: [ 411.835268][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 411.841017][T11286] __msan_chain_origin+0x50/0x90 [ 411.846186][T11286] do_recvmmsg+0x105a/0x1ee0 [ 411.850891][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 411.856011][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 411.860888][T11286] do_syscall_64+0xb0/0x150 [ 411.865897][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 411.871931][T11286] [ 411.874274][T11286] Uninit was stored to memory at: [ 411.879320][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 411.885059][T11286] __msan_chain_origin+0x50/0x90 [ 411.890019][T11286] do_recvmmsg+0x105a/0x1ee0 [ 411.894626][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 411.899666][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 411.904678][T11286] do_syscall_64+0xb0/0x150 [ 411.909203][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 411.915149][T11286] [ 411.917485][T11286] Uninit was stored to memory at: [ 411.922536][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 411.928274][T11286] __msan_chain_origin+0x50/0x90 [ 411.933322][T11286] do_recvmmsg+0x105a/0x1ee0 [ 411.937939][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 411.942906][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 411.947778][T11286] do_syscall_64+0xb0/0x150 [ 411.952469][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 411.958372][T11286] [ 411.960718][T11286] Uninit was stored to memory at: [ 411.965858][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 411.971847][T11286] __msan_chain_origin+0x50/0x90 [ 411.976804][T11286] do_recvmmsg+0x105a/0x1ee0 [ 411.981408][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 411.986552][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 411.991429][T11286] do_syscall_64+0xb0/0x150 [ 411.995952][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 412.001934][T11286] [ 412.004268][T11286] Uninit was stored to memory at: [ 412.009504][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 412.015241][T11286] __msan_chain_origin+0x50/0x90 [ 412.020197][T11286] do_recvmmsg+0x105a/0x1ee0 [ 412.024806][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 412.029897][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 412.036163][T11286] do_syscall_64+0xb0/0x150 [ 412.040696][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 412.046601][T11286] [ 412.049070][T11286] Uninit was stored to memory at: [ 412.054117][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 412.059981][T11286] __msan_chain_origin+0x50/0x90 [ 412.065212][T11286] do_recvmmsg+0x105a/0x1ee0 [ 412.070106][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 412.075063][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 412.079937][T11286] do_syscall_64+0xb0/0x150 [ 412.084460][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 412.090429][T11286] [ 412.092767][T11286] Uninit was stored to memory at: [ 412.097814][T11286] kmsan_internal_chain_origin+0xad/0x130 [ 412.103714][T11286] __msan_chain_origin+0x50/0x90 [ 412.108676][T11286] do_recvmmsg+0x105a/0x1ee0 [ 412.113304][T11286] __se_sys_recvmmsg+0x1d1/0x350 [ 412.119207][T11286] __x64_sys_recvmmsg+0x62/0x80 [ 412.124090][T11286] do_syscall_64+0xb0/0x150 [ 412.129116][T11286] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 412.135024][T11286] [ 412.137373][T11286] Local variable ----msg_sys@do_recvmmsg created at: [ 412.144071][T11286] do_recvmmsg+0xc5/0x1ee0 [ 412.148507][T11286] do_recvmmsg+0xc5/0x1ee0 23:19:18 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:18 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000), 0x4) rseq(&(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1, 0x4, 0x4, 0x4}, 0x3}, 0x20, 0x0, 0x0) 23:19:18 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:18 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 412.791946][ C1] sd 0:0:1:0: [sg0] tag#4153 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 412.803026][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB: Test Unit Ready [ 412.809756][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.820101][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.830062][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.840001][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.850035][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.860075][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.869967][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.879870][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.889867][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.899761][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.910033][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.920105][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 412.930031][ C1] sd 0:0:1:0: [sg0] tag#4153 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:18 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x8002, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000080)="609616bc4823fda6570e06ed33509c4b53094133e29932bc8a9157d5e7acba49854ed9ea1055e25f56197dc4bc7c6d13edf95c88afcf") ioctl$TCGETS(r0, 0x5401, &(0x7f0000000040)) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = pidfd_getfd(r5, r1, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r6, 0x40a85323, &(0x7f00000000c0)={{0x81, 0x5}, 'port0\x00', 0x12, 0x40800, 0x5, 0x8, 0x4c, 0xffffffff, 0xc050, 0x0, 0x0, 0x9}) [ 413.007975][T11304] not chained 260000 origins [ 413.012817][T11304] CPU: 1 PID: 11304 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 413.021660][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 413.031748][T11304] Call Trace: [ 413.035208][T11304] dump_stack+0x1df/0x240 [ 413.039586][T11304] kmsan_internal_chain_origin+0x6f/0x130 [ 413.045347][T11304] ? kmsan_get_metadata+0x4f/0x180 [ 413.050617][T11304] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 413.056707][T11304] ? __msan_poison_alloca+0xf0/0x120 [ 413.062038][T11304] ? kmsan_get_metadata+0x11d/0x180 [ 413.067281][T11304] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 413.073127][T11304] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 413.079457][T11304] ? kfree+0x61/0x30f0 [ 413.083666][T11304] ? kmsan_get_metadata+0x4f/0x180 [ 413.088821][T11304] ? kmsan_set_origin_checked+0x95/0xf0 [ 413.094409][T11304] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 413.100882][T11304] ? _copy_from_user+0x15b/0x260 [ 413.106293][T11304] ? kmsan_get_metadata+0x4f/0x180 [ 413.111571][T11304] __msan_chain_origin+0x50/0x90 [ 413.116559][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.121245][T11304] ? __msan_poison_alloca+0xf0/0x120 [ 413.126571][T11304] ? __se_sys_recvmmsg+0xac/0x350 [ 413.131857][T11304] ? __se_sys_recvmmsg+0xac/0x350 [ 413.136916][T11304] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 413.142937][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.147933][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.152934][T11304] do_syscall_64+0xb0/0x150 [ 413.157485][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.163637][T11304] RIP: 0033:0x45c1d9 [ 413.167628][T11304] Code: Bad RIP value. [ 413.171917][T11304] RSP: 002b:00007f9a0ec2fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 413.180364][T11304] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 413.188486][T11304] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 413.196581][T11304] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 413.204724][T11304] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 413.212936][T11304] R13: 0000000000c9fb6f R14: 00007f9a0ec309c0 R15: 000000000078bf0c [ 413.221200][T11304] Uninit was stored to memory at: [ 413.226260][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.232015][T11304] __msan_chain_origin+0x50/0x90 [ 413.237197][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.241938][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.246888][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.251917][T11304] do_syscall_64+0xb0/0x150 [ 413.256688][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.262684][T11304] [ 413.265209][T11304] Uninit was stored to memory at: [ 413.270351][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.276095][T11304] __msan_chain_origin+0x50/0x90 [ 413.281054][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.285947][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.290910][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.295875][T11304] do_syscall_64+0xb0/0x150 [ 413.300405][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.306608][T11304] [ 413.309017][T11304] Uninit was stored to memory at: [ 413.314110][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.319941][T11304] __msan_chain_origin+0x50/0x90 [ 413.324902][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.329687][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.334891][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.339757][T11304] do_syscall_64+0xb0/0x150 [ 413.344458][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.350646][T11304] [ 413.353117][T11304] Uninit was stored to memory at: [ 413.358270][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.364131][T11304] __msan_chain_origin+0x50/0x90 [ 413.369090][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.373832][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.378790][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.383822][T11304] do_syscall_64+0xb0/0x150 [ 413.388600][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.394590][T11304] [ 413.396932][T11304] Uninit was stored to memory at: [ 413.402065][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.407801][T11304] __msan_chain_origin+0x50/0x90 [ 413.412759][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.417543][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.422502][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.427374][T11304] do_syscall_64+0xb0/0x150 [ 413.431902][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.437962][T11304] [ 413.440302][T11304] Uninit was stored to memory at: [ 413.445350][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.451172][T11304] __msan_chain_origin+0x50/0x90 [ 413.456134][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.460743][T11304] __se_sys_recvmmsg+0x1d1/0x350 [ 413.465859][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.470733][T11304] do_syscall_64+0xb0/0x150 [ 413.475260][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.481161][T11304] [ 413.483501][T11304] Uninit was stored to memory at: [ 413.488727][T11304] kmsan_internal_chain_origin+0xad/0x130 [ 413.494466][T11304] __msan_chain_origin+0x50/0x90 [ 413.499418][T11304] do_recvmmsg+0x105a/0x1ee0 [ 413.504029][T11304] __se_sys_recvmmsg+0x1d1/0x350 23:19:19 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 413.509172][T11304] __x64_sys_recvmmsg+0x62/0x80 [ 413.514047][T11304] do_syscall_64+0xb0/0x150 [ 413.518584][T11304] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 413.524646][T11304] [ 413.526989][T11304] Local variable ----msg_sys@do_recvmmsg created at: [ 413.533690][T11304] do_recvmmsg+0xc5/0x1ee0 [ 413.538219][T11304] do_recvmmsg+0xc5/0x1ee0 23:19:19 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:19 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:19 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:19 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') [ 414.829858][T11328] not chained 270000 origins [ 414.834622][T11328] CPU: 1 PID: 11328 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 414.844832][T11328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.854928][T11328] Call Trace: [ 414.858270][T11328] dump_stack+0x1df/0x240 [ 414.863185][T11328] kmsan_internal_chain_origin+0x6f/0x130 [ 414.868948][T11328] ? kmsan_get_metadata+0x4f/0x180 [ 414.874216][T11328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 414.880150][T11328] ? __msan_poison_alloca+0xf0/0x120 [ 414.885478][T11328] ? kmsan_get_metadata+0x11d/0x180 [ 414.891100][T11328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 414.897152][T11328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 414.903497][T11328] ? kfree+0x61/0x30f0 [ 414.907615][T11328] ? kmsan_get_metadata+0x4f/0x180 [ 414.912772][T11328] ? kmsan_set_origin_checked+0x95/0xf0 [ 414.918368][T11328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 414.925348][T11328] ? _copy_from_user+0x15b/0x260 [ 414.930329][T11328] ? kmsan_get_metadata+0x4f/0x180 [ 414.935643][T11328] __msan_chain_origin+0x50/0x90 [ 414.940784][T11328] do_recvmmsg+0x105a/0x1ee0 [ 414.945480][T11328] ? __msan_poison_alloca+0xf0/0x120 [ 414.951209][T11328] ? __se_sys_recvmmsg+0xac/0x350 [ 414.956265][T11328] ? __se_sys_recvmmsg+0xac/0x350 [ 414.961328][T11328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 414.967359][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 414.972459][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 414.977430][T11328] do_syscall_64+0xb0/0x150 [ 414.981985][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 414.987902][T11328] RIP: 0033:0x45c1d9 [ 414.993031][T11328] Code: Bad RIP value. [ 414.997122][T11328] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 415.005879][T11328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 415.014186][T11328] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 415.023453][T11328] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 415.031959][T11328] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 415.040214][T11328] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 415.049275][T11328] Uninit was stored to memory at: [ 415.054601][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.060527][T11328] __msan_chain_origin+0x50/0x90 [ 415.066000][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.070624][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.075927][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.080813][T11328] do_syscall_64+0xb0/0x150 [ 415.085456][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.091523][T11328] [ 415.094017][T11328] Uninit was stored to memory at: [ 415.099287][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.105725][T11328] __msan_chain_origin+0x50/0x90 [ 415.110699][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.115540][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.120960][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.126019][T11328] do_syscall_64+0xb0/0x150 [ 415.130999][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.137022][T11328] [ 415.139637][T11328] Uninit was stored to memory at: [ 415.145868][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.151895][T11328] __msan_chain_origin+0x50/0x90 [ 415.157253][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.161965][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.167041][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.172499][T11328] do_syscall_64+0xb0/0x150 [ 415.177511][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.184628][T11328] [ 415.187013][T11328] Uninit was stored to memory at: [ 415.193118][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.199009][T11328] __msan_chain_origin+0x50/0x90 [ 415.204412][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.209068][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.214221][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.219275][T11328] do_syscall_64+0xb0/0x150 [ 415.224158][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.230488][T11328] [ 415.233008][T11328] Uninit was stored to memory at: [ 415.238874][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.245064][T11328] __msan_chain_origin+0x50/0x90 [ 415.252029][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.257130][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.262106][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.267073][T11328] do_syscall_64+0xb0/0x150 [ 415.272172][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.278071][T11328] [ 415.280597][T11328] Uninit was stored to memory at: [ 415.285650][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.291394][T11328] __msan_chain_origin+0x50/0x90 [ 415.297559][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.302171][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.307131][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.312015][T11328] do_syscall_64+0xb0/0x150 [ 415.317715][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.323988][T11328] [ 415.326544][T11328] Uninit was stored to memory at: [ 415.332764][T11328] kmsan_internal_chain_origin+0xad/0x130 [ 415.339341][T11328] __msan_chain_origin+0x50/0x90 [ 415.344569][T11328] do_recvmmsg+0x105a/0x1ee0 [ 415.350663][T11328] __se_sys_recvmmsg+0x1d1/0x350 [ 415.356354][T11328] __x64_sys_recvmmsg+0x62/0x80 [ 415.361556][T11328] do_syscall_64+0xb0/0x150 [ 415.366337][T11328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 415.373225][T11328] [ 415.377132][T11328] Local variable ----msg_sys@do_recvmmsg created at: [ 415.386651][T11328] do_recvmmsg+0xc5/0x1ee0 [ 415.391358][T11328] do_recvmmsg+0xc5/0x1ee0 23:19:21 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:21 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:21 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:21 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 416.651963][ C0] sd 0:0:1:0: [sg0] tag#7907 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 416.662739][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB: Test Unit Ready [ 416.669385][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.679263][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.689132][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.699014][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.708880][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.718839][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.728702][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.738578][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.748434][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.758293][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.768138][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.777999][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 416.787830][ C0] sd 0:0:1:0: [sg0] tag#7907 CDB[c0]: 00 00 00 00 00 00 00 00 [ 416.956863][T11339] not chained 280000 origins [ 416.961510][T11339] CPU: 0 PID: 11339 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 416.970197][T11339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 416.980280][T11339] Call Trace: [ 416.983598][T11339] dump_stack+0x1df/0x240 [ 416.987957][T11339] kmsan_internal_chain_origin+0x6f/0x130 [ 416.993701][T11339] ? kmsan_get_metadata+0x4f/0x180 [ 416.998837][T11339] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 417.004788][T11339] ? __msan_poison_alloca+0xf0/0x120 [ 417.010108][T11339] ? kmsan_get_metadata+0x11d/0x180 [ 417.015329][T11339] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 417.021158][T11339] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 417.027249][T11339] ? kfree+0x61/0x30f0 [ 417.031344][T11339] ? kmsan_get_metadata+0x4f/0x180 [ 417.036477][T11339] ? kmsan_set_origin_checked+0x95/0xf0 [ 417.042045][T11339] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 417.048138][T11339] ? _copy_from_user+0x15b/0x260 [ 417.053093][T11339] ? kmsan_get_metadata+0x4f/0x180 [ 417.058300][T11339] __msan_chain_origin+0x50/0x90 [ 417.063284][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.067957][T11339] ? __msan_poison_alloca+0xf0/0x120 [ 417.073269][T11339] ? __se_sys_recvmmsg+0xac/0x350 [ 417.078321][T11339] ? __se_sys_recvmmsg+0xac/0x350 [ 417.083368][T11339] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 417.089295][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.094269][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.099148][T11339] do_syscall_64+0xb0/0x150 [ 417.103689][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.109594][T11339] RIP: 0033:0x45c1d9 [ 417.113499][T11339] Code: Bad RIP value. [ 417.117581][T11339] RSP: 002b:00007f9a0ec2fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 417.126049][T11339] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 417.134046][T11339] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 417.142131][T11339] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 417.150116][T11339] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 417.158112][T11339] R13: 0000000000c9fb6f R14: 00007f9a0ec309c0 R15: 000000000078bf0c [ 417.166114][T11339] Uninit was stored to memory at: [ 417.171161][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.176893][T11339] __msan_chain_origin+0x50/0x90 [ 417.181840][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.186460][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.191407][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.196266][T11339] do_syscall_64+0xb0/0x150 [ 417.200782][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.206668][T11339] [ 417.209016][T11339] Uninit was stored to memory at: [ 417.214754][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.220485][T11339] __msan_chain_origin+0x50/0x90 [ 417.225436][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.230045][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.235002][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.239866][T11339] do_syscall_64+0xb0/0x150 [ 417.244382][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.250268][T11339] [ 417.252597][T11339] Uninit was stored to memory at: [ 417.257636][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.263368][T11339] __msan_chain_origin+0x50/0x90 [ 417.268320][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.272922][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.277872][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.282742][T11339] do_syscall_64+0xb0/0x150 [ 417.287252][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.293224][T11339] [ 417.295553][T11339] Uninit was stored to memory at: [ 417.300594][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.306325][T11339] __msan_chain_origin+0x50/0x90 [ 417.311277][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.315995][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.320957][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.325855][T11339] do_syscall_64+0xb0/0x150 [ 417.330375][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.336264][T11339] [ 417.338600][T11339] Uninit was stored to memory at: [ 417.343640][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.349378][T11339] __msan_chain_origin+0x50/0x90 [ 417.354333][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.358938][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.363890][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.368759][T11339] do_syscall_64+0xb0/0x150 [ 417.373278][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.379168][T11339] [ 417.381495][T11339] Uninit was stored to memory at: [ 417.386536][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.392280][T11339] __msan_chain_origin+0x50/0x90 [ 417.397228][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.401830][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.406779][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.411642][T11339] do_syscall_64+0xb0/0x150 [ 417.416161][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.422048][T11339] [ 417.424383][T11339] Uninit was stored to memory at: [ 417.429422][T11339] kmsan_internal_chain_origin+0xad/0x130 [ 417.435150][T11339] __msan_chain_origin+0x50/0x90 [ 417.440104][T11339] do_recvmmsg+0x105a/0x1ee0 [ 417.444702][T11339] __se_sys_recvmmsg+0x1d1/0x350 [ 417.449651][T11339] __x64_sys_recvmmsg+0x62/0x80 [ 417.454516][T11339] do_syscall_64+0xb0/0x150 23:19:23 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 417.459034][T11339] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 417.464923][T11339] [ 417.467258][T11339] Local variable ----msg_sys@do_recvmmsg created at: [ 417.473953][T11339] do_recvmmsg+0xc5/0x1ee0 [ 417.478381][T11339] do_recvmmsg+0xc5/0x1ee0 23:19:23 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:23 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:23 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:23 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 418.028249][T11361] not chained 290000 origins [ 418.032891][T11361] CPU: 1 PID: 11361 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 418.041568][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 418.051642][T11361] Call Trace: [ 418.055079][T11361] dump_stack+0x1df/0x240 [ 418.059445][T11361] kmsan_internal_chain_origin+0x6f/0x130 [ 418.065185][T11361] ? kmsan_get_metadata+0x4f/0x180 [ 418.070318][T11361] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 418.076238][T11361] ? __msan_poison_alloca+0xf0/0x120 [ 418.081551][T11361] ? kmsan_get_metadata+0x11d/0x180 [ 418.086771][T11361] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 418.092600][T11361] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 418.098698][T11361] ? kfree+0x61/0x30f0 [ 418.102798][T11361] ? kmsan_get_metadata+0x4f/0x180 [ 418.107935][T11361] ? kmsan_set_origin_checked+0x95/0xf0 [ 418.113516][T11361] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 418.119626][T11361] ? _copy_from_user+0x15b/0x260 [ 418.124584][T11361] ? kmsan_get_metadata+0x4f/0x180 [ 418.129708][T11361] __msan_chain_origin+0x50/0x90 [ 418.134666][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.139335][T11361] ? __msan_poison_alloca+0xf0/0x120 [ 418.144668][T11361] ? __se_sys_recvmmsg+0xac/0x350 [ 418.149717][T11361] ? __se_sys_recvmmsg+0xac/0x350 [ 418.154768][T11361] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 418.160690][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.165663][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.170539][T11361] do_syscall_64+0xb0/0x150 [ 418.175060][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.180961][T11361] RIP: 0033:0x45c1d9 [ 418.184846][T11361] Code: Bad RIP value. [ 418.188912][T11361] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 418.197328][T11361] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 418.205308][T11361] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 418.213299][T11361] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 418.221279][T11361] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 418.229258][T11361] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 418.237252][T11361] Uninit was stored to memory at: [ 418.242315][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.248041][T11361] __msan_chain_origin+0x50/0x90 [ 418.253008][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.257606][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.262559][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.267418][T11361] do_syscall_64+0xb0/0x150 [ 418.271930][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.277813][T11361] [ 418.280136][T11361] Uninit was stored to memory at: [ 418.285173][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.290906][T11361] __msan_chain_origin+0x50/0x90 [ 418.295855][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.300454][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.305408][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.310266][T11361] do_syscall_64+0xb0/0x150 [ 418.314776][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.320659][T11361] [ 418.322979][T11361] Uninit was stored to memory at: [ 418.328012][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.333736][T11361] __msan_chain_origin+0x50/0x90 [ 418.338677][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.343276][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.348218][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.353076][T11361] do_syscall_64+0xb0/0x150 [ 418.357590][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.363473][T11361] [ 418.365800][T11361] Uninit was stored to memory at: [ 418.370849][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.376584][T11361] __msan_chain_origin+0x50/0x90 [ 418.381536][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.386148][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.391100][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.395964][T11361] do_syscall_64+0xb0/0x150 [ 418.400487][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.406371][T11361] [ 418.409653][T11361] Uninit was stored to memory at: [ 418.414687][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.420413][T11361] __msan_chain_origin+0x50/0x90 [ 418.425363][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.429989][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.434940][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.439803][T11361] do_syscall_64+0xb0/0x150 [ 418.444325][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.450209][T11361] [ 418.452539][T11361] Uninit was stored to memory at: [ 418.457587][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.463319][T11361] __msan_chain_origin+0x50/0x90 [ 418.468266][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.472867][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.477816][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.482697][T11361] do_syscall_64+0xb0/0x150 [ 418.487220][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.493104][T11361] [ 418.495429][T11361] Uninit was stored to memory at: [ 418.500464][T11361] kmsan_internal_chain_origin+0xad/0x130 [ 418.506198][T11361] __msan_chain_origin+0x50/0x90 [ 418.511149][T11361] do_recvmmsg+0x105a/0x1ee0 [ 418.515750][T11361] __se_sys_recvmmsg+0x1d1/0x350 [ 418.520703][T11361] __x64_sys_recvmmsg+0x62/0x80 [ 418.525713][T11361] do_syscall_64+0xb0/0x150 [ 418.530225][T11361] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 418.536107][T11361] [ 418.538434][T11361] Local variable ----msg_sys@do_recvmmsg created at: [ 418.545128][T11361] do_recvmmsg+0xc5/0x1ee0 [ 418.549549][T11361] do_recvmmsg+0xc5/0x1ee0 23:19:24 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:24 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:24 executing program 5: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:25 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:25 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 420.190223][T11378] not chained 300000 origins [ 420.194878][T11378] CPU: 0 PID: 11378 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 420.203564][T11378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 420.213644][T11378] Call Trace: [ 420.216966][T11378] dump_stack+0x1df/0x240 [ 420.221328][T11378] kmsan_internal_chain_origin+0x6f/0x130 [ 420.227070][T11378] ? kmsan_get_metadata+0x4f/0x180 [ 420.232293][T11378] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 420.238224][T11378] ? __msan_poison_alloca+0xf0/0x120 [ 420.243533][T11378] ? kmsan_get_metadata+0x11d/0x180 [ 420.248777][T11378] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 420.254613][T11378] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 420.264007][T11378] ? kfree+0x61/0x30f0 [ 420.268096][T11378] ? kmsan_get_metadata+0x4f/0x180 [ 420.273228][T11378] ? kmsan_set_origin_checked+0x95/0xf0 [ 420.278789][T11378] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 420.284885][T11378] ? _copy_from_user+0x15b/0x260 [ 420.289835][T11378] ? kmsan_get_metadata+0x4f/0x180 [ 420.294967][T11378] __msan_chain_origin+0x50/0x90 [ 420.299940][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.304614][T11378] ? __msan_poison_alloca+0xf0/0x120 [ 420.309921][T11378] ? __se_sys_recvmmsg+0xac/0x350 [ 420.314958][T11378] ? __se_sys_recvmmsg+0xac/0x350 [ 420.319991][T11378] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 420.325901][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.330868][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.335762][T11378] do_syscall_64+0xb0/0x150 [ 420.340285][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.346188][T11378] RIP: 0033:0x45c1d9 [ 420.350101][T11378] Code: Bad RIP value. [ 420.354174][T11378] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 420.362597][T11378] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 420.370581][T11378] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 420.378570][T11378] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 420.386560][T11378] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 420.394544][T11378] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 420.402543][T11378] Uninit was stored to memory at: [ 420.407596][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.413335][T11378] __msan_chain_origin+0x50/0x90 [ 420.418281][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.422878][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.427821][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.432684][T11378] do_syscall_64+0xb0/0x150 [ 420.437196][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.443078][T11378] [ 420.445427][T11378] Uninit was stored to memory at: [ 420.450464][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.456215][T11378] __msan_chain_origin+0x50/0x90 [ 420.461162][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.465756][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.470703][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.475570][T11378] do_syscall_64+0xb0/0x150 [ 420.480086][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.485969][T11378] [ 420.488295][T11378] Uninit was stored to memory at: [ 420.493331][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.499063][T11378] __msan_chain_origin+0x50/0x90 [ 420.504006][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.508607][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.513554][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.518412][T11378] do_syscall_64+0xb0/0x150 [ 420.522922][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.528804][T11378] [ 420.531129][T11378] Uninit was stored to memory at: [ 420.536162][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.541893][T11378] __msan_chain_origin+0x50/0x90 [ 420.546841][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.551442][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.556482][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.561337][T11378] do_syscall_64+0xb0/0x150 [ 420.565849][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.571730][T11378] [ 420.574053][T11378] Uninit was stored to memory at: [ 420.579083][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.584808][T11378] __msan_chain_origin+0x50/0x90 [ 420.589760][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.594359][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.599299][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.604159][T11378] do_syscall_64+0xb0/0x150 [ 420.608677][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.614559][T11378] [ 420.616881][T11378] Uninit was stored to memory at: [ 420.621910][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.627630][T11378] __msan_chain_origin+0x50/0x90 [ 420.632570][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.637161][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.642120][T11378] __x64_sys_recvmmsg+0x62/0x80 [ 420.646976][T11378] do_syscall_64+0xb0/0x150 [ 420.651488][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.657367][T11378] [ 420.659689][T11378] Uninit was stored to memory at: [ 420.664723][T11378] kmsan_internal_chain_origin+0xad/0x130 [ 420.670442][T11378] __msan_chain_origin+0x50/0x90 [ 420.675386][T11378] do_recvmmsg+0x105a/0x1ee0 [ 420.679996][T11378] __se_sys_recvmmsg+0x1d1/0x350 [ 420.684935][T11378] __x64_sys_recvmmsg+0x62/0x80 23:19:26 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 420.689795][T11378] do_syscall_64+0xb0/0x150 [ 420.694303][T11378] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 420.700185][T11378] [ 420.702518][T11378] Local variable ----msg_sys@do_recvmmsg created at: [ 420.709218][T11378] do_recvmmsg+0xc5/0x1ee0 [ 420.713637][T11378] do_recvmmsg+0xc5/0x1ee0 23:19:26 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:26 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 421.589201][ C1] sd 0:0:1:0: [sg0] tag#4154 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 421.600082][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB: Test Unit Ready [ 421.606863][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.616864][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.626806][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.636736][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.646644][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.656517][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.666392][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.676941][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.686796][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.696659][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.706553][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.716405][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 421.726276][ C1] sd 0:0:1:0: [sg0] tag#4154 CDB[c0]: 00 00 00 00 00 00 00 00 [ 421.750934][T11398] not chained 310000 origins [ 421.755575][T11398] CPU: 1 PID: 11398 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 421.764256][T11398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 421.774323][T11398] Call Trace: [ 421.777640][T11398] dump_stack+0x1df/0x240 [ 421.782004][T11398] kmsan_internal_chain_origin+0x6f/0x130 [ 421.787751][T11398] ? kmsan_get_metadata+0x4f/0x180 [ 421.792891][T11398] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 421.798810][T11398] ? __msan_poison_alloca+0xf0/0x120 [ 421.804123][T11398] ? kmsan_get_metadata+0x11d/0x180 [ 421.809365][T11398] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 421.815208][T11398] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 421.821312][T11398] ? kfree+0x61/0x30f0 [ 421.825421][T11398] ? kmsan_get_metadata+0x4f/0x180 [ 421.830571][T11398] ? kmsan_set_origin_checked+0x95/0xf0 [ 421.836153][T11398] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 421.842264][T11398] ? _copy_from_user+0x15b/0x260 [ 421.847237][T11398] ? kmsan_get_metadata+0x4f/0x180 [ 421.852384][T11398] __msan_chain_origin+0x50/0x90 [ 421.857367][T11398] do_recvmmsg+0x105a/0x1ee0 [ 421.862087][T11398] ? __msan_poison_alloca+0xf0/0x120 [ 421.867419][T11398] ? __se_sys_recvmmsg+0xac/0x350 [ 421.872470][T11398] ? __se_sys_recvmmsg+0xac/0x350 [ 421.877528][T11398] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 421.883450][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 421.888445][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 421.893320][T11398] do_syscall_64+0xb0/0x150 [ 421.897860][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 421.903771][T11398] RIP: 0033:0x45c1d9 [ 421.907674][T11398] Code: Bad RIP value. [ 421.911750][T11398] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 421.920184][T11398] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 421.928170][T11398] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 421.936159][T11398] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 421.944154][T11398] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 421.952156][T11398] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 421.960168][T11398] Uninit was stored to memory at: [ 421.965235][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 421.970982][T11398] __msan_chain_origin+0x50/0x90 [ 421.975942][T11398] do_recvmmsg+0x105a/0x1ee0 [ 421.980553][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 421.985517][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 421.990384][T11398] do_syscall_64+0xb0/0x150 [ 421.994909][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.000823][T11398] [ 422.003152][T11398] Uninit was stored to memory at: [ 422.008188][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.013921][T11398] __msan_chain_origin+0x50/0x90 [ 422.018866][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.023471][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.028425][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.033287][T11398] do_syscall_64+0xb0/0x150 [ 422.037804][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.043694][T11398] [ 422.046026][T11398] Uninit was stored to memory at: [ 422.051066][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.056799][T11398] __msan_chain_origin+0x50/0x90 [ 422.061785][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.066389][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.071342][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.076206][T11398] do_syscall_64+0xb0/0x150 [ 422.080723][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.086615][T11398] [ 422.088945][T11398] Uninit was stored to memory at: [ 422.094003][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.099748][T11398] __msan_chain_origin+0x50/0x90 [ 422.104712][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.109320][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.114287][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.119165][T11398] do_syscall_64+0xb0/0x150 [ 422.123694][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.129596][T11398] [ 422.131941][T11398] Uninit was stored to memory at: [ 422.137013][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.142767][T11398] __msan_chain_origin+0x50/0x90 [ 422.147728][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.152341][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.157296][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.162164][T11398] do_syscall_64+0xb0/0x150 [ 422.166683][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.172579][T11398] [ 422.174912][T11398] Uninit was stored to memory at: [ 422.179957][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.185691][T11398] __msan_chain_origin+0x50/0x90 [ 422.190653][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.195255][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.200209][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.205082][T11398] do_syscall_64+0xb0/0x150 [ 422.209610][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.215502][T11398] [ 422.217831][T11398] Uninit was stored to memory at: [ 422.222881][T11398] kmsan_internal_chain_origin+0xad/0x130 [ 422.228627][T11398] __msan_chain_origin+0x50/0x90 [ 422.233595][T11398] do_recvmmsg+0x105a/0x1ee0 [ 422.238198][T11398] __se_sys_recvmmsg+0x1d1/0x350 [ 422.243150][T11398] __x64_sys_recvmmsg+0x62/0x80 [ 422.248019][T11398] do_syscall_64+0xb0/0x150 [ 422.252536][T11398] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 422.258435][T11398] [ 422.260769][T11398] Local variable ----msg_sys@do_recvmmsg created at: [ 422.267464][T11398] do_recvmmsg+0xc5/0x1ee0 [ 422.271899][T11398] do_recvmmsg+0xc5/0x1ee0 23:19:28 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:28 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:28 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000480)={0x0, r3, 0x0, 0x1, &(0x7f0000000380)='\x00'}, 0x30) write$FUSE_LK(0xffffffffffffffff, &(0x7f00000004c0)={0x28, 0x2dcc6b22f8711220, 0x1, {{0x6, 0xfffffffeffffffff, 0x2, r4}}}, 0x28) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300)='/dev/hwrng\x00', 0x50000, 0x0) ioctl$UI_BEGIN_FF_ERASE(r6, 0xc00c55ca, &(0x7f0000000340)={0x8000003, 0x400, 0x67c}) r7 = socket(0x10, 0x803, 0x0) r8 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000000c0)=0xffffffffffffffff, 0x4) fsetxattr$trusted_overlay_opaque(r8, &(0x7f0000000280)='trusted.overlay.opaque\x00', &(0x7f00000002c0)='y\x00', 0x2, 0x2) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r9, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38050000240007050000004007a2a30005000000", @ANYRES32=r9, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x140, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x4, 0xf}}, [@filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x110, 0x2, [@TCA_CGROUP_ACT={0x10c, 0x1, [@m_skbmod={0x108, 0x1d, 0x0, 0x0, {{0xb, 0x1, 'skbmod\x00'}, {0x70, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={[], 0x14}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x4, 0x7, 0xffffffffffffffff, 0x7, 0x5}, 0xa}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @random="77d0e9b7cf60"}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x100, 0x3f, 0x4, 0xffff, 0x5}, 0xc}}]}, {0x6d, 0x6, "f183582c359eab9d5c715629888c6ca826f0414b3f3c891a220d5a7864ef30e3ebc0feb80828112fe1927c3a912547cb282703690cf3941e18f7e780b3bb4b72c1b6b58d41604a5eaa511c65dfb63246419d005f4b0ad0f6d998ddf8d2f4c03f03317ed3d3d0213334"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x4}}}}]}]}}]}, 0x140}}, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000000040)) 23:19:28 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:28 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 422.514820][T11409] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 422.591594][T11416] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 422.697359][ C1] sd 0:0:1:0: [sg0] tag#4155 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 422.708106][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB: Test Unit Ready [ 422.714871][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.724714][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.734582][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.744483][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.754351][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.764178][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.774817][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.784663][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.794509][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.804366][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.814200][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.824016][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 422.833865][ C1] sd 0:0:1:0: [sg0] tag#4155 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:28 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 423.019877][T11431] not chained 320000 origins [ 423.024523][T11431] CPU: 0 PID: 11431 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 423.033289][T11431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 423.043357][T11431] Call Trace: [ 423.046671][T11431] dump_stack+0x1df/0x240 [ 423.051028][T11431] kmsan_internal_chain_origin+0x6f/0x130 [ 423.056769][T11431] ? kmsan_get_metadata+0x4f/0x180 [ 423.061896][T11431] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 423.067803][T11431] ? __msan_poison_alloca+0xf0/0x120 [ 423.073104][T11431] ? kmsan_get_metadata+0x11d/0x180 [ 423.078312][T11431] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 423.084132][T11431] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 423.090210][T11431] ? kfree+0x61/0x30f0 [ 423.094295][T11431] ? kmsan_get_metadata+0x4f/0x180 [ 423.099421][T11431] ? kmsan_set_origin_checked+0x95/0xf0 [ 423.104991][T11431] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 423.111103][T11431] ? _copy_from_user+0x15b/0x260 [ 423.116056][T11431] ? kmsan_get_metadata+0x4f/0x180 [ 423.121184][T11431] __msan_chain_origin+0x50/0x90 [ 423.126146][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.130809][T11431] ? __msan_poison_alloca+0xf0/0x120 [ 423.136115][T11431] ? __se_sys_recvmmsg+0xac/0x350 [ 423.141154][T11431] ? __se_sys_recvmmsg+0xac/0x350 [ 423.146198][T11431] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 423.152115][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.157091][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.161964][T11431] do_syscall_64+0xb0/0x150 [ 423.166490][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.172394][T11431] RIP: 0033:0x45c1d9 [ 423.176289][T11431] Code: Bad RIP value. [ 423.180363][T11431] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 423.188795][T11431] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 423.196783][T11431] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 423.204770][T11431] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 423.212757][T11431] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 423.220744][T11431] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 423.228845][T11431] Uninit was stored to memory at: [ 423.233900][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.239639][T11431] __msan_chain_origin+0x50/0x90 [ 423.244626][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.249237][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.254191][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.259055][T11431] do_syscall_64+0xb0/0x150 [ 423.263575][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.269459][T11431] [ 423.271787][T11431] Uninit was stored to memory at: [ 423.276825][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.282551][T11431] __msan_chain_origin+0x50/0x90 [ 423.287496][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.292093][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.297038][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.301900][T11431] do_syscall_64+0xb0/0x150 [ 423.306410][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.312302][T11431] [ 423.314628][T11431] Uninit was stored to memory at: [ 423.319662][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.325389][T11431] __msan_chain_origin+0x50/0x90 [ 423.330337][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.334938][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.339888][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.344754][T11431] do_syscall_64+0xb0/0x150 [ 423.349266][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.356120][T11431] [ 423.358448][T11431] Uninit was stored to memory at: [ 423.363486][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.369215][T11431] __msan_chain_origin+0x50/0x90 [ 423.374164][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.378764][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.383710][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.388576][T11431] do_syscall_64+0xb0/0x150 [ 423.393104][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.398986][T11431] [ 423.401312][T11431] Uninit was stored to memory at: [ 423.406355][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.412091][T11431] __msan_chain_origin+0x50/0x90 [ 423.417042][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.421644][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.426594][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.431452][T11431] do_syscall_64+0xb0/0x150 [ 423.435963][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.441848][T11431] [ 423.444174][T11431] Uninit was stored to memory at: [ 423.449210][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.454939][T11431] __msan_chain_origin+0x50/0x90 [ 423.459891][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.464492][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.469437][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.474299][T11431] do_syscall_64+0xb0/0x150 [ 423.478822][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.484703][T11431] [ 423.487046][T11431] Uninit was stored to memory at: [ 423.492084][T11431] kmsan_internal_chain_origin+0xad/0x130 [ 423.497822][T11431] __msan_chain_origin+0x50/0x90 [ 423.502786][T11431] do_recvmmsg+0x105a/0x1ee0 [ 423.507392][T11431] __se_sys_recvmmsg+0x1d1/0x350 [ 423.512342][T11431] __x64_sys_recvmmsg+0x62/0x80 [ 423.517201][T11431] do_syscall_64+0xb0/0x150 23:19:28 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:19:29 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 423.521713][T11431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 423.527617][T11431] [ 423.529945][T11431] Local variable ----msg_sys@do_recvmmsg created at: [ 423.536631][T11431] do_recvmmsg+0xc5/0x1ee0 [ 423.541050][T11431] do_recvmmsg+0xc5/0x1ee0 23:19:29 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:29 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r3, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000000)=0x1) 23:19:29 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:29 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 424.249025][T11440] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 424.423359][T11449] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 424.500046][ C1] sd 0:0:1:0: [sg0] tag#4156 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 424.510804][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB: Test Unit Ready [ 424.517649][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.527595][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.537528][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.547463][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.557392][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.567316][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.577184][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.587059][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.596967][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.606844][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.616723][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.626602][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 424.636955][ C1] sd 0:0:1:0: [sg0] tag#4156 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:30 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xa) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x6) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000000)={'mangle\x00', 0x4, [{}, {}, {}, {}]}, 0x68) 23:19:30 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:30 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 424.851305][T11443] not chained 330000 origins [ 424.855959][T11443] CPU: 0 PID: 11443 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 424.864646][T11443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 424.874712][T11443] Call Trace: [ 424.878040][T11443] dump_stack+0x1df/0x240 [ 424.882398][T11443] kmsan_internal_chain_origin+0x6f/0x130 [ 424.888132][T11443] ? kmsan_get_metadata+0x4f/0x180 [ 424.893262][T11443] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 424.899176][T11443] ? __msan_poison_alloca+0xf0/0x120 [ 424.904478][T11443] ? kmsan_get_metadata+0x11d/0x180 [ 424.909694][T11443] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 424.915520][T11443] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 424.921607][T11443] ? kfree+0x61/0x30f0 [ 424.925701][T11443] ? kmsan_get_metadata+0x4f/0x180 [ 424.930828][T11443] ? kmsan_set_origin_checked+0x95/0xf0 [ 424.936398][T11443] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 424.942498][T11443] ? _copy_from_user+0x15b/0x260 [ 424.947481][T11443] ? kmsan_get_metadata+0x4f/0x180 [ 424.952613][T11443] __msan_chain_origin+0x50/0x90 [ 424.957576][T11443] do_recvmmsg+0x105a/0x1ee0 [ 424.962253][T11443] ? __msan_poison_alloca+0xf0/0x120 [ 424.967562][T11443] ? __se_sys_recvmmsg+0xac/0x350 [ 424.972605][T11443] ? __se_sys_recvmmsg+0xac/0x350 [ 424.977645][T11443] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 424.983562][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 424.988539][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 424.993416][T11443] do_syscall_64+0xb0/0x150 [ 424.997943][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.003854][T11443] RIP: 0033:0x45c1d9 [ 425.007745][T11443] Code: Bad RIP value. [ 425.011815][T11443] RSP: 002b:00007f9a0ec2fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 425.020241][T11443] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 425.028224][T11443] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 425.036220][T11443] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 425.044203][T11443] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 425.052186][T11443] R13: 0000000000c9fb6f R14: 00007f9a0ec309c0 R15: 000000000078bf0c [ 425.060183][T11443] Uninit was stored to memory at: [ 425.065228][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.070955][T11443] __msan_chain_origin+0x50/0x90 [ 425.075920][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.080521][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.085471][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.090339][T11443] do_syscall_64+0xb0/0x150 [ 425.094889][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.100776][T11443] [ 425.103103][T11443] Uninit was stored to memory at: [ 425.108142][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.113880][T11443] __msan_chain_origin+0x50/0x90 [ 425.118841][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.123708][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.128661][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.133532][T11443] do_syscall_64+0xb0/0x150 [ 425.138061][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.143951][T11443] [ 425.146281][T11443] Uninit was stored to memory at: [ 425.151320][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.157053][T11443] __msan_chain_origin+0x50/0x90 [ 425.162006][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.166613][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.171560][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.176422][T11443] do_syscall_64+0xb0/0x150 [ 425.180934][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.186818][T11443] [ 425.189143][T11443] Uninit was stored to memory at: [ 425.194182][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.199907][T11443] __msan_chain_origin+0x50/0x90 [ 425.204854][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.209466][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.214411][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.219275][T11443] do_syscall_64+0xb0/0x150 [ 425.223795][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.229682][T11443] [ 425.232007][T11443] Uninit was stored to memory at: [ 425.237043][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.242770][T11443] __msan_chain_origin+0x50/0x90 [ 425.247719][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.252330][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.257287][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.262148][T11443] do_syscall_64+0xb0/0x150 [ 425.266665][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.272550][T11443] [ 425.274877][T11443] Uninit was stored to memory at: [ 425.279911][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.285636][T11443] __msan_chain_origin+0x50/0x90 [ 425.290581][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.295183][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.300131][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.304988][T11443] do_syscall_64+0xb0/0x150 [ 425.309498][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.316374][T11443] [ 425.318702][T11443] Uninit was stored to memory at: [ 425.323744][T11443] kmsan_internal_chain_origin+0xad/0x130 [ 425.329470][T11443] __msan_chain_origin+0x50/0x90 [ 425.334418][T11443] do_recvmmsg+0x105a/0x1ee0 [ 425.339016][T11443] __se_sys_recvmmsg+0x1d1/0x350 [ 425.343958][T11443] __x64_sys_recvmmsg+0x62/0x80 [ 425.348813][T11443] do_syscall_64+0xb0/0x150 23:19:31 executing program 5: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:31 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 425.353353][T11443] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 425.359235][T11443] [ 425.361563][T11443] Local variable ----msg_sys@do_recvmmsg created at: [ 425.368246][T11443] do_recvmmsg+0xc5/0x1ee0 [ 425.372681][T11443] do_recvmmsg+0xc5/0x1ee0 23:19:31 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:31 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x68, r1, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private1}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x3f}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xfff}, @SEG6_ATTR_SECRET={0xc, 0x4, [0x1, 0x1]}, @SEG6_ATTR_DST={0x14, 0x1, @remote}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xf6}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x80000000}]}, 0x68}, 0x1, 0x0, 0x0, 0x4800}, 0x0) setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nvram\x00', 0xa0081, 0x0) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) 23:19:31 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r1, 0xc0305602, &(0x7f0000000000)={0x0, 0x3, 0x3014}) 23:19:32 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:32 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:32 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:32 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:32 executing program 5: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:32 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = shmget$private(0x0, 0x1000, 0x54001800, &(0x7f0000fff000/0x1000)=nil) r1 = shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) timerfd_settime(r3, 0x1, &(0x7f0000000100)={{0x0, 0x3938700}}, &(0x7f0000000140)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) shmdt(r1) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_genetlink_get_family_id$fou(&(0x7f00000001c0)='fou\x00') ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r7, 0xc01864ba, &(0x7f0000000180)={0x1, 0x6, 0x8, 0xfbfbfbfb}) write$USERIO_CMD_REGISTER(r5, &(0x7f00000000c0)={0x0, 0xff}, 0x2) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/154) [ 426.929937][ T32] audit: type=1800 audit(1595027972.557:5): pid=11494 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed comm="syz-executor.1" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 [ 427.018844][ C1] sd 0:0:1:0: [sg0] tag#4157 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 427.029692][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB: Test Unit Ready [ 427.036532][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.046470][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.056414][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.066318][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.076188][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.086117][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.096061][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.106028][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.115926][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.125865][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.135776][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.145737][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 427.155634][ C1] sd 0:0:1:0: [sg0] tag#4157 CDB[c0]: 00 00 00 00 00 00 00 00 [ 427.189195][T11497] not chained 340000 origins [ 427.193842][T11497] CPU: 0 PID: 11497 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 427.202519][T11497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 427.212585][T11497] Call Trace: [ 427.215905][T11497] dump_stack+0x1df/0x240 [ 427.220285][T11497] kmsan_internal_chain_origin+0x6f/0x130 [ 427.226033][T11497] ? kmsan_get_metadata+0x4f/0x180 [ 427.231173][T11497] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 427.237101][T11497] ? __msan_poison_alloca+0xf0/0x120 [ 427.242424][T11497] ? kmsan_get_metadata+0x11d/0x180 [ 427.247648][T11497] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 427.253483][T11497] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 427.259570][T11497] ? kfree+0x61/0x30f0 [ 427.263664][T11497] ? kmsan_get_metadata+0x4f/0x180 [ 427.268796][T11497] ? kmsan_set_origin_checked+0x95/0xf0 [ 427.274365][T11497] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 427.280461][T11497] ? _copy_from_user+0x15b/0x260 [ 427.285417][T11497] ? kmsan_get_metadata+0x4f/0x180 [ 427.290546][T11497] __msan_chain_origin+0x50/0x90 [ 427.295507][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.300195][T11497] ? __msan_poison_alloca+0xf0/0x120 [ 427.305506][T11497] ? __se_sys_recvmmsg+0xac/0x350 [ 427.310545][T11497] ? __se_sys_recvmmsg+0xac/0x350 [ 427.315592][T11497] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 427.321512][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.326488][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.331364][T11497] do_syscall_64+0xb0/0x150 [ 427.335891][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.341791][T11497] RIP: 0033:0x45c1d9 [ 427.345689][T11497] Code: Bad RIP value. [ 427.349772][T11497] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 427.358204][T11497] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 427.366192][T11497] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 427.374173][T11497] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 427.382184][T11497] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 427.390167][T11497] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 427.398165][T11497] Uninit was stored to memory at: [ 427.403213][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.408961][T11497] __msan_chain_origin+0x50/0x90 [ 427.413931][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.418530][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.423481][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.428340][T11497] do_syscall_64+0xb0/0x150 [ 427.432855][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.438743][T11497] [ 427.441115][T11497] Uninit was stored to memory at: [ 427.446154][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.451886][T11497] __msan_chain_origin+0x50/0x90 [ 427.456852][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.461459][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.466408][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.471271][T11497] do_syscall_64+0xb0/0x150 [ 427.475787][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.481703][T11497] [ 427.484051][T11497] Uninit was stored to memory at: [ 427.489116][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.494842][T11497] __msan_chain_origin+0x50/0x90 [ 427.499793][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.504394][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.509347][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.514210][T11497] do_syscall_64+0xb0/0x150 [ 427.518729][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.524614][T11497] [ 427.526941][T11497] Uninit was stored to memory at: [ 427.531980][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.537708][T11497] __msan_chain_origin+0x50/0x90 [ 427.542660][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.547262][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.552208][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.557067][T11497] do_syscall_64+0xb0/0x150 [ 427.561610][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.567496][T11497] [ 427.569834][T11497] Uninit was stored to memory at: [ 427.574872][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.580604][T11497] __msan_chain_origin+0x50/0x90 [ 427.585549][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.590197][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.595144][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.600003][T11497] do_syscall_64+0xb0/0x150 [ 427.604517][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.610401][T11497] [ 427.612724][T11497] Uninit was stored to memory at: [ 427.617761][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.623490][T11497] __msan_chain_origin+0x50/0x90 [ 427.628441][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.633062][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.638008][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.642868][T11497] do_syscall_64+0xb0/0x150 [ 427.647384][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.653281][T11497] [ 427.655609][T11497] Uninit was stored to memory at: [ 427.660648][T11497] kmsan_internal_chain_origin+0xad/0x130 [ 427.666381][T11497] __msan_chain_origin+0x50/0x90 [ 427.671330][T11497] do_recvmmsg+0x105a/0x1ee0 [ 427.675927][T11497] __se_sys_recvmmsg+0x1d1/0x350 [ 427.680875][T11497] __x64_sys_recvmmsg+0x62/0x80 [ 427.685736][T11497] do_syscall_64+0xb0/0x150 [ 427.690250][T11497] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 427.696137][T11497] [ 427.698493][T11497] Local variable ----msg_sys@do_recvmmsg created at: [ 427.705180][T11497] do_recvmmsg+0xc5/0x1ee0 [ 427.709608][T11497] do_recvmmsg+0xc5/0x1ee0 23:19:33 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:33 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:33 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:33 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 428.147734][ C0] sd 0:0:1:0: [sg0] tag#7908 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 428.158372][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB: Test Unit Ready [ 428.165119][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.175972][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.185884][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.195779][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.205625][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.215463][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.225302][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.235139][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.244988][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.254824][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.265186][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.275047][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 428.284883][ C0] sd 0:0:1:0: [sg0] tag#7908 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:34 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 428.453163][T11522] not chained 350000 origins [ 428.457821][T11522] CPU: 1 PID: 11522 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 428.466506][T11522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 428.476861][T11522] Call Trace: [ 428.480183][T11522] dump_stack+0x1df/0x240 [ 428.484548][T11522] kmsan_internal_chain_origin+0x6f/0x130 [ 428.490295][T11522] ? kmsan_get_metadata+0x4f/0x180 [ 428.495431][T11522] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 428.501348][T11522] ? __msan_poison_alloca+0xf0/0x120 [ 428.506656][T11522] ? kmsan_get_metadata+0x11d/0x180 [ 428.511871][T11522] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 428.517702][T11522] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 428.523814][T11522] ? kfree+0x61/0x30f0 [ 428.527913][T11522] ? kmsan_get_metadata+0x4f/0x180 [ 428.533064][T11522] ? kmsan_set_origin_checked+0x95/0xf0 [ 428.538632][T11522] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 428.544727][T11522] ? _copy_from_user+0x15b/0x260 [ 428.549682][T11522] ? kmsan_get_metadata+0x4f/0x180 [ 428.554815][T11522] __msan_chain_origin+0x50/0x90 [ 428.559776][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.564443][T11522] ? __msan_poison_alloca+0xf0/0x120 [ 428.569770][T11522] ? __se_sys_recvmmsg+0xac/0x350 [ 428.574804][T11522] ? __se_sys_recvmmsg+0xac/0x350 [ 428.579840][T11522] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 428.585768][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.590737][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.595613][T11522] do_syscall_64+0xb0/0x150 [ 428.601025][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.606943][T11522] RIP: 0033:0x45c1d9 [ 428.610844][T11522] Code: Bad RIP value. [ 428.614912][T11522] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 428.623335][T11522] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 428.631322][T11522] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 428.639304][T11522] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 428.647284][T11522] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 428.655268][T11522] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 428.663265][T11522] Uninit was stored to memory at: [ 428.668309][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.674038][T11522] __msan_chain_origin+0x50/0x90 [ 428.679011][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.683613][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.688644][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.693510][T11522] do_syscall_64+0xb0/0x150 [ 428.698028][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.703912][T11522] [ 428.706237][T11522] Uninit was stored to memory at: [ 428.711271][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.716994][T11522] __msan_chain_origin+0x50/0x90 [ 428.721937][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.726529][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.731485][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.736341][T11522] do_syscall_64+0xb0/0x150 [ 428.740848][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.746753][T11522] [ 428.749078][T11522] Uninit was stored to memory at: [ 428.754127][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.759865][T11522] __msan_chain_origin+0x50/0x90 [ 428.764810][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.769400][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.774339][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.779214][T11522] do_syscall_64+0xb0/0x150 [ 428.783740][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.789621][T11522] [ 428.791946][T11522] Uninit was stored to memory at: [ 428.796975][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.802703][T11522] __msan_chain_origin+0x50/0x90 [ 428.807651][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.812250][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.817195][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.822054][T11522] do_syscall_64+0xb0/0x150 [ 428.826576][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.832465][T11522] [ 428.834789][T11522] Uninit was stored to memory at: [ 428.839825][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.845560][T11522] __msan_chain_origin+0x50/0x90 [ 428.850509][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.855110][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.860054][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.864910][T11522] do_syscall_64+0xb0/0x150 [ 428.869418][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.875300][T11522] [ 428.877711][T11522] Uninit was stored to memory at: [ 428.882743][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.888468][T11522] __msan_chain_origin+0x50/0x90 [ 428.893420][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.898029][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.902978][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.907862][T11522] do_syscall_64+0xb0/0x150 [ 428.912378][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.918262][T11522] [ 428.920591][T11522] Uninit was stored to memory at: [ 428.925640][T11522] kmsan_internal_chain_origin+0xad/0x130 [ 428.931374][T11522] __msan_chain_origin+0x50/0x90 [ 428.936330][T11522] do_recvmmsg+0x105a/0x1ee0 [ 428.940951][T11522] __se_sys_recvmmsg+0x1d1/0x350 [ 428.945898][T11522] __x64_sys_recvmmsg+0x62/0x80 [ 428.950777][T11522] do_syscall_64+0xb0/0x150 23:19:34 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 428.955319][T11522] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 428.961200][T11522] [ 428.963525][T11522] Local variable ----msg_sys@do_recvmmsg created at: [ 428.970212][T11522] do_recvmmsg+0xc5/0x1ee0 [ 428.974637][T11522] do_recvmmsg+0xc5/0x1ee0 23:19:34 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:34 executing program 5: add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:34 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:34 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 430.155809][ C0] sd 0:0:1:0: [sg0] tag#7927 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 430.166603][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB: Test Unit Ready [ 430.173331][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.183157][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.192991][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.202883][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.212783][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.222663][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.232490][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.242318][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.252145][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.261975][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.271786][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.281541][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 430.291356][ C0] sd 0:0:1:0: [sg0] tag#7927 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:35 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 430.398393][T11533] not chained 360000 origins [ 430.403040][T11533] CPU: 0 PID: 11533 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 430.411713][T11533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 430.421775][T11533] Call Trace: [ 430.425093][T11533] dump_stack+0x1df/0x240 [ 430.429450][T11533] kmsan_internal_chain_origin+0x6f/0x130 [ 430.435195][T11533] ? kmsan_get_metadata+0x4f/0x180 [ 430.440330][T11533] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 430.446248][T11533] ? __msan_poison_alloca+0xf0/0x120 [ 430.451554][T11533] ? kmsan_get_metadata+0x11d/0x180 [ 430.456777][T11533] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 430.462601][T11533] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 430.468686][T11533] ? kfree+0x61/0x30f0 [ 430.472778][T11533] ? kmsan_get_metadata+0x4f/0x180 [ 430.477905][T11533] ? kmsan_set_origin_checked+0x95/0xf0 [ 430.483469][T11533] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 430.489570][T11533] ? _copy_from_user+0x15b/0x260 [ 430.494536][T11533] ? kmsan_get_metadata+0x4f/0x180 [ 430.499669][T11533] __msan_chain_origin+0x50/0x90 [ 430.504635][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.509310][T11533] ? __msan_poison_alloca+0xf0/0x120 [ 430.514626][T11533] ? __se_sys_recvmmsg+0xac/0x350 [ 430.519672][T11533] ? __se_sys_recvmmsg+0xac/0x350 [ 430.524718][T11533] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 430.530636][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.535610][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.540492][T11533] do_syscall_64+0xb0/0x150 [ 430.545056][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.550961][T11533] RIP: 0033:0x45c1d9 [ 430.554856][T11533] Code: Bad RIP value. [ 430.558926][T11533] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 430.567353][T11533] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 430.575340][T11533] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 430.583316][T11533] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 430.591297][T11533] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 430.599289][T11533] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 430.607289][T11533] Uninit was stored to memory at: [ 430.612329][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.618060][T11533] __msan_chain_origin+0x50/0x90 [ 430.623011][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.627610][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.632555][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.637414][T11533] do_syscall_64+0xb0/0x150 [ 430.641927][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.647813][T11533] [ 430.650139][T11533] Uninit was stored to memory at: [ 430.655174][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.660902][T11533] __msan_chain_origin+0x50/0x90 [ 430.665848][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.670444][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.675393][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.680253][T11533] do_syscall_64+0xb0/0x150 [ 430.684768][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.690650][T11533] [ 430.692979][T11533] Uninit was stored to memory at: [ 430.698017][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.703741][T11533] __msan_chain_origin+0x50/0x90 [ 430.708687][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.713282][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.718230][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.723102][T11533] do_syscall_64+0xb0/0x150 [ 430.727614][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.733512][T11533] [ 430.735840][T11533] Uninit was stored to memory at: [ 430.740906][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.746631][T11533] __msan_chain_origin+0x50/0x90 [ 430.751576][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.756173][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.761126][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.765985][T11533] do_syscall_64+0xb0/0x150 [ 430.770508][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.776413][T11533] [ 430.778738][T11533] Uninit was stored to memory at: [ 430.783774][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.789507][T11533] __msan_chain_origin+0x50/0x90 [ 430.794459][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.799070][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.804014][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.808876][T11533] do_syscall_64+0xb0/0x150 [ 430.813416][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.819300][T11533] [ 430.821628][T11533] Uninit was stored to memory at: [ 430.826661][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.832387][T11533] __msan_chain_origin+0x50/0x90 [ 430.837338][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.841974][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.846921][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.851782][T11533] do_syscall_64+0xb0/0x150 [ 430.856292][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.862175][T11533] [ 430.864504][T11533] Uninit was stored to memory at: [ 430.869529][T11533] kmsan_internal_chain_origin+0xad/0x130 [ 430.875245][T11533] __msan_chain_origin+0x50/0x90 [ 430.880186][T11533] do_recvmmsg+0x105a/0x1ee0 [ 430.884779][T11533] __se_sys_recvmmsg+0x1d1/0x350 [ 430.889734][T11533] __x64_sys_recvmmsg+0x62/0x80 [ 430.894589][T11533] do_syscall_64+0xb0/0x150 23:19:36 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 430.899096][T11533] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 430.904975][T11533] [ 430.907297][T11533] Local variable ----msg_sys@do_recvmmsg created at: [ 430.913971][T11533] do_recvmmsg+0xc5/0x1ee0 [ 430.918386][T11533] do_recvmmsg+0xc5/0x1ee0 23:19:36 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:36 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:36 executing program 4: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 431.604846][ C0] sd 0:0:1:0: [sg0] tag#7928 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 431.615581][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB: Test Unit Ready [ 431.622311][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.632169][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.641998][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.651881][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.661708][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.671457][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.681294][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.691130][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.700948][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.710764][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.720588][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.730405][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 431.740274][ C0] sd 0:0:1:0: [sg0] tag#7928 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:37 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 432.181081][T11561] not chained 370000 origins [ 432.185731][T11561] CPU: 1 PID: 11561 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 432.194412][T11561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 432.204485][T11561] Call Trace: [ 432.207810][T11561] dump_stack+0x1df/0x240 [ 432.212173][T11561] kmsan_internal_chain_origin+0x6f/0x130 [ 432.217917][T11561] ? kmsan_get_metadata+0x4f/0x180 [ 432.223052][T11561] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 432.228983][T11561] ? __msan_poison_alloca+0xf0/0x120 [ 432.234292][T11561] ? kmsan_get_metadata+0x11d/0x180 [ 432.239510][T11561] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 432.245336][T11561] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 432.251421][T11561] ? kfree+0x61/0x30f0 [ 432.255514][T11561] ? kmsan_get_metadata+0x4f/0x180 [ 432.260645][T11561] ? kmsan_set_origin_checked+0x95/0xf0 [ 432.266236][T11561] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 432.272328][T11561] ? _copy_from_user+0x15b/0x260 [ 432.277310][T11561] ? kmsan_get_metadata+0x4f/0x180 [ 432.282446][T11561] __msan_chain_origin+0x50/0x90 [ 432.287436][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.292122][T11561] ? __msan_poison_alloca+0xf0/0x120 [ 432.297435][T11561] ? __se_sys_recvmmsg+0xac/0x350 [ 432.302479][T11561] ? __se_sys_recvmmsg+0xac/0x350 [ 432.307523][T11561] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 432.313446][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.318426][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.323301][T11561] do_syscall_64+0xb0/0x150 [ 432.327824][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.333727][T11561] RIP: 0033:0x45c1d9 [ 432.337624][T11561] Code: Bad RIP value. [ 432.341693][T11561] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 432.350119][T11561] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 432.358102][T11561] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 432.366117][T11561] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 432.374101][T11561] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 432.382091][T11561] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 432.390092][T11561] Uninit was stored to memory at: [ 432.395141][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.400874][T11561] __msan_chain_origin+0x50/0x90 [ 432.405825][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.410431][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.415391][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.420265][T11561] do_syscall_64+0xb0/0x150 [ 432.424782][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.430669][T11561] [ 432.433000][T11561] Uninit was stored to memory at: [ 432.438047][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.443776][T11561] __msan_chain_origin+0x50/0x90 [ 432.448727][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.453331][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.458308][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.463191][T11561] do_syscall_64+0xb0/0x150 [ 432.467717][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.473613][T11561] [ 432.475948][T11561] Uninit was stored to memory at: [ 432.480998][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.486748][T11561] __msan_chain_origin+0x50/0x90 [ 432.491713][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.496329][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.501290][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.506197][T11561] do_syscall_64+0xb0/0x150 [ 432.510716][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.516608][T11561] [ 432.518939][T11561] Uninit was stored to memory at: [ 432.523977][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.529717][T11561] __msan_chain_origin+0x50/0x90 [ 432.534667][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.539271][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.544218][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.549105][T11561] do_syscall_64+0xb0/0x150 [ 432.553647][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.559534][T11561] [ 432.561864][T11561] Uninit was stored to memory at: [ 432.566905][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.572639][T11561] __msan_chain_origin+0x50/0x90 [ 432.577598][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.582209][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.587162][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.592040][T11561] do_syscall_64+0xb0/0x150 [ 432.596556][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.602451][T11561] [ 432.604782][T11561] Uninit was stored to memory at: [ 432.609822][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.615556][T11561] __msan_chain_origin+0x50/0x90 [ 432.620505][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.625106][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.630088][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.634955][T11561] do_syscall_64+0xb0/0x150 [ 432.639473][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.645360][T11561] [ 432.647689][T11561] Uninit was stored to memory at: [ 432.652729][T11561] kmsan_internal_chain_origin+0xad/0x130 [ 432.658487][T11561] __msan_chain_origin+0x50/0x90 [ 432.663435][T11561] do_recvmmsg+0x105a/0x1ee0 [ 432.668042][T11561] __se_sys_recvmmsg+0x1d1/0x350 [ 432.672998][T11561] __x64_sys_recvmmsg+0x62/0x80 [ 432.677877][T11561] do_syscall_64+0xb0/0x150 23:19:38 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 432.682416][T11561] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 432.688304][T11561] [ 432.690635][T11561] Local variable ----msg_sys@do_recvmmsg created at: [ 432.697325][T11561] do_recvmmsg+0xc5/0x1ee0 [ 432.701780][T11561] do_recvmmsg+0xc5/0x1ee0 23:19:38 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:38 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 433.053680][ C0] sd 0:0:1:0: [sg0] tag#7929 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 433.064410][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB: Test Unit Ready [ 433.071040][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.080921][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.090821][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.100725][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.110573][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.120405][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.130255][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.140082][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.149943][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.159768][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.169590][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.179424][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 433.189301][ C0] sd 0:0:1:0: [sg0] tag#7929 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:39 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:39 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:39 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x0, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:39 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:39 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 433.872145][T11585] not chained 380000 origins [ 433.876789][T11585] CPU: 1 PID: 11585 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 433.885464][T11585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 433.895541][T11585] Call Trace: [ 433.898846][T11585] dump_stack+0x1df/0x240 [ 433.903193][T11585] kmsan_internal_chain_origin+0x6f/0x130 [ 433.908920][T11585] ? kmsan_get_metadata+0x4f/0x180 [ 433.914042][T11585] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 433.919947][T11585] ? __msan_poison_alloca+0xf0/0x120 [ 433.925245][T11585] ? kmsan_get_metadata+0x11d/0x180 [ 433.930457][T11585] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 433.936282][T11585] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 433.942356][T11585] ? kfree+0x61/0x30f0 [ 433.946444][T11585] ? kmsan_get_metadata+0x4f/0x180 [ 433.951569][T11585] ? kmsan_set_origin_checked+0x95/0xf0 [ 433.957137][T11585] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 433.963225][T11585] ? _copy_from_user+0x15b/0x260 [ 433.968174][T11585] ? kmsan_get_metadata+0x4f/0x180 [ 433.973297][T11585] __msan_chain_origin+0x50/0x90 [ 433.978255][T11585] do_recvmmsg+0x105a/0x1ee0 [ 433.982913][T11585] ? __msan_poison_alloca+0xf0/0x120 [ 433.988211][T11585] ? __se_sys_recvmmsg+0xac/0x350 [ 433.993243][T11585] ? __se_sys_recvmmsg+0xac/0x350 [ 433.998271][T11585] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 434.004190][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.009164][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.014033][T11585] do_syscall_64+0xb0/0x150 [ 434.018553][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.024447][T11585] RIP: 0033:0x45c1d9 [ 434.028357][T11585] Code: Bad RIP value. [ 434.032420][T11585] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 434.040840][T11585] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 434.048822][T11585] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 434.056900][T11585] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 434.064876][T11585] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 434.072856][T11585] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 434.080853][T11585] Uninit was stored to memory at: [ 434.085895][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.091637][T11585] __msan_chain_origin+0x50/0x90 [ 434.096587][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.101183][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.106131][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.110994][T11585] do_syscall_64+0xb0/0x150 [ 434.115515][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.121402][T11585] [ 434.123751][T11585] Uninit was stored to memory at: [ 434.128814][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.134558][T11585] __msan_chain_origin+0x50/0x90 [ 434.139528][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.144126][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.149067][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.153924][T11585] do_syscall_64+0xb0/0x150 [ 434.158435][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.164318][T11585] [ 434.166643][T11585] Uninit was stored to memory at: [ 434.171677][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.177403][T11585] __msan_chain_origin+0x50/0x90 [ 434.182347][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.186940][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.191883][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.196748][T11585] do_syscall_64+0xb0/0x150 [ 434.201265][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.207144][T11585] [ 434.209465][T11585] Uninit was stored to memory at: [ 434.214504][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.220225][T11585] __msan_chain_origin+0x50/0x90 [ 434.225169][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.229766][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.234705][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.239568][T11585] do_syscall_64+0xb0/0x150 [ 434.244076][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.249958][T11585] [ 434.252277][T11585] Uninit was stored to memory at: [ 434.257306][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.263024][T11585] __msan_chain_origin+0x50/0x90 [ 434.267981][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.272575][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.277516][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.282370][T11585] do_syscall_64+0xb0/0x150 [ 434.286872][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.292769][T11585] [ 434.295094][T11585] Uninit was stored to memory at: [ 434.300119][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.305839][T11585] __msan_chain_origin+0x50/0x90 [ 434.310781][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.315375][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.320313][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.325171][T11585] do_syscall_64+0xb0/0x150 [ 434.329677][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.335555][T11585] [ 434.337876][T11585] Uninit was stored to memory at: [ 434.342904][T11585] kmsan_internal_chain_origin+0xad/0x130 [ 434.348625][T11585] __msan_chain_origin+0x50/0x90 [ 434.353564][T11585] do_recvmmsg+0x105a/0x1ee0 [ 434.358155][T11585] __se_sys_recvmmsg+0x1d1/0x350 [ 434.363092][T11585] __x64_sys_recvmmsg+0x62/0x80 [ 434.367944][T11585] do_syscall_64+0xb0/0x150 [ 434.372450][T11585] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 434.378347][T11585] [ 434.380671][T11585] Local variable ----msg_sys@do_recvmmsg created at: [ 434.387354][T11585] do_recvmmsg+0xc5/0x1ee0 [ 434.393081][T11585] do_recvmmsg+0xc5/0x1ee0 [ 434.427021][ C0] sd 0:0:1:0: [sg0] tag#7930 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 434.437649][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB: Test Unit Ready [ 434.444392][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.454224][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.464096][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.474016][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.483888][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.493776][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.503669][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.513519][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.523364][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.533251][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.543130][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.552999][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 434.562881][ C0] sd 0:0:1:0: [sg0] tag#7930 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:40 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:40 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:40 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x0, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:40 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:40 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:40 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(0x0, &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:41 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x0, 0x2) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 435.549728][T11617] not chained 390000 origins [ 435.554370][T11617] CPU: 0 PID: 11617 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 435.563047][T11617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 435.573114][T11617] Call Trace: [ 435.576429][T11617] dump_stack+0x1df/0x240 [ 435.580785][T11617] kmsan_internal_chain_origin+0x6f/0x130 [ 435.586524][T11617] ? kmsan_get_metadata+0x4f/0x180 [ 435.591657][T11617] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 435.597568][T11617] ? __msan_poison_alloca+0xf0/0x120 [ 435.602871][T11617] ? kmsan_get_metadata+0x11d/0x180 [ 435.608092][T11617] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 435.613944][T11617] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 435.620033][T11617] ? kfree+0x61/0x30f0 [ 435.624135][T11617] ? kmsan_get_metadata+0x4f/0x180 [ 435.629263][T11617] ? kmsan_set_origin_checked+0x95/0xf0 [ 435.634829][T11617] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 435.640928][T11617] ? _copy_from_user+0x15b/0x260 [ 435.645924][T11617] ? kmsan_get_metadata+0x4f/0x180 [ 435.651058][T11617] __msan_chain_origin+0x50/0x90 [ 435.656015][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.660670][T11617] ? __msan_poison_alloca+0xf0/0x120 [ 435.666059][T11617] ? __se_sys_recvmmsg+0xac/0x350 [ 435.671108][T11617] ? __se_sys_recvmmsg+0xac/0x350 [ 435.676172][T11617] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 435.682089][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.687087][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.691975][T11617] do_syscall_64+0xb0/0x150 [ 435.696501][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.702398][T11617] RIP: 0033:0x45c1d9 [ 435.706285][T11617] Code: Bad RIP value. [ 435.710365][T11617] RSP: 002b:00007f550722fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 435.718786][T11617] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 435.726794][T11617] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 435.734775][T11617] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 435.742754][T11617] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 435.750727][T11617] R13: 0000000000c9fb6f R14: 00007f55072309c0 R15: 000000000078bf0c [ 435.758736][T11617] Uninit was stored to memory at: [ 435.763774][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.769500][T11617] __msan_chain_origin+0x50/0x90 [ 435.774448][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.779043][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.783987][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.788861][T11617] do_syscall_64+0xb0/0x150 [ 435.793377][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.799262][T11617] [ 435.801598][T11617] Uninit was stored to memory at: [ 435.806632][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.812359][T11617] __msan_chain_origin+0x50/0x90 [ 435.817305][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.821899][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.826836][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.831689][T11617] do_syscall_64+0xb0/0x150 [ 435.836198][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.842077][T11617] [ 435.844396][T11617] Uninit was stored to memory at: [ 435.849429][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.855155][T11617] __msan_chain_origin+0x50/0x90 [ 435.860099][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.864690][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.869637][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.874493][T11617] do_syscall_64+0xb0/0x150 [ 435.878998][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.885836][T11617] [ 435.888164][T11617] Uninit was stored to memory at: [ 435.893196][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.898922][T11617] __msan_chain_origin+0x50/0x90 [ 435.903865][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.908453][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.913395][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.918248][T11617] do_syscall_64+0xb0/0x150 [ 435.922760][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.928641][T11617] [ 435.930965][T11617] Uninit was stored to memory at: [ 435.935994][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.941734][T11617] __msan_chain_origin+0x50/0x90 [ 435.946677][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.951274][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.956230][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 435.961096][T11617] do_syscall_64+0xb0/0x150 [ 435.965606][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 435.971489][T11617] [ 435.973817][T11617] Uninit was stored to memory at: [ 435.978852][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 435.984581][T11617] __msan_chain_origin+0x50/0x90 [ 435.989526][T11617] do_recvmmsg+0x105a/0x1ee0 [ 435.994129][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 435.999080][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 436.003943][T11617] do_syscall_64+0xb0/0x150 [ 436.008456][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 436.014346][T11617] [ 436.016669][T11617] Uninit was stored to memory at: [ 436.021699][T11617] kmsan_internal_chain_origin+0xad/0x130 [ 436.027422][T11617] __msan_chain_origin+0x50/0x90 [ 436.032366][T11617] do_recvmmsg+0x105a/0x1ee0 [ 436.036959][T11617] __se_sys_recvmmsg+0x1d1/0x350 [ 436.041906][T11617] __x64_sys_recvmmsg+0x62/0x80 [ 436.046767][T11617] do_syscall_64+0xb0/0x150 [ 436.051286][T11617] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 436.057186][T11617] [ 436.059509][T11617] Local variable ----msg_sys@do_recvmmsg created at: [ 436.066190][T11617] do_recvmmsg+0xc5/0x1ee0 [ 436.070609][T11617] do_recvmmsg+0xc5/0x1ee0 [ 436.156231][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:41 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:41 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:41 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:42 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:43 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:43 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 438.437228][ C0] sd 0:0:1:0: [sg0] tag#7931 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 438.445784][T11624] not chained 400000 origins [ 438.447876][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB: Test Unit Ready [ 438.452280][T11624] CPU: 1 PID: 11624 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 438.452292][T11624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 438.452301][T11624] Call Trace: [ 438.452334][T11624] dump_stack+0x1df/0x240 [ 438.452370][T11624] kmsan_internal_chain_origin+0x6f/0x130 [ 438.452479][T11624] ? kmsan_get_metadata+0x4f/0x180 [ 438.458989][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.467549][T11624] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 438.467573][T11624] ? __msan_poison_alloca+0xf0/0x120 [ 438.467596][T11624] ? kmsan_get_metadata+0x11d/0x180 [ 438.467654][T11624] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 438.477887][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.481001][T11624] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 438.485478][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.491052][T11624] ? kfree+0x61/0x30f0 [ 438.496322][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.505688][T11624] ? kmsan_get_metadata+0x4f/0x180 [ 438.505710][T11624] ? kmsan_set_origin_checked+0x95/0xf0 [ 438.505734][T11624] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 438.505782][T11624] ? _copy_from_user+0x15b/0x260 [ 438.511828][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.516957][T11624] ? kmsan_get_metadata+0x4f/0x180 [ 438.522324][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.528023][T11624] __msan_chain_origin+0x50/0x90 [ 438.537723][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.543602][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.543725][T11624] ? __msan_poison_alloca+0xf0/0x120 [ 438.553399][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.557380][T11624] ? __se_sys_recvmmsg+0xac/0x350 [ 438.567063][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.571997][T11624] ? __se_sys_recvmmsg+0xac/0x350 [ 438.572019][T11624] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 438.572045][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.572089][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.577733][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.583688][T11624] do_syscall_64+0xb0/0x150 [ 438.583715][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.583731][T11624] RIP: 0033:0x45c1d9 [ 438.583765][T11624] Code: Bad RIP value. [ 438.588799][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.598291][T11624] RSP: 002b:00007f9a0ec2fc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 438.598309][T11624] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 438.598321][T11624] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 438.598332][T11624] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 438.598343][T11624] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 438.598354][T11624] R13: 0000000000c9fb6f R14: 00007f9a0ec309c0 R15: 000000000078bf0c [ 438.598388][T11624] Uninit was stored to memory at: [ 438.603656][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 438.613019][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 438.613035][T11624] __msan_chain_origin+0x50/0x90 [ 438.613054][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.613071][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.613116][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.618145][ C0] sd 0:0:1:0: [sg0] tag#7931 CDB[c0]: 00 00 00 00 00 00 00 00 [ 438.627590][T11624] do_syscall_64+0xb0/0x150 [ 438.627609][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.627615][T11624] [ 438.627621][T11624] Uninit was stored to memory at: [ 438.627638][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 438.627682][T11624] __msan_chain_origin+0x50/0x90 [ 438.843346][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.847958][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.852909][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.857772][T11624] do_syscall_64+0xb0/0x150 [ 438.862307][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.868197][T11624] [ 438.870533][T11624] Uninit was stored to memory at: [ 438.875572][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 438.881300][T11624] __msan_chain_origin+0x50/0x90 [ 438.886247][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.890852][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.895812][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.900680][T11624] do_syscall_64+0xb0/0x150 [ 438.905204][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.911100][T11624] [ 438.913432][T11624] Uninit was stored to memory at: [ 438.918482][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 438.924216][T11624] __msan_chain_origin+0x50/0x90 [ 438.929165][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.933775][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.938724][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.943587][T11624] do_syscall_64+0xb0/0x150 [ 438.948137][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.954025][T11624] [ 438.956358][T11624] Uninit was stored to memory at: [ 438.961401][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 438.967133][T11624] __msan_chain_origin+0x50/0x90 [ 438.972090][T11624] do_recvmmsg+0x105a/0x1ee0 [ 438.976692][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 438.981635][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 438.986507][T11624] do_syscall_64+0xb0/0x150 [ 438.991025][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 438.996940][T11624] [ 438.999269][T11624] Uninit was stored to memory at: [ 439.004571][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 439.010309][T11624] __msan_chain_origin+0x50/0x90 [ 439.015256][T11624] do_recvmmsg+0x105a/0x1ee0 [ 439.019860][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 439.024805][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 439.029671][T11624] do_syscall_64+0xb0/0x150 [ 439.034188][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 439.040072][T11624] [ 439.042404][T11624] Uninit was stored to memory at: [ 439.047446][T11624] kmsan_internal_chain_origin+0xad/0x130 [ 439.053179][T11624] __msan_chain_origin+0x50/0x90 [ 439.058129][T11624] do_recvmmsg+0x105a/0x1ee0 [ 439.062731][T11624] __se_sys_recvmmsg+0x1d1/0x350 [ 439.067685][T11624] __x64_sys_recvmmsg+0x62/0x80 [ 439.072555][T11624] do_syscall_64+0xb0/0x150 [ 439.077080][T11624] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 439.082972][T11624] [ 439.085303][T11624] Local variable ----msg_sys@do_recvmmsg created at: [ 439.091996][T11624] do_recvmmsg+0xc5/0x1ee0 [ 439.096435][T11624] do_recvmmsg+0xc5/0x1ee0 [ 439.146327][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:45 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:45 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:45 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:45 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:45 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:45 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$vcsu(&(0x7f0000000140)='/dev/vcsu#\x00', 0x1, 0x8401) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10) r3 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x7b, &(0x7f0000000240)={r4}, 0x9c) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000440)={r4, @in6={{0xa, 0x4e22, 0x0, @private0={0xfc, 0x0, [], 0x1}, 0x646d}}, 0x8000, 0xfffc}, &(0x7f0000000500)=0x90) r5 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000280)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)={0x58, r5, 0x10, 0x70bd2a, 0x25dfdbfe, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast2}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x400, 0x7, 0x5, 0x1, 0xb1]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7fff}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x5}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x90}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) r8 = socket(0x10, 0x80002, 0x0) r9 = syz_genetlink_get_family_id$smc(&(0x7f00000009c0)='SMC_PNETID\x00') sendmsg$SMC_PNETID_ADD(r8, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x28, r9, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'syzkaller0\x00'}]}, 0x28}}, 0x0) sendmsg$SMC_PNETID_ADD(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r9, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0xc000) 23:19:45 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 440.079269][T11681] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 440.137888][T11692] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:45 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 440.282825][ C0] sd 0:0:1:0: [sg0] tag#7933 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 440.293487][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB: Test Unit Ready [ 440.300114][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.309989][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.319811][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.329667][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.339472][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.349275][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.359090][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.368894][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.378716][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.388546][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.398404][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.408217][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 440.418032][ C0] sd 0:0:1:0: [sg0] tag#7933 CDB[c0]: 00 00 00 00 00 00 00 00 23:19:46 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 440.454302][T11695] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 440.482978][T11696] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:46 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:46 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) write$UHID_INPUT2(r1, &(0x7f0000000040)={0xc, {0x4d, "2ffd053661e152fd2e2d65fca05f88384dde902c3c2031ce725077d578a0af7db896125c9f245e9e2a8b2221eb129510f641b956401000a62418996ac625798ad5a467e563c36230bda15cf80a"}}, 0x53) 23:19:46 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:46 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(0x0, 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:46 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:46 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 441.179116][T11723] not chained 410000 origins [ 441.183762][T11723] CPU: 0 PID: 11723 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 441.192436][T11723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 441.202497][T11723] Call Trace: [ 441.205811][T11723] dump_stack+0x1df/0x240 [ 441.210171][T11723] kmsan_internal_chain_origin+0x6f/0x130 [ 441.215907][T11723] ? kmsan_get_metadata+0x4f/0x180 [ 441.221040][T11723] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 441.226956][T11723] ? __msan_poison_alloca+0xf0/0x120 [ 441.232259][T11723] ? kmsan_get_metadata+0x11d/0x180 [ 441.237471][T11723] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 441.243317][T11723] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 441.249396][T11723] ? kfree+0x61/0x30f0 [ 441.253481][T11723] ? kmsan_get_metadata+0x4f/0x180 [ 441.258605][T11723] ? kmsan_set_origin_checked+0x95/0xf0 [ 441.264186][T11723] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 441.270293][T11723] ? _copy_from_user+0x15b/0x260 [ 441.275241][T11723] ? kmsan_get_metadata+0x4f/0x180 [ 441.280361][T11723] __msan_chain_origin+0x50/0x90 [ 441.285319][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.289985][T11723] ? __msan_poison_alloca+0xf0/0x120 [ 441.295291][T11723] ? __se_sys_recvmmsg+0xac/0x350 [ 441.300327][T11723] ? __se_sys_recvmmsg+0xac/0x350 [ 441.305362][T11723] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 441.311269][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.316244][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.321112][T11723] do_syscall_64+0xb0/0x150 [ 441.325635][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.331532][T11723] RIP: 0033:0x45c1d9 [ 441.335438][T11723] Code: Bad RIP value. [ 441.339520][T11723] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 441.347936][T11723] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 441.355911][T11723] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 441.363890][T11723] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 441.371889][T11723] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 441.379869][T11723] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 441.387861][T11723] Uninit was stored to memory at: [ 441.392898][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.398620][T11723] __msan_chain_origin+0x50/0x90 [ 441.403567][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.408164][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.413273][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.418132][T11723] do_syscall_64+0xb0/0x150 [ 441.422642][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.428521][T11723] [ 441.430843][T11723] Uninit was stored to memory at: [ 441.435873][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.441615][T11723] __msan_chain_origin+0x50/0x90 [ 441.446561][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.451153][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.456090][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.460943][T11723] do_syscall_64+0xb0/0x150 [ 441.465452][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.471333][T11723] [ 441.473654][T11723] Uninit was stored to memory at: [ 441.478682][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.484398][T11723] __msan_chain_origin+0x50/0x90 [ 441.489337][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.493929][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.498865][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.503715][T11723] do_syscall_64+0xb0/0x150 [ 441.508226][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.514103][T11723] [ 441.516421][T11723] Uninit was stored to memory at: [ 441.521446][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.527167][T11723] __msan_chain_origin+0x50/0x90 [ 441.532107][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.536697][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.541630][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.546483][T11723] do_syscall_64+0xb0/0x150 [ 441.550985][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.556864][T11723] [ 441.559188][T11723] Uninit was stored to memory at: [ 441.564221][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.569938][T11723] __msan_chain_origin+0x50/0x90 [ 441.574877][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.579466][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.584405][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.589256][T11723] do_syscall_64+0xb0/0x150 [ 441.593760][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.599640][T11723] [ 441.601960][T11723] Uninit was stored to memory at: [ 441.606988][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.612728][T11723] __msan_chain_origin+0x50/0x90 [ 441.617669][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.622261][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.627199][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.632056][T11723] do_syscall_64+0xb0/0x150 [ 441.636582][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.642463][T11723] [ 441.644783][T11723] Uninit was stored to memory at: [ 441.649811][T11723] kmsan_internal_chain_origin+0xad/0x130 [ 441.655530][T11723] __msan_chain_origin+0x50/0x90 [ 441.660467][T11723] do_recvmmsg+0x105a/0x1ee0 [ 441.665072][T11723] __se_sys_recvmmsg+0x1d1/0x350 [ 441.670097][T11723] __x64_sys_recvmmsg+0x62/0x80 [ 441.674948][T11723] do_syscall_64+0xb0/0x150 23:19:47 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') ioctl$sock_bt_hidp_HIDPCONNDEL(0xffffffffffffffff, 0x400448c9, &(0x7f0000000000)={@any, 0x3}) [ 441.679452][T11723] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 441.685332][T11723] [ 441.687656][T11723] Local variable ----msg_sys@do_recvmmsg created at: [ 441.694332][T11723] do_recvmmsg+0xc5/0x1ee0 [ 441.698747][T11723] do_recvmmsg+0xc5/0x1ee0 [ 441.742260][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:47 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:47 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:47 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40, 0x0) syz_open_pts(r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$IPCTNL_MSG_EXP_NEW(r1, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000340)={0xe4, 0x0, 0x2, 0x101, 0x0, 0x0, {0x5, 0x0, 0x5}, [@CTA_EXPECT_NAT={0x98, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x94, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @dev={0xfe, 0x80, [], 0x24}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}]}, @CTA_EXPECT_TUPLE={0x20, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_EXPECT_MASK={0x18, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20004000) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r4, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@SEG6_ATTR_DSTLEN={0x8, 0x2, 0x6}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7}]}, 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x800) [ 442.390217][T11744] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:48 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:48 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 442.617102][T11751] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:19:48 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(0x0, 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:48 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x0, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:49 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:49 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') 23:19:49 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:49 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(0x0, 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:49 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:49 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:50 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:19:50 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:50 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 444.482040][T11797] not chained 420000 origins [ 444.486680][T11797] CPU: 1 PID: 11797 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 444.495355][T11797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 444.505417][T11797] Call Trace: [ 444.508729][T11797] dump_stack+0x1df/0x240 [ 444.513086][T11797] kmsan_internal_chain_origin+0x6f/0x130 [ 444.518821][T11797] ? kmsan_get_metadata+0x4f/0x180 [ 444.523949][T11797] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 444.529864][T11797] ? __msan_poison_alloca+0xf0/0x120 [ 444.535171][T11797] ? kmsan_get_metadata+0x11d/0x180 [ 444.540378][T11797] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 444.546193][T11797] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 444.552266][T11797] ? kfree+0x61/0x30f0 [ 444.556347][T11797] ? kmsan_get_metadata+0x4f/0x180 [ 444.561462][T11797] ? kmsan_set_origin_checked+0x95/0xf0 [ 444.567042][T11797] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 444.573132][T11797] ? _copy_from_user+0x15b/0x260 [ 444.578077][T11797] ? kmsan_get_metadata+0x4f/0x180 [ 444.583203][T11797] __msan_chain_origin+0x50/0x90 [ 444.588162][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.592824][T11797] ? __msan_poison_alloca+0xf0/0x120 [ 444.598140][T11797] ? __se_sys_recvmmsg+0xac/0x350 [ 444.603191][T11797] ? __se_sys_recvmmsg+0xac/0x350 [ 444.608242][T11797] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 444.614153][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.619118][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.623983][T11797] do_syscall_64+0xb0/0x150 [ 444.628505][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.634437][T11797] RIP: 0033:0x45c1d9 [ 444.638325][T11797] Code: Bad RIP value. [ 444.642389][T11797] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 444.650805][T11797] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 444.658780][T11797] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 444.666756][T11797] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 444.674729][T11797] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 444.682700][T11797] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 444.690690][T11797] Uninit was stored to memory at: [ 444.695725][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.701445][T11797] __msan_chain_origin+0x50/0x90 [ 444.706385][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.710972][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.716878][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.721731][T11797] do_syscall_64+0xb0/0x150 [ 444.726234][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.732110][T11797] [ 444.734433][T11797] Uninit was stored to memory at: [ 444.739477][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.745202][T11797] __msan_chain_origin+0x50/0x90 [ 444.750158][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.754750][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.759686][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.764542][T11797] do_syscall_64+0xb0/0x150 [ 444.769048][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.774927][T11797] [ 444.777268][T11797] Uninit was stored to memory at: [ 444.782320][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.788039][T11797] __msan_chain_origin+0x50/0x90 [ 444.792978][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.797568][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.802512][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.807370][T11797] do_syscall_64+0xb0/0x150 [ 444.811896][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.817795][T11797] [ 444.820132][T11797] Uninit was stored to memory at: [ 444.825164][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.830886][T11797] __msan_chain_origin+0x50/0x90 [ 444.835827][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.840418][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.845358][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.850206][T11797] do_syscall_64+0xb0/0x150 [ 444.854709][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.860586][T11797] [ 444.862910][T11797] Uninit was stored to memory at: [ 444.867938][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.873661][T11797] __msan_chain_origin+0x50/0x90 [ 444.878599][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.883190][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.888127][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.892982][T11797] do_syscall_64+0xb0/0x150 [ 444.897488][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.903371][T11797] [ 444.905689][T11797] Uninit was stored to memory at: [ 444.910715][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.916454][T11797] __msan_chain_origin+0x50/0x90 [ 444.921411][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.926052][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.930993][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.935843][T11797] do_syscall_64+0xb0/0x150 [ 444.940349][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.946246][T11797] [ 444.948566][T11797] Uninit was stored to memory at: [ 444.953595][T11797] kmsan_internal_chain_origin+0xad/0x130 [ 444.959334][T11797] __msan_chain_origin+0x50/0x90 [ 444.964274][T11797] do_recvmmsg+0x105a/0x1ee0 [ 444.968860][T11797] __se_sys_recvmmsg+0x1d1/0x350 [ 444.973799][T11797] __x64_sys_recvmmsg+0x62/0x80 [ 444.978650][T11797] do_syscall_64+0xb0/0x150 23:19:50 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 444.983156][T11797] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 444.989050][T11797] [ 444.991371][T11797] Local variable ----msg_sys@do_recvmmsg created at: [ 444.998046][T11797] do_recvmmsg+0xc5/0x1ee0 [ 445.002462][T11797] do_recvmmsg+0xc5/0x1ee0 [ 445.050808][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:50 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:50 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) recvfrom(r0, &(0x7f0000000000)=""/171, 0xab, 0x0, &(0x7f00000000c0)=@rc={0x1f, @none, 0x3}, 0x80) 23:19:52 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x0, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') mknod$loop(&(0x7f0000000100)='./file0\x00', 0x20, 0x1) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0xc0000, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xd, 0xcb7, 0x5, 0x1a8, 0x88, r2, 0xffffffff, [], 0x0, r0, 0x0, 0x4, 0x3}, 0x40) ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000040)='mptcp_pm\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PIO_UNIMAPCLR(r4, 0x4b68, &(0x7f0000000080)={0xd8, 0x60c, 0x338}) fcntl$addseals(r0, 0x409, 0x9) [ 447.196396][ C0] hrtimer: interrupt took 253190 ns 23:19:52 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:52 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:53 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:53 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:53 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:53 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000040)='SMC_PNETID\x00') sendmsg$SMC_PNETID_ADD(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="ddcb40aeadce3313fcf9f9d57aa97272910640b9ccc07d1a7baf6f443d0cbc2cfa0d638c36bfb9ec6e", @ANYRES16=r1, @ANYBLOB="000327bd7000fddbdf25020000000900010073797a320000000005000400010000000900030073797a32000000001400020076657468305f746f5f687372000000000900010073797a31000000000900010073797a3200000000"], 0x60}}, 0x44017) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYRES64, @ANYRESDEC], 0x48}, 0x1, 0x0, 0x0, 0x400c814}, 0x40010) sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r8, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB='P\x00\x00\x00(\x00\'\r\x00'/20, @ANYRES32=r8, @ANYBLOB="0400000000000000000000000b0001006367726f75700000200002001c000100180000000a000100706564697400000001000280040006000000070000000000000000000000080000000000000000002518cab13659dd905e415e72cd4f55c75698ff5f3bf451603271d7897f7268567e2032975ef84e11b3303873647ca37ef7dee37633937061727e1c81bfe5728d04e27039438401151765ff1b78bbaa609e95e7c3e6dbdbe5e0b7ddba308471bceab4"], 0x50}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x4c, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x4}}, [@filter_kind_options=@f_cgroup={{0xb, 0x3, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_ACT={0x18, 0x1, [@m_ct={0x14, 0x2, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x4}, {0x4}}}]}]}}]}, 0x4c}}, 0x0) sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x58, r2, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [{{0x8, 0x1, r8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0xed}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000811) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') 23:19:53 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 447.795962][T11863] not chained 430000 origins [ 447.800608][T11863] CPU: 0 PID: 11863 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 447.809281][T11863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 447.819339][T11863] Call Trace: [ 447.822644][T11863] dump_stack+0x1df/0x240 [ 447.826999][T11863] kmsan_internal_chain_origin+0x6f/0x130 [ 447.832729][T11863] ? kmsan_get_metadata+0x4f/0x180 [ 447.837849][T11863] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 447.843751][T11863] ? __msan_poison_alloca+0xf0/0x120 [ 447.849051][T11863] ? kmsan_get_metadata+0x11d/0x180 [ 447.854258][T11863] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 447.860076][T11863] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 447.866153][T11863] ? kfree+0x61/0x30f0 [ 447.870234][T11863] ? kmsan_get_metadata+0x4f/0x180 [ 447.875359][T11863] ? kmsan_set_origin_checked+0x95/0xf0 [ 447.880917][T11863] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 447.887003][T11863] ? _copy_from_user+0x15b/0x260 [ 447.891974][T11863] ? kmsan_get_metadata+0x4f/0x180 [ 447.897090][T11863] __msan_chain_origin+0x50/0x90 [ 447.902051][T11863] do_recvmmsg+0x105a/0x1ee0 [ 447.906707][T11863] ? __msan_poison_alloca+0xf0/0x120 [ 447.912003][T11863] ? __se_sys_recvmmsg+0xac/0x350 [ 447.917049][T11863] ? __se_sys_recvmmsg+0xac/0x350 [ 447.922083][T11863] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 447.927984][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 447.932949][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 447.937813][T11863] do_syscall_64+0xb0/0x150 [ 447.942334][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 447.948227][T11863] RIP: 0033:0x45c1d9 [ 447.952113][T11863] Code: Bad RIP value. [ 447.956178][T11863] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 447.964611][T11863] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 447.972594][T11863] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 447.980579][T11863] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 447.988557][T11863] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 447.996531][T11863] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 448.004522][T11863] Uninit was stored to memory at: [ 448.009556][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.015277][T11863] __msan_chain_origin+0x50/0x90 [ 448.020219][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.024813][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.029770][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.034629][T11863] do_syscall_64+0xb0/0x150 [ 448.039137][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.045018][T11863] [ 448.047345][T11863] Uninit was stored to memory at: [ 448.052374][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.058099][T11863] __msan_chain_origin+0x50/0x90 [ 448.063043][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.067633][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.072572][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.077423][T11863] do_syscall_64+0xb0/0x150 [ 448.081947][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.087826][T11863] [ 448.090146][T11863] Uninit was stored to memory at: [ 448.095188][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.100910][T11863] __msan_chain_origin+0x50/0x90 [ 448.105854][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.111086][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.116040][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.120898][T11863] do_syscall_64+0xb0/0x150 [ 448.125412][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.131295][T11863] [ 448.133647][T11863] Uninit was stored to memory at: [ 448.138682][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.144421][T11863] __msan_chain_origin+0x50/0x90 [ 448.149364][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.153964][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.158906][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.163759][T11863] do_syscall_64+0xb0/0x150 [ 448.168264][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.174144][T11863] [ 448.176486][T11863] Uninit was stored to memory at: [ 448.181515][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.187246][T11863] __msan_chain_origin+0x50/0x90 [ 448.192195][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.196787][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.201727][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.206583][T11863] do_syscall_64+0xb0/0x150 [ 448.211096][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.216980][T11863] [ 448.219301][T11863] Uninit was stored to memory at: [ 448.224332][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.230055][T11863] __msan_chain_origin+0x50/0x90 [ 448.235003][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.239601][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.244541][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.249399][T11863] do_syscall_64+0xb0/0x150 [ 448.253911][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.259815][T11863] [ 448.262139][T11863] Uninit was stored to memory at: [ 448.267168][T11863] kmsan_internal_chain_origin+0xad/0x130 [ 448.272887][T11863] __msan_chain_origin+0x50/0x90 [ 448.277824][T11863] do_recvmmsg+0x105a/0x1ee0 [ 448.282413][T11863] __se_sys_recvmmsg+0x1d1/0x350 [ 448.287349][T11863] __x64_sys_recvmmsg+0x62/0x80 [ 448.292201][T11863] do_syscall_64+0xb0/0x150 [ 448.296703][T11863] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 448.302673][T11863] [ 448.305004][T11863] Local variable ----msg_sys@do_recvmmsg created at: [ 448.311702][T11863] do_recvmmsg+0xc5/0x1ee0 [ 448.316124][T11863] do_recvmmsg+0xc5/0x1ee0 [ 448.375176][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:54 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x0) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x404, 0x70bd25, 0x25dfdbfb, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x3}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x10) 23:19:54 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:54 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') 23:19:55 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d274014ae40b8ae4f2a88d2fbea75e16a61fd063f026ed7360627ec60cb274e00da971f7ee096d74c92fad7e34bd5522d45cc36c2442eac2d224609aba9e6000000000000000000000000000000f390d71cc6092cddd3b049f3fc65d61c2b3c65f2f80a61ea6e457ebc93"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:55 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400202) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000080)=@int=0x9, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_G_FREQUENCY(r3, 0xc02c5638, &(0x7f00000000c0)={0x6, 0x3}) 23:19:55 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 450.106611][T11929] not chained 440000 origins [ 450.111269][T11929] CPU: 0 PID: 11929 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 450.119962][T11929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 450.130046][T11929] Call Trace: [ 450.133367][T11929] dump_stack+0x1df/0x240 [ 450.137723][T11929] kmsan_internal_chain_origin+0x6f/0x130 [ 450.143459][T11929] ? kmsan_get_metadata+0x4f/0x180 [ 450.148592][T11929] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 450.154506][T11929] ? __msan_poison_alloca+0xf0/0x120 [ 450.159811][T11929] ? kmsan_get_metadata+0x11d/0x180 [ 450.165025][T11929] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 450.170859][T11929] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 450.176945][T11929] ? kfree+0x61/0x30f0 [ 450.181051][T11929] ? kmsan_get_metadata+0x4f/0x180 [ 450.186191][T11929] ? kmsan_set_origin_checked+0x95/0xf0 [ 450.191754][T11929] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 450.197843][T11929] ? _copy_from_user+0x15b/0x260 [ 450.202793][T11929] ? kmsan_get_metadata+0x4f/0x180 [ 450.207929][T11929] __msan_chain_origin+0x50/0x90 [ 450.212897][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.217587][T11929] ? __msan_poison_alloca+0xf0/0x120 [ 450.222905][T11929] ? __se_sys_recvmmsg+0xac/0x350 [ 450.227947][T11929] ? __se_sys_recvmmsg+0xac/0x350 [ 450.232982][T11929] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 450.238903][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.243873][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.248752][T11929] do_syscall_64+0xb0/0x150 [ 450.253273][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.259168][T11929] RIP: 0033:0x45c1d9 [ 450.263053][T11929] Code: Bad RIP value. [ 450.267119][T11929] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 450.275530][T11929] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 450.283502][T11929] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 450.291472][T11929] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 450.299443][T11929] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 450.307415][T11929] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 450.315405][T11929] Uninit was stored to memory at: [ 450.320437][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.326158][T11929] __msan_chain_origin+0x50/0x90 [ 450.331102][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.335696][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.340633][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.345490][T11929] do_syscall_64+0xb0/0x150 [ 450.349999][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.355880][T11929] [ 450.358218][T11929] Uninit was stored to memory at: [ 450.363251][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.368971][T11929] __msan_chain_origin+0x50/0x90 [ 450.373927][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.378521][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.383458][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.388307][T11929] do_syscall_64+0xb0/0x150 [ 450.392813][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.398691][T11929] [ 450.401010][T11929] Uninit was stored to memory at: [ 450.406035][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.411757][T11929] __msan_chain_origin+0x50/0x90 [ 450.416696][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.421285][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.426225][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.431112][T11929] do_syscall_64+0xb0/0x150 [ 450.435623][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.441505][T11929] [ 450.443824][T11929] Uninit was stored to memory at: [ 450.448853][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.454571][T11929] __msan_chain_origin+0x50/0x90 [ 450.459508][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.464103][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.469038][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.473890][T11929] do_syscall_64+0xb0/0x150 [ 450.478414][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.484298][T11929] [ 450.486618][T11929] Uninit was stored to memory at: [ 450.491650][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.497369][T11929] __msan_chain_origin+0x50/0x90 [ 450.502307][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.506899][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.511836][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.516686][T11929] do_syscall_64+0xb0/0x150 [ 450.521211][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.527094][T11929] [ 450.529414][T11929] Uninit was stored to memory at: [ 450.534439][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.540158][T11929] __msan_chain_origin+0x50/0x90 [ 450.545119][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.549709][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.554647][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.559499][T11929] do_syscall_64+0xb0/0x150 [ 450.564003][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.569881][T11929] [ 450.572199][T11929] Uninit was stored to memory at: [ 450.577227][T11929] kmsan_internal_chain_origin+0xad/0x130 [ 450.582947][T11929] __msan_chain_origin+0x50/0x90 [ 450.587908][T11929] do_recvmmsg+0x105a/0x1ee0 [ 450.592498][T11929] __se_sys_recvmmsg+0x1d1/0x350 [ 450.597435][T11929] __x64_sys_recvmmsg+0x62/0x80 [ 450.602289][T11929] do_syscall_64+0xb0/0x150 23:19:56 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:56 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(0xffffffffffffffff, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 450.606795][T11929] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 450.612673][T11929] [ 450.614993][T11929] Local variable ----msg_sys@do_recvmmsg created at: [ 450.621671][T11929] do_recvmmsg+0xc5/0x1ee0 [ 450.626110][T11929] do_recvmmsg+0xc5/0x1ee0 [ 450.678827][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:56 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:56 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:56 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:56 executing program 1: r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00') sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0x67, &(0x7f00000008c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000426bd7000fedbdf250d00000008003400cf010000060028000400000000000600", @ANYRES32=0x0, @ANYBLOB="e0f0fdcb69a067053b14d7a44ca9ff6dedc9d15f7745c5298ff283c1edd156d0beaa2059b57c0366b4ef51f4f58652ef0dbdde68cd9d7f6a7ddbcbe278a8c7269503bfe6467dd6c6586d913cda836caa174be4b24508d143721ac2ce061bdf94fef5a7db2f89c65a9f62833a1acd106871bc4932d16942676621459c"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2400c004) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000100)=0x7, 0x4) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x34, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xc}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x1400c010) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}, &(0x7f00000004c0)=0x10) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r1, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7ff}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}}, 0x804) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB="010000000000000000000100000000000000014100000014001700000000000000006574683a6c6f0000"], 0x30}}, 0x0) sendmsg$TIPC_CMD_SET_NETID(r6, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)={0x24, r8, 0x20, 0x70bd2b, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x3ff}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) 23:19:56 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:57 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:57 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:57 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:57 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_G_CROP(r1, 0xc014563b, &(0x7f0000000040)={0x5, {0x3, 0x8000, 0x100, 0x6}}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') [ 451.803067][T11964] not chained 450000 origins [ 451.807710][T11964] CPU: 0 PID: 11964 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 451.816386][T11964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 451.826529][T11964] Call Trace: [ 451.829840][T11964] dump_stack+0x1df/0x240 [ 451.834195][T11964] kmsan_internal_chain_origin+0x6f/0x130 [ 451.839922][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 451.845046][T11964] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 451.850948][T11964] ? __msan_poison_alloca+0xf0/0x120 [ 451.856245][T11964] ? kmsan_get_metadata+0x11d/0x180 [ 451.861454][T11964] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 451.867271][T11964] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 451.873346][T11964] ? kfree+0x61/0x30f0 [ 451.877436][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 451.882556][T11964] ? kmsan_set_origin_checked+0x95/0xf0 [ 451.888437][T11964] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 451.894520][T11964] ? _copy_from_user+0x15b/0x260 [ 451.899462][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 451.904582][T11964] __msan_chain_origin+0x50/0x90 [ 451.909534][T11964] do_recvmmsg+0x105a/0x1ee0 [ 451.914200][T11964] ? __msan_poison_alloca+0xf0/0x120 [ 451.919496][T11964] ? __se_sys_recvmmsg+0xac/0x350 [ 451.924528][T11964] ? __se_sys_recvmmsg+0xac/0x350 [ 451.929563][T11964] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 451.935469][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 451.940448][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 451.945317][T11964] do_syscall_64+0xb0/0x150 [ 451.949837][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 451.955728][T11964] RIP: 0033:0x45c1d9 [ 451.959613][T11964] Code: Bad RIP value. [ 451.963678][T11964] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 451.972103][T11964] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 451.980102][T11964] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 451.988080][T11964] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 451.996054][T11964] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 452.004037][T11964] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 452.012054][T11964] Uninit was stored to memory at: [ 452.017108][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.022832][T11964] __msan_chain_origin+0x50/0x90 [ 452.027779][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.032377][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.037322][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.042183][T11964] do_syscall_64+0xb0/0x150 [ 452.046699][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.052580][T11964] [ 452.054902][T11964] Uninit was stored to memory at: [ 452.059929][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.065670][T11964] __msan_chain_origin+0x50/0x90 [ 452.070613][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.075206][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.080147][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.085023][T11964] do_syscall_64+0xb0/0x150 [ 452.089528][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.095411][T11964] [ 452.097739][T11964] Uninit was stored to memory at: [ 452.102778][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.108500][T11964] __msan_chain_origin+0x50/0x90 [ 452.113453][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.118049][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.122990][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.127848][T11964] do_syscall_64+0xb0/0x150 [ 452.132358][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.138240][T11964] [ 452.140558][T11964] Uninit was stored to memory at: [ 452.145597][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.151319][T11964] __msan_chain_origin+0x50/0x90 [ 452.156264][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.160865][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.165811][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.170665][T11964] do_syscall_64+0xb0/0x150 [ 452.175191][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.181091][T11964] [ 452.183412][T11964] Uninit was stored to memory at: [ 452.188445][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.194177][T11964] __msan_chain_origin+0x50/0x90 [ 452.199123][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.203719][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.208660][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.213516][T11964] do_syscall_64+0xb0/0x150 [ 452.218026][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.223912][T11964] [ 452.226236][T11964] Uninit was stored to memory at: [ 452.231272][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.236997][T11964] __msan_chain_origin+0x50/0x90 [ 452.241942][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.246540][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.251494][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.256362][T11964] do_syscall_64+0xb0/0x150 [ 452.260874][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.266756][T11964] [ 452.269081][T11964] Uninit was stored to memory at: [ 452.274111][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 452.279835][T11964] __msan_chain_origin+0x50/0x90 [ 452.284778][T11964] do_recvmmsg+0x105a/0x1ee0 [ 452.289384][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 452.294326][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 452.299180][T11964] do_syscall_64+0xb0/0x150 [ 452.303687][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 452.309569][T11964] [ 452.311893][T11964] Local variable ----msg_sys@do_recvmmsg created at: [ 452.318576][T11964] do_recvmmsg+0xc5/0x1ee0 [ 452.323000][T11964] do_recvmmsg+0xc5/0x1ee0 23:19:58 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001000000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 452.381179][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:19:58 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:58 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:58 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040)='NLBL_CIPSOv4\x00') sendmsg$NLBL_CIPSOV4_C_LIST(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="c4040000", @ANYRES16=r1, @ANYBLOB="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"], 0x4c4}, 0x1, 0x0, 0x0, 0x400c041}, 0x597218eaa2046aa0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$P9_RWSTAT(r3, &(0x7f0000000140)={0x7, 0x7f, 0x1}, 0x7) 23:19:58 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, 0x0, 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:58 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:58 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:19:59 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012210900010076657468"], 0x48}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) socket$unix(0x1, 0x1, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000080)={'gretap0\x00', 0x0, 0x80, 0x20, 0x800000, 0x5, {{0x1b, 0x4, 0x3, 0x31, 0x6c, 0x64, 0x0, 0x1, 0x29, 0x0, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x9}, {[@noop, @ra={0x94, 0x4}, @ssrr={0x89, 0xf, 0x4d, [@local, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp={0x44, 0xc, 0x2d, 0x0, 0x4, [0x1, 0x2]}, @noop, @cipso={0x86, 0x2a, 0x1, [{0x2, 0x3, '%'}, {0x5, 0xa, "ba49fa11d5fdec8e"}, {0x7, 0x9, "5e8a71f2efc341"}, {0x7, 0xe, "84a748afac3ffba274ebfb42"}]}, @ra={0x94, 0x4, 0x1}, @rr={0x7, 0x7, 0x7b, [@multicast1]}]}}}}}) sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x5c, r3, 0x200, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0x9}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x29}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x43000000}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x2f3}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x3f}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x3ff}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x1ff}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x9}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000041}, 0x11) 23:19:59 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 453.657934][T11964] not chained 460000 origins [ 453.662584][T11964] CPU: 0 PID: 11964 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 453.671275][T11964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 453.681343][T11964] Call Trace: [ 453.684662][T11964] dump_stack+0x1df/0x240 [ 453.689034][T11964] kmsan_internal_chain_origin+0x6f/0x130 [ 453.694770][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 453.699900][T11964] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 453.705808][T11964] ? __msan_poison_alloca+0xf0/0x120 [ 453.711115][T11964] ? kmsan_get_metadata+0x11d/0x180 [ 453.716330][T11964] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 453.722153][T11964] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 453.728233][T11964] ? kfree+0x61/0x30f0 [ 453.732327][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 453.737457][T11964] ? kmsan_set_origin_checked+0x95/0xf0 [ 453.743019][T11964] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 453.749107][T11964] ? _copy_from_user+0x15b/0x260 [ 453.754065][T11964] ? kmsan_get_metadata+0x4f/0x180 [ 453.759198][T11964] __msan_chain_origin+0x50/0x90 [ 453.764161][T11964] do_recvmmsg+0x105a/0x1ee0 [ 453.768826][T11964] ? __msan_poison_alloca+0xf0/0x120 [ 453.774147][T11964] ? __se_sys_recvmmsg+0xac/0x350 [ 453.779190][T11964] ? __se_sys_recvmmsg+0xac/0x350 [ 453.784232][T11964] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 453.790154][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 453.795145][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 453.800014][T11964] do_syscall_64+0xb0/0x150 [ 453.804540][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 453.810435][T11964] RIP: 0033:0x45c1d9 [ 453.814320][T11964] Code: Bad RIP value. [ 453.818380][T11964] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 453.826798][T11964] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 453.834775][T11964] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 453.842766][T11964] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 453.850743][T11964] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 453.858716][T11964] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 453.866710][T11964] Uninit was stored to memory at: [ 453.871746][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 453.877467][T11964] __msan_chain_origin+0x50/0x90 [ 453.882405][T11964] do_recvmmsg+0x105a/0x1ee0 [ 453.886996][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 453.891938][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 453.896793][T11964] do_syscall_64+0xb0/0x150 [ 453.901302][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 453.907185][T11964] [ 453.909503][T11964] Uninit was stored to memory at: [ 453.914531][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 453.920250][T11964] __msan_chain_origin+0x50/0x90 [ 453.925193][T11964] do_recvmmsg+0x105a/0x1ee0 [ 453.929807][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 453.934769][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 453.939623][T11964] do_syscall_64+0xb0/0x150 [ 453.944130][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 453.950012][T11964] [ 453.952334][T11964] Uninit was stored to memory at: [ 453.957367][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 453.963195][T11964] __msan_chain_origin+0x50/0x90 [ 453.968158][T11964] do_recvmmsg+0x105a/0x1ee0 [ 453.972753][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 453.977696][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 453.982552][T11964] do_syscall_64+0xb0/0x150 [ 453.987087][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 453.992969][T11964] [ 453.995289][T11964] Uninit was stored to memory at: [ 454.000320][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 454.006042][T11964] __msan_chain_origin+0x50/0x90 [ 454.010987][T11964] do_recvmmsg+0x105a/0x1ee0 [ 454.015580][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 454.020523][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 454.025382][T11964] do_syscall_64+0xb0/0x150 [ 454.029905][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 454.035785][T11964] [ 454.038109][T11964] Uninit was stored to memory at: [ 454.043144][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 454.048864][T11964] __msan_chain_origin+0x50/0x90 [ 454.053804][T11964] do_recvmmsg+0x105a/0x1ee0 [ 454.058397][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 454.063337][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 454.068192][T11964] do_syscall_64+0xb0/0x150 [ 454.072729][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 454.078611][T11964] [ 454.080931][T11964] Uninit was stored to memory at: [ 454.085963][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 454.091683][T11964] __msan_chain_origin+0x50/0x90 [ 454.096619][T11964] do_recvmmsg+0x105a/0x1ee0 [ 454.101208][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 454.106168][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 454.111042][T11964] do_syscall_64+0xb0/0x150 [ 454.115558][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 454.121452][T11964] [ 454.123777][T11964] Uninit was stored to memory at: [ 454.128829][T11964] kmsan_internal_chain_origin+0xad/0x130 [ 454.134570][T11964] __msan_chain_origin+0x50/0x90 [ 454.139530][T11964] do_recvmmsg+0x105a/0x1ee0 [ 454.144121][T11964] __se_sys_recvmmsg+0x1d1/0x350 [ 454.149061][T11964] __x64_sys_recvmmsg+0x62/0x80 [ 454.153923][T11964] do_syscall_64+0xb0/0x150 [ 454.158431][T11964] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 454.164314][T11964] [ 454.166636][T11964] Local variable ----msg_sys@do_recvmmsg created at: [ 454.173337][T11964] do_recvmmsg+0xc5/0x1ee0 [ 454.177752][T11964] do_recvmmsg+0xc5/0x1ee0 [ 454.215970][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:00 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SG_GET_COMMAND_Q(r3, 0x2270, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000ed06000000000500c40000000000", @ANYRES16=r0, @ANYRES16], 0x48}, 0x1, 0x0, 0x0, 0x8001}, 0x20000000) fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000080)='trusted.overlay.opaque\x00', &(0x7f00000000c0)='y\x00', 0x2, 0x2) r6 = gettid() ptrace$setopts(0x4206, r6, 0x0, 0x0) tkill(r6, 0x40) ptrace$setregs(0xd, r6, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r6, 0x0, 0x0) ptrace(0x4208, r6) ioctl$VT_GETMODE(r1, 0x5601, &(0x7f0000000000)) 23:20:00 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 454.676451][T12019] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. 23:20:00 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') mknod$loop(&(0x7f0000000000)='./file0\x00', 0x1000, 0x0) 23:20:00 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:00 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 455.527294][T12043] not chained 470000 origins [ 455.531947][T12043] CPU: 1 PID: 12043 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 455.540643][T12043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 455.550748][T12043] Call Trace: [ 455.554066][T12043] dump_stack+0x1df/0x240 [ 455.558426][T12043] kmsan_internal_chain_origin+0x6f/0x130 [ 455.564172][T12043] ? kmsan_get_metadata+0x4f/0x180 [ 455.569312][T12043] ? kmsan_internal_check_memory+0xb1/0x3d0 23:20:01 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 455.575230][T12043] ? __msan_poison_alloca+0xf0/0x120 [ 455.580539][T12043] ? kmsan_get_metadata+0x11d/0x180 [ 455.585778][T12043] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 455.591610][T12043] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 455.597694][T12043] ? kfree+0x61/0x30f0 [ 455.601803][T12043] ? kmsan_get_metadata+0x4f/0x180 [ 455.606932][T12043] ? kmsan_set_origin_checked+0x95/0xf0 [ 455.612501][T12043] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 455.618600][T12043] ? _copy_from_user+0x15b/0x260 [ 455.623557][T12043] ? kmsan_get_metadata+0x4f/0x180 [ 455.628693][T12043] __msan_chain_origin+0x50/0x90 [ 455.633679][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.638344][T12043] ? __msan_poison_alloca+0xf0/0x120 [ 455.643694][T12043] ? __se_sys_recvmmsg+0xac/0x350 [ 455.648759][T12043] ? __se_sys_recvmmsg+0xac/0x350 [ 455.653804][T12043] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 455.659720][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.664703][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.669580][T12043] do_syscall_64+0xb0/0x150 [ 455.674117][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.680025][T12043] RIP: 0033:0x45c1d9 [ 455.683920][T12043] Code: Bad RIP value. [ 455.687990][T12043] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 455.696427][T12043] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 455.704419][T12043] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 455.712440][T12043] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 455.720430][T12043] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 455.728425][T12043] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 455.736540][T12043] Uninit was stored to memory at: [ 455.741593][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.747336][T12043] __msan_chain_origin+0x50/0x90 [ 455.752288][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.756909][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.761858][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.766713][T12043] do_syscall_64+0xb0/0x150 [ 455.771223][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.777112][T12043] [ 455.779444][T12043] Uninit was stored to memory at: [ 455.784477][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.790209][T12043] __msan_chain_origin+0x50/0x90 [ 455.795155][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.799748][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.804698][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.809556][T12043] do_syscall_64+0xb0/0x150 [ 455.814067][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.819949][T12043] [ 455.822295][T12043] Uninit was stored to memory at: [ 455.827331][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.833078][T12043] __msan_chain_origin+0x50/0x90 [ 455.838029][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.842624][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.847564][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.852442][T12043] do_syscall_64+0xb0/0x150 [ 455.856951][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.862838][T12043] [ 455.865159][T12043] Uninit was stored to memory at: [ 455.870193][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.875914][T12043] __msan_chain_origin+0x50/0x90 [ 455.880853][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.885446][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.890391][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.895248][T12043] do_syscall_64+0xb0/0x150 [ 455.899755][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.905657][T12043] [ 455.907992][T12043] Uninit was stored to memory at: [ 455.913025][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.918754][T12043] __msan_chain_origin+0x50/0x90 [ 455.923699][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.928290][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.933235][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.938106][T12043] do_syscall_64+0xb0/0x150 [ 455.942627][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.948516][T12043] [ 455.950838][T12043] Uninit was stored to memory at: [ 455.955871][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 455.961590][T12043] __msan_chain_origin+0x50/0x90 [ 455.966544][T12043] do_recvmmsg+0x105a/0x1ee0 [ 455.971143][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 455.976096][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 455.980986][T12043] do_syscall_64+0xb0/0x150 [ 455.985502][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 455.991388][T12043] [ 455.993715][T12043] Uninit was stored to memory at: [ 455.998747][T12043] kmsan_internal_chain_origin+0xad/0x130 [ 456.004466][T12043] __msan_chain_origin+0x50/0x90 [ 456.009408][T12043] do_recvmmsg+0x105a/0x1ee0 [ 456.014005][T12043] __se_sys_recvmmsg+0x1d1/0x350 [ 456.018959][T12043] __x64_sys_recvmmsg+0x62/0x80 [ 456.023839][T12043] do_syscall_64+0xb0/0x150 [ 456.028345][T12043] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 456.034222][T12043] [ 456.036542][T12043] Local variable ----msg_sys@do_recvmmsg created at: [ 456.043231][T12043] do_recvmmsg+0xc5/0x1ee0 [ 456.047652][T12043] do_recvmmsg+0xc5/0x1ee0 23:20:01 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000080)={0x0, 0x101}, 0x8) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$P9_RATTACH(r3, &(0x7f0000000180)={0x14, 0x69, 0x2, {0x40, 0x1, 0x2}}, 0x14) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') r4 = socket$packet(0x11, 0x3, 0x300) write$snapshot(r3, &(0x7f0000000100)="321d3577b9fc200f629b414c7f66952834b9d117c70b9512118778e8943673bc4705727a5fb1106d11eda5f5489d41271d4d6c0e24e052f84a688ac6eb58e875c3ad3efa27de2334152e0f891e5aeb6d63b678d3d0a46453", 0x58) setsockopt$sock_int(r4, 0x1, 0x5, &(0x7f0000000040)=0x5, 0x4) 23:20:01 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:01 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:01 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:02 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:02 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:03 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:03 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket$bt_cmtp(0x1f, 0x3, 0x5) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000600)={0x7fffffff, 0x3, 0x0, 0x9, 0x6, [{0xfffffffffffffffd, 0x2, 0x8, [], 0x880}, {0x100000000, 0x0, 0xd3, [], 0x1101}, {0x9, 0x9, 0x8, [], 0x2001}, {0x10000, 0x1000, 0x7, [], 0x1000}, {0x1, 0x5, 0x80, [], 0x408}, {0x5, 0x1000, 0x5, [], 0x400}]}) r2 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bind$l2tp(r4, &(0x7f0000000280)={0x2, 0x0, @rand_addr=0x64010102, 0x1}, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000540)={0xa8, r5, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x94, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x4}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x0, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x78, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8}]}]}]}, 0xa8}}, 0x0) sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r5, 0x8, 0x70bd29, 0x25dfdbfe}, 0x14}}, 0x8004) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x147b42, 0x0) ioctl$TIOCGETD(r6, 0x5424, &(0x7f0000000240)) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') 23:20:03 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:03 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:03 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 457.707482][T12077] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.1'. 23:20:03 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 457.815604][T12077] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.1'. [ 458.139935][T12091] not chained 480000 origins [ 458.144576][T12091] CPU: 1 PID: 12091 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 458.153252][T12091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.163315][T12091] Call Trace: [ 458.166632][T12091] dump_stack+0x1df/0x240 [ 458.170996][T12091] kmsan_internal_chain_origin+0x6f/0x130 [ 458.176736][T12091] ? kmsan_get_metadata+0x4f/0x180 [ 458.181868][T12091] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 458.187789][T12091] ? __msan_poison_alloca+0xf0/0x120 [ 458.193110][T12091] ? kmsan_get_metadata+0x11d/0x180 [ 458.198329][T12091] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 458.204169][T12091] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 458.210263][T12091] ? kfree+0x61/0x30f0 [ 458.214361][T12091] ? kmsan_get_metadata+0x4f/0x180 [ 458.219496][T12091] ? kmsan_set_origin_checked+0x95/0xf0 [ 458.225073][T12091] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 458.231170][T12091] ? _copy_from_user+0x15b/0x260 [ 458.236127][T12091] ? kmsan_get_metadata+0x4f/0x180 [ 458.241262][T12091] __msan_chain_origin+0x50/0x90 [ 458.246228][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.250905][T12091] ? __msan_poison_alloca+0xf0/0x120 [ 458.256216][T12091] ? __se_sys_recvmmsg+0xac/0x350 [ 458.261257][T12091] ? __se_sys_recvmmsg+0xac/0x350 [ 458.266301][T12091] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 458.272217][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.277183][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.282045][T12091] do_syscall_64+0xb0/0x150 [ 458.286568][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.292466][T12091] RIP: 0033:0x45c1d9 [ 458.296354][T12091] Code: Bad RIP value. [ 458.300417][T12091] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 458.308831][T12091] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 458.316809][T12091] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 458.324785][T12091] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 458.332770][T12091] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 458.340754][T12091] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 458.348751][T12091] Uninit was stored to memory at: [ 458.353806][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.359525][T12091] __msan_chain_origin+0x50/0x90 [ 458.364491][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.369120][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.374063][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.378915][T12091] do_syscall_64+0xb0/0x150 [ 458.383430][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.389313][T12091] [ 458.391640][T12091] Uninit was stored to memory at: [ 458.396680][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.402399][T12091] __msan_chain_origin+0x50/0x90 [ 458.407338][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.411929][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.416869][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.421726][T12091] do_syscall_64+0xb0/0x150 [ 458.426234][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.432118][T12091] [ 458.434444][T12091] Uninit was stored to memory at: [ 458.439473][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.445191][T12091] __msan_chain_origin+0x50/0x90 [ 458.450145][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.454737][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.459675][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.464530][T12091] do_syscall_64+0xb0/0x150 [ 458.469042][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.474921][T12091] [ 458.477245][T12091] Uninit was stored to memory at: [ 458.482273][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.487991][T12091] __msan_chain_origin+0x50/0x90 [ 458.492935][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.497530][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.502474][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.507331][T12091] do_syscall_64+0xb0/0x150 [ 458.511846][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.517728][T12091] [ 458.520051][T12091] Uninit was stored to memory at: [ 458.525087][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.530817][T12091] __msan_chain_origin+0x50/0x90 [ 458.535768][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.540364][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.546022][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.550882][T12091] do_syscall_64+0xb0/0x150 [ 458.555392][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.561277][T12091] [ 458.563598][T12091] Uninit was stored to memory at: [ 458.568629][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.574372][T12091] __msan_chain_origin+0x50/0x90 [ 458.579312][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.583905][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.588847][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.594659][T12091] do_syscall_64+0xb0/0x150 [ 458.599166][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.605047][T12091] [ 458.607369][T12091] Uninit was stored to memory at: [ 458.612398][T12091] kmsan_internal_chain_origin+0xad/0x130 [ 458.618121][T12091] __msan_chain_origin+0x50/0x90 [ 458.623062][T12091] do_recvmmsg+0x105a/0x1ee0 [ 458.627653][T12091] __se_sys_recvmmsg+0x1d1/0x350 [ 458.632596][T12091] __x64_sys_recvmmsg+0x62/0x80 [ 458.637450][T12091] do_syscall_64+0xb0/0x150 23:20:04 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:04 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:04 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_int(r1, 0x0, 0x17, &(0x7f0000000000)=0xfff, 0x4) [ 458.641958][T12091] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 458.647843][T12091] [ 458.650187][T12091] Local variable ----msg_sys@do_recvmmsg created at: [ 458.656869][T12091] do_recvmmsg+0xc5/0x1ee0 [ 458.661287][T12091] do_recvmmsg+0xc5/0x1ee0 23:20:04 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 458.729643][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:04 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:04 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000180)=ANY=[@ANYBLOB="0600000000000000000000c000000000ffffffff07000000ff0000000000000000000080010000000400000006000002010400000000000007000000080000000800000001000000ff7f000000000000020000000400000005000000070000001ef600000000000001000080ffffff7f5932a62e0500000002000000000000000a0000000500000004000000000000000600000000000000d7ef428d7df999e62ec133"]) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f00000000c0)={&(0x7f0000000040)=[0x0, 0x2], &(0x7f0000000080)=[0x0, 0x0], 0x2, 0x3f, 0xbbbbbbbb}) accept4$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000000)=0x6e, 0x800) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') 23:20:04 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:04 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:04 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x100, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000280)=@l2tp6={0xa, 0x0, 0x10001, @private1, 0x4a13}, 0x80, &(0x7f0000001880)=[{&(0x7f0000000300)="240d2fd083d9a0bdd282af1a188b98946ad4d67ee077b6daa3500278e6e5377147fb123319816a66cb3d7454464dedae0b93c306ba13e64c0aaf063f4b01f0d52fae09d64a18b8975a2d34d6358f6a81fd26f064595fef5e386002652989d6a4dc3dab387216c505bfbf4515209ae80e2cc188326fec07df22eb12ed5c12895f327bdf9cad8ea8b49e900a636aa0ad067e3eeb1d631951f1e33698d771b117abebd76739", 0xa4}, {&(0x7f0000000580)="6e730ac716c080043f0e49740db9866d3b15311beb8db20036beb1fd3727da98b1c921258fe5b30ab352c696f0e17d4eb2132a893102095d62e3b6450bfe08eba3941ad2f7d346d8991bed6010c1f77848ca77afee142b808b1d4f64f709dfdcfe6a115489fff0bd26862107ee3a86d4769d8c26d5fe1598f69e4d1857a11d1ebeb397cb7b103a36ad0b0db2e46326b62cd060a95e2105795933ba7ff9037f300c19808e4dd75c1bfd6db788fb39278d4beddf0b23a56794f7eed46f10cec72fcf97f9a1d851155331c9cb60c37c87c11488b31ad60a8295026f6bf96f252e7335dde53495b63059ec09272e1c98973262989464be3f61591e04e07e1c9c612c22179a0a2a49f38f8a5304aaf958681aba39cfa09d01b6dce01b1dd3dfa4bc424fa8d61f6051b483d6ddde80b917af44feaf21e11fb787be28aeeccaa3c458b8d90749e9d51bb1827d40b6f81a5f3106072e0edba864d17352bc5fbb9feeb25254dbfd75c4b76ea1e65c5aa20c203e5b470ea7412dfec76ae4e4662e933c6136b5d7fdec20a66df7e334558c0a71ede092c7411ed33b4ed9615200774a43370171516e9dd57c462c73852044b52ab79c38c5b9a3872550013f0a9c870bd5dae560ce9cf923af3efcffcbc453508785a1d31f997287be89869a2ddcfe7a44e6ee8d51fc086024f831a0963371b3820b7b7ee4e4247f96a705889a13fd7935512e8d90cc6a9a4da9e35645f545d77c8bc06583190033b41f976cc8ff3c1c0f1e6dda797ee4c038eac408a1a35043cbab9b643abbc47c72db13b551bc7b2e47bf64e28fba854cbf658e3d679a0a2ebc154a9b109f205a86325d6d55a7ef58a710a07911f6249c296810829b306c75255ced6885f6e90376b7a55f975991cae7b8ef2468333726e0097abcab7a5710108a1349df602fef2a04cfda9a79618b135c9174ad9a38f21a14e7f44fb2113941bb7fcce9015cb201fcd249c3e9184e9407b607491943a378e2778761128bc191aa5083ecf472f73948359a4ce41cf56da544556aea1582c2f43692a7dfc162a1fb13beedfb5b29669d51645b152c7433b31895ff7231fbdbb1a47340230f36a1c39d1c6c9bf01001e2a0d12bb405149eac5a575f24f252480751603729c2b9a4d133f68d9455ef43cded34739b1375713fe179496e507aaccbc71ddd7fd913c57922fc76f378c4ad1884931de5b7a690e83861351bca694d15bdb17200a048c1c1cbd948b193265205492ba06f10103168ab963fa5573bb7fa8d823e1812a8792bb79f464a52efae9e3129a9761d1b68c8641a93c8354aa1ad8210909293c1bd1963c08288429cc38e66a4530b5100eb940f5aca5ec51321a2e22ea466f5398cf04ec4af8a46416ae2c75cee8fa5c722c85f2881d9151865302b69f0d8ef8de34d380b9689be51d19b5689921e2a0499a36d652d8bd1d7709311d785a0cb572cd0ebdd4fa3fa574cdcf1af10c72ee41186236bb866bf9f4efde16c967f048c9940807af1d1acb1dbcfa17e3c35a4079f935e85f396f579e8746e8367e54f9681edbec55d6eeee722b2546230daf90e64f407b2c8e18dc66e906fc98863bc3332504ebc7b354e7e89e48285b0ae1cb0662e9b45582d72cc11170eebcff0b2dcbccdcde6520322c916cbb0de3fb9465a68dd0d465acc9612543cdb98c3b3a5da31b26475bab323bc7dfe1ad7b77feb3bd15d9375b6a6246b05d31002d4c080775cd9fd9551b3623ccac60279873530dcf17b15b7f8e6b1264be49e73d7459fb55236123f88b0c9401c350bc5e3516402ea74c2e6a6cf7bd865b890a63ca4576bbf196f5666893dd2d342ddd4c09eee5f5ee2d735f792467239c46452c19b89c08e620910602b5ef8e783982d51b3747232dd95ea6406546ea51261495efd974503b3514b804ebf5c1639d8c999945a82499a83be388f6aca98c626958540119ad20110744eb8f28ea80f629b7e8d775be08ca7ade16e889786da44b9ae7368c181992529daad1cb699fe4b8286e266241c9d461655a27ecf95dee88d5d18cd0cd48bd98439d391442bd9d0f97e7a5935c36a149a90841d70d23aaf8dd858c8acfc9d37dc274acd76714fffb071e5d0b2e007703d3aa8ef1a37584940919adea908a91b5c014bd65fc57c0d48e9f561087eb751a508befb6aed9f469c587613211c4d34446ee96c3e66cc5de4b18ea44300cf7439b52b9d5e74b670813ab6d77a50ada786c03dd4b155012053e26663ac88ee8a8be97643c42913ed8906404157c06ae92c732358250afc9cf468880131e870197fd6522630ef28105d6a64eb86523577d26233e6b6a78a75365cb4242221f56dc9db0d58408c897bf91a831a109b6007997e8d1f6367275981ef527b0754df1f18bfcf26042a0781b367d578e711db63a485438aa081ea41196857273201db3ea266c699ffd59ba2585d3aae8c8611278fd0df03a75554bf603bf5082edb98e38f099a16de8e7f3acea123c28d80adedc2415c7206e6e73688fad8f4478716ef7528985d2b9ca115d1fb8ecf93bbe32c0b592b7a79690877fd1c44b2e47eafc3ebeb9354711277ce31a43206001cfd64c5ed176868257630f7b76a92c9f665659f6d71641f96f474f898821cb5e29b2d123bb3b760fa34d9d0db6a422bcc82508ffbeffbbdde9ba3d898bff4c14a57c77f081425fa72ccfcd1fb58c44a692a6b6e65a8a6207b0cdc36d2e675b3842b05cef5390540c425b7ccac8ff54cee314b6ba0d3fbc575c871b77e87977ebba62ba0677f2b3d3e02d11a47c158c28195999c33ef0d2267a87fc75979f1f934124f8c5b5855420e373721e6d4968f192ebe08fe587789829a0e6ed3a4b68ac800c1bd3d2550afdcd901c0b10748de2ac6c44265c02b07e4ce7594a1c8e5c8d2609a2948b9dd89046c9a934b55c492fdcf7dbd8f779c4db319954f56e4f1af82b68cea35b80ac6c01228401775e4e6088d3b9f6edc329fc06eb7c29296149b7211c167ea44d02a9ca43c5eedf98a9b6d334036d1371da50040d13147ee8b5f7901c7bf78672e628a3b7f55673c03f491be917caba67299b0e24d3787d3d314f710b12bac3959fb229c5fbe9d3592fea20eb6ef4438fe2f53b1aebd0deee7b6b7d75dbf8ff8f906c211bcd94080b880efd42501f28daf1b664f603b7e3348abf8f967fbcf1aa6b5addddfdc7b7e9b13efa1dc2a99b399e2cc8a3151a401e531f020c73d951dbbdeb1db1bfdc04eac0b6ae719818d642a7ab75e8d68962aee59b98e6a4986ef60adf125e8ddebc9fae6a3100301efe2b9b225a7c4f7cefae14aa4245f4d9d921ef1a27379d1445f12cc47654695844b979845fae1c963d9026593f54f7cfbe0e21886f6f6b29a86dd9bb16187e9ff486f6ccbb27537edbc8c457e993e9a614cb087ad773eed76f9d30a0e3decb252cdd940da586d24876d3d1ff2f6847e94130e9710e1da04a21a9cc97a5cb01e9c1159eff09694f840baeb7599d021f2a2fb99f8632d8189275019b339086758ae8bb5d8a165ea5599344203d8b6542e15178821e762205c94437db1d56368cca4753a21c18914b1c2f1321f3ef56fd1649ff45d078357dde09a4dd4623b8c671191e231a722939a8458cd67b295878000b9a2687d8878d52aeeed70ee532a9e399412c85570ed4256ddc32ef8f39d5e594524c8ea5cc8abcc6589fa78622d5da5141ca18bb0e24c76fae9dbcd092383bbd5fa737247bb92d0abb72d2b5838b53c27e7c7e7fc8a987a804eb0fc4b8bd0a3dcd273d96646c18db14f8a15fb57ce11fd9964a043c694d167a855c09a27216b5d9399520298849a6c5345ac2d95f35bc6b2ce05c8a36c9bb6b50edb3bc39b626c3bf5932cf481f1cb5558a8da06f229c0a09939345ec977b3af93b500c8dfc0dced401421bb51919c28d3c26932ffd488b13804359aa82f675775c2868e1406fe715cbd2048b1e755efd42ef5e4b40a63ce480fb64064ccc75005abc0fa1b5f0a98a44364fbd31b3dd9bc3cd7977a0eb0d408b7ddc4f7087299e56a564ffab8df49bfa5354c68c0f2f0b2d0d41d3612f328f1521bad6dacb297791b409fc37b60f3cd7da6ada39b220654c2e68ab0e7e54fb1d1ffb052bdbf0571bb96a2bea59dd4d9edcfd976617566f2c1ff4d7bb25c8ff71a9e5e15bb6ffcf3af7449f46130ee3bd819150af3e434f0bb0630ac6c02f5d99433cbfc5e9cd1e73bfcaa91d33ede39c4fc7a3ef3785266706225c3e3d2d906a80964e23d7e11d4f2e774673eda484e107722d5c24abdbed0a2b31bad991dc899814543becebc1bca46e8c713e220c11adf3a3dc2cc31d1d172a52a255fee61f35118896bd3ca88a44fe787b0a35c3275913f68b5e57b890e1218a8a615e3390a2db995075d40b1739006ad9296d2bb6bd83a593a86246f48d223f470f3000a49bae70f5af2122fa740a682d506512f74aaf98e07fa86f9b5a7a7b1545d929aef104131fb6889b8e94a678b6a8a4ecc3a4ad5da40aa30f4c5e635db53b8652a49da11305324a45fe55e5da7c0d7247953e2492a7a45697556dcd2ee097dd279ebba668b05dcc001fade8aec816776672150c69ba815cafd4073b2e6b9bb05c5354f95f4be41294eb2fb33c99fb645b36ceecaf1948d0926cf49b68665d83ee892d70bf43c6ba07e59f8c41e7841326fca3206dfb012146948603a448dc5b12689bd4cd5f378da0c0d950e08976155828ee8d20a54c12b7362aa421148513d9566d35ab61b6479318ad6f2d8859455f75ac57f4b323031021ba590da3543cfd6f1058069c192fbe6f5d7e729f3e150bd2b926cce6449c740258cf5b0e5a34e60e5b50fc556580031baafc206bbec02d5feebe45c6ed525c69081c5763b3e9206aaff42de4dda8f9a4b14e0edba9c770b609643d12244d6743403946f9ae8c977940150f6dc11bf84b5f69f4d4ffc4a4f20985d02ae0c3082e8848f72d1d1194866d1a2835bae878694e23257848e94f3940fc6f66a2533ea4dff77e5252ead5f51ca0386609080b89a183e18b753131702a8e1ffd8705b5b8589a531216d1bc7a3952e647c82fa4f66f2f20d826bff762304fb3f4d46df4b6f3358f1da7167fd8cf3ca108965951d5bd71281eb91a04e0d89a81c01d9224ad43df29f72a25cee799f083d1aee4bfb49046da4bd5605e9b62b424335f264cd599a020d89e143440f441bd8a12ed26b900c13a55441d6c3f1251ec4abd2e20e44d258691c9f260d03b880ecb9af879856962e570d0dfafddee5587d647149d86d6e0950e1baa6c1c647a59dc434747eb5da856a76eb183e228e9057f1620b742c5ca7f4aae1963a5f61ca596a37c41acd5010f9fc209e53923cace32d8ba34c6cc9bd850fe9b8decda63f191b0e841848aba637bd4aa801429bf57eccca06d7956d07479689cdffd16934e7dc9872553a1075269897d43c176a31d77a477f3ac318d9abc9883134c6b8f8ba8076959247a2fcf8a81f24d4ec56e55e9d928c6567115d77592a793325187de588a1587b42985c6ae1a4122620807fb9502e58945c8348fa6a6e7c8fa7020036bc10ff716267a29a6edf64d22ce24e7099cda23516d31d5cf792d73c974bdb3a2824046ce536abdefd719680d38203b31cebb2a23ee771649adce4eb035f4f190f5f573fb05498fc323178d254321609e78b75990aaa8b6a0ec44bfef33153e6aff194c524ee6363e1adb6952644bd392e90fd549b92c64c388f264952d51af9bdbd25ee614cb7772287f519741078625ef282b81bdd1b", 0x1000}, {&(0x7f0000001580)="c13d039292d28f8c4fbbcd34ba5643e0d8ee982e6be2f30c1b5adac98247f7b1df3b0eb9ed8c8502cd141cf6705d395d7cc5448caf63dfb461e291be882127557f769ff0dd45ef1e4b267ea62915cb6d417cdc07185556e4fcde05e7ca7dd7fc6cb6bc4fe5fc3b4a7dbe874e91cb6669e59f93a3414e7d9b5c6fa5bb597c0bd6ddf0c5f7f2d8", 0x86}, {&(0x7f0000001640)="fd0d285409ed97e0e4c54068dd134b6ed8a9d7d61e805a601020dcbf1da168e7fba7ab8b2eba9fc69b1646a3850c742db1d9b26122de767688166f0ab838b9f705a51e4fdface4883d2312f6ffb99100d9987d577f0207bbb94ea63077e9b52854ebcae9d359328c052eaa527e6a0796925c6a9d9832c849bb6019ae3c97d2703793a147912c39c4e3cb93ea83349b017b1774296537da1b384f6287d61ab827e9abebc37f6896057277ba9c1b18294e39ddda7b7f47f23c496c84a5ca7163cda98e38f6466ccf57c112956ea910f5f6e09385eebf9e986c12e510eff4eec83937ef7b0e6314ac388320ee", 0xeb}, {&(0x7f0000000480)="ba8541d660fa5a54979eab578c5dc2c4122da412a1b3019c30aaca47aa56906a6294530f6b9fae3467cb06fd4325f07e6cc7b1710642b7c393818190a095104cf9fc43", 0x43}, {&(0x7f0000001740)="f59d372e6d9d167d5f950ce68f187c4ccf024248a26a64e0a485daef0dd9c37b477183211f88ff4c1f24bdfde60f445b55f098878e3b51594c629b58663c5c2e84b03e1e90657dc461dec24646e7f567cfcaab9a9dee762295c80c6c7ae11e0c56567838b8151f7a9974c960256a7bd70a12ee70417c0d9cb666180cc37b7237fb0e8fdf574792b45ad93e17b08695519e073d0bb05ae4e604bcf31ce987aa7917cd2d0d5b", 0xa5}, {&(0x7f0000001800)="fe3560b0c3154edb31a07686044150f3e2010a23140171c30615f4e8473c0e7bad6110cfa23746be34b8d05de23706ef3d7726f5bf629bc2db571ba74aba24f045afb58912f939806a1b75e3a70d15987bd47b4bcc993b831ab42f493dd1759cd05bcab7839211", 0x67}], 0x7}, 0x4011) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r5, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newtfilter={0x50, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x4}}, [@filter_kind_options=@f_cgroup={{0xb, 0x1, 'cgroup\x00'}, {0x20, 0x2, [@TCA_CGROUP_ACT={0x1c, 0x1, [@m_pedit={0x18, 0x0, 0x0, 0x0, {{0xa, 0x1, 'pedit\x00'}, {0x4}, {0x4}}}]}]}}]}, 0x50}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newtfilter={0x4c, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x4}}, [@filter_kind_options=@f_cgroup={{0xb, 0x3, 'cgroup\x00'}, {0x1c, 0x2, [@TCA_CGROUP_ACT={0x18, 0x1, [@m_ct={0x14, 0x2, 0x0, 0x0, {{0x7, 0x1, 'ct\x00'}, {0x4}, {0x4}}}]}]}}]}, 0x4c}}, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000080)={'rose0\x00', 0x1}) 23:20:05 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:05 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 460.107951][T12140] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:20:05 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 460.408378][T12154] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 23:20:06 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:06 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 460.589949][T12153] not chained 490000 origins [ 460.594618][T12153] CPU: 1 PID: 12153 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 460.603294][T12153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 460.613361][T12153] Call Trace: [ 460.616680][T12153] dump_stack+0x1df/0x240 [ 460.621046][T12153] kmsan_internal_chain_origin+0x6f/0x130 [ 460.626782][T12153] ? kmsan_get_metadata+0x4f/0x180 [ 460.631912][T12153] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 460.637828][T12153] ? __msan_poison_alloca+0xf0/0x120 [ 460.643161][T12153] ? kmsan_get_metadata+0x11d/0x180 [ 460.648390][T12153] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 460.654227][T12153] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 460.660328][T12153] ? kfree+0x61/0x30f0 [ 460.664425][T12153] ? kmsan_get_metadata+0x4f/0x180 [ 460.669559][T12153] ? kmsan_set_origin_checked+0x95/0xf0 [ 460.675126][T12153] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 460.681220][T12153] ? _copy_from_user+0x15b/0x260 [ 460.686175][T12153] ? kmsan_get_metadata+0x4f/0x180 [ 460.691305][T12153] __msan_chain_origin+0x50/0x90 [ 460.696270][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.700962][T12153] ? __msan_poison_alloca+0xf0/0x120 [ 460.706283][T12153] ? __se_sys_recvmmsg+0xac/0x350 [ 460.711326][T12153] ? __se_sys_recvmmsg+0xac/0x350 [ 460.716372][T12153] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 460.722294][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.727263][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 460.732131][T12153] do_syscall_64+0xb0/0x150 [ 460.736651][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 460.742549][T12153] RIP: 0033:0x45c1d9 [ 460.746436][T12153] Code: Bad RIP value. [ 460.750505][T12153] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 460.758925][T12153] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 460.766902][T12153] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 460.774882][T12153] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 460.782856][T12153] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 460.790831][T12153] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 460.798822][T12153] Uninit was stored to memory at: [ 460.803860][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 460.809583][T12153] __msan_chain_origin+0x50/0x90 [ 460.814528][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.819119][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.824057][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 460.828909][T12153] do_syscall_64+0xb0/0x150 [ 460.833413][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 460.839292][T12153] [ 460.841612][T12153] Uninit was stored to memory at: [ 460.846638][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 460.852363][T12153] __msan_chain_origin+0x50/0x90 [ 460.857307][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.861900][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.866839][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 460.871693][T12153] do_syscall_64+0xb0/0x150 [ 460.876205][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 460.882086][T12153] [ 460.884407][T12153] Uninit was stored to memory at: [ 460.889440][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 460.895165][T12153] __msan_chain_origin+0x50/0x90 [ 460.900107][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.904719][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.909658][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 460.914512][T12153] do_syscall_64+0xb0/0x150 [ 460.919023][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 460.924924][T12153] [ 460.927246][T12153] Uninit was stored to memory at: [ 460.932276][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 460.937997][T12153] __msan_chain_origin+0x50/0x90 [ 460.942943][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.947533][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.952473][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 460.957329][T12153] do_syscall_64+0xb0/0x150 [ 460.961833][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 460.967713][T12153] [ 460.970033][T12153] Uninit was stored to memory at: [ 460.975066][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 460.980790][T12153] __msan_chain_origin+0x50/0x90 [ 460.985734][T12153] do_recvmmsg+0x105a/0x1ee0 [ 460.990327][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 460.995268][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 461.000124][T12153] do_syscall_64+0xb0/0x150 [ 461.004636][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 461.010519][T12153] [ 461.012842][T12153] Uninit was stored to memory at: [ 461.017904][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 461.023636][T12153] __msan_chain_origin+0x50/0x90 [ 461.028585][T12153] do_recvmmsg+0x105a/0x1ee0 [ 461.033183][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 461.038124][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 461.042979][T12153] do_syscall_64+0xb0/0x150 [ 461.047509][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 461.053396][T12153] [ 461.055733][T12153] Uninit was stored to memory at: [ 461.060766][T12153] kmsan_internal_chain_origin+0xad/0x130 [ 461.066522][T12153] __msan_chain_origin+0x50/0x90 [ 461.071475][T12153] do_recvmmsg+0x105a/0x1ee0 [ 461.076077][T12153] __se_sys_recvmmsg+0x1d1/0x350 [ 461.081023][T12153] __x64_sys_recvmmsg+0x62/0x80 [ 461.085881][T12153] do_syscall_64+0xb0/0x150 23:20:06 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 461.090417][T12153] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 461.096299][T12153] [ 461.098623][T12153] Local variable ----msg_sys@do_recvmmsg created at: [ 461.105333][T12153] do_recvmmsg+0xc5/0x1ee0 [ 461.109767][T12153] do_recvmmsg+0xc5/0x1ee0 23:20:06 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f0fc7ec6e26560000000049d2e181baf9459c5c953948c6801d2c0945c08ba8c552fc99a7422007653872ecb4f63acdfe80812d27"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 461.137234][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:06 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCSRS485(r1, 0x542f, &(0x7f0000000000)={0x8, 0xffff, 0x9}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000080)='SEG6\x00') [ 462.044477][ C1] sd 0:0:1:0: [sg0] tag#4099 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 462.055216][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB: Test Unit Ready [ 462.061980][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.071903][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.081814][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.091782][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.101543][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.111458][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.121405][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.131375][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.141291][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.151186][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.161078][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.170915][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 462.180771][ C1] sd 0:0:1:0: [sg0] tag#4099 CDB[c0]: 00 00 00 00 00 00 00 00 23:20:08 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 23:20:08 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:08 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 1: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x408000, 0x0) r1 = socket(0x10, 0x80002, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000640)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, r2, 0x1}, 0x14}}, 0x0) sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r2, 0x2, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004080}, 0x810) syz_genetlink_get_family_id$SEG6(&(0x7f0000000300)='SEG6\x00') 23:20:09 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = socket(0x10, 0x803, 0x20000000) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) getsockname$packet(r8, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xffffff99) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000040), 0x4) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0) 23:20:09 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:09 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 464.419182][T12248] not chained 500000 origins [ 464.423831][T12248] CPU: 1 PID: 12248 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 464.432513][T12248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.442584][T12248] Call Trace: [ 464.445901][T12248] dump_stack+0x1df/0x240 [ 464.450261][T12248] kmsan_internal_chain_origin+0x6f/0x130 [ 464.456003][T12248] ? kmsan_get_metadata+0x4f/0x180 [ 464.461144][T12248] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 464.467069][T12248] ? __msan_poison_alloca+0xf0/0x120 [ 464.472468][T12248] ? kmsan_get_metadata+0x11d/0x180 [ 464.478243][T12248] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 464.484073][T12248] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 464.490166][T12248] ? kfree+0x61/0x30f0 [ 464.494266][T12248] ? kmsan_get_metadata+0x4f/0x180 [ 464.499404][T12248] ? kmsan_set_origin_checked+0x95/0xf0 [ 464.504966][T12248] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 464.511063][T12248] ? _copy_from_user+0x15b/0x260 [ 464.516020][T12248] ? kmsan_get_metadata+0x4f/0x180 [ 464.521148][T12248] __msan_chain_origin+0x50/0x90 [ 464.526147][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.530836][T12248] ? __msan_poison_alloca+0xf0/0x120 [ 464.536143][T12248] ? __se_sys_recvmmsg+0xac/0x350 [ 464.541186][T12248] ? __se_sys_recvmmsg+0xac/0x350 [ 464.546265][T12248] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 464.552220][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.557234][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.562129][T12248] do_syscall_64+0xb0/0x150 [ 464.566655][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.572554][T12248] RIP: 0033:0x45c1d9 [ 464.576439][T12248] Code: Bad RIP value. [ 464.580502][T12248] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 464.588923][T12248] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 464.597685][T12248] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 464.605661][T12248] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 464.613640][T12248] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 464.621618][T12248] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 464.629612][T12248] Uninit was stored to memory at: [ 464.634652][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.640410][T12248] __msan_chain_origin+0x50/0x90 [ 464.645374][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.649974][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.654922][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.659806][T12248] do_syscall_64+0xb0/0x150 [ 464.664315][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.670200][T12248] [ 464.672544][T12248] Uninit was stored to memory at: [ 464.677578][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.683308][T12248] __msan_chain_origin+0x50/0x90 [ 464.688255][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.692853][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.697815][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.702704][T12248] do_syscall_64+0xb0/0x150 [ 464.707213][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.713095][T12248] [ 464.715418][T12248] Uninit was stored to memory at: [ 464.720463][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.726182][T12248] __msan_chain_origin+0x50/0x90 [ 464.731121][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.735715][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.740650][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.745514][T12248] do_syscall_64+0xb0/0x150 [ 464.750042][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.755927][T12248] [ 464.758250][T12248] Uninit was stored to memory at: [ 464.763283][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.769016][T12248] __msan_chain_origin+0x50/0x90 [ 464.773965][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.778562][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.783503][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.788355][T12248] do_syscall_64+0xb0/0x150 [ 464.792859][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.798738][T12248] [ 464.801080][T12248] Uninit was stored to memory at: [ 464.806116][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.811837][T12248] __msan_chain_origin+0x50/0x90 [ 464.816773][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.821361][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.826305][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.831178][T12248] do_syscall_64+0xb0/0x150 [ 464.835684][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.841562][T12248] [ 464.843879][T12248] Uninit was stored to memory at: [ 464.848912][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.854633][T12248] __msan_chain_origin+0x50/0x90 [ 464.859572][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.864166][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.869106][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.873958][T12248] do_syscall_64+0xb0/0x150 [ 464.878462][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.884348][T12248] [ 464.886671][T12248] Uninit was stored to memory at: [ 464.891704][T12248] kmsan_internal_chain_origin+0xad/0x130 [ 464.897424][T12248] __msan_chain_origin+0x50/0x90 [ 464.902366][T12248] do_recvmmsg+0x105a/0x1ee0 [ 464.906956][T12248] __se_sys_recvmmsg+0x1d1/0x350 [ 464.911897][T12248] __x64_sys_recvmmsg+0x62/0x80 [ 464.916748][T12248] do_syscall_64+0xb0/0x150 23:20:10 executing program 1: syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') 23:20:10 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 464.921254][T12248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 464.927157][T12248] [ 464.929480][T12248] Local variable ----msg_sys@do_recvmmsg created at: [ 464.936176][T12248] do_recvmmsg+0xc5/0x1ee0 [ 464.940589][T12248] do_recvmmsg+0xc5/0x1ee0 [ 464.949590][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:10 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:10 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000010010000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:10 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:10 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 465.499673][ C0] sd 0:0:1:0: [sg0] tag#7891 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 465.510447][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB: Test Unit Ready [ 465.517238][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.527185][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.537084][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.547004][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.556974][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.566839][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.576708][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.586595][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.596448][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.606348][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.616230][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.626054][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 465.635883][ C0] sd 0:0:1:0: [sg0] tag#7891 CDB[c0]: 00 00 00 00 00 00 00 00 [ 465.679915][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:11 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:11 executing program 1: r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$invalidate(0x15, r0) keyctl$read(0xb, r0, 0x0, 0x0) 23:20:11 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000010010000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:11 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00), 0x0, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:11 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:11 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:11 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db9820000000000000d403ffff633b27e59aa146175dd106736d173f"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000010010000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 1: r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$invalidate(0x15, r0) keyctl$read(0xb, r0, 0x0, 0x0) 23:20:12 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 466.686289][ C1] sd 0:0:1:0: [sg0] tag#4102 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 466.697057][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB: Test Unit Ready [ 466.703841][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.713795][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.723719][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.733708][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.743615][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.753511][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.763464][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.773420][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 23:20:12 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 466.783323][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.793234][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.803146][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.813041][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 466.822916][ C1] sd 0:0:1:0: [sg0] tag#4102 CDB[c0]: 00 00 00 00 00 00 00 00 23:20:12 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 1: r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$invalidate(0x15, r0) keyctl$read(0xb, r0, 0x0, 0x0) [ 466.944296][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:12 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:12 executing program 1: r0 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$invalidate(0x15, r0) keyctl$read(0xb, r0, 0x0, 0x0) 23:20:12 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0xd, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x4c, 0x1, 0x0, "4f96849fb6ff0110094d5167225138f0f1e4baea08b57d3448e9dbaaf59aae53"}) 23:20:13 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:13 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 468.108431][T12355] not chained 510000 origins [ 468.113116][T12355] CPU: 1 PID: 12355 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 468.121803][T12355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 468.131883][T12355] Call Trace: [ 468.135206][T12355] dump_stack+0x1df/0x240 [ 468.139573][T12355] kmsan_internal_chain_origin+0x6f/0x130 [ 468.145316][T12355] ? kmsan_get_metadata+0x4f/0x180 [ 468.150461][T12355] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 468.156384][T12355] ? __msan_poison_alloca+0xf0/0x120 [ 468.161691][T12355] ? kmsan_get_metadata+0x11d/0x180 [ 468.166915][T12355] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 468.172745][T12355] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 468.178835][T12355] ? kfree+0x61/0x30f0 [ 468.182962][T12355] ? kmsan_get_metadata+0x4f/0x180 [ 468.188091][T12355] ? kmsan_set_origin_checked+0x95/0xf0 [ 468.193656][T12355] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 468.199746][T12355] ? _copy_from_user+0x15b/0x260 [ 468.204698][T12355] ? kmsan_get_metadata+0x4f/0x180 [ 468.209834][T12355] __msan_chain_origin+0x50/0x90 [ 468.214796][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.219461][T12355] ? __msan_poison_alloca+0xf0/0x120 [ 468.224795][T12355] ? __se_sys_recvmmsg+0xac/0x350 [ 468.229835][T12355] ? __se_sys_recvmmsg+0xac/0x350 [ 468.234876][T12355] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 468.240791][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.245768][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.250642][T12355] do_syscall_64+0xb0/0x150 [ 468.255182][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.261961][T12355] RIP: 0033:0x45c1d9 [ 468.265853][T12355] Code: Bad RIP value. [ 468.269929][T12355] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 468.278354][T12355] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 468.286331][T12355] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 468.294307][T12355] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 468.302287][T12355] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 468.310266][T12355] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 468.318261][T12355] Uninit was stored to memory at: [ 468.323309][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.329041][T12355] __msan_chain_origin+0x50/0x90 [ 468.333995][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.338592][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.343540][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.348406][T12355] do_syscall_64+0xb0/0x150 [ 468.352943][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.358830][T12355] [ 468.361154][T12355] Uninit was stored to memory at: [ 468.366185][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.371911][T12355] __msan_chain_origin+0x50/0x90 [ 468.376943][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.381539][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.386482][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.391338][T12355] do_syscall_64+0xb0/0x150 [ 468.395852][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.401838][T12355] [ 468.404191][T12355] Uninit was stored to memory at: [ 468.409227][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.414950][T12355] __msan_chain_origin+0x50/0x90 [ 468.419890][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.424482][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.429424][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.434284][T12355] do_syscall_64+0xb0/0x150 [ 468.438800][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.445639][T12355] [ 468.447963][T12355] Uninit was stored to memory at: [ 468.452995][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.458722][T12355] __msan_chain_origin+0x50/0x90 [ 468.463670][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.468265][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.473206][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.478065][T12355] do_syscall_64+0xb0/0x150 [ 468.482574][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.488460][T12355] [ 468.490789][T12355] Uninit was stored to memory at: [ 468.495839][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.501559][T12355] __msan_chain_origin+0x50/0x90 [ 468.506506][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.511098][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.516038][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.520892][T12355] do_syscall_64+0xb0/0x150 [ 468.525398][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.531278][T12355] [ 468.533602][T12355] Uninit was stored to memory at: [ 468.538720][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.544439][T12355] __msan_chain_origin+0x50/0x90 [ 468.549377][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.553964][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.558902][T12355] __x64_sys_recvmmsg+0x62/0x80 [ 468.563756][T12355] do_syscall_64+0xb0/0x150 [ 468.568258][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.574135][T12355] [ 468.576457][T12355] Uninit was stored to memory at: [ 468.581484][T12355] kmsan_internal_chain_origin+0xad/0x130 [ 468.587205][T12355] __msan_chain_origin+0x50/0x90 [ 468.592175][T12355] do_recvmmsg+0x105a/0x1ee0 [ 468.596769][T12355] __se_sys_recvmmsg+0x1d1/0x350 [ 468.601710][T12355] __x64_sys_recvmmsg+0x62/0x80 23:20:14 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 468.606564][T12355] do_syscall_64+0xb0/0x150 [ 468.611078][T12355] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 468.616964][T12355] [ 468.619287][T12355] Local variable ----msg_sys@do_recvmmsg created at: [ 468.625968][T12355] do_recvmmsg+0xc5/0x1ee0 [ 468.630392][T12355] do_recvmmsg+0xc5/0x1ee0 23:20:14 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0xd, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x4c, 0x1, 0x0, "4f96849fb6ff0110094d5167225138f0f1e4baea08b57d3448e9dbaaf59aae53"}) 23:20:14 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:14 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:14 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:14 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, 0x0, 0x0, 0x42, 0x0) [ 468.821355][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:15 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0xd, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x4c, 0x1, 0x0, "4f96849fb6ff0110094d5167225138f0f1e4baea08b57d3448e9dbaaf59aae53"}) 23:20:15 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, 0x0, 0x0, 0x42, 0x0) 23:20:15 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:15 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:15 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:15 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000140)='/dev/video#\x00', 0xd, 0x0) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x4c, 0x1, 0x0, "4f96849fb6ff0110094d5167225138f0f1e4baea08b57d3448e9dbaaf59aae53"}) 23:20:16 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, 0x0, 0x0, 0x42, 0x0) [ 470.546274][ C1] sd 0:0:1:0: [sg0] tag#4106 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 470.556956][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB: Test Unit Ready [ 470.563722][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.573588][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.583479][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.593522][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.603410][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.613324][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.623257][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.633186][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 23:20:16 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 470.643081][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.652962][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.662859][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.672792][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 470.682680][ C1] sd 0:0:1:0: [sg0] tag#4106 CDB[c0]: 00 00 00 00 00 00 00 00 23:20:16 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800), 0x0, 0x42, 0x0) 23:20:16 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c) 23:20:16 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db98"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:16 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:17 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c) [ 471.500569][T12428] not chained 520000 origins [ 471.505939][T12428] CPU: 1 PID: 12428 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 471.514617][T12428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 471.524684][T12428] Call Trace: [ 471.528012][T12428] dump_stack+0x1df/0x240 [ 471.532367][T12428] kmsan_internal_chain_origin+0x6f/0x130 [ 471.538116][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 471.543244][T12428] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 471.549154][T12428] ? __msan_poison_alloca+0xf0/0x120 [ 471.554458][T12428] ? kmsan_get_metadata+0x11d/0x180 [ 471.559666][T12428] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 471.565510][T12428] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 471.571586][T12428] ? kfree+0x61/0x30f0 [ 471.575669][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 471.580821][T12428] ? kmsan_set_origin_checked+0x95/0xf0 [ 471.586383][T12428] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 471.592472][T12428] ? _copy_from_user+0x15b/0x260 [ 471.597420][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 471.602540][T12428] __msan_chain_origin+0x50/0x90 [ 471.607495][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.612154][T12428] ? __msan_poison_alloca+0xf0/0x120 [ 471.617474][T12428] ? __se_sys_recvmmsg+0xac/0x350 [ 471.622505][T12428] ? __se_sys_recvmmsg+0xac/0x350 [ 471.627536][T12428] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 471.633444][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.638410][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.643273][T12428] do_syscall_64+0xb0/0x150 [ 471.647795][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.653697][T12428] RIP: 0033:0x45c1d9 [ 471.657585][T12428] Code: Bad RIP value. [ 471.661646][T12428] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 471.670070][T12428] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 471.678046][T12428] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 471.686057][T12428] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 471.694033][T12428] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 471.702009][T12428] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 471.710003][T12428] Uninit was stored to memory at: [ 471.715043][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.720779][T12428] __msan_chain_origin+0x50/0x90 [ 471.725725][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.730315][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.735356][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.740219][T12428] do_syscall_64+0xb0/0x150 [ 471.744740][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.750620][T12428] [ 471.752943][T12428] Uninit was stored to memory at: [ 471.757975][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.763699][T12428] __msan_chain_origin+0x50/0x90 [ 471.768641][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.773239][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.778178][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.783040][T12428] do_syscall_64+0xb0/0x150 [ 471.787561][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.793450][T12428] [ 471.795779][T12428] Uninit was stored to memory at: [ 471.800811][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.806538][T12428] __msan_chain_origin+0x50/0x90 [ 471.811503][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.816130][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.821082][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.825944][T12428] do_syscall_64+0xb0/0x150 [ 471.830453][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.836335][T12428] [ 471.838659][T12428] Uninit was stored to memory at: [ 471.843688][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.849419][T12428] __msan_chain_origin+0x50/0x90 [ 471.854368][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.858968][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.863916][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.868772][T12428] do_syscall_64+0xb0/0x150 [ 471.873301][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.879183][T12428] [ 471.881502][T12428] Uninit was stored to memory at: [ 471.886559][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.892367][T12428] __msan_chain_origin+0x50/0x90 [ 471.897306][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.901896][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.906834][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.911712][T12428] do_syscall_64+0xb0/0x150 [ 471.916218][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.922103][T12428] [ 471.924425][T12428] Uninit was stored to memory at: [ 471.929454][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.935178][T12428] __msan_chain_origin+0x50/0x90 [ 471.940135][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.944750][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.949710][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.954567][T12428] do_syscall_64+0xb0/0x150 [ 471.959077][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 471.964958][T12428] [ 471.967284][T12428] Uninit was stored to memory at: [ 471.972314][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 471.978038][T12428] __msan_chain_origin+0x50/0x90 [ 471.982982][T12428] do_recvmmsg+0x105a/0x1ee0 [ 471.987581][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 471.992532][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 471.997406][T12428] do_syscall_64+0xb0/0x150 23:20:17 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800), 0x0, 0x42, 0x0) [ 472.001913][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 472.007789][T12428] [ 472.010108][T12428] Local variable ----msg_sys@do_recvmmsg created at: [ 472.016788][T12428] do_recvmmsg+0xc5/0x1ee0 [ 472.022165][T12428] do_recvmmsg+0xc5/0x1ee0 [ 472.056732][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 472.083858][ C1] sd 0:0:1:0: [sg0] tag#4107 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 472.094563][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB: Test Unit Ready [ 472.101189][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.105504][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 472.111077][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.129288][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.140148][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.150065][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.160043][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.169964][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.179876][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.189808][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 23:20:17 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 472.199733][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.209660][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.219584][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 472.228867][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 472.229486][ C1] sd 0:0:1:0: [sg0] tag#4107 CDB[c0]: 00 00 00 00 00 00 00 00 23:20:17 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c) 23:20:18 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:18 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:18 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in6=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, 0x1c) 23:20:18 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 473.810552][T12428] not chained 530000 origins [ 473.815202][T12428] CPU: 1 PID: 12428 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 473.823876][T12428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.833937][T12428] Call Trace: [ 473.837257][T12428] dump_stack+0x1df/0x240 [ 473.841615][T12428] kmsan_internal_chain_origin+0x6f/0x130 [ 473.847354][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 473.852484][T12428] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 473.858399][T12428] ? __msan_poison_alloca+0xf0/0x120 [ 473.863708][T12428] ? kmsan_get_metadata+0x11d/0x180 [ 473.868931][T12428] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 473.874752][T12428] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 473.880834][T12428] ? kfree+0x61/0x30f0 [ 473.884928][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 473.890056][T12428] ? kmsan_set_origin_checked+0x95/0xf0 [ 473.895625][T12428] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 473.901715][T12428] ? _copy_from_user+0x15b/0x260 [ 473.906667][T12428] ? kmsan_get_metadata+0x4f/0x180 [ 473.911794][T12428] __msan_chain_origin+0x50/0x90 [ 473.916775][T12428] do_recvmmsg+0x105a/0x1ee0 [ 473.921446][T12428] ? __msan_poison_alloca+0xf0/0x120 [ 473.926764][T12428] ? __se_sys_recvmmsg+0xac/0x350 [ 473.931797][T12428] ? __se_sys_recvmmsg+0xac/0x350 [ 473.936833][T12428] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 473.942749][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 473.947718][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 473.952593][T12428] do_syscall_64+0xb0/0x150 [ 473.957118][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 473.963016][T12428] RIP: 0033:0x45c1d9 [ 473.966908][T12428] Code: Bad RIP value. [ 473.970973][T12428] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 473.979392][T12428] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 473.987374][T12428] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 473.995438][T12428] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 474.003441][T12428] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 474.011446][T12428] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 474.019446][T12428] Uninit was stored to memory at: [ 474.024483][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.030212][T12428] __msan_chain_origin+0x50/0x90 [ 474.035161][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.039762][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.044709][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.049567][T12428] do_syscall_64+0xb0/0x150 [ 474.054081][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.059968][T12428] [ 474.062294][T12428] Uninit was stored to memory at: [ 474.067332][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.073122][T12428] __msan_chain_origin+0x50/0x90 [ 474.078073][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.082674][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.087622][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.092480][T12428] do_syscall_64+0xb0/0x150 [ 474.096998][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.102921][T12428] [ 474.105281][T12428] Uninit was stored to memory at: [ 474.110343][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.116168][T12428] __msan_chain_origin+0x50/0x90 [ 474.121205][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.125806][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.130757][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.135618][T12428] do_syscall_64+0xb0/0x150 [ 474.140134][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.146016][T12428] [ 474.148341][T12428] Uninit was stored to memory at: [ 474.153383][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.159126][T12428] __msan_chain_origin+0x50/0x90 [ 474.164078][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.168686][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.173632][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.178498][T12428] do_syscall_64+0xb0/0x150 [ 474.183009][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.188893][T12428] [ 474.191221][T12428] Uninit was stored to memory at: [ 474.196255][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.201986][T12428] __msan_chain_origin+0x50/0x90 [ 474.206964][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.211561][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.216528][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.222357][T12428] do_syscall_64+0xb0/0x150 [ 474.226878][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.232764][T12428] [ 474.235094][T12428] Uninit was stored to memory at: [ 474.240141][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.245866][T12428] __msan_chain_origin+0x50/0x90 [ 474.250817][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.255414][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.260360][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.265226][T12428] do_syscall_64+0xb0/0x150 [ 474.269739][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.275622][T12428] [ 474.277965][T12428] Uninit was stored to memory at: [ 474.283002][T12428] kmsan_internal_chain_origin+0xad/0x130 [ 474.288725][T12428] __msan_chain_origin+0x50/0x90 [ 474.290310][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 474.293665][T12428] do_recvmmsg+0x105a/0x1ee0 [ 474.293682][T12428] __se_sys_recvmmsg+0x1d1/0x350 [ 474.293699][T12428] __x64_sys_recvmmsg+0x62/0x80 [ 474.293718][T12428] do_syscall_64+0xb0/0x150 [ 474.293770][T12428] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 474.326787][T12428] [ 474.329122][T12428] Local variable ----msg_sys@do_recvmmsg created at: [ 474.335804][T12428] do_recvmmsg+0xc5/0x1ee0 [ 474.340224][T12428] do_recvmmsg+0xc5/0x1ee0 23:20:20 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800), 0x0, 0x42, 0x0) 23:20:20 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@ipv6_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_EXPIRES={0x8}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x2}]}, 0x2c}}, 0x0) 23:20:20 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 474.406461][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:20 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x0, 0x0) 23:20:20 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@ipv6_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_EXPIRES={0x8}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x2}]}, 0x2c}}, 0x0) 23:20:20 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB='S'], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x0, 0x0) 23:20:20 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:20 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@ipv6_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_EXPIRES={0x8}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x2}]}, 0x2c}}, 0x0) 23:20:21 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 475.682559][T12498] not chained 540000 origins [ 475.687208][T12498] CPU: 0 PID: 12498 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 475.695878][T12498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 475.705938][T12498] Call Trace: [ 475.709254][T12498] dump_stack+0x1df/0x240 [ 475.713607][T12498] kmsan_internal_chain_origin+0x6f/0x130 [ 475.719343][T12498] ? kmsan_get_metadata+0x4f/0x180 [ 475.724814][T12498] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 475.730721][T12498] ? __msan_poison_alloca+0xf0/0x120 [ 475.736017][T12498] ? kmsan_get_metadata+0x11d/0x180 [ 475.741228][T12498] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 475.747048][T12498] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 475.753125][T12498] ? kfree+0x61/0x30f0 [ 475.757208][T12498] ? kmsan_get_metadata+0x4f/0x180 [ 475.762330][T12498] ? kmsan_set_origin_checked+0x95/0xf0 [ 475.767885][T12498] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 475.773970][T12498] ? _copy_from_user+0x15b/0x260 [ 475.778915][T12498] ? kmsan_get_metadata+0x4f/0x180 [ 475.784035][T12498] __msan_chain_origin+0x50/0x90 [ 475.789006][T12498] do_recvmmsg+0x105a/0x1ee0 [ 475.793674][T12498] ? __msan_poison_alloca+0xf0/0x120 [ 475.798971][T12498] ? __se_sys_recvmmsg+0xac/0x350 [ 475.803999][T12498] ? __se_sys_recvmmsg+0xac/0x350 [ 475.809033][T12498] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 475.814938][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 475.819902][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 475.824764][T12498] do_syscall_64+0xb0/0x150 [ 475.829278][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 475.835170][T12498] RIP: 0033:0x45c1d9 [ 475.839052][T12498] Code: Bad RIP value. [ 475.843112][T12498] RSP: 002b:00007fdabb0bac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 475.851526][T12498] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 475.859497][T12498] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 475.867472][T12498] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 475.875445][T12498] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 475.883422][T12498] R13: 0000000000c9fb6f R14: 00007fdabb0bb9c0 R15: 000000000078bf0c [ 475.891692][T12498] Uninit was stored to memory at: [ 475.896728][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 475.902447][T12498] __msan_chain_origin+0x50/0x90 [ 475.907387][T12498] do_recvmmsg+0x105a/0x1ee0 [ 475.911979][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 475.916932][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 475.921786][T12498] do_syscall_64+0xb0/0x150 [ 475.926289][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 475.932172][T12498] [ 475.934494][T12498] Uninit was stored to memory at: [ 475.939522][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 475.945241][T12498] __msan_chain_origin+0x50/0x90 [ 475.950183][T12498] do_recvmmsg+0x105a/0x1ee0 [ 475.954778][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 475.959721][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 475.964576][T12498] do_syscall_64+0xb0/0x150 [ 475.969102][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 475.974985][T12498] [ 475.977331][T12498] Uninit was stored to memory at: [ 475.982360][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 475.988079][T12498] __msan_chain_origin+0x50/0x90 [ 475.993022][T12498] do_recvmmsg+0x105a/0x1ee0 [ 475.997621][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 476.002587][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 476.007447][T12498] do_syscall_64+0xb0/0x150 [ 476.011962][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 476.017843][T12498] [ 476.020163][T12498] Uninit was stored to memory at: [ 476.025194][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 476.030922][T12498] __msan_chain_origin+0x50/0x90 [ 476.035868][T12498] do_recvmmsg+0x105a/0x1ee0 [ 476.040462][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 476.045406][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 476.050262][T12498] do_syscall_64+0xb0/0x150 [ 476.054771][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 476.060653][T12498] [ 476.062976][T12498] Uninit was stored to memory at: [ 476.068005][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 476.073731][T12498] __msan_chain_origin+0x50/0x90 [ 476.078673][T12498] do_recvmmsg+0x105a/0x1ee0 [ 476.083269][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 476.088219][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 476.093165][T12498] do_syscall_64+0xb0/0x150 [ 476.097672][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 476.103554][T12498] [ 476.105876][T12498] Uninit was stored to memory at: [ 476.110923][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 476.116657][T12498] __msan_chain_origin+0x50/0x90 [ 476.121606][T12498] do_recvmmsg+0x105a/0x1ee0 [ 476.126210][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 476.131163][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 476.136024][T12498] do_syscall_64+0xb0/0x150 [ 476.140565][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 476.146474][T12498] [ 476.148802][T12498] Uninit was stored to memory at: [ 476.153840][T12498] kmsan_internal_chain_origin+0xad/0x130 [ 476.159573][T12498] __msan_chain_origin+0x50/0x90 [ 476.164521][T12498] do_recvmmsg+0x105a/0x1ee0 [ 476.169118][T12498] __se_sys_recvmmsg+0x1d1/0x350 [ 476.174063][T12498] __x64_sys_recvmmsg+0x62/0x80 [ 476.178918][T12498] do_syscall_64+0xb0/0x150 23:20:21 executing program 2: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x0, 0x0) [ 476.183431][T12498] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 476.189316][T12498] [ 476.191646][T12498] Local variable ----msg_sys@do_recvmmsg created at: [ 476.198328][T12498] do_recvmmsg+0xc5/0x1ee0 [ 476.202753][T12498] do_recvmmsg+0xc5/0x1ee0 23:20:21 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e15200000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:21 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 476.284676][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:22 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@ipv6_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_EXPIRES={0x8}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x2}]}, 0x2c}}, 0x0) 23:20:22 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:22 executing program 2: symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000040)='./file0\x00') symlink(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000008c0)='./file1\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0x0, 0x0}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x3fffffffffffe66, 0x0) 23:20:22 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)={0x18, r1, 0x703, 0x0, 0x0, {0x11}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) 23:20:22 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e15200000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:22 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:22 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:22 executing program 2: symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000040)='./file0\x00') symlink(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000008c0)='./file1\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0x0, 0x0}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x3fffffffffffe66, 0x0) 23:20:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)={0x18, r1, 0x703, 0x0, 0x0, {0x11}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) [ 477.428620][T12542] not chained 550000 origins [ 477.433294][T12542] CPU: 0 PID: 12542 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 477.441970][T12542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 477.452036][T12542] Call Trace: [ 477.455345][T12542] dump_stack+0x1df/0x240 [ 477.459692][T12542] kmsan_internal_chain_origin+0x6f/0x130 [ 477.465449][T12542] ? kmsan_get_metadata+0x4f/0x180 [ 477.470610][T12542] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 477.476535][T12542] ? __msan_poison_alloca+0xf0/0x120 [ 477.481837][T12542] ? kmsan_get_metadata+0x11d/0x180 [ 477.487050][T12542] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 477.492868][T12542] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 477.498943][T12542] ? kfree+0x61/0x30f0 [ 477.503035][T12542] ? kmsan_get_metadata+0x4f/0x180 [ 477.508163][T12542] ? kmsan_set_origin_checked+0x95/0xf0 [ 477.513728][T12542] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 477.519816][T12542] ? _copy_from_user+0x15b/0x260 [ 477.524770][T12542] ? kmsan_get_metadata+0x4f/0x180 [ 477.529894][T12542] __msan_chain_origin+0x50/0x90 [ 477.534847][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.539513][T12542] ? __msan_poison_alloca+0xf0/0x120 [ 477.544817][T12542] ? __se_sys_recvmmsg+0xac/0x350 [ 477.549849][T12542] ? __se_sys_recvmmsg+0xac/0x350 [ 477.554882][T12542] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 477.560802][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.565774][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.570664][T12542] do_syscall_64+0xb0/0x150 [ 477.575193][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.581095][T12542] RIP: 0033:0x45c1d9 [ 477.584980][T12542] Code: Bad RIP value. [ 477.589049][T12542] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 477.597467][T12542] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 477.605445][T12542] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 477.613428][T12542] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 477.621434][T12542] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 477.629423][T12542] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 477.637417][T12542] Uninit was stored to memory at: [ 477.642458][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.648184][T12542] __msan_chain_origin+0x50/0x90 [ 477.653132][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.657730][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.662695][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.667570][T12542] do_syscall_64+0xb0/0x150 [ 477.672087][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.677969][T12542] [ 477.680295][T12542] Uninit was stored to memory at: [ 477.685335][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.691060][T12542] __msan_chain_origin+0x50/0x90 [ 477.696001][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.700718][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.705673][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.710551][T12542] do_syscall_64+0xb0/0x150 [ 477.715070][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.720951][T12542] [ 477.723276][T12542] Uninit was stored to memory at: [ 477.728308][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.734036][T12542] __msan_chain_origin+0x50/0x90 [ 477.738977][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.743656][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.748596][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.753449][T12542] do_syscall_64+0xb0/0x150 [ 477.757964][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.763842][T12542] [ 477.766186][T12542] Uninit was stored to memory at: [ 477.771218][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.776949][T12542] __msan_chain_origin+0x50/0x90 [ 477.781895][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.786489][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.791444][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.796484][T12542] do_syscall_64+0xb0/0x150 [ 477.801018][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.806931][T12542] [ 477.809279][T12542] Uninit was stored to memory at: [ 477.814346][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.820078][T12542] __msan_chain_origin+0x50/0x90 [ 477.825043][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.829638][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.834579][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.839435][T12542] do_syscall_64+0xb0/0x150 [ 477.843963][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.849855][T12542] [ 477.852177][T12542] Uninit was stored to memory at: [ 477.857211][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.863060][T12542] __msan_chain_origin+0x50/0x90 [ 477.868010][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.872605][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.877544][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.882403][T12542] do_syscall_64+0xb0/0x150 [ 477.886909][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.892791][T12542] [ 477.895116][T12542] Uninit was stored to memory at: [ 477.900151][T12542] kmsan_internal_chain_origin+0xad/0x130 [ 477.905876][T12542] __msan_chain_origin+0x50/0x90 [ 477.910829][T12542] do_recvmmsg+0x105a/0x1ee0 [ 477.915425][T12542] __se_sys_recvmmsg+0x1d1/0x350 [ 477.920370][T12542] __x64_sys_recvmmsg+0x62/0x80 [ 477.925233][T12542] do_syscall_64+0xb0/0x150 [ 477.929746][T12542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 477.935628][T12542] [ 477.937953][T12542] Local variable ----msg_sys@do_recvmmsg created at: [ 477.944636][T12542] do_recvmmsg+0xc5/0x1ee0 [ 477.949059][T12542] do_recvmmsg+0xc5/0x1ee0 [ 478.037744][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:23 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:23 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)={0x18, r1, 0x703, 0x0, 0x0, {0x11}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) 23:20:23 executing program 2: symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000040)='./file0\x00') symlink(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000008c0)='./file1\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0x0, 0x0}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x3fffffffffffe66, 0x0) 23:20:24 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:24 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:24 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)={0x18, r1, 0x703, 0x0, 0x0, {0x11}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) 23:20:25 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e15200000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:25 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:25 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:25 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="480000001400812cf1e14319147fd1002c1100b9eb1b7c8687811b59d072db3284576bee20a20f7b441c0200000046", 0x2f}, {&(0x7f0000000100)="cb85c927876acf72c911cea7a6d4c48ca0f67a89a0fc25e41f", 0x19}], 0x2}, 0x0) 23:20:25 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:25 executing program 2: symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000040)='./file0\x00') symlink(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000008c0)='./file1\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0x0, 0x0}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000008600)=[{{0x0, 0x0, &(0x7f0000003140)}}, {{&(0x7f00000072c0)=@un=@file={0x1, './file0\x00'}, 0xa, &(0x7f0000007380), 0x0, &(0x7f0000000600)}}], 0x3fffffffffffe66, 0x0) [ 479.988575][T12586] not chained 560000 origins [ 479.993307][T12586] CPU: 0 PID: 12586 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 480.001989][T12586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 480.012089][T12586] Call Trace: [ 480.015413][T12586] dump_stack+0x1df/0x240 [ 480.019807][T12586] kmsan_internal_chain_origin+0x6f/0x130 [ 480.025558][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 480.030688][T12586] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 480.036606][T12586] ? __msan_poison_alloca+0xf0/0x120 [ 480.041916][T12586] ? kmsan_get_metadata+0x11d/0x180 [ 480.047165][T12586] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 480.052996][T12586] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 480.059104][T12586] ? kfree+0x61/0x30f0 [ 480.063197][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 480.068325][T12586] ? kmsan_set_origin_checked+0x95/0xf0 [ 480.073885][T12586] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 480.079970][T12586] ? _copy_from_user+0x15b/0x260 [ 480.084922][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 480.090048][T12586] __msan_chain_origin+0x50/0x90 [ 480.095011][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.099671][T12586] ? __msan_poison_alloca+0xf0/0x120 [ 480.104991][T12586] ? __se_sys_recvmmsg+0xac/0x350 [ 480.110053][T12586] ? __se_sys_recvmmsg+0xac/0x350 [ 480.115128][T12586] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 480.121052][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.126103][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.130981][T12586] do_syscall_64+0xb0/0x150 [ 480.135524][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.141426][T12586] RIP: 0033:0x45c1d9 [ 480.145315][T12586] Code: Bad RIP value. [ 480.149383][T12586] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 480.157831][T12586] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 480.165813][T12586] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 480.173795][T12586] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 480.181774][T12586] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 480.189758][T12586] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 480.197761][T12586] Uninit was stored to memory at: [ 480.202805][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.208541][T12586] __msan_chain_origin+0x50/0x90 [ 480.213498][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.218102][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.223054][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.227921][T12586] do_syscall_64+0xb0/0x150 [ 480.232436][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.238324][T12586] [ 480.240663][T12586] Uninit was stored to memory at: [ 480.245695][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.251420][T12586] __msan_chain_origin+0x50/0x90 [ 480.256362][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.260977][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.265919][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.270772][T12586] do_syscall_64+0xb0/0x150 [ 480.275280][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.281161][T12586] [ 480.283480][T12586] Uninit was stored to memory at: [ 480.288516][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.294259][T12586] __msan_chain_origin+0x50/0x90 [ 480.299202][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.303818][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.308761][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.313616][T12586] do_syscall_64+0xb0/0x150 [ 480.318146][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.324046][T12586] [ 480.326372][T12586] Uninit was stored to memory at: [ 480.331413][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.337146][T12586] __msan_chain_origin+0x50/0x90 [ 480.342104][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.346705][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.351654][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.356516][T12586] do_syscall_64+0xb0/0x150 [ 480.361032][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.366920][T12586] [ 480.369250][T12586] Uninit was stored to memory at: [ 480.374312][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.380054][T12586] __msan_chain_origin+0x50/0x90 [ 480.385017][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.389626][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.394579][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.399441][T12586] do_syscall_64+0xb0/0x150 [ 480.403951][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.409833][T12586] [ 480.412160][T12586] Uninit was stored to memory at: [ 480.417194][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.422932][T12586] __msan_chain_origin+0x50/0x90 [ 480.427886][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.432497][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.437450][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.442316][T12586] do_syscall_64+0xb0/0x150 [ 480.446835][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.452722][T12586] [ 480.455054][T12586] Uninit was stored to memory at: [ 480.460097][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 480.465837][T12586] __msan_chain_origin+0x50/0x90 [ 480.470792][T12586] do_recvmmsg+0x105a/0x1ee0 [ 480.475396][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 480.480351][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 480.485216][T12586] do_syscall_64+0xb0/0x150 23:20:25 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="480000001400812cf1e14319147fd1002c1100b9eb1b7c8687811b59d072db3284576bee20a20f7b441c0200000046", 0x2f}, {&(0x7f0000000100)="cb85c927876acf72c911cea7a6d4c48ca0f67a89a0fc25e41f", 0x19}], 0x2}, 0x0) [ 480.489736][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 480.495630][T12586] [ 480.498021][T12586] Local variable ----msg_sys@do_recvmmsg created at: [ 480.504709][T12586] do_recvmmsg+0xc5/0x1ee0 [ 480.509135][T12586] do_recvmmsg+0xc5/0x1ee0 23:20:26 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:26 executing program 2: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200000008, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open$dir(&(0x7f0000000240)='./file0\x00', 0x8ce67fc4148f3368, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='nfs\x00', 0x0, &(0x7f0000000000)) 23:20:26 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:26 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 481.347928][T12609] not chained 570000 origins [ 481.353139][T12609] CPU: 0 PID: 12609 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 481.361843][T12609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 481.371913][T12609] Call Trace: [ 481.375261][T12609] dump_stack+0x1df/0x240 [ 481.379624][T12609] kmsan_internal_chain_origin+0x6f/0x130 [ 481.385365][T12609] ? kmsan_get_metadata+0x4f/0x180 [ 481.390512][T12609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 481.396459][T12609] ? __msan_poison_alloca+0xf0/0x120 [ 481.401773][T12609] ? kmsan_get_metadata+0x11d/0x180 [ 481.406994][T12609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 481.412835][T12609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 481.418927][T12609] ? kfree+0x61/0x30f0 [ 481.423035][T12609] ? kmsan_get_metadata+0x4f/0x180 [ 481.428162][T12609] ? kmsan_set_origin_checked+0x95/0xf0 [ 481.433862][T12609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 481.439977][T12609] ? _copy_from_user+0x15b/0x260 [ 481.444944][T12609] ? kmsan_get_metadata+0x4f/0x180 [ 481.450084][T12609] __msan_chain_origin+0x50/0x90 [ 481.455051][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.459738][T12609] ? __msan_poison_alloca+0xf0/0x120 [ 481.465049][T12609] ? __se_sys_recvmmsg+0xac/0x350 [ 481.470095][T12609] ? __se_sys_recvmmsg+0xac/0x350 [ 481.475148][T12609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 481.481076][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.486066][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.490939][T12609] do_syscall_64+0xb0/0x150 [ 481.495474][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.501382][T12609] RIP: 0033:0x45c1d9 [ 481.505280][T12609] Code: Bad RIP value. [ 481.509357][T12609] RSP: 002b:00007fdabb099c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 481.517795][T12609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 481.521029][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 481.525788][T12609] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 481.525802][T12609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 481.525815][T12609] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 481.525829][T12609] R13: 0000000000c9fb6f R14: 00007fdabb09a9c0 R15: 000000000078bfac [ 481.525857][T12609] Uninit was stored to memory at: [ 481.525884][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.525904][T12609] __msan_chain_origin+0x50/0x90 [ 481.525925][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.525946][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.525966][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.525988][T12609] do_syscall_64+0xb0/0x150 [ 481.526011][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.526016][T12609] [ 481.526022][T12609] Uninit was stored to memory at: [ 481.526078][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.619724][T12609] __msan_chain_origin+0x50/0x90 [ 481.624690][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.629298][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.634250][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.639115][T12609] do_syscall_64+0xb0/0x150 [ 481.640558][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 481.643628][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.643634][T12609] [ 481.643641][T12609] Uninit was stored to memory at: [ 481.643660][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.643676][T12609] __msan_chain_origin+0x50/0x90 [ 481.643694][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.643711][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.643728][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.643745][T12609] do_syscall_64+0xb0/0x150 [ 481.643763][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.643767][T12609] [ 481.643773][T12609] Uninit was stored to memory at: [ 481.643790][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.643806][T12609] __msan_chain_origin+0x50/0x90 [ 481.643857][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.723477][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.728428][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.733306][T12609] do_syscall_64+0xb0/0x150 [ 481.737826][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.743718][T12609] [ 481.746059][T12609] Uninit was stored to memory at: [ 481.751098][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.756830][T12609] __msan_chain_origin+0x50/0x90 [ 481.761779][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.766386][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.771341][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.776205][T12609] do_syscall_64+0xb0/0x150 [ 481.780724][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.786619][T12609] [ 481.788947][T12609] Uninit was stored to memory at: [ 481.794036][T12609] kmsan_internal_chain_origin+0xad/0x130 23:20:27 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="480000001400812cf1e14319147fd1002c1100b9eb1b7c8687811b59d072db3284576bee20a20f7b441c0200000046", 0x2f}, {&(0x7f0000000100)="cb85c927876acf72c911cea7a6d4c48ca0f67a89a0fc25e41f", 0x19}], 0x2}, 0x0) [ 481.799768][T12609] __msan_chain_origin+0x50/0x90 [ 481.804724][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.809333][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.814303][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.819165][T12609] do_syscall_64+0xb0/0x150 [ 481.823676][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.829565][T12609] [ 481.831898][T12609] Uninit was stored to memory at: [ 481.836945][T12609] kmsan_internal_chain_origin+0xad/0x130 [ 481.842677][T12609] __msan_chain_origin+0x50/0x90 23:20:27 executing program 2: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200000008, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open$dir(&(0x7f0000000240)='./file0\x00', 0x8ce67fc4148f3368, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='nfs\x00', 0x0, &(0x7f0000000000)) 23:20:27 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 481.847632][T12609] do_recvmmsg+0x105a/0x1ee0 [ 481.852238][T12609] __se_sys_recvmmsg+0x1d1/0x350 [ 481.857188][T12609] __x64_sys_recvmmsg+0x62/0x80 [ 481.862043][T12609] do_syscall_64+0xb0/0x150 [ 481.866550][T12609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 481.872430][T12609] [ 481.874752][T12609] Local variable ----msg_sys@do_recvmmsg created at: [ 481.881431][T12609] do_recvmmsg+0xc5/0x1ee0 [ 481.885852][T12609] do_recvmmsg+0xc5/0x1ee0 [ 481.922155][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. 23:20:27 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 482.551167][T12586] not chained 580000 origins [ 482.555807][T12586] CPU: 0 PID: 12586 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 482.564483][T12586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 482.574551][T12586] Call Trace: [ 482.577870][T12586] dump_stack+0x1df/0x240 [ 482.582231][T12586] kmsan_internal_chain_origin+0x6f/0x130 [ 482.587972][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 482.593107][T12586] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 482.599028][T12586] ? __msan_poison_alloca+0xf0/0x120 [ 482.604342][T12586] ? kmsan_get_metadata+0x11d/0x180 [ 482.609562][T12586] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 482.615388][T12586] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 482.621472][T12586] ? kfree+0x61/0x30f0 [ 482.625563][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 482.630692][T12586] ? kmsan_set_origin_checked+0x95/0xf0 [ 482.636270][T12586] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 482.642971][T12586] ? _copy_from_user+0x15b/0x260 [ 482.647926][T12586] ? kmsan_get_metadata+0x4f/0x180 [ 482.653055][T12586] __msan_chain_origin+0x50/0x90 [ 482.658013][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.662687][T12586] ? __msan_poison_alloca+0xf0/0x120 [ 482.668003][T12586] ? __se_sys_recvmmsg+0xac/0x350 [ 482.673040][T12586] ? __se_sys_recvmmsg+0xac/0x350 [ 482.678086][T12586] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 482.684008][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 482.689004][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 482.693875][T12586] do_syscall_64+0xb0/0x150 [ 482.698397][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 482.704991][T12586] RIP: 0033:0x45c1d9 [ 482.708884][T12586] Code: Bad RIP value. [ 482.712956][T12586] RSP: 002b:00007fd7e34acc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 482.721389][T12586] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 482.721971][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.729370][T12586] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 482.729420][T12586] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 482.753692][T12586] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bf0c [ 482.761706][T12586] R13: 0000000000c9fb6f R14: 00007fd7e34ad9c0 R15: 000000000078bf0c [ 482.769711][T12586] Uninit was stored to memory at: [ 482.774761][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 482.780502][T12586] __msan_chain_origin+0x50/0x90 [ 482.785457][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.790085][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 482.795041][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 482.796821][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.799933][T12586] do_syscall_64+0xb0/0x150 [ 482.812749][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 482.818641][T12586] [ 482.820966][T12586] Uninit was stored to memory at: [ 482.826005][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 482.831758][T12586] __msan_chain_origin+0x50/0x90 [ 482.836708][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.841305][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 482.846254][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 482.849123][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.851149][T12586] do_syscall_64+0xb0/0x150 [ 482.863969][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 482.869859][T12586] [ 482.872192][T12586] Uninit was stored to memory at: [ 482.877242][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 482.882973][T12586] __msan_chain_origin+0x50/0x90 [ 482.886199][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.887950][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.900845][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 482.905795][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 482.910654][T12586] do_syscall_64+0xb0/0x150 [ 482.915176][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 482.921067][T12586] [ 482.923395][T12586] Uninit was stored to memory at: [ 482.928432][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 482.934182][T12586] __msan_chain_origin+0x50/0x90 [ 482.939132][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.941831][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.943769][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 482.957015][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 482.961882][T12586] do_syscall_64+0xb0/0x150 [ 482.966437][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 482.972323][T12586] [ 482.974651][T12586] Uninit was stored to memory at: [ 482.979688][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 482.985509][T12586] __msan_chain_origin+0x50/0x90 [ 482.990462][T12586] do_recvmmsg+0x105a/0x1ee0 [ 482.992134][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 482.995095][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 483.008361][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 483.013225][T12586] do_syscall_64+0xb0/0x150 [ 483.017742][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 483.023633][T12586] [ 483.025964][T12586] Uninit was stored to memory at: [ 483.031002][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 483.036734][T12586] __msan_chain_origin+0x50/0x90 [ 483.041681][T12586] do_recvmmsg+0x105a/0x1ee0 [ 483.046281][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 483.051228][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 483.056092][T12586] do_syscall_64+0xb0/0x150 [ 483.060604][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 483.066488][T12586] [ 483.068814][T12586] Uninit was stored to memory at: [ 483.073851][T12586] kmsan_internal_chain_origin+0xad/0x130 [ 483.079682][T12586] __msan_chain_origin+0x50/0x90 [ 483.082148][ T4871] systemd-journald[4871]: /dev/kmsg buffer overrun, some messages lost. [ 483.084669][T12586] do_recvmmsg+0x105a/0x1ee0 [ 483.097585][T12586] __se_sys_recvmmsg+0x1d1/0x350 [ 483.102534][T12586] __x64_sys_recvmmsg+0x62/0x80 [ 483.107393][T12586] do_syscall_64+0xb0/0x150 [ 483.111910][T12586] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 483.117798][T12586] [ 483.120135][T12586] Local variable ----msg_sys@do_recvmmsg created at: [ 483.126822][T12586] do_recvmmsg+0xc5/0x1ee0 [ 483.131248][T12586] do_recvmmsg+0xc5/0x1ee0 23:20:28 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:28 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="480000001400812cf1e14319147fd1002c1100b9eb1b7c8687811b59d072db3284576bee20a20f7b441c0200000046", 0x2f}, {&(0x7f0000000100)="cb85c927876acf72c911cea7a6d4c48ca0f67a89a0fc25e41f", 0x19}], 0x2}, 0x0) 23:20:28 executing program 2: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200000008, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open$dir(&(0x7f0000000240)='./file0\x00', 0x8ce67fc4148f3368, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='nfs\x00', 0x0, &(0x7f0000000000)) 23:20:28 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:28 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:28 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:29 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) 23:20:29 executing program 2: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x200000008, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open$dir(&(0x7f0000000240)='./file0\x00', 0x8ce67fc4148f3368, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)='nfs\x00', 0x0, &(0x7f0000000000)) [ 483.779512][T12641] not chained 590000 origins [ 483.782867][ T1] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT [ 483.784242][T12641] CPU: 0 PID: 12641 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 483.802621][T12641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 483.812710][T12641] Call Trace: [ 483.816040][T12641] dump_stack+0x1df/0x240 [ 483.820403][T12641] kmsan_internal_chain_origin+0x6f/0x130 [ 483.826173][T12641] ? kmsan_get_metadata+0x4f/0x180 [ 483.831306][T12641] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 483.837221][T12641] ? __msan_poison_alloca+0xf0/0x120 [ 483.842530][T12641] ? kmsan_get_metadata+0x11d/0x180 [ 483.847749][T12641] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 483.853577][T12641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 483.859679][T12641] ? kfree+0x61/0x30f0 [ 483.863770][T12641] ? kmsan_get_metadata+0x4f/0x180 [ 483.868899][T12641] ? kmsan_set_origin_checked+0x95/0xf0 [ 483.874462][T12641] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 483.880557][T12641] ? _copy_from_user+0x15b/0x260 [ 483.885515][T12641] ? kmsan_get_metadata+0x4f/0x180 [ 483.890655][T12641] __msan_chain_origin+0x50/0x90 [ 483.895624][T12641] do_recvmmsg+0x105a/0x1ee0 [ 483.900294][T12641] ? __msan_poison_alloca+0xf0/0x120 [ 483.905602][T12641] ? __se_sys_recvmmsg+0xac/0x350 [ 483.910651][T12641] ? __se_sys_recvmmsg+0xac/0x350 [ 483.915126][ T1] systemd[1]: systemd-journald.service: Unit entered failed state. [ 483.915688][T12641] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 483.915716][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 483.915755][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 483.915856][T12641] do_syscall_64+0xb0/0x150 [ 483.943899][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 483.949806][T12641] RIP: 0033:0x45c1d9 [ 483.953700][T12641] Code: Bad RIP value. [ 483.957771][T12641] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 483.966195][T12641] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 483.974190][T12641] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 483.982181][T12641] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 483.986172][ T1] systemd[1]: systemd-journald.service: Failed with result 'watchdog'. [ 483.990164][T12641] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 483.990176][T12641] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 483.990204][T12641] Uninit was stored to memory at: [ 483.990232][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 483.990249][T12641] __msan_chain_origin+0x50/0x90 [ 483.990268][T12641] do_recvmmsg+0x105a/0x1ee0 [ 483.990364][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.039705][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.044573][T12641] do_syscall_64+0xb0/0x150 [ 484.049098][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.055329][T12641] [ 484.057658][T12641] Uninit was stored to memory at: [ 484.062701][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.068434][T12641] __msan_chain_origin+0x50/0x90 [ 484.073410][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.078017][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.082972][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.087838][T12641] do_syscall_64+0xb0/0x150 [ 484.092362][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.098254][T12641] [ 484.100587][T12641] Uninit was stored to memory at: [ 484.105640][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.111381][T12641] __msan_chain_origin+0x50/0x90 [ 484.116371][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.121001][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.125951][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.130812][T12641] do_syscall_64+0xb0/0x150 [ 484.135324][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.141217][T12641] [ 484.143550][T12641] Uninit was stored to memory at: [ 484.148590][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.154799][T12641] __msan_chain_origin+0x50/0x90 [ 484.159763][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.164383][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.169329][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.174188][T12641] do_syscall_64+0xb0/0x150 [ 484.178696][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.184581][T12641] [ 484.186907][T12641] Uninit was stored to memory at: [ 484.191946][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.197694][T12641] __msan_chain_origin+0x50/0x90 [ 484.202649][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.207245][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.212201][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.217072][T12641] do_syscall_64+0xb0/0x150 [ 484.221590][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.227477][T12641] [ 484.229804][T12641] Uninit was stored to memory at: [ 484.234848][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.240697][T12641] __msan_chain_origin+0x50/0x90 [ 484.245649][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.250263][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.255225][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.260087][T12641] do_syscall_64+0xb0/0x150 [ 484.264608][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.270493][T12641] [ 484.272819][T12641] Uninit was stored to memory at: 23:20:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000140)=ANY=[@ANYRES64], 0x8) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)) [ 484.277853][T12641] kmsan_internal_chain_origin+0xad/0x130 [ 484.283575][T12641] __msan_chain_origin+0x50/0x90 [ 484.288516][T12641] do_recvmmsg+0x105a/0x1ee0 [ 484.293117][T12641] __se_sys_recvmmsg+0x1d1/0x350 [ 484.298064][T12641] __x64_sys_recvmmsg+0x62/0x80 [ 484.302931][T12641] do_syscall_64+0xb0/0x150 [ 484.307445][T12641] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 484.313332][T12641] [ 484.315657][T12641] Local variable ----msg_sys@do_recvmmsg created at: [ 484.322345][T12641] do_recvmmsg+0xc5/0x1ee0 [ 484.326766][T12641] do_recvmmsg+0xc5/0x1ee0 23:20:30 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff640"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6feebfd8efa894f5b2537fa4234"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:30 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 484.417734][ T1] systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart. 23:20:30 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x200003e6, 0x61, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [0x61], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x45) 23:20:30 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 484.500323][ T1] systemd[1]: Stopped Flush Journal to Persistent Storage. [ 484.522405][ T1] systemd[1]: Stopping Flush Journal to Persistent Storage... [ 484.530128][ T1] systemd[1]: Stopped Journal Service. [ 484.604840][ T1] systemd[1]: Starting Journal Service... [ 484.752574][T12654] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 23:20:30 executing program 1: r0 = socket(0x1e, 0x4, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000000)=@req={0x3fc}, 0x10) sendmmsg(r3, &(0x7f0000003800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000001c0)=@tipc=@name, 0x80, 0x0}}], 0x2, 0x0) close(r3) close(r0) 23:20:30 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x200003e6, 0x61, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [0x61], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x45) 23:20:31 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:31 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:31 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff640"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:31 executing program 1: r0 = socket(0x1e, 0x4, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000000)=@req={0x3fc}, 0x10) sendmmsg(r3, &(0x7f0000003800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000001c0)=@tipc=@name, 0x80, 0x0}}], 0x2, 0x0) close(r3) close(r0) 23:20:31 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:31 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x200003e6, 0x61, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [0x61], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x45) [ 486.012408][T12692] not chained 600000 origins [ 486.017045][T12692] CPU: 0 PID: 12692 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 486.025728][T12692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 486.035799][T12692] Call Trace: [ 486.039120][T12692] dump_stack+0x1df/0x240 [ 486.043495][T12692] kmsan_internal_chain_origin+0x6f/0x130 [ 486.049258][T12692] ? kmsan_get_metadata+0x4f/0x180 [ 486.054398][T12692] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 486.060330][T12692] ? __msan_poison_alloca+0xf0/0x120 [ 486.065653][T12692] ? kmsan_get_metadata+0x11d/0x180 [ 486.070877][T12692] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 486.076707][T12692] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 486.082791][T12692] ? kfree+0x61/0x30f0 [ 486.086909][T12692] ? kmsan_get_metadata+0x4f/0x180 [ 486.092062][T12692] ? kmsan_set_origin_checked+0x95/0xf0 [ 486.097629][T12692] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 486.103737][T12692] ? _copy_from_user+0x15b/0x260 [ 486.108693][T12692] ? kmsan_get_metadata+0x4f/0x180 [ 486.113827][T12692] __msan_chain_origin+0x50/0x90 [ 486.118793][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.123459][T12692] ? __msan_poison_alloca+0xf0/0x120 [ 486.128781][T12692] ? __se_sys_recvmmsg+0xac/0x350 [ 486.133830][T12692] ? __se_sys_recvmmsg+0xac/0x350 [ 486.138866][T12692] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 486.144775][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.149745][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.154615][T12692] do_syscall_64+0xb0/0x150 [ 486.159150][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.165052][T12692] RIP: 0033:0x45c1d9 [ 486.168940][T12692] Code: Bad RIP value. [ 486.173005][T12692] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 486.181427][T12692] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 486.189410][T12692] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 486.197392][T12692] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 486.205378][T12692] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 486.213366][T12692] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 486.221373][T12692] Uninit was stored to memory at: [ 486.226428][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.232163][T12692] __msan_chain_origin+0x50/0x90 [ 486.237111][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.241715][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.246660][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.251519][T12692] do_syscall_64+0xb0/0x150 [ 486.256029][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.261909][T12692] [ 486.264234][T12692] Uninit was stored to memory at: [ 486.269267][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.274992][T12692] __msan_chain_origin+0x50/0x90 [ 486.279969][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.284566][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.289509][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.294365][T12692] do_syscall_64+0xb0/0x150 [ 486.298882][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.304765][T12692] [ 486.307090][T12692] Uninit was stored to memory at: [ 486.312176][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.317917][T12692] __msan_chain_origin+0x50/0x90 [ 486.322863][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.327456][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.332400][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.337254][T12692] do_syscall_64+0xb0/0x150 [ 486.341762][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.347647][T12692] [ 486.349970][T12692] Uninit was stored to memory at: [ 486.355011][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.360737][T12692] __msan_chain_origin+0x50/0x90 [ 486.365690][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.370287][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.375230][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.380084][T12692] do_syscall_64+0xb0/0x150 [ 486.384592][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.390474][T12692] [ 486.392795][T12692] Uninit was stored to memory at: [ 486.397827][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.403553][T12692] __msan_chain_origin+0x50/0x90 [ 486.408502][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.413103][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.418048][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.422906][T12692] do_syscall_64+0xb0/0x150 [ 486.427426][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.433308][T12692] [ 486.435630][T12692] Uninit was stored to memory at: [ 486.440667][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.446402][T12692] __msan_chain_origin+0x50/0x90 [ 486.451804][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.456413][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.461372][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.466242][T12692] do_syscall_64+0xb0/0x150 [ 486.470760][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.476649][T12692] [ 486.478974][T12692] Uninit was stored to memory at: [ 486.484024][T12692] kmsan_internal_chain_origin+0xad/0x130 [ 486.489758][T12692] __msan_chain_origin+0x50/0x90 [ 486.494706][T12692] do_recvmmsg+0x105a/0x1ee0 [ 486.499326][T12692] __se_sys_recvmmsg+0x1d1/0x350 [ 486.504277][T12692] __x64_sys_recvmmsg+0x62/0x80 [ 486.509137][T12692] do_syscall_64+0xb0/0x150 23:20:32 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 486.513650][T12692] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 486.519536][T12692] [ 486.521867][T12692] Local variable ----msg_sys@do_recvmmsg created at: [ 486.528553][T12692] do_recvmmsg+0xc5/0x1ee0 [ 486.532994][T12692] do_recvmmsg+0xc5/0x1ee0 23:20:32 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x200003e6, 0x61, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [0x61], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x45) 23:20:32 executing program 1: r0 = socket(0x1e, 0x4, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000000)=@req={0x3fc}, 0x10) sendmmsg(r3, &(0x7f0000003800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000001c0)=@tipc=@name, 0x80, 0x0}}], 0x2, 0x0) close(r3) close(r0) 23:20:32 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752e"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:32 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 486.858776][T12651] systemd-journald[12651]: File /run/log/journal/64dd78f1a75445a997c532444ad0f085/system.journal corrupted or uncleanly shut down, renaming and replacing. 23:20:33 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:33 executing program 2: clone(0x54041bc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = gettid() tkill(r1, 0x14) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ptrace(0x4206, r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = fcntl$dupfd(r3, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ptrace$poke(0x2, r1, &(0x7f00000000c0), 0x740000) 23:20:33 executing program 1: r0 = socket(0x1e, 0x4, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000000)=@req={0x3fc}, 0x10) sendmmsg(r3, &(0x7f0000003800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000001c0)=@tipc=@name, 0x80, 0x0}}], 0x2, 0x0) close(r3) close(r0) 23:20:33 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:33 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff640"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:33 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:33 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001000000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4008ae89, &(0x7f0000000240)={"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"}) [ 488.496056][T12735] not chained 610000 origins [ 488.500728][T12735] CPU: 0 PID: 12735 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 488.509412][T12735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 488.520548][T12735] Call Trace: [ 488.523868][T12735] dump_stack+0x1df/0x240 [ 488.528248][T12735] kmsan_internal_chain_origin+0x6f/0x130 [ 488.533989][T12735] ? kmsan_get_metadata+0x4f/0x180 [ 488.539126][T12735] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 488.545047][T12735] ? __msan_poison_alloca+0xf0/0x120 [ 488.550356][T12735] ? kmsan_get_metadata+0x11d/0x180 [ 488.555578][T12735] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 488.561417][T12735] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 488.567512][T12735] ? kfree+0x61/0x30f0 [ 488.571627][T12735] ? kmsan_get_metadata+0x4f/0x180 [ 488.576811][T12735] ? kmsan_set_origin_checked+0x95/0xf0 [ 488.582399][T12735] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 488.588539][T12735] ? _copy_from_user+0x15b/0x260 [ 488.593502][T12735] ? kmsan_get_metadata+0x4f/0x180 [ 488.598652][T12735] __msan_chain_origin+0x50/0x90 [ 488.603629][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.608307][T12735] ? __msan_poison_alloca+0xf0/0x120 [ 488.613628][T12735] ? __se_sys_recvmmsg+0xac/0x350 [ 488.618687][T12735] ? __se_sys_recvmmsg+0xac/0x350 [ 488.623753][T12735] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 488.629678][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.634665][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.639539][T12735] do_syscall_64+0xb0/0x150 [ 488.644072][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.650010][T12735] RIP: 0033:0x45c1d9 [ 488.653904][T12735] Code: Bad RIP value. [ 488.657978][T12735] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 488.666504][T12735] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 488.674499][T12735] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 488.682491][T12735] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 488.690482][T12735] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 488.698482][T12735] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 488.707101][T12735] Uninit was stored to memory at: [ 488.712150][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.717887][T12735] __msan_chain_origin+0x50/0x90 [ 488.722844][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.727460][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.732417][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.737284][T12735] do_syscall_64+0xb0/0x150 [ 488.741805][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.747695][T12735] [ 488.750027][T12735] Uninit was stored to memory at: [ 488.755064][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.760796][T12735] __msan_chain_origin+0x50/0x90 [ 488.765751][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.770353][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.775618][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.780491][T12735] do_syscall_64+0xb0/0x150 [ 488.785100][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.790997][T12735] [ 488.793471][T12735] Uninit was stored to memory at: [ 488.798516][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.804280][T12735] __msan_chain_origin+0x50/0x90 [ 488.809233][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.813838][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.819508][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.824390][T12735] do_syscall_64+0xb0/0x150 [ 488.828928][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.834830][T12735] [ 488.837159][T12735] Uninit was stored to memory at: [ 488.842214][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.847981][T12735] __msan_chain_origin+0x50/0x90 [ 488.853630][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.858307][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.863264][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.868138][T12735] do_syscall_64+0xb0/0x150 [ 488.872657][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.878561][T12735] [ 488.880896][T12735] Uninit was stored to memory at: [ 488.885934][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.891681][T12735] __msan_chain_origin+0x50/0x90 [ 488.896627][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.901223][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.906170][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.911030][T12735] do_syscall_64+0xb0/0x150 [ 488.915549][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.921431][T12735] [ 488.923755][T12735] Uninit was stored to memory at: [ 488.928789][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.934519][T12735] __msan_chain_origin+0x50/0x90 [ 488.939469][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.944078][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.949054][T12735] __x64_sys_recvmmsg+0x62/0x80 [ 488.953921][T12735] do_syscall_64+0xb0/0x150 [ 488.958442][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 488.964344][T12735] [ 488.966680][T12735] Uninit was stored to memory at: [ 488.971720][T12735] kmsan_internal_chain_origin+0xad/0x130 [ 488.977458][T12735] __msan_chain_origin+0x50/0x90 [ 488.982425][T12735] do_recvmmsg+0x105a/0x1ee0 [ 488.987043][T12735] __se_sys_recvmmsg+0x1d1/0x350 [ 488.991997][T12735] __x64_sys_recvmmsg+0x62/0x80 23:20:34 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 488.996853][T12735] do_syscall_64+0xb0/0x150 [ 489.001377][T12735] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 489.007494][T12735] [ 489.009842][T12735] Local variable ----msg_sys@do_recvmmsg created at: [ 489.016543][T12735] do_recvmmsg+0xc5/0x1ee0 [ 489.020981][T12735] do_recvmmsg+0xc5/0x1ee0 [ 489.077512][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. [ 489.118355][T12746] kvm [12740]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc2 data 0x3ad6e37883b8e6ec 23:20:34 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001000000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:34 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4008ae89, &(0x7f0000000240)={"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"}) [ 489.397871][T12756] kvm [12753]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc2 data 0x3ad6e37883b8e6ec 23:20:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4008ae89, &(0x7f0000000240)={"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"}) [ 489.668813][T12766] not chained 620000 origins [ 489.673460][T12766] CPU: 0 PID: 12766 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 489.682136][T12766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 489.692201][T12766] Call Trace: [ 489.696471][T12766] dump_stack+0x1df/0x240 [ 489.700825][T12766] kmsan_internal_chain_origin+0x6f/0x130 [ 489.706949][T12766] ? kmsan_get_metadata+0x4f/0x180 [ 489.712087][T12766] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 489.718005][T12766] ? __msan_poison_alloca+0xf0/0x120 [ 489.723306][T12766] ? kmsan_get_metadata+0x11d/0x180 [ 489.728512][T12766] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 489.734331][T12766] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 489.740410][T12766] ? kfree+0x61/0x30f0 [ 489.744517][T12766] ? kmsan_get_metadata+0x4f/0x180 [ 489.749641][T12766] ? kmsan_set_origin_checked+0x95/0xf0 [ 489.755200][T12766] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 489.761285][T12766] ? _copy_from_user+0x15b/0x260 [ 489.766236][T12766] ? kmsan_get_metadata+0x4f/0x180 [ 489.771360][T12766] __msan_chain_origin+0x50/0x90 [ 489.776314][T12766] do_recvmmsg+0x105a/0x1ee0 [ 489.780976][T12766] ? __msan_poison_alloca+0xf0/0x120 [ 489.786322][T12766] ? __se_sys_recvmmsg+0xac/0x350 [ 489.791371][T12766] ? __se_sys_recvmmsg+0xac/0x350 [ 489.796412][T12766] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 489.802341][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 489.807323][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 489.812210][T12766] do_syscall_64+0xb0/0x150 [ 489.816739][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 489.822663][T12766] RIP: 0033:0x45c1d9 [ 489.826557][T12766] Code: Bad RIP value. [ 489.830619][T12766] RSP: 002b:00007f550720ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 489.839040][T12766] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 489.847022][T12766] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000003 [ 489.855036][T12766] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 489.863038][T12766] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 489.871025][T12766] R13: 0000000000c9fb6f R14: 00007f550720f9c0 R15: 000000000078bfac [ 489.879025][T12766] Uninit was stored to memory at: [ 489.884072][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 489.889947][T12766] __msan_chain_origin+0x50/0x90 [ 489.894906][T12766] do_recvmmsg+0x105a/0x1ee0 [ 489.899510][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 489.904460][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 489.909325][T12766] do_syscall_64+0xb0/0x150 [ 489.913838][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 489.919722][T12766] [ 489.922047][T12766] Uninit was stored to memory at: [ 489.927082][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 489.932809][T12766] __msan_chain_origin+0x50/0x90 [ 489.937757][T12766] do_recvmmsg+0x105a/0x1ee0 [ 489.942889][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 489.947836][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 489.952698][T12766] do_syscall_64+0xb0/0x150 [ 489.957211][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 489.963099][T12766] [ 489.965423][T12766] Uninit was stored to memory at: [ 489.970458][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 489.976295][T12766] __msan_chain_origin+0x50/0x90 [ 489.981247][T12766] do_recvmmsg+0x105a/0x1ee0 [ 489.985851][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 489.990796][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 489.995675][T12766] do_syscall_64+0xb0/0x150 [ 490.000183][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 490.006067][T12766] [ 490.009088][T12766] Uninit was stored to memory at: [ 490.014123][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 490.019848][T12766] __msan_chain_origin+0x50/0x90 [ 490.024793][T12766] do_recvmmsg+0x105a/0x1ee0 [ 490.029421][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 490.034378][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 490.039240][T12766] do_syscall_64+0xb0/0x150 [ 490.043759][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 490.049653][T12766] [ 490.051988][T12766] Uninit was stored to memory at: [ 490.057030][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 490.062757][T12766] __msan_chain_origin+0x50/0x90 [ 490.067701][T12766] do_recvmmsg+0x105a/0x1ee0 [ 490.072300][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 490.077242][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 490.082100][T12766] do_syscall_64+0xb0/0x150 [ 490.086611][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 490.092498][T12766] [ 490.094822][T12766] Uninit was stored to memory at: [ 490.099855][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 490.105580][T12766] __msan_chain_origin+0x50/0x90 [ 490.110727][T12766] do_recvmmsg+0x105a/0x1ee0 [ 490.115333][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 490.120296][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 490.125157][T12766] do_syscall_64+0xb0/0x150 [ 490.129673][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 490.135553][T12766] [ 490.137876][T12766] Uninit was stored to memory at: [ 490.142907][T12766] kmsan_internal_chain_origin+0xad/0x130 [ 490.148626][T12766] __msan_chain_origin+0x50/0x90 [ 490.153569][T12766] do_recvmmsg+0x105a/0x1ee0 [ 490.158163][T12766] __se_sys_recvmmsg+0x1d1/0x350 [ 490.163105][T12766] __x64_sys_recvmmsg+0x62/0x80 [ 490.167959][T12766] do_syscall_64+0xb0/0x150 [ 490.172490][T12766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 490.178374][T12766] [ 490.180702][T12766] Local variable ----msg_sys@do_recvmmsg created at: [ 490.187388][T12766] do_recvmmsg+0xc5/0x1ee0 [ 490.191925][T12766] do_recvmmsg+0xc5/0x1ee0 [ 490.256004][T12770] kvm [12769]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc2 data 0x3ad6e37883b8e6ec [ 490.275086][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. 23:20:36 executing program 2: clone(0x54041bc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = gettid() tkill(r1, 0x14) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ptrace(0x4206, r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = fcntl$dupfd(r3, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ptrace$poke(0x2, r1, &(0x7f00000000c0), 0x740000) 23:20:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4008ae89, &(0x7f0000000240)={"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"}) 23:20:36 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:36 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001000001000000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:36 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:36 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 491.314601][T12785] kvm [12777]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc2 data 0x3ad6e37883b8e6ec [ 491.577500][T12800] not chained 630000 origins [ 491.582167][T12800] CPU: 1 PID: 12800 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 491.590863][T12800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 491.600935][T12800] Call Trace: [ 491.604254][T12800] dump_stack+0x1df/0x240 [ 491.608614][T12800] kmsan_internal_chain_origin+0x6f/0x130 [ 491.614352][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 491.619488][T12800] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 491.625405][T12800] ? __msan_poison_alloca+0xf0/0x120 [ 491.630718][T12800] ? kmsan_get_metadata+0x11d/0x180 [ 491.635941][T12800] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 491.641785][T12800] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 491.647875][T12800] ? kfree+0x61/0x30f0 [ 491.651974][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 491.657104][T12800] ? kmsan_set_origin_checked+0x95/0xf0 [ 491.662673][T12800] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 491.668778][T12800] ? _copy_from_user+0x15b/0x260 [ 491.673825][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 491.678957][T12800] __msan_chain_origin+0x50/0x90 [ 491.683924][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.688606][T12800] ? __msan_poison_alloca+0xf0/0x120 [ 491.693916][T12800] ? __se_sys_recvmmsg+0xac/0x350 [ 491.698959][T12800] ? __se_sys_recvmmsg+0xac/0x350 [ 491.704003][T12800] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 491.709927][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.714907][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.719800][T12800] do_syscall_64+0xb0/0x150 [ 491.724345][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.730258][T12800] RIP: 0033:0x45c1d9 [ 491.734152][T12800] Code: Bad RIP value. [ 491.738225][T12800] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 491.746676][T12800] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 491.754665][T12800] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 491.762651][T12800] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 491.770637][T12800] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 491.778623][T12800] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 491.786626][T12800] Uninit was stored to memory at: [ 491.791676][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 491.797412][T12800] __msan_chain_origin+0x50/0x90 [ 491.802365][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.806971][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.811926][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.816795][T12800] do_syscall_64+0xb0/0x150 [ 491.821311][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.827198][T12800] [ 491.829525][T12800] Uninit was stored to memory at: [ 491.834558][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 491.840289][T12800] __msan_chain_origin+0x50/0x90 [ 491.845236][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.849839][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.854803][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.859668][T12800] do_syscall_64+0xb0/0x150 [ 491.864250][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.870134][T12800] [ 491.872460][T12800] Uninit was stored to memory at: [ 491.877494][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 491.883241][T12800] __msan_chain_origin+0x50/0x90 [ 491.888189][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.892789][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.897736][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.902595][T12800] do_syscall_64+0xb0/0x150 [ 491.907106][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.912989][T12800] [ 491.915312][T12800] Uninit was stored to memory at: [ 491.920355][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 491.926092][T12800] __msan_chain_origin+0x50/0x90 [ 491.931039][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.935638][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.940583][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.945446][T12800] do_syscall_64+0xb0/0x150 [ 491.949958][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.955844][T12800] [ 491.958166][T12800] Uninit was stored to memory at: [ 491.963197][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 491.968929][T12800] __msan_chain_origin+0x50/0x90 [ 491.973877][T12800] do_recvmmsg+0x105a/0x1ee0 [ 491.978498][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 491.983446][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 491.988307][T12800] do_syscall_64+0xb0/0x150 [ 491.992823][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 491.998707][T12800] [ 492.001035][T12800] Uninit was stored to memory at: [ 492.006093][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 492.011819][T12800] __msan_chain_origin+0x50/0x90 [ 492.019726][T12800] do_recvmmsg+0x105a/0x1ee0 [ 492.024325][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 492.029270][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 492.034132][T12800] do_syscall_64+0xb0/0x150 [ 492.038642][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 492.044526][T12800] [ 492.046850][T12800] Uninit was stored to memory at: [ 492.051882][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 492.057611][T12800] __msan_chain_origin+0x50/0x90 [ 492.062837][T12800] do_recvmmsg+0x105a/0x1ee0 [ 492.067440][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 492.072384][T12800] __x64_sys_recvmmsg+0x62/0x80 23:20:37 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:37 executing program 2: clone(0x54041bc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = gettid() tkill(r1, 0x14) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ptrace(0x4206, r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = fcntl$dupfd(r3, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ptrace$poke(0x2, r1, &(0x7f00000000c0), 0x740000) [ 492.077251][T12800] do_syscall_64+0xb0/0x150 [ 492.081774][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 492.087659][T12800] [ 492.090004][T12800] Local variable ----msg_sys@do_recvmmsg created at: [ 492.096702][T12800] do_recvmmsg+0xc5/0x1ee0 [ 492.101143][T12800] do_recvmmsg+0xc5/0x1ee0 23:20:37 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783fd7f2eec79c49b69a61287b591371f3f60b34470692217a8930a11f0e0c796c587da235e5ed34ce844827033a3bac99ab9498f944fec73001fd8be2b4b36b0b3c9672af727831275017a6d5aff50c0967c22ebf548906138e7dae98da3b8a39bf880000000000000000000000d42c5f9c75c0d37e26e97c7bd43800000000339b567e58689a4da64cf31b4ea5066103ba670c2772b548c8f138af7029f1226901c86f510b46e3a027d6135f99b585d0aa73b71cd8e7448f107336ed8a46a35936d5a24a92a4e2be4b78ca3d304e40f3931319f8b3e3f6"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 492.170252][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. 23:20:37 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:37 executing program 1: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000100)='cpu&3\n\n\n\n\x00\x00\xc8 \xf4\xb3\xca\f\x1ff\xf0\xed\xe2\xdaX\x96\xe8\xd2\x9ba\xdd\xba\x93\xf3\xa2\x97e\xd7\xa37\xc0\xae$\xef\x1f\x1feq*\xeb\x00\xffx\x7fV-S\xeb\x9c\xf5\xe5!d\x99]\x17~\x9e\\\xac\x1f\x93\x00\x02\x00\x80T\"\x00\x80\xff\xff\x03\x00\x00\x00\x00\x00') perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x800, 0x0, 0x0, 0x0, 0x4000000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x1a3) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x8002, 0x0) write$P9_RSTATu(r1, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x16b) sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000010}, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000080)={0x0, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82032, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x100000}) r2 = add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000940)='big_key\x00', 0x0, &(0x7f0000000a00)='F', 0x1, r2) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)={0x5, 0xb, 0x0, 0x1, 0x0, 0x1, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x40) syz_open_dev$vcsa(0x0, 0x6, 0x0) sysfs$1(0x1, &(0x7f0000000180)='big_key\x00') setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000380)={0x6, &(0x7f0000000340)=[{0x3, 0x6, 0x5, 0x6}, {0xe400, 0x9, 0x1, 0xffff3dc9}, {0x1, 0x8, 0xff, 0x4f}, {0x1, 0x3, 0x3f, 0x7}, {0x6, 0x5, 0x80, 0x14000}, {0x1, 0x5, 0x7, 0xcda}]}, 0x10) clone(0x4412c500, 0x0, 0x0, 0x0, 0x0) ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f00000001c0)=@gcm_128={{0x7}, "b8fb319c6fc17e06", "33e3b4b3da4c1ffdb79474f53d8abda6", "0e6bb51a", "8dc32e66b34f4677"}, 0x28) [ 492.499779][ C0] sd 0:0:1:0: [sg0] tag#7898 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 492.510543][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB: Test Unit Ready [ 492.517301][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.527134][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.537010][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.544159][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. [ 492.546886][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.565207][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.575038][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.584856][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.594704][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.604536][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.614380][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.624213][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.634033][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 492.643871][ C0] sd 0:0:1:0: [sg0] tag#7898 CDB[c0]: 00 00 00 00 00 00 00 00 23:20:38 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) [ 492.720054][T12816] IPVS: ftp: loaded support on port[0] = 21 23:20:38 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7ceae30304783f"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:38 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:38 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="180000"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:38 executing program 2: clone(0x54041bc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = gettid() tkill(r1, 0x14) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ptrace(0x4206, r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = fcntl$dupfd(r3, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ptrace$poke(0x2, r1, &(0x7f00000000c0), 0x740000) [ 493.267576][T12800] not chained 640000 origins [ 493.272222][T12800] CPU: 1 PID: 12800 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 493.277517][ C0] sd 0:0:1:0: [sg0] tag#7899 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 493.281007][T12800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 493.281016][T12800] Call Trace: [ 493.281050][T12800] dump_stack+0x1df/0x240 [ 493.281081][T12800] kmsan_internal_chain_origin+0x6f/0x130 [ 493.281101][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 493.281125][T12800] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 493.281148][T12800] ? __msan_poison_alloca+0xf0/0x120 [ 493.281255][T12800] ? kmsan_get_metadata+0x11d/0x180 [ 493.291812][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB: Test Unit Ready [ 493.301648][T12800] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 493.301671][T12800] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 493.301691][T12800] ? kfree+0x61/0x30f0 [ 493.301715][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 493.301736][T12800] ? kmsan_set_origin_checked+0x95/0xf0 [ 493.301759][T12800] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 493.301809][T12800] ? _copy_from_user+0x15b/0x260 [ 493.305201][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.309436][T12800] ? kmsan_get_metadata+0x4f/0x180 [ 493.315338][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.320266][T12800] __msan_chain_origin+0x50/0x90 [ 493.327038][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.332121][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.332215][T12800] ? __msan_poison_alloca+0xf0/0x120 [ 493.337512][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.343910][T12800] ? __se_sys_recvmmsg+0xac/0x350 [ 493.343929][T12800] ? __se_sys_recvmmsg+0xac/0x350 [ 493.343949][T12800] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 493.343975][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.344013][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.344037][T12800] do_syscall_64+0xb0/0x150 [ 493.344064][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.344110][T12800] RIP: 0033:0x45c1d9 [ 493.350037][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.355988][T12800] Code: Bad RIP value. [ 493.356001][T12800] RSP: 002b:00007f9a0ec0ec78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 493.356018][T12800] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 493.356029][T12800] RDX: 0400000000000953 RSI: 0000000020000800 RDI: 0000000000000004 [ 493.356040][T12800] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 493.356051][T12800] R10: 0000000000000042 R11: 0000000000000246 R12: 000000000078bfac [ 493.356062][T12800] R13: 0000000000c9fb6f R14: 00007f9a0ec0f9c0 R15: 000000000078bfac [ 493.356105][T12800] Uninit was stored to memory at: [ 493.360287][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.365276][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.365291][T12800] __msan_chain_origin+0x50/0x90 [ 493.365309][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.365325][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.365342][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.365391][T12800] do_syscall_64+0xb0/0x150 [ 493.371048][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.378559][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.378565][T12800] [ 493.378571][T12800] Uninit was stored to memory at: [ 493.378589][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.378604][T12800] __msan_chain_origin+0x50/0x90 [ 493.378622][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.378668][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.383799][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.393131][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.393150][T12800] do_syscall_64+0xb0/0x150 [ 493.393168][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.393173][T12800] [ 493.393179][T12800] Uninit was stored to memory at: [ 493.393203][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.393251][T12800] __msan_chain_origin+0x50/0x90 [ 493.398477][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.407888][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.407905][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.407921][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.407939][T12800] do_syscall_64+0xb0/0x150 [ 493.407958][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.407963][T12800] [ 493.408001][T12800] Uninit was stored to memory at: [ 493.413124][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.422492][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.422507][T12800] __msan_chain_origin+0x50/0x90 [ 493.422526][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.422542][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.422559][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.422608][T12800] do_syscall_64+0xb0/0x150 [ 493.427310][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.432465][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.432471][T12800] [ 493.432477][T12800] Uninit was stored to memory at: [ 493.432494][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.432509][T12800] __msan_chain_origin+0x50/0x90 [ 493.432527][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.432634][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.442360][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 493.447186][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.447246][T12800] do_syscall_64+0xb0/0x150 [ 493.452496][ C0] sd 0:0:1:0: [sg0] tag#7899 CDB[c0]: 00 00 00 00 00 00 00 00 [ 493.458191][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.497262][T12817] IPVS: ftp: loaded support on port[0] = 21 [ 493.504167][T12800] [ 493.504174][T12800] Uninit was stored to memory at: [ 493.504202][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.504220][T12800] __msan_chain_origin+0x50/0x90 [ 493.504240][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.504258][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.504274][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.504292][T12800] do_syscall_64+0xb0/0x150 [ 493.504310][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.504315][T12800] [ 493.504322][T12800] Uninit was stored to memory at: [ 493.504339][T12800] kmsan_internal_chain_origin+0xad/0x130 [ 493.504356][T12800] __msan_chain_origin+0x50/0x90 [ 493.504374][T12800] do_recvmmsg+0x105a/0x1ee0 [ 493.504392][T12800] __se_sys_recvmmsg+0x1d1/0x350 [ 493.504408][T12800] __x64_sys_recvmmsg+0x62/0x80 [ 493.504461][T12800] do_syscall_64+0xb0/0x150 [ 493.922057][T12800] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 493.927943][T12800] [ 493.930270][T12800] Local variable ----msg_sys@do_recvmmsg created at: [ 493.936960][T12800] do_recvmmsg+0xc5/0x1ee0 [ 493.941382][T12800] do_recvmmsg+0xc5/0x1ee0 [ 493.989374][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. 23:20:39 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a57381147cdd7c9fd7c"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:40 executing program 4: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) socket(0x0, 0x3, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) write$binfmt_misc(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="5300000044a6aeabc81e1520000000000000001000fff64017db"], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r1, &(0x7f0000005c00)=[{{0x0, 0xfffffffffffffd95, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:40 executing program 5: add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000001001"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:40 executing program 0: getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x2) add_key$keyring(&(0x7f0000000980)='keyring\x00', &(0x7f00000007c0)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:40 executing program 3: ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket(0x0, 0x3, 0x2) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000400)=ANY=[], 0xd2) add_key$keyring(&(0x7f0000000980)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd) r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @rand_addr=0xdd}}, 0x24) sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000100100000100000005e8000000000000e558c5986f0000000000000087695931515781ae36a4d148f269399022f5ce7ec3b6d946be4fac9508cce4df4d7015f5590bbfb45e2584f446722053f1502598808b355f7b815bdb22ba86dddc0187f894de7e81145dd688759944bd09b0f55e7ca54b07bd9189de8defcea227e56f94ddc8d5e02f38fdcdad2e5cc22b1f090ecf60605fa26c0e48a80a6bd544fa300d066a4d162d7ef85002024faf0831fffbb5f1a12a6f5f158a752eaf25a859b40a573811"], 0x18}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2}}], 0x400000000000953, 0x42, 0x0) 23:20:40 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp6\x00') bind$alg(r0, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) sendfile(r2, r1, 0x0, 0x20000c34) [ 494.985155][T12898] ===================================================== [ 494.992159][T12898] BUG: KMSAN: uninit-value in sm3_generic_block_fn+0x1221/0x1580 [ 494.999901][T12898] CPU: 0 PID: 12898 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 495.008760][T12898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 495.018832][T12898] Call Trace: [ 495.022156][T12898] dump_stack+0x1df/0x240 [ 495.026518][T12898] kmsan_report+0xf7/0x1e0 [ 495.030966][T12898] __msan_warning+0x58/0xa0 [ 495.035504][T12898] sm3_generic_block_fn+0x1221/0x1580 [ 495.040905][T12898] ? kmsan_task_context_state+0x47/0x90 [ 495.046518][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.052611][T12898] ? update_stack_state+0xa18/0xb40 [ 495.057843][T12898] ? kmsan_task_context_state+0x47/0x90 [ 495.063420][T12898] ? update_stack_state+0xa18/0xb40 [ 495.068665][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.074766][T12898] ? __module_address+0x68/0x600 [ 495.079750][T12898] ? is_module_text_address+0x4d/0x2a0 [ 495.085253][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.090481][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.095727][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.101562][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.107652][T12898] ? __update_load_avg_cfs_rq+0x1a8/0x13b0 [ 495.113491][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.118717][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.124561][T12898] crypto_sm3_update+0x3f6/0x480 [ 495.129550][T12898] ? crypto_sha3_final+0xc70/0xc70 [ 495.134701][T12898] crypto_shash_update+0x4e9/0x550 [ 495.139843][T12898] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 495.145107][T12651] systemd-journald[12651]: /dev/kmsg buffer overrun, some messages lost. [ 495.146078][T12898] ? crypto_hash_walk_first+0x1fd/0x360 [ 495.160034][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.165200][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.171030][T12898] shash_async_update+0x113/0x1d0 [ 495.176086][T12898] ? shash_async_init+0x1e0/0x1e0 [ 495.181825][T12898] hash_sendpage+0x8ef/0xdf0 [ 495.186452][T12898] ? hash_recvmsg+0xd30/0xd30 [ 495.191152][T12898] sock_sendpage+0x1e1/0x2c0 [ 495.195778][T12898] pipe_to_sendpage+0x38c/0x4c0 [ 495.200653][T12898] ? sock_fasync+0x250/0x250 [ 495.205282][T12898] __splice_from_pipe+0x565/0xf00 [ 495.210329][T12898] ? generic_splice_sendpage+0x2d0/0x2d0 [ 495.216015][T12898] generic_splice_sendpage+0x1d5/0x2d0 [ 495.221516][T12898] ? iter_file_splice_write+0x1800/0x1800 [ 495.227268][T12898] direct_splice_actor+0x1fd/0x580 [ 495.232409][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.237543][T12898] splice_direct_to_actor+0x6b2/0xf50 [ 495.242927][T12898] ? do_splice_direct+0x580/0x580 [ 495.248014][T12898] do_splice_direct+0x342/0x580 [ 495.253602][T12898] do_sendfile+0x101b/0x1d40 [ 495.258245][T12898] __se_sys_sendfile64+0x2bb/0x360 [ 495.263371][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.268505][T12898] __x64_sys_sendfile64+0x56/0x70 [ 495.273544][T12898] do_syscall_64+0xb0/0x150 [ 495.278064][T12898] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 495.283963][T12898] RIP: 0033:0x45c1d9 [ 495.287850][T12898] Code: Bad RIP value. [ 495.291913][T12898] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 495.300332][T12898] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 495.308312][T12898] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 495.316293][T12898] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 495.324303][T12898] R10: 0000000020000c34 R11: 0000000000000246 R12: 000000000078bf0c [ 495.332288][T12898] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 495.340307][T12898] [ 495.342657][T12898] Uninit was created at: [ 495.346930][T12898] kmsan_save_stack_with_flags+0x3c/0x90 [ 495.352573][T12898] kmsan_alloc_page+0xb9/0x180 [ 495.357350][T12898] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 495.362905][T12898] alloc_pages_current+0x672/0x990 [ 495.368027][T12898] push_pipe+0x605/0xb70 [ 495.372301][T12898] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 495.378045][T12898] do_splice_to+0x4fc/0x14f0 [ 495.382658][T12898] splice_direct_to_actor+0x45c/0xf50 [ 495.388051][T12898] do_splice_direct+0x342/0x580 [ 495.392936][T12898] do_sendfile+0x101b/0x1d40 [ 495.397546][T12898] __se_sys_sendfile64+0x2bb/0x360 [ 495.402739][T12898] __x64_sys_sendfile64+0x56/0x70 [ 495.408739][T12898] do_syscall_64+0xb0/0x150 [ 495.413270][T12898] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 495.419171][T12898] ===================================================== [ 495.426117][T12898] Disabling lock debugging due to kernel taint [ 495.432278][T12898] Kernel panic - not syncing: panic_on_warn set ... [ 495.438892][T12898] CPU: 0 PID: 12898 Comm: syz-executor.2 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 495.448975][T12898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 495.459063][T12898] Call Trace: [ 495.462386][T12898] dump_stack+0x1df/0x240 [ 495.466747][T12898] panic+0x3d5/0xc3e [ 495.470703][T12898] kmsan_report+0x1df/0x1e0 [ 495.475263][T12898] __msan_warning+0x58/0xa0 [ 495.479798][T12898] sm3_generic_block_fn+0x1221/0x1580 [ 495.485197][T12898] ? kmsan_task_context_state+0x47/0x90 [ 495.490770][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.496859][T12898] ? update_stack_state+0xa18/0xb40 [ 495.502088][T12898] ? kmsan_task_context_state+0x47/0x90 [ 495.507659][T12898] ? update_stack_state+0xa18/0xb40 [ 495.512890][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.518994][T12898] ? __module_address+0x68/0x600 [ 495.523966][T12898] ? is_module_text_address+0x4d/0x2a0 [ 495.529450][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.534669][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.539894][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.545722][T12898] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 495.551835][T12898] ? __update_load_avg_cfs_rq+0x1a8/0x13b0 [ 495.557750][T12898] ? kmsan_get_metadata+0x11d/0x180 [ 495.562971][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.568799][T12898] crypto_sm3_update+0x3f6/0x480 [ 495.573770][T12898] ? crypto_sha3_final+0xc70/0xc70 [ 495.578906][T12898] crypto_shash_update+0x4e9/0x550 [ 495.584053][T12898] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 495.590260][T12898] ? crypto_hash_walk_first+0x1fd/0x360 [ 495.595823][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.600951][T12898] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 495.606781][T12898] shash_async_update+0x113/0x1d0 [ 495.611835][T12898] ? shash_async_init+0x1e0/0x1e0 [ 495.616893][T12898] hash_sendpage+0x8ef/0xdf0 [ 495.621634][T12898] ? hash_recvmsg+0xd30/0xd30 [ 495.626328][T12898] sock_sendpage+0x1e1/0x2c0 [ 495.630950][T12898] pipe_to_sendpage+0x38c/0x4c0 [ 495.635821][T12898] ? sock_fasync+0x250/0x250 [ 495.640448][T12898] __splice_from_pipe+0x565/0xf00 [ 495.645493][T12898] ? generic_splice_sendpage+0x2d0/0x2d0 [ 495.651175][T12898] generic_splice_sendpage+0x1d5/0x2d0 [ 495.656668][T12898] ? iter_file_splice_write+0x1800/0x1800 [ 495.662403][T12898] direct_splice_actor+0x1fd/0x580 [ 495.667555][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.672688][T12898] splice_direct_to_actor+0x6b2/0xf50 [ 495.678066][T12898] ? do_splice_direct+0x580/0x580 [ 495.683136][T12898] do_splice_direct+0x342/0x580 [ 495.688722][T12898] do_sendfile+0x101b/0x1d40 [ 495.693367][T12898] __se_sys_sendfile64+0x2bb/0x360 [ 495.698510][T12898] ? kmsan_get_metadata+0x4f/0x180 [ 495.703649][T12898] __x64_sys_sendfile64+0x56/0x70 [ 495.708684][T12898] do_syscall_64+0xb0/0x150 [ 495.713200][T12898] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 495.719092][T12898] RIP: 0033:0x45c1d9 [ 495.722977][T12898] Code: Bad RIP value. [ 495.727042][T12898] RSP: 002b:00007fa9a9271c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 495.735460][T12898] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 495.743439][T12898] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005 [ 495.751420][T12898] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 495.759400][T12898] R10: 0000000020000c34 R11: 0000000000000246 R12: 000000000078bf0c [ 495.767381][T12898] R13: 0000000000c9fb6f R14: 00007fa9a92729c0 R15: 000000000078bf0c [ 495.776396][T12898] Kernel Offset: 0x2a200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 495.788037][T12898] Rebooting in 86400 seconds..