}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001880)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x29) 18:44:44 executing program 2: r0 = socket(0x11, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000940)={'team0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000b00)={'ip6gre0\x00', &(0x7f0000000a80)={'ip6_vti0\x00', r1, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @local, 0x0, 0x700}}) 18:44:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001900)={0xf, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x17c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x74, 0x5, "bf457f563a89df78f72b28999a3a8cd1ac884f941eeecec8d32b9bac89c9bf8949088f98f1164aa020fe8a74ec4e836a282e01c11234b17937ad90dd4583e36c12ccc5f25abb17e79623fa95b99d815a104610d4bab849bf42b5cb8b408593c823bfdbff242a03a219251d10831ed692"}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0xed, 0x5, "4a7cc5feb9ffa350919f3a61a4628fb6aab313533067c6e81f7d989aef56534e201f0b82324828275582aa310e7ff56542f2b43058d660282314f7c6d84b274f479c638662c5b569726a67384f02f36e90a0feb3539504c94d60773409e667a064e3c84015627ca1953ade31589ca73419a65d9358b3a6642e4887019e9d9a95c5405da723dbef8568efb0e658922ca7d9e24769dcc870b89a2ee72fd9ddf5cb007d3d2ac7ac51fe04196a36eb5b6a767575ff5ac8ec4e1018baf51bb98bddcddc1d1907984e65741375bb3ee5e8abebf4a223e6b7266644b23007d584116a02836ad3a7ac008c5fcb"}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x54, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4b, 0x4, "edef446983a255b443e34f34019294b6cef9e9dbf1909b9a4de2c513161982a4825e98ef735ac9e8a2fa69603c4e98aa03ae371f4c8aaeec0604ff556b6aa03a1507cd2d08e78e"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0xb6c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x134, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '-@\xea(\\!*$/\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x2f, 0x5, "79e180244cccd737ba544b55bc7feefc0a263cb8231bab320d46ccf0450f2dd0dd312b01ec16550678efc1"}, @ETHTOOL_A_BITSET_MASK={0x9fe, 0x5, "763cf1e1c9e1bef8eeb560fd03f540f727712c79a422cc2388333371d2a6d0a302bfe1faee3d041d2e9192d6fb8ec37d4384e00077f2ae4a64a598e5475ecd91a936dd06061c4ae324644bfab0fed0a74efc8f14542ebef43193ec2492d9c0902b3c164c0814784111fd3c415b8361e6c2254079b5cd93de3721aa9cb2465b730d91f32beef020e7ef0aebea6290e1c16b2372b8acd23ff3a92823ec5e19a83cd8f41fd5a336252a86828eebdf65001f33f89f1f038660bbac4d8abf2dab89fa0e954424fb5291fc31f8dfc1b86b30e9f3ab0a8a6bdcc27fa33493503e0aedf108800a0bbdbf0755c450fea2394412d7be836c25e3f4c2b9d8d9c099dbbd2cce5fd86a28fb1b421a27118b69517a91ef6b6ef7bbe0f1dda461379fbdbe762ba185d7c73808b1288e6ab3471c246f69b7aef6f794931f0a1a320ca97aacfee232781a04e9a49c8c1e10436d05b959b8957078002722371a3291320c5fa561f14288600eb18115cac7990725b56d72d53603f77d2990c5a7d53c46f70a2a94bf5ea7f96b2953d49f55cf5d6dc92508a4259fe7da6b580daad889a04745e0d3d179653303901de6344416da466ad6b68eac0d0d4788801e85e3d3b84a403c8ef4d123fd9650e611f041d71e8c2d907f2faed2c14d1ecb3341a54bd0475f7bf35c6b1377109d0005452783448892c2794ecd53a6a6c865c20c990e54ff7c47c57e65c7daaf077f9e45ce8a13f188bf2e9b9d2b7294a8360147cf82828f6fdd589cb4d3a0ecab511c73a69355f7205eeaef0c21a924930f3f6b7cdac06fc70a207990f466191240c52d51e72351b9a87ddc135d7a061b3eab157cdfdbe181a0d8d22ed1625aca09e12f09e8f12f1055e55819b4b5d9b3d44e3852facd78f75c3e15d7f6e5f26b6694e3d566cf1df299ed1203e287f9e31b021f04fa6743b528f3994e5b7ceee088a3f1ce3cd59bf844b17a2075f44757bedcda65d803fed9449647bae92459509cf96096e110faa6c39e74b6f763774c1d7aef276282bb3f74ecf23c40c5ed3c0feb1a31b036baaaf05cb5c88e8530bc6f3ff8ef50a630e7ac6ab626c1737b4afe8aec931c9c40dee148e5b15e66f9b28ee059f21b14d31f344929a93370968ffbc7fe78c8624347db0e42905fde2b5888139b17da27a5362b4cdcf88c2cb5e15317952fcdd862a80b1cf73814608cfd06037e052aa8bc2d77d44b3becc7a2013681c53d8d6b4532fc31c73d9cc91e3abce785914087afee868087ddf17bede264fcdca30541ea9d67c6f6c3ceed7a858b71af16e11049caf17b1f8b1de7709e7fa8203047676dfc0ee08809c75ca41117a2d683004935405a36f3038083a6c86d88a3746dfdb96c4b19cd4ab2664de91644ce9cddd91a243a82fc1caf628dca20bdcfbf84d04be047181191241a31464ab9c3a3d1f87c9b7dc1d51afb91154da3a3840fc99711069d3a17c33409fcfc68846ec04b66dc7c6dd61908aff4b7e0c47e213011a742639e64f7fb6b818f61c33c6d49490fc1be3b377955086f7b2b5dce3b1f5b63ba68b07919309e33f41aa360b0a383cc54aa6e8982bf13c3680c9b4cd108181c317c5c127277ad816fd8037d5148bf1cda238b98e59bde88756f56308d19e637a80dd8768ca887150ffd22cf79b6637509f4bee156ea2ae700ba4bb8c3973933c9f247cd8f7c052302af499424ff0b28e90dd5e10e596c2127adf247acbe7530598a26b24fa8b85a377a16a5db9e42e5f515aa61f1c32fa4d2b47efa19346bfacbb3124d86dfa3a945a8cc40c1ca26c78573d3e1676d0e13fbb9e93c8800796cf0c14df8e24b0f43e9d42a7e095c13c870559de4f500e88d5999f5c81b4fd0460c9f1ae18c106c2641d45ab4a683b3cce7b65091a137c159bd9e4ddd6e1d8004b9b11bf0ff08db382cea6b56be8bc58b4a66d266a0dba31a7df3a490f3cd40c4ab36f2543be0260c75f6ecf53fec1dec3c65c585bca5e744116ba001f619aa0264b531cd29457909e1fe83f24768418c6ed35ab46f19d53cf76314b7fe468fc61e1411b6196a4bb6e506bec9beed3ff56040c692097c44a72539310ed1b26a515be53f9c1faa238a5ce39478d8ec45241fe00aad904124a53c9b76f349e1e02c835cdba125bfb1aa2a5d262e10fb44b5c5bc2f31d8a3c71347c551ed70083294c494545bea2ec9b225135cbfbf894aaead4af841fb62cfb50b565dcdf3765acc34bc6e6b2fa766367670ddc465f829ea6a472217fd3c73f9f161922a732b54fead2ecf6223c552f39f075811813f15fd9f3673f10bfb9af086d08ef0668823d692e8a1e92ad4e49f16e67813503f331c40180c0c5cead5dded39750d2650946050dbc9bc80282677a6d4a70d4b3f286cc1a0edab2231b5f5353fccbe11a3ccfbf41e4d73e40d4dca569ac3c55b8213e4718d9e94752c2db3c380538fd2d70a7172bd53390ab6fdb48028b6825790cf4574e67e2438fd3399f9b3142291bf24ee32f7579756185633a25e6af0aaad57e921413e328c4fa6b1657616e9c5492e0ea70c8abeaeddc7cac3905975ec7c311ca2997562b55650f160185a087e35baa438d3fd47e9b4bd063022fc396c365c50e2df1d5f2e5f4c38eaf56af6f8d1f3f49e7c94a8f7a1e5b8a2bda153f49af3d972810f37cf31d94dac8943e012faab05bfed2f563c1a3e83c5b04f974d7950932c2fcd96ea12613e380caf9363208540bc5bfa981dc81016b248ed1b91d91d7b16a06c6af44281e415f4b1162acc43e21edc91edb3fd6ae1dfa1958a4ad72e1761c785ee4f8828cabdfb2bb7929b47bf1a64e1d9759c39a3aaaf76927bf0c346d637430fdef1fb0e1f202aad9b019333fba6b3a86ab20714977da55b8ad24b92c28cacc6b12c554e97b7166937397375fd33f7589cd7068bb7233fd4d6053f8f4f6e9f933bf285ec03f49f2b2757cd8c01e136940dd9e1acd4f49033f5c45ad98442818e890d59f9a1a616451a4c62dfadbe81431fe009779610237af23d86b8b1cdae6d4cbeb52c7ef3ab125c262eb76dc6dcfa6599e4ff61094903695ca85850b72e2bb80bd04ada227e430ea84585509a9afd3e5148d8ae16d0148b8c0bef88de73f8d590c1017844726047e6d8cba9e6028f30463521eb6e0633553fc9e31992cd9ce84deef0b26e91fc126daec00002b0afc334283fb1350f7bf6c6b888d726703dc34a7927dc20bd9ce3105013219ff4c4380568a2e2c72d76ecc46e54d4e951d5da1fa73d54643bb7fe57ce3fb10f0091d4fef6ace95b7c72ec4a1ee5029cc76d85ca8bc90c0ab212ace176b14da2a7a94a38a70515ba76f6bbf69c427280066e924172db5fe81622f319b28dd1dcdad8a6e041fc580c97c0f271358421ebf00d92c5916fedacfae9c4204c2ec53c8b5d4a138878bdd768978e8d42d151e3289251b58a4417bc12c7392300e12c4eff17df7511006dd65bea796bf828656efac95c8b8933ce190dc9e57e81a96c1d876a9abb4963bf1a9867fa3abf4a4cb91dd1c10a94e2aa2f4e182e014588d048e80ab726d0b3a10206de756301daf0cd999bc12572614b60c8729b7b0674e3d2bf8e06d4612c6fca3c4f75008b67"}]}]}, 0xec4}}, 0x0) 18:44:44 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendto$inet6(r0, 0x0, 0x0, 0x84, &(0x7f00000013c0)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) 18:44:44 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'veth1_to_bridge\x00', &(0x7f0000000100)=@ethtool_gstrings={0x1b, 0x4}}) 18:44:44 executing program 5: socket(0x26, 0x5, 0x2) 18:44:44 executing program 3: socket(0x11, 0x3, 0x0) socket(0x11, 0x3, 0x0) socket$packet(0x11, 0x2, 0x300) 18:44:44 executing program 1: socketpair(0x3f, 0x0, 0x0, &(0x7f0000000800)) 18:44:44 executing program 4: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x18}, 0xc) 18:44:44 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x7) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r2, &(0x7f0000002f80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002f40)=[@cred={{0x1c, 0x1, 0x2, {0x0, r1}}}], 0x20}, 0x0) [ 290.452561][ T1745] usb 1-1: new high-speed USB device number 33 using dummy_hcd 18:44:44 executing program 5: r0 = socket$inet6(0xa, 0x803, 0x7) sendmsg$inet6(r0, &(0x7f0000000440)={&(0x7f0000000000)={0xa, 0x7, 0x0, @loopback}, 0x1c, 0x0}, 0x0) [ 290.692833][ T1745] usb 1-1: Using ep0 maxpacket: 16 [ 290.813635][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 290.825151][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 290.835509][ T1745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 290.848699][ T1745] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 290.858022][ T1745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.028594][ T1745] usb 1-1: config 0 descriptor?? [ 291.562500][ T1745] usbhid 1-1:0.0: can't add hid device: -71 [ 291.568832][ T1745] usbhid: probe of 1-1:0.0 failed with error -71 [ 291.590232][ T1745] usb 1-1: USB disconnect, device number 33 [ 291.772430][ T120] Bluetooth: hci5: command 0x0406 tx timeout 18:44:46 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x20, {[@local=@item_012={0x2, 0x2, 0x2, "3895"}]}}, 0x0}, 0x0) 18:44:46 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001900)={0x1108, 0x0, 0x0, 0x0, 0x25dfdbfb, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x4}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x10f0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x74, 0x3, 0x0, 0x1, [{0x4}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'vcan0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '#\x92[{}\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '}\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'team\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x2f, 0x5, "79e180244cccd737ba544b55bc7feefc0a263cb8231bab320d46ccf0450f2dd0dd312b01ec16550678efc1"}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_MASK={0x3d, 0x5, "3cbc82293dfc9ec5007fc9c45d35dc58203748fc8bba4bb4b32b44a7a4fa4fd4451d71b150de77cce97455c79d68a03ce61abda8c529c449d0"}]}]}, 0x1108}}, 0x0) 18:44:46 executing program 2: r0 = socket$inet(0x2, 0x3, 0x7) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, 0x0, 0x0) 18:44:46 executing program 4: syz_genetlink_get_family_id$team(&(0x7f0000000340), 0xffffffffffffffff) 18:44:46 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) 18:44:46 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001900)={0xf00, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x17c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x74, 0x5, "bf457f563a89df78f72b28999a3a8cd1ac884f941eeecec8d32b9bac89c9bf8949088f98f1164aa020fe8a74ec4e836a282e01c11234b17937ad90dd4583e36c12ccc5f25abb17e79623fa95b99d815a104610d4bab849bf42b5cb8b408593c823bfdbff242a03a219251d10831ed692"}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0xed, 0x5, "4a7cc5feb9ffa350919f3a61a4628fb6aab313533067c6e81f7d989aef56534e201f0b82324828275582aa310e7ff56542f2b43058d660282314f7c6d84b274f479c638662c5b569726a67384f02f36e90a0feb3539504c94d60773409e667a064e3c84015627ca1953ade31589ca73419a65d9358b3a6642e4887019e9d9a95c5405da723dbef8568efb0e658922ca7d9e24769dcc870b89a2ee72fd9ddf5cb007d3d2ac7ac51fe04196a36eb5b6a767575ff5ac8ec4e1018baf51bb98bddcddc1d1907984e65741375bb3ee5e8abebf4a223e6b7266644b23007d584116a02836ad3a7ac008c5fcb"}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x54, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4b, 0x4, "edef446983a255b443e34f34019294b6cef9e9dbf1909b9a4de2c513161982a4825e98ef735ac9e8a2fa69603c4e98aa03ae371f4c8aaeec0604ff556b6aa03a1507cd2d08e78e"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0xb6c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x134, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '-@\xea(\\!*$/\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x2f, 0x5, "79e180244cccd737ba544b55bc7feefc0a263cb8231bab320d46ccf0450f2dd0dd312b01ec16550678efc1"}, @ETHTOOL_A_BITSET_MASK={0x9fe, 0x5, "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"}]}]}, 0xec4}}, 0x0) 18:44:46 executing program 2: r0 = socket$inet(0x2, 0x3, 0x7) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e0"], 0x18) 18:44:46 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={0x0, 0x1688}}, 0x0) 18:44:46 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="88ed"], 0x1688}}, 0x0) 18:44:46 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'veth1_to_bridge\x00', &(0x7f0000000100)=@ethtool_gstrings}) 18:44:46 executing program 3: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000140)={0x8, 0x0}, 0x8) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_ext={0x1c, 0x2, &(0x7f0000000180)=@raw=[@map_idx_val={0x18, 0x0, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffbff}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x33, &(0x7f0000000200)=""/51, 0x61880, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x9, 0x0, 0x10000}, 0x10, 0x1cdb7, 0xffffffffffffffff, 0x0, &(0x7f00000002c0)}, 0x80) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={0x0, 0x8, 0x10}, 0xc) r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x8, 0x8, 0x6, 0x0, 0x1}, 0x48) bind$alg(0xffffffffffffffff, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58) r4 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000000)=""/70, 0x46}, {&(0x7f0000000300)=""/182, 0xb6}, {&(0x7f0000000140)=""/70, 0x46}], 0x3) splice(0xffffffffffffffff, 0x0, r4, 0x0, 0xebe, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000000c0)=@framed, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r5}, 0x10) r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000740)={0x0, 0xfff, 0x18}, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xc, 0x5, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80001, 0x0, 0x0, 0x0, 0x91}, [@cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000580)='GPL\x00', 0x0, 0xd6, &(0x7f00000005c0)=""/214, 0xcaa07efb6319c985, 0x10, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, &(0x7f00000006c0)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000700)={0x0, 0x10, 0x9c93, 0x4}, 0x10, 0xffffffffffffffff, r5, 0x0, &(0x7f0000000780)=[r6, r2]}, 0x80) r7 = socket(0x1, 0x803, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r3, &(0x7f0000000000), &(0x7f0000000100)=@tcp6=r7}, 0x20) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0x6, 0x8, 0x9, 0x820, 0xffffffffffffffff, 0x401, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0xf}, 0x48) r9 = bpf$ITER_CREATE(0x21, &(0x7f0000000440), 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x10, 0x5, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000ff0000000000000002000000181b0000", @ANYRES32, @ANYBLOB="000000000000000095000000a6000000e9824ad1fe9c12cb8070eb7bf63f29b83f5cc40401d6065ec2af1284d2f2be749f7b364acde8a6c17102df741242af4883feda4d51bc1498353344a074a40d1436a62a0a8bc259b5915f00cabec0cbfb9d6bab33585201a3cca508215a01651cb6ce8eb842e1309a605eedabeecdf02807353766ff0295a8e14854321b0f217ea854b196982408a3e06ef163201e8d12d7170ff90e"], &(0x7f0000000080)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000100)={0x5, 0x1, 0x10001, 0xffff8000}, 0x10, r0, r1, 0x0, &(0x7f0000000480)=[r2, 0xffffffffffffffff, r3, r8, r9]}, 0x80) r10 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r10, 0x89f2, &(0x7f0000000040)={'syztnl2\x00', &(0x7f0000000200)=ANY=[]}) [ 292.532281][ T1745] usb 1-1: new high-speed USB device number 34 using dummy_hcd 18:44:46 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001900)={0xec4, 0x0, 0x0, 0x0, 0x0, {0x13}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x17c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x74, 0x5, "bf457f563a89df78f72b28999a3a8cd1ac884f941eeecec8d32b9bac89c9bf8949088f98f1164aa020fe8a74ec4e836a282e01c11234b17937ad90dd4583e36c12ccc5f25abb17e79623fa95b99d815a104610d4bab849bf42b5cb8b408593c823bfdbff242a03a219251d10831ed692"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_MASK={0xed, 0x5, "4a7cc5feb9ffa350919f3a61a4628fb6aab313533067c6e81f7d989aef56534e201f0b82324828275582aa310e7ff56542f2b43058d660282314f7c6d84b274f479c638662c5b569726a67384f02f36e90a0feb3539504c94d60773409e667a064e3c84015627ca1953ade31589ca73419a65d9358b3a6642e4887019e9d9a95c5405da723dbef8568efb0e658922ca7d9e24769dcc870b89a2ee72fd9ddf5cb007d3d2ac7ac51fe04196a36eb5b6a767575ff5ac8ec4e1018baf51bb98bddcddc1d1907984e65741375bb3ee5e8abebf4a223e6b7266644b23007d584116a02836ad3a7ac008c5fcb"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffffff9}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x54, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x4b, 0x4, "edef446983a255b443e34f34019294b6cef9e9dbf1909b9a4de2c513161982a4825e98ef735ac9e8a2fa69603c4e98aa03ae371f4c8aaeec0604ff556b6aa03a1507cd2d08e78e"}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0xb6c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x134, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x101}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3d0b8993}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x12, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '-@\xea(\\!*$/\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x26412dc}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x2f, 0x5, "79e180244cccd737ba544b55bc7feefc0a263cb8231bab320d46ccf0450f2dd0dd312b01ec16550678efc1"}, @ETHTOOL_A_BITSET_MASK={0x9fe, 0x5, "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"}]}]}, 0xec4}, 0x1, 0x0, 0x0, 0x4000090}, 0x20000) [ 292.792587][ T1745] usb 1-1: Using ep0 maxpacket: 16 [ 292.912642][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 292.923910][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 292.934233][ T1745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 292.947446][ T1745] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 292.956782][ T1745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 293.105000][ T1745] usb 1-1: config 0 descriptor?? [ 293.632574][ T1745] usbhid 1-1:0.0: can't add hid device: -71 [ 293.638942][ T1745] usbhid: probe of 1-1:0.0 failed with error -71 [ 293.653952][ T1745] usb 1-1: USB disconnect, device number 34 18:44:48 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x20, {[@local=@item_012={0x2, 0x2, 0x2, "3895"}]}}, 0x0}, 0x0) 18:44:48 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x7) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000180)={@remote, @private2, @mcast2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x270}) 18:44:48 executing program 1: r0 = socket(0x11, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}) 18:44:48 executing program 4: r0 = socket$inet(0x2, 0x3, 0x7) recvfrom$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 18:44:48 executing program 5: socket$inet(0x2, 0x802, 0x0) 18:44:48 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@bloom_filter={0x1e, 0x0, 0x10000, 0x79cd, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xb}, 0x48) 18:44:48 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000000)={@local, @multicast1}, 0xc) 18:44:48 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00'}) 18:44:48 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000002580)={'batadv_slave_0\x00', 0x0}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000180)={@loopback, @mcast2, @local, 0xa2d, 0x0, 0x0, 0x0, 0x0, 0x0, r1}) 18:44:48 executing program 1: mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, &(0x7f0000000000)=0xfffffffffffffff9, 0x8, 0x0) syz_io_uring_setup(0x1b15, &(0x7f00000000c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 294.643713][ T1745] usb 1-1: new high-speed USB device number 35 using dummy_hcd 18:44:48 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x890c, 0x0) 18:44:48 executing program 2: ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0) syz_mount_image$romfs(&(0x7f00000020c0), &(0x7f0000002200)='./file0\x00', 0x0, 0x5, &(0x7f0000002780)=[{0x0, 0x0, 0x10001}, {0x0}, {0x0}, {0x0}, {0x0}], 0x0, &(0x7f00000038c0)=ANY=[]) [ 294.883586][ T1745] usb 1-1: Using ep0 maxpacket: 16 [ 295.013118][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 295.024584][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 295.034793][ T1745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 295.048116][ T1745] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 295.057621][ T1745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.156626][ T5352] loop2: detected capacity change from 0 to 256 [ 295.233798][ T5352] VFS: Can't find a romfs filesystem on dev loop2. [ 295.233798][ T5352] [ 295.235682][ T1745] usb 1-1: config 0 descriptor?? [ 295.772496][ T1745] usbhid 1-1:0.0: can't add hid device: -71 [ 295.778782][ T1745] usbhid: probe of 1-1:0.0 failed with error -71 [ 295.791451][ T1745] usb 1-1: USB disconnect, device number 35 18:44:50 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) sendmsg$unix(r0, &(0x7f0000000380)={&(0x7f0000000100)=@file={0xa}, 0xa, &(0x7f0000001500)=[{0x0}, {0x0}, {&(0x7f0000000400)="bd", 0x1}], 0x3}, 0x0) 18:44:50 executing program 1: syz_emit_ethernet(0x36, &(0x7f00000000c0)={@broadcast, @remote, @val, {@ipv4}}, 0x0) 18:44:50 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 18:44:50 executing program 4: timer_create(0x0, 0x0, &(0x7f0000000140)) timer_gettime(0x0, 0x0) 18:44:50 executing program 5: syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x28, {{}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7, 0x25, 0x1, 0x83}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}}}}]}}, 0x0) 18:44:50 executing program 2: syz_emit_ethernet(0xffffff5f, &(0x7f00000000c0)={@local, @broadcast, @val, {@ipv6}}, 0x0) 18:44:50 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8914, &(0x7f0000000440)) 18:44:50 executing program 1: timer_create(0x3, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000100)) r0 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8) read$FUSE(r0, &(0x7f0000002300)={0x2020}, 0xffffff86) timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{0x77359400}, {0x0, 0x9}}, 0x0) 18:44:50 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x5543, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x69}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00i'], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x4, @lang_id={0x4}}, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, &(0x7f0000000740)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000c80)={0x24, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="000312"], 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000300)={0x24, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) 18:44:50 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x1, &(0x7f0000001ac0)=@raw=[@exit], &(0x7f0000001b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 296.562987][ T1020] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 296.802483][ T1020] usb 6-1: Using ep0 maxpacket: 32 18:44:50 executing program 2: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f00000006c0)={0x12, 0x10, 0xfa00, {0x0}}, 0x18) [ 296.832508][ T1745] usb 1-1: new high-speed USB device number 36 using dummy_hcd 18:44:50 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000ac0)={0xb, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, 0x7}}, 0x18) [ 296.924722][ T1020] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 296.933905][ T1020] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 296.944304][ T1020] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 297.062690][ T120] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 297.083125][ T1745] usb 1-1: Using ep0 maxpacket: 16 18:44:51 executing program 3: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f0000000980)) 18:44:51 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) ioctl$RTC_PLL_GET(0xffffffffffffffff, 0x80207011, &(0x7f0000000040)) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$RTC_EPOCH_SET(0xffffffffffffffff, 0x4008700e, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x33, 0x0, 0x0, 0x18, 0x0, 0x401, 0x6, 0x0, 0xffffffffffffffff}) ioctl$RTC_IRQP_SET(r0, 0x4008700c, 0x0) ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, &(0x7f0000000200)) [ 297.215075][ T1020] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 297.224593][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 297.224644][ T1020] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 297.224751][ T1020] usb 6-1: Product: syz [ 297.235920][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 297.244014][ T1020] usb 6-1: Manufacturer: syz [ 297.248200][ T1745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 297.258163][ T1020] usb 6-1: SerialNumber: syz [ 297.265576][ T1745] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 297.291414][ T1745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.359891][ T1745] usb 1-1: config 0 descriptor?? [ 297.484178][ T120] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 297.495716][ T120] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 297.505969][ T120] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 297.519215][ T120] usb 5-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00 [ 297.528547][ T120] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.598835][ T120] usb 5-1: config 0 descriptor?? [ 297.872848][ T1020] usb 6-1: 0:2 : does not exist [ 297.903175][ T1020] usb 6-1: USB disconnect, device number 6 [ 297.932931][ T1745] usbhid 1-1:0.0: can't add hid device: -71 [ 297.939217][ T1745] usbhid: probe of 1-1:0.0 failed with error -71 [ 297.969305][ T1745] usb 1-1: USB disconnect, device number 36 [ 297.983134][ T3710] udevd[3710]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory 18:44:52 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 18:44:52 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_PLL_GET(r0, 0x80207011, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) ioctl$RTC_EPOCH_SET(r0, 0x4008700e, 0x6) socket$nl_generic(0x10, 0x3, 0x10) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000180)={0x33, 0x0, 0x2, 0x18, 0x0, 0x401, 0x6, 0xe7}) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) 18:44:52 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_UIE_ON(r0, 0x7003) openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f00000000c0)={0x1, 0x1, {0x12, 0x2e, 0x17, 0xd, 0x0, 0x0, 0x0, 0x134, 0x1}}) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x6, 0x8000000000000000}}, 0x30) ioctl$RTC_PLL_GET(0xffffffffffffffff, 0x80207011, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) ioctl$RTC_WKALM_RD(r0, 0x80287010, &(0x7f0000000200)) 18:44:52 executing program 1: syz_open_dev$vcsu(0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket(0x11, 0xa, 0x0) sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000f00)={&(0x7f0000000e40), 0xc, &(0x7f0000000ec0)={0x0}}, 0x0) 18:44:52 executing program 5: openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(0xffffffffffffffff, &(0x7f00000006c0)={0x12, 0x10, 0xfa00, {0x0}}, 0x18) 18:44:52 executing program 1: openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000500)='/proc/asound/card3/oss_mixer\x00', 0x1e1080, 0x0) [ 298.922718][ T1745] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 298.998890][ T120] input: HID 5543:006e Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:5543:006E.0005/input/input8 [ 299.089422][ T120] input: HID 5543:006e Pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:5543:006E.0005/input/input9 [ 299.116645][ T120] uclogic 0003:5543:006E.0005: input,hidraw0: USB HID v0.00 Keypad [HID 5543:006e] on usb-dummy_hcd.4-1/input0 [ 299.192724][ T1745] usb 1-1: Using ep0 maxpacket: 16 [ 299.197608][ T1020] usb 5-1: USB disconnect, device number 8 [ 299.332711][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.344000][ T1745] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.354075][ T1745] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 299.367225][ T1745] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 299.376581][ T1745] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.415222][ T1745] usb 1-1: config 0 descriptor?? 18:44:53 executing program 4: shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffa000/0x4000)=nil) openat$drirender128(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x3000) 18:44:53 executing program 3: openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000280), 0x40a00, 0x0) 18:44:53 executing program 2: fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000040), 0x0) socket$inet(0x2, 0x0, 0x1f) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) 18:44:53 executing program 5: openat$random(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0) 18:44:53 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) ioctl$RTC_EPOCH_SET(0xffffffffffffffff, 0x4008700e, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f00000000c0)={0x1, 0x0, {0x12, 0x2e, 0x17, 0xd, 0x0, 0x531}}) socket$nl_generic(0x10, 0x3, 0x10) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0) [ 299.812289][ T5400] rtc_cmos 00:00: Alarms can be up to one day in the future [ 299.944689][ T1745] usbhid 1-1:0.0: can't add hid device: -71 [ 299.951211][ T1745] usbhid: probe of 1-1:0.0 failed with error -71 18:44:54 executing program 3: write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000040)={0x7}, 0x7) pipe2$9p(&(0x7f00000001c0), 0x0) [ 299.992423][ T1745] usb 1-1: USB disconnect, device number 37 18:44:54 executing program 4: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) connect$802154_dgram(r0, &(0x7f0000000140)={0x24, @long}, 0x14) 18:44:54 executing program 5: syz_genetlink_get_family_id$ethtool(&(0x7f00000010c0), 0xffffffffffffffff) 18:44:54 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:44:54 executing program 3: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x3}) 18:44:54 executing program 1: openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000d00), 0x2, 0x0) fsopen(&(0x7f0000000e40)='cgroup\x00', 0x0) 18:44:54 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 18:44:54 executing program 5: keyctl$KEYCTL_WATCH_KEY(0x8, 0x0, 0xffffffffffffffff, 0x0) [ 300.676852][ T5416] ntfs: (device loop2): parse_options(): Invalid dmask option argument: 00000000000000000000000^ 18:44:54 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x101081) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000000c0)) 18:44:54 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0) r1 = epoll_create(0x9) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x80000001}) 18:44:55 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:44:55 executing program 3: bpf$MAP_CREATE(0x8, &(0x7f0000001700)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) [ 301.082443][ T1020] usb 1-1: new high-speed USB device number 38 using dummy_hcd 18:44:55 executing program 5: openat$pfkey(0xffffffffffffff9c, &(0x7f00000016c0), 0xd9acd076e16fde07, 0x0) 18:44:55 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x0, 0x2}, 0x48) 18:44:55 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x18, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 301.332343][ T1020] usb 1-1: Using ep0 maxpacket: 16 18:44:55 executing program 3: bpf$MAP_CREATE(0x6, 0x0, 0x10) [ 301.363312][ T5431] ntfs: (device loop2): parse_options(): Invalid dmask option argument: 00000000000000000000000^ [ 301.473115][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 301.484505][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 301.494693][ T1020] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 301.507794][ T1020] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 18:44:55 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 301.517132][ T1020] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:44:55 executing program 5: bpf$MAP_CREATE(0x90, 0x0, 0x0) [ 301.749945][ T1020] usb 1-1: config 0 descriptor?? [ 301.797028][ T5439] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 301.808031][ T5439] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 301.935033][ T5441] ntfs: (device loop2): parse_options(): Invalid dmask option argument: 00000000000000000000000^ [ 302.282838][ T1020] usbhid 1-1:0.0: can't add hid device: -71 [ 302.289222][ T1020] usbhid: probe of 1-1:0.0 failed with error -71 [ 302.350415][ T1020] usb 1-1: USB disconnect, device number 38 18:44:56 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) 18:44:56 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x4) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000140)={'filter\x00', 0x4, "3c9c6ae4"}, &(0x7f00000002c0)=0x28) 18:44:56 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:44:56 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x190, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x9, 0x0, 0x2, 0x2}) 18:44:56 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x18, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:44:56 executing program 5: socketpair(0x0, 0x0, 0x0, &(0x7f0000000240)) openat$vsock(0xffffffffffffff9c, &(0x7f0000000700), 0x23e200, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f00000006c0), 0xffffffffffffffff) [ 302.831790][ T5450] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 302.842839][ T5450] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 302.922925][ T5454] ntfs: (device loop2): parse_options(): Invalid dmask option argument: 00000000000000000000000^ 18:44:57 executing program 2: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:44:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x4) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000140)={'filter\x00', 0x4, "3c9c6ae4"}, &(0x7f00000002c0)=0x28) 18:44:57 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x18, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:44:57 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x4) accept4$inet6(r0, 0x0, 0x0, 0x100800) 18:44:57 executing program 5: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000180)=ANY=[@ANYBLOB="120100006011bc40f71402005db9000000010902120901000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f00000006c0)={0x84, &(0x7f00000002c0)={0x0, 0x0, 0x3, "824e83"}, &(0x7f0000000300)={0x0, 0xa, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_connect(0x0, 0x24, &(0x7f0000000440)={{0x12, 0x1, 0x0, 0xef, 0xf4, 0x8, 0x0, 0x17ef, 0xa387, 0x42be, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x47, 0xc2}}]}}]}}, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000ec0)={0x84, 0x0, &(0x7f0000000b00)={0x0, 0xa, 0x1, 0x4}, 0x0, &(0x7f0000000b80)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80)={0x40, 0x21, 0x1}}) [ 303.293104][ T1020] usb 1-1: new high-speed USB device number 39 using dummy_hcd [ 303.534110][ T1020] usb 1-1: Using ep0 maxpacket: 16 [ 303.562657][ T5465] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 303.573729][ T5465] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 18:44:57 executing program 2: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 303.652777][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 303.664463][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 303.674548][ T1020] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 303.687779][ T1020] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 303.697101][ T1020] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 303.823915][ T1745] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 303.926307][ T1020] usb 1-1: config 0 descriptor?? [ 304.222523][ T1745] usb 6-1: config index 0 descriptor too short (expected 2322, got 18) [ 304.233541][ T1745] usb 6-1: New USB device found, idVendor=14f7, idProduct=0002, bcdDevice=b9.5d [ 304.243475][ T1745] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 304.257293][ T1745] usb 6-1: config 0 descriptor?? [ 304.472450][ T1020] usbhid 1-1:0.0: can't add hid device: -71 [ 304.480358][ T1020] usbhid: probe of 1-1:0.0 failed with error -71 [ 304.508392][ T1020] usb 1-1: USB disconnect, device number 39 [ 304.522986][ T1745] dvb-usb: found a 'Technisat SkyStar USB 2 HD CI' in warm state. [ 304.541560][ T1745] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 304.563116][ T1745] dvbdev: DVB: registering new adapter (Technisat SkyStar USB 2 HD CI) [ 304.571522][ T1745] usb 6-1: media controller created [ 304.597346][ T1745] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 304.740662][ T5467] UDC core: couldn't find an available UDC or it's busy: -16 [ 304.748423][ T5467] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 304.762414][ T1745] az6027: usb out operation failed. (-71) [ 304.797520][ T1745] az6027: usb out operation failed. (-71) [ 304.803637][ T1745] stb0899_attach: Driver disabled by Kconfig [ 304.809700][ T1745] az6027: no front-end attached [ 304.809700][ T1745] [ 304.850031][ T1745] az6027: usb out operation failed. (-71) [ 304.855980][ T1745] dvb-usb: no frontend was attached by 'Technisat SkyStar USB 2 HD CI' [ 304.866613][ T1745] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input10 [ 304.881004][ T1745] dvb-usb: schedule remote query interval to 400 msecs. [ 304.888348][ T1745] dvb-usb: Technisat SkyStar USB 2 HD CI successfully initialized and connected. [ 304.901176][ T1745] usb 6-1: USB disconnect, device number 7 18:44:59 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) 18:44:59 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:44:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x4) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000140)={'filter\x00', 0x4, "3c9c6ae4"}, &(0x7f00000002c0)=0x28) 18:44:59 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x18, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:44:59 executing program 2: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 305.209283][ T1745] dvb-usb: Technisat SkyStar USB 2 HD CI successfully deinitialized and disconnected. 18:44:59 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8990, &(0x7f0000000140)) 18:44:59 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:44:59 executing program 4: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 305.434367][ T1020] usb 4-1: new high-speed USB device number 2 using dummy_hcd 18:44:59 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan0\x00', 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14a0}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0) sendmmsg(r0, &(0x7f00000039c0)=[{{0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0xa}}], 0x311, 0x1e000000) [ 305.703052][ T120] usb 1-1: new high-speed USB device number 40 using dummy_hcd 18:44:59 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0xfffffffc, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) [ 305.803243][ T1020] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 305.812829][ T1020] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:44:59 executing program 4: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 305.917549][ T1020] usb 4-1: config 0 descriptor?? [ 305.962825][ T120] usb 1-1: Using ep0 maxpacket: 16 [ 305.974174][ T1020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 18:45:00 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 306.114723][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.125925][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.135990][ T120] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 306.149067][ T120] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 306.158468][ T120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.420796][ T120] usb 1-1: config 0 descriptor?? [ 306.962654][ T120] usbhid 1-1:0.0: can't add hid device: -71 [ 306.969110][ T120] usbhid: probe of 1-1:0.0 failed with error -71 [ 307.007438][ T120] usb 1-1: USB disconnect, device number 40 18:45:01 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, 0x0, 0x0}, 0x0) [ 307.472482][ T1020] gspca_topro: reg_r err -71 [ 307.477262][ T1020] gspca_topro: Sensor soi763a [ 307.540000][ T1020] usb 4-1: USB disconnect, device number 2 [ 307.898035][ T120] usb 1-1: new high-speed USB device number 41 using dummy_hcd 18:45:02 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:45:02 executing program 1: r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x0) r1 = memfd_create(&(0x7f0000000000)='\a\x06\x00', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) 18:45:02 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:45:02 executing program 4: syz_mount_image$ntfs(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:02 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan0\x00', 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14a0}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0) sendmmsg(r0, &(0x7f00000039c0)=[{{0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0xa}}], 0x311, 0x1e000000) [ 308.159686][ T120] usb 1-1: Using ep0 maxpacket: 16 18:45:02 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 308.322961][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 308.334636][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 308.344696][ T120] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 308.357884][ T120] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 18:45:02 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 308.367254][ T120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:45:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000400)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34b22645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="b869008ed80f01dff2f08254c778f0826f00ec65f2650f0726363e0f01cff33610694f26660f3a17c40fba4100ec66b91b0900000f32", 0x36}], 0x1, 0x0, 0x0, 0x0) [ 308.551890][ T120] usb 1-1: config 0 descriptor?? [ 308.662729][ T3614] usb 4-1: new high-speed USB device number 3 using dummy_hcd 18:45:02 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) [ 308.806946][ T5514] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 18:45:03 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 309.033587][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 309.044708][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 309.092820][ T120] usbhid 1-1:0.0: can't add hid device: -71 [ 309.099104][ T120] usbhid: probe of 1-1:0.0 failed with error -71 18:45:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000400)={"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"}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="b869008ed80f01dff2f08254c778f0826f00ec65f2650f0726363e0f01cff33610694f26660f3a17c40fba4100ec66b91b0900000f32", 0x36}], 0x1, 0x0, 0x0, 0x0) [ 309.153140][ T3614] usb 4-1: config 0 descriptor?? [ 309.198947][ T120] usb 1-1: USB disconnect, device number 41 [ 309.231253][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 309.543646][ T5522] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer. 18:45:03 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180), 0x0}, 0x0) [ 310.142298][ T120] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 310.392578][ T120] usb 1-1: Using ep0 maxpacket: 16 [ 310.542631][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.553957][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 310.564137][ T120] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 310.579519][ T120] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 310.589279][ T120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.607478][ T120] usb 1-1: config 0 descriptor?? [ 310.722389][ T3614] gspca_topro: reg_r err -71 [ 310.727086][ T3614] gspca_topro: Sensor soi763a [ 310.750368][ T3614] usb 4-1: USB disconnect, device number 3 18:45:05 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:45:05 executing program 5: syz_mount_image$msdos(0x0, 0x0, 0x401, 0x5, &(0x7f0000000640)=[{&(0x7f0000000c80)="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", 0xf00}, {&(0x7f0000000400)="35b38a426ca6241da89774b66a918a5339d7d109a9da5704d2fd6a0e45c43fc65f510bda6757d6fcca581405754105b6bcb90f344df4aa8bbb9a40471a7f29097a744ca97a3b53215605ae3360bfa886ab6797af447bf7096a3fc618bf186fca725ea2d7fca14793299e1f99ca4dfde5641c775c23427e89329d06b06bb9abc416733511e67985d47fc898c2195c4e9423eb3453e877df9ed522594f", 0x9c, 0x63ce}, {&(0x7f00000004c0), 0x0, 0x8}, {&(0x7f0000000500)="be183aa1e18e986cae7fb1967d319565650dfc8bfe3d8c83a2b54910425c377b30b5dd3ded4b8c7922039f16901e869992637f342e599139b643e01b2a4914c267e0e1d78d872650c1e1ca59116ae1548a6795d7b7b0b2bd1899d845c52867f25c093414ee190a25967770b4626505589d35d2eeac2663c5437183c2e5251c58524462e123f937a37ea5dcfd0838dd1f53b5a2a63f0d56e8cb5d0495592752d4d7b83d1cd34ca057ccdbb326d0afab2e75e95636c14bbef493a2a462d92a80d3becfc504b11a30cf6b18b24acf6686fa0b62995543e3c24feb", 0xd9, 0x10000}, {&(0x7f0000000600)="7162ac4ca4644e829102b552fa11be3273479b121b8319093ba800553a9df752afa4d7a65663aafd683949df21892c056ecfff899af7", 0x36, 0xffffffffffffffff}], 0x200000, &(0x7f00000006c0)={[{}, {@fat=@nfs_nostale_ro}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x7fffffffffffffff}}, {@dots}], [{@subj_user={'subj_user', 0x3d, 'nodots'}}]}) 18:45:05 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={[{@dmask, 0x5e}]}) 18:45:05 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:05 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000080)=0x8, 0x4) [ 311.291507][ T5529] loop5: detected capacity change from 0 to 264192 [ 311.352793][ T120] usbhid 1-1:0.0: can't add hid device: -71 [ 311.359387][ T120] usbhid: probe of 1-1:0.0 failed with error -71 [ 311.409179][ T120] usb 1-1: USB disconnect, device number 42 18:45:05 executing program 5: r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key$fscrypt_v1(&(0x7f0000000600), &(0x7f0000000640)={'fscrypt:', @desc2}, &(0x7f0000000680)={0x0, "c51b56bd412848a320f95bbe841b972b622ae4ed33156d87765ab8176320f83bbfcf408b826ae576cc8ae30dc3270fb0a815919069cb7b64d4c06ef26c17d9dd"}, 0x48, r0) 18:45:05 executing program 1: r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000100)='1', 0x77) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r2, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x100) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r3, &(0x7f0000000440)={0x2, 0x4e23, @empty}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r3, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r3, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x100) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYRES32=0x0, @ANYRESHEX], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmmsg$alg(r4, &(0x7f00000000c0), 0x492492492492627, 0x300) 18:45:05 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:05 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, 0x0) 18:45:05 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180), 0x0}, 0x0) [ 312.052710][ T1020] usb 4-1: new high-speed USB device number 4 using dummy_hcd 18:45:06 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f00000002c0)) 18:45:06 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 312.413785][ T1020] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 312.424878][ T1020] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.502360][ T3614] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 312.525028][ T1020] usb 4-1: config 0 descriptor?? [ 312.569525][ T1020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 312.744374][ T3614] usb 1-1: Using ep0 maxpacket: 16 [ 312.869216][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 312.880476][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 312.890584][ T3614] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 312.903818][ T3614] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 312.913141][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.936710][ T3614] usb 1-1: config 0 descriptor?? [ 313.682471][ T3614] usbhid 1-1:0.0: can't add hid device: -71 [ 313.689059][ T3614] usbhid: probe of 1-1:0.0 failed with error -71 [ 313.707380][ T3614] usb 1-1: USB disconnect, device number 43 [ 314.102379][ T1020] gspca_topro: reg_r err -71 [ 314.107152][ T1020] gspca_topro: Sensor soi763a [ 314.120037][ T1020] usb 4-1: USB disconnect, device number 4 18:45:08 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:45:08 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, 0x0) 18:45:08 executing program 5: seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000340)) 18:45:08 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:08 executing program 1: r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000100)='1', 0x77) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r2, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r2, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x100) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r3, &(0x7f0000000440)={0x2, 0x4e23, @empty}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r3, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r3, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x100) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYRES32=0x0, @ANYRESHEX], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmmsg$alg(r4, &(0x7f00000000c0), 0x492492492492627, 0x300) 18:45:08 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180), 0x0}, 0x0) 18:45:08 executing program 5: add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f00000015c0)="05", 0x1, 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0) ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) syz_open_dev$vcsu(0x0, 0x0, 0x0) ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) 18:45:08 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0) 18:45:08 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, 0x0) [ 314.993506][ T3614] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 315.179636][ T5572] trusted_key: encrypted_key: insufficient parameters specified [ 315.222399][ T3547] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 315.232637][ T3614] usb 1-1: Using ep0 maxpacket: 16 18:45:09 executing program 5: syz_io_uring_setup(0x1, &(0x7f0000000000)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) [ 315.364139][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 315.375534][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 315.387312][ T3614] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 315.401368][ T3614] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 18:45:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0) [ 315.410742][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:45:09 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)) [ 315.593057][ T3614] usb 1-1: config 0 descriptor?? [ 315.602935][ T3547] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 315.612402][ T3547] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 315.687804][ T3547] usb 4-1: config 0 descriptor?? [ 315.788744][ T3547] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 315.965028][ T5581] __ntfs_error: 2 callbacks suppressed [ 315.965085][ T5581] ntfs: (device loop2): ntfs_fill_super(): Unable to determine device size. [ 316.338458][ T3614] usbhid 1-1:0.0: can't add hid device: -71 [ 316.344950][ T3614] usbhid: probe of 1-1:0.0 failed with error -71 [ 316.391903][ T3614] usb 1-1: USB disconnect, device number 44 [ 317.292434][ T3547] gspca_topro: reg_r err -71 [ 317.297377][ T3547] gspca_topro: Sensor soi763a [ 317.307714][ T3547] usb 4-1: USB disconnect, device number 5 [ 317.324956][ T4115] udevd[4115]: setting mode of /dev/bus/usb/004/005 to 020664 failed: No such file or directory [ 317.340072][ T4115] udevd[4115]: setting owner of /dev/bus/usb/004/005 to uid=0, gid=0 failed: No such file or directory 18:45:11 executing program 1: openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) 18:45:11 executing program 5: keyctl$reject(0x13, 0x0, 0x0, 0x0, 0x0) add_key$fscrypt_v1(&(0x7f00000001c0), &(0x7f0000000200)={'fscrypt:', @desc4}, &(0x7f0000000440)={0x0, "e6fc4d3ceeb55035d9f44a583331e0a129575bf197d599f45b85e85db259b6d228c61f10d5c5087056b5a3f47a6dee75d7acb9b372a2243f99c3386fc6b47e81"}, 0x48, 0x0) r0 = add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f00000015c0)="056c08ade4a83b45393e8dad4f8d8984a9a6a97c4a5de28bf5bb1a3f143ee0d427fe7e9e53ec1a60c9d0ce", 0x2b, 0xfffffffffffffffb) keyctl$instantiate(0xc, 0x0, &(0x7f00000004c0)=@encrypted_load={'load ', 'ecryptfs', 0x20, 'trusted:', '/^.', 0x20, 0x5, 0x20, [0x37]}, 0x31, r0) add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) pipe2$watch_queue(&(0x7f0000000580), 0x80) syz_open_dev$vcsu(&(0x7f0000000100), 0x7ff, 0x400000) 18:45:11 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0) 18:45:11 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)) 18:45:11 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x20, {[@local=@item_012={0x2, 0x2, 0x0, "3895"}]}}, 0x0}, 0x0) 18:45:11 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) [ 317.928195][ T5591] trusted_key: encrypted_key: insufficient parameters specified [ 317.939190][ T5588] ntfs: (device loop2): ntfs_fill_super(): Unable to determine device size. 18:45:12 executing program 1: r0 = syz_io_uring_setup(0x3ede, &(0x7f0000000180), &(0x7f0000dec000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r3 = syz_io_uring_setup(0x2095, &(0x7f0000000380), &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000e90000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}}, 0x0) io_uring_enter(r0, 0x2c, 0x0, 0x0, 0x0, 0x700) 18:45:12 executing program 5: syz_io_uring_setup(0x1, &(0x7f0000000000)={0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 18:45:12 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)) 18:45:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}], [{@uid_eq}]}) [ 318.182654][ T3614] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 318.422917][ T3614] usb 1-1: Using ep0 maxpacket: 16 18:45:12 executing program 1: syz_open_dev$vcsu(&(0x7f00000002c0), 0x0, 0x0) 18:45:12 executing program 5: syz_io_uring_setup(0x1, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x151}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) [ 318.503509][ T5601] ntfs: (device loop2): ntfs_fill_super(): Unable to determine device size. [ 318.522277][ T3547] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 318.542630][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 318.553926][ T5603] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 318.564033][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 318.574471][ T3614] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 318.587689][ T3614] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 318.597013][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:45:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}], [{@uid_eq}]}) [ 318.914587][ T3547] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 318.923908][ T3547] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 318.955372][ T3614] usb 1-1: config 0 descriptor?? 18:45:13 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendfile(r1, r0, 0x0, 0x100000001) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x2, 0x0) preadv(r2, &(0x7f00000018c0)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1, 0x0, 0x0) [ 319.024632][ T3547] usb 4-1: config 0 descriptor?? 18:45:13 executing program 2: r0 = syz_open_dev$media(&(0x7f0000000740), 0x0, 0x0) ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000001040)=[{}, {}, {}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 18:45:13 executing program 1: add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000a40)="97", 0x1, 0xfffffffffffffffe) [ 319.140714][ T3547] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 319.207540][ T5610] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 319.441840][ T3614] petalynx 0003:18B1:0037.0006: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.0-1/input0 [ 319.651229][ T3614] usb 1-1: USB disconnect, device number 45 18:45:14 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x20, {[@local=@item_012={0x2, 0x2, 0x0, "3895"}]}}, 0x0}, 0x0) [ 320.362526][ T3547] gspca_topro: reg_w err -71 [ 320.405140][ T3547] gspca_topro: Sensor soi763a [ 320.444205][ T3547] usb 4-1: USB disconnect, device number 6 [ 320.512641][ T3614] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 320.752306][ T3614] usb 1-1: Using ep0 maxpacket: 16 18:45:14 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 18:45:14 executing program 5: socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet6_mptcp(0xa, 0x1, 0x106) fstat(0xffffffffffffffff, &(0x7f0000001c00)) openat$adsp1(0xffffffffffffff9c, &(0x7f0000001c80), 0x0, 0x0) 18:45:14 executing program 2: pselect6(0x40, &(0x7f00000006c0)={0x1}, &(0x7f0000000700)={0x5}, 0x0, 0x0, 0x0) 18:45:14 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}], [{@uid_eq}]}) 18:45:14 executing program 1: getcwd(0xffffffffffffffff, 0x0) [ 320.879667][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 320.891498][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 320.901838][ T3614] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 320.916444][ T3614] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 320.926007][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 321.060333][ T5627] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:45:15 executing program 1: r0 = syz_open_dev$media(&(0x7f0000000000), 0x2, 0x0) ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000040)) [ 321.214439][ T3614] usb 1-1: config 0 descriptor?? 18:45:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:15 executing program 5: syz_io_uring_setup(0x34e6, &(0x7f0000000000), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) ioctl$TUNGETSNDBUF(0xffffffffffffffff, 0x800454d3, 0x0) [ 321.512489][ T3547] usb 4-1: new high-speed USB device number 7 using dummy_hcd 18:45:15 executing program 1: syz_open_dev$sndmidi(0x0, 0x2, 0x0) write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x100) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0c268a927f1f6588b9674812", 0xc, 0x0, 0x0, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0) socket(0x10, 0x0, 0x0) [ 321.661276][ T5633] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 321.704381][ T3614] petalynx 0003:18B1:0037.0007: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.0-1/input0 18:45:15 executing program 5: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{}, "9937ee92a07c1b1e", "babac4c7daf1905060a1ca41177bdfd1d69870a3560f5c89e48d58bfe51ef64a", "0025b12c", "92c33f3221be719d"}, 0x38) [ 321.873886][ T3547] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 321.883399][ T3547] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 321.904226][ T3614] usb 1-1: USB disconnect, device number 46 18:45:16 executing program 2: r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, r0) r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x9, r1, r2) [ 321.979067][ T3547] usb 4-1: config 0 descriptor?? [ 322.059519][ T3547] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 18:45:16 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x20, {[@local=@item_012={0x2, 0x2, 0x0, "3895"}]}}, 0x0}, 0x0) [ 322.992570][ T120] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 323.232267][ T120] usb 1-1: Using ep0 maxpacket: 16 [ 323.322666][ T3547] gspca_topro: reg_w err -71 [ 323.362864][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 323.376252][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 323.386684][ T120] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 323.399775][ T120] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 323.409097][ T120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 323.425243][ T3547] gspca_topro: Sensor soi763a [ 323.435425][ T3547] usb 4-1: USB disconnect, device number 7 [ 323.453551][ T120] usb 1-1: config 0 descriptor?? 18:45:17 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 18:45:17 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:17 executing program 2: r0 = syz_io_uring_setup(0x3ede, &(0x7f0000000180), &(0x7f0000002000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000200)=0x0) socket$alg(0x26, 0x5, 0x0) socket$packet(0x11, 0x2, 0x300) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x5, 0x0, &(0x7f0000000040)=""/18, 0x12}, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000002040)='./file0\x00', 0x0) io_uring_enter(r0, 0x2c, 0x0, 0x0, 0x0, 0x3334) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/3\x00') preadv(r3, &(0x7f0000001400)=[{&(0x7f0000000040)=""/211, 0xd3}], 0x1, 0x0, 0x0) 18:45:17 executing program 5: r0 = syz_open_dev$media(&(0x7f0000000000), 0x3, 0x0) ioctl$MEDIA_IOC_ENUM_LINKS(r0, 0xc0287c02, &(0x7f0000000200)={0x80000000, 0x0, &(0x7f0000000180)}) 18:45:17 executing program 1: syz_io_uring_setup(0x9eb, &(0x7f0000000040)={0x0, 0x0, 0x4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd, 0x401, {}, 0xfffffff7, 0x8}, 0x3ff) syz_usbip_server_init(0x5) [ 323.950721][ T120] petalynx 0003:18B1:0037.0008: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.0-1/input0 [ 323.958671][ T5652] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 323.995955][ T5650] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 324.002647][ T5650] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 324.010790][ T5650] vhci_hcd vhci_hcd.0: Device attached [ 324.153126][ T5655] vhci_hcd: connection closed [ 324.154605][ T41] vhci_hcd: stop threads [ 324.164086][ T41] vhci_hcd: release socket [ 324.168572][ T41] vhci_hcd: disconnect device [ 324.175882][ T3547] usb 1-1: USB disconnect, device number 47 18:45:18 executing program 5: r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, r0) add_key$keyring(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, r0) 18:45:18 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x1, {[@local=@item_012={0x0, 0x2, 0x2}]}}, 0x0}, 0x0) 18:45:18 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e19b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10) recvmmsg(r2, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) 18:45:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:19 executing program 5: r0 = syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r2, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r2, 0x1, 0x8, 0x0, 0x0) sendto$inet(r2, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) recvmsg(r2, 0x0, 0x0) r3 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) sendto$inet(r3, 0x0, 0x0, 0x200007fd, 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x0, 0x6}, 0x0) sendmsg$nl_route(r1, 0x0, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmmsg$alg(r4, 0x0, 0x0, 0x0) [ 325.122368][ T3547] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 325.174907][ T5664] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:45:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 325.493471][ T120] usb 1-1: new high-speed USB device number 48 using dummy_hcd [ 325.513058][ T3547] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 325.524990][ T3547] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:45:19 executing program 5: syz_mount_image$minix(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000540), 0x5010, &(0x7f0000000680)) [ 325.610007][ T3547] usb 4-1: config 0 descriptor?? [ 325.688805][ T3547] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 325.754021][ T120] usb 1-1: Using ep0 maxpacket: 16 [ 325.767485][ T5671] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 325.883322][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 325.894980][ T120] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 325.905100][ T120] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 325.918284][ T120] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 325.927621][ T120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 326.195974][ T120] usb 1-1: config 0 descriptor?? [ 326.389660][ T5666] not chained 10000 origins [ 326.394666][ T5666] CPU: 1 PID: 5666 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0 [ 326.403050][ T5666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 326.413220][ T5666] Call Trace: [ 326.416521][ T5666] [ 326.419467][ T5666] dump_stack_lvl+0x1ff/0x28e [ 326.424246][ T5666] dump_stack+0x25/0x28 [ 326.428457][ T5666] kmsan_internal_chain_origin+0x78/0x110 [ 326.434327][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.439573][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.444750][ T5666] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 326.450620][ T5666] ? preempt_count_sub+0xf8/0x330 [ 326.455730][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.460942][ T5666] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 326.466832][ T5666] ? should_fail+0x75/0x9c0 [ 326.471446][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.476610][ T5666] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 326.482906][ T5666] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 326.489035][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.494217][ T5666] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 326.500091][ T5666] __msan_chain_origin+0xbf/0x140 [ 326.505176][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.510419][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.515397][ T5666] ? __sys_recvmmsg+0x51c/0x6f0 [ 326.520333][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.524885][ T5666] ? xfd_validate_state+0xd1/0x2d0 [ 326.530059][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.535216][ T5666] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 326.540958][ T5666] ? __stack_depot_save+0x21/0x4d0 [ 326.546161][ T5666] ? kmsan_get_metadata+0x33/0x220 [ 326.551342][ T5666] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 326.557639][ T5666] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.564189][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.568929][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.575310][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.580381][ T5666] ? irqentry_exit_to_user_mode+0x15/0x30 [ 326.586141][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.591040][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.595588][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.602022][ T5666] RIP: 0023:0xf6e93549 [ 326.606117][ T5666] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 326.625770][ T5666] RSP: 002b:00000000f588d5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 326.634227][ T5666] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020002440 [ 326.642220][ T5666] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 326.650210][ T5666] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 326.658202][ T5666] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 326.666374][ T5666] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 326.674376][ T5666] [ 326.680797][ T5666] Uninit was stored to memory at: [ 326.680880][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.691526][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.696620][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.701182][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.706016][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.712503][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.717590][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.722614][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.727431][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.733921][ T5666] [ 326.736262][ T5666] Uninit was stored to memory at: [ 326.741349][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.746603][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.751610][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.756310][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.761100][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.767635][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.772835][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.777759][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.782475][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.788867][ T5666] [ 326.791212][ T5666] Uninit was stored to memory at: [ 326.796459][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.801632][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.806785][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.811359][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.816247][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.822724][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.827810][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.832868][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.837422][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.843984][ T5666] [ 326.846314][ T5666] Uninit was stored to memory at: [ 326.851406][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.856708][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.861701][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.866439][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.871168][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.877711][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.882892][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.887801][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.892512][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.898917][ T5666] [ 326.901258][ T5666] Uninit was stored to memory at: [ 326.906509][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.911667][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.916756][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.921326][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.926221][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.933148][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.938245][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.943356][ T5666] do_SYSENTER_32+0x1b/0x20 [ 326.947914][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 326.954402][ T5666] [ 326.956729][ T5666] Uninit was stored to memory at: [ 326.961824][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 326.967085][ T5666] get_compat_msghdr+0x108/0x2c0 [ 326.972160][ T5666] do_recvmmsg+0xd77/0x2120 [ 326.976716][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 326.981446][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 326.987992][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 326.993196][ T5666] do_fast_syscall_32+0x34/0x70 [ 326.998110][ T5666] do_SYSENTER_32+0x1b/0x20 [ 327.002835][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 327.009232][ T5666] [ 327.011586][ T5666] Uninit was stored to memory at: [ 327.016840][ T5666] __get_compat_msghdr+0x6e1/0x9d0 [ 327.022098][ T5666] get_compat_msghdr+0x108/0x2c0 [ 327.027095][ T5666] do_recvmmsg+0xd77/0x2120 [ 327.031640][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 327.036538][ T5666] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 327.043035][ T5666] __do_fast_syscall_32+0x96/0xf0 [ 327.048120][ T5666] do_fast_syscall_32+0x34/0x70 [ 327.053191][ T5666] do_SYSENTER_32+0x1b/0x20 [ 327.057771][ T5666] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 327.064334][ T5666] [ 327.066669][ T5666] Local variable msg_sys created at: [ 327.071968][ T5666] do_recvmmsg+0xbb/0x2120 [ 327.076586][ T5666] __sys_recvmmsg+0x51c/0x6f0 [ 327.342583][ T3547] gspca_topro: reg_w err -71 [ 327.382572][ T3547] gspca_topro: Sensor soi763a [ 327.393481][ T3547] usb 4-1: USB disconnect, device number 8 [ 327.562751][ T120] usbhid 1-1:0.0: can't add hid device: -71 [ 327.569028][ T120] usbhid: probe of 1-1:0.0 failed with error -71 [ 327.583165][ T120] usb 1-1: USB disconnect, device number 48 18:45:21 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:45:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:21 executing program 2: bpf$MAP_CREATE(0x22, &(0x7f00000002c0)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) 18:45:21 executing program 5: r0 = syz_open_dev$media(&(0x7f0000000740), 0x0, 0x0) ioctl$MEDIA_IOC_ENUM_ENTITIES(r0, 0xc1007c01, &(0x7f0000000480)) 18:45:21 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e19b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10) recvmmsg(r2, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) [ 327.987901][ T5680] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:45:22 executing program 1: keyctl$reject(0x13, 0x0, 0x0, 0x0, 0x0) add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f00000015c0)="05", 0x1, 0xfffffffffffffffb) 18:45:22 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x1, {[@local=@item_012={0x0, 0x2, 0x2}]}}, 0x0}, 0x0) 18:45:22 executing program 5: r0 = syz_open_dev$media(&(0x7f0000000740), 0x0, 0x0) ioctl$MEDIA_IOC_ENUM_LINKS(r0, 0xc0287c02, &(0x7f0000000100)={0x80000000, &(0x7f0000000040)=[{0x80000000}], 0x0}) r2 = syz_open_dev$media(&(0x7f0000000000), 0x3, 0x0) ioctl$MEDIA_IOC_ENUM_LINKS(r2, 0xc0287c02, &(0x7f0000000200)={r1, 0x0, &(0x7f0000000180)}) 18:45:22 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10) recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) 18:45:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 328.429902][ T5694] trusted_key: encrypted_key: insufficient parameters specified [ 328.472379][ T120] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 328.488014][ T5696] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:45:22 executing program 5: r0 = socket(0x2a, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'ip6_vti0\x00', 0x0}) 18:45:22 executing program 1: syz_read_part_table(0x0, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000000)="304bd6e3cb9a98147da729931c5b89059c2bb8a5768c54", 0x17, 0xffffffff}, {&(0x7f0000000100), 0x0, 0x6}]) [ 328.704610][ T3614] usb 1-1: new high-speed USB device number 49 using dummy_hcd [ 328.852587][ T120] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 328.861826][ T120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 328.919937][ T120] usb 4-1: config 0 descriptor?? [ 328.947194][ T5700] loop1: detected capacity change from 0 to 264192 [ 328.955007][ T3614] usb 1-1: Using ep0 maxpacket: 16 [ 328.974775][ T120] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 329.072733][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 329.084324][ T3614] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 329.094415][ T3614] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 329.108938][ T3614] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 329.118543][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.335657][ T3614] usb 1-1: config 0 descriptor?? [ 329.358580][ T5691] not chained 20000 origins [ 329.363770][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 329.372149][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.382242][ T5691] Call Trace: [ 329.385549][ T5691] [ 329.388499][ T5691] dump_stack_lvl+0x1ff/0x28e [ 329.393251][ T5691] dump_stack+0x25/0x28 [ 329.397466][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 329.403262][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.408446][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.413631][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 329.419514][ T5691] ? preempt_count_sub+0xf8/0x330 [ 329.424587][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.429774][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 329.435659][ T5691] ? should_fail+0x75/0x9c0 [ 329.440215][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.445403][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 329.451723][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 329.457866][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.463049][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 329.468933][ T5691] __msan_chain_origin+0xbf/0x140 [ 329.474030][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.479218][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.484217][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 329.489122][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.493687][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.498851][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 329.504728][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 329.509890][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 329.515055][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 329.521366][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.527921][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.532661][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.539046][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.544125][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 329.549898][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.554824][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.559391][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.565773][ T5691] RIP: 0023:0xf6ea6549 [ 329.569864][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 329.589504][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 329.597945][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 329.605937][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 329.613930][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 329.621934][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 329.629936][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 329.637941][ T5691] [ 329.643857][ T5691] Uninit was stored to memory at: [ 329.648975][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.654745][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.659733][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.664410][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.669144][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.675858][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.680985][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.686024][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.690588][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.697172][ T5691] [ 329.699510][ T5691] Uninit was stored to memory at: [ 329.704788][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.709942][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.715133][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.719703][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.724619][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.731013][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.736280][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.741190][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.745948][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.752469][ T5691] [ 329.754803][ T5691] Uninit was stored to memory at: [ 329.759893][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.765309][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.770295][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.775040][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.779779][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.786361][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.791454][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.796552][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.801131][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.807752][ T5691] [ 329.810094][ T5691] Uninit was stored to memory at: [ 329.815487][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.820650][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.825810][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.830376][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.835316][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.841706][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.847005][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.851939][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.856692][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.863290][ T5691] [ 329.865631][ T5691] Uninit was stored to memory at: [ 329.870754][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.876454][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.881441][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.886131][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.890885][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.897502][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.902726][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.907634][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.912485][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.918893][ T5691] [ 329.921241][ T5691] Uninit was stored to memory at: [ 329.926525][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.931683][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.936786][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.941342][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 329.946268][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 329.952792][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 329.957903][ T5691] do_fast_syscall_32+0x34/0x70 [ 329.962995][ T5691] do_SYSENTER_32+0x1b/0x20 [ 329.967556][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 329.975481][ T5691] [ 329.977823][ T5691] Uninit was stored to memory at: [ 329.983104][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 329.988296][ T5691] get_compat_msghdr+0x108/0x2c0 [ 329.993481][ T5691] do_recvmmsg+0xd77/0x2120 [ 329.998038][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.002894][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.009394][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.014662][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.019589][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.024345][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.030743][ T5691] [ 330.033202][ T5691] Local variable msg_sys created at: [ 330.038499][ T5691] do_recvmmsg+0xbb/0x2120 [ 330.043144][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.230542][ T5691] not chained 30000 origins [ 330.236763][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 330.245158][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.255249][ T5691] Call Trace: [ 330.258552][ T5691] [ 330.261489][ T5691] dump_stack_lvl+0x1ff/0x28e [ 330.266220][ T5691] dump_stack+0x25/0x28 [ 330.270416][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 330.276192][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.281386][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.286568][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 330.292448][ T5691] ? preempt_count_sub+0xf8/0x330 [ 330.297528][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.302709][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 330.308677][ T5691] ? should_fail+0x75/0x9c0 [ 330.313232][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.318424][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 330.324749][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 330.330898][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.336055][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 330.342022][ T5691] __msan_chain_origin+0xbf/0x140 [ 330.347104][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.352275][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.357282][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 330.362203][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.366777][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.371974][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 330.377871][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 330.383051][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 330.388366][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 330.394687][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.401268][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.406030][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.412435][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.417531][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 330.423326][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.428220][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.432772][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.439275][ T5691] RIP: 0023:0xf6ea6549 [ 330.443374][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 330.463029][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 330.471495][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 330.479483][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 330.487471][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 330.495489][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 330.503494][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 330.511498][ T5691] [ 330.517211][ T5691] Uninit was stored to memory at: [ 330.526130][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.531322][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.536451][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.541037][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.545910][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.552430][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.557519][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.562556][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.567133][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.573676][ T5691] [ 330.576102][ T5691] Uninit was stored to memory at: [ 330.581198][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.586548][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.591546][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.596356][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.601089][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.607591][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.612807][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.617724][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.622425][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.628822][ T5691] [ 330.631158][ T5691] Uninit was stored to memory at: [ 330.636546][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.641913][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.647098][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.651666][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.656617][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.663144][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.668243][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.673343][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.677914][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.684518][ T5691] [ 330.686857][ T5691] Uninit was stored to memory at: [ 330.691942][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.697358][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.702539][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.707117][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.711837][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.718493][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.723693][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.728613][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.733382][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.739783][ T5691] [ 330.742287][ T5691] Uninit was stored to memory at: [ 330.742593][ T120] gspca_topro: reg_w err -71 [ 330.747385][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.747436][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.747483][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.747537][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.747590][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.747644][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.747703][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.747767][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.747825][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.747889][ T5691] [ 330.747896][ T5691] Uninit was stored to memory at: [ 330.747960][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.748006][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.748051][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.748103][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.748157][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.748210][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.748268][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.748324][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.748380][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.748442][ T5691] [ 330.748448][ T5691] Uninit was stored to memory at: [ 330.748514][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 330.748563][ T5691] get_compat_msghdr+0x108/0x2c0 [ 330.748609][ T5691] do_recvmmsg+0xd77/0x2120 [ 330.748661][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.748714][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 330.748772][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 330.748829][ T5691] do_fast_syscall_32+0x34/0x70 [ 330.748886][ T5691] do_SYSENTER_32+0x1b/0x20 [ 330.748941][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 330.749007][ T5691] [ 330.749015][ T5691] Local variable msg_sys created at: [ 330.749029][ T5691] do_recvmmsg+0xbb/0x2120 [ 330.749081][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 330.766114][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 330.846909][ T120] gspca_topro: Sensor soi763a [ 330.850899][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 330.893018][ T3614] usbhid 1-1:0.0: can't add hid device: -71 [ 330.960119][ T3614] usbhid: probe of 1-1:0.0 failed with error -71 [ 330.996480][ T120] usb 4-1: USB disconnect, device number 9 [ 331.030422][ T3614] usb 1-1: USB disconnect, device number 49 [ 331.217312][ T5691] not chained 40000 origins [ 331.222308][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 331.230688][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.240784][ T5691] Call Trace: [ 331.244086][ T5691] [ 331.247035][ T5691] dump_stack_lvl+0x1ff/0x28e [ 331.251780][ T5691] dump_stack+0x25/0x28 [ 331.256010][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 331.261792][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.266972][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.272146][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.277317][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 331.283196][ T5691] ? preempt_count_sub+0xf8/0x330 [ 331.288270][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.293451][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 331.299334][ T5691] ? should_fail+0x75/0x9c0 [ 331.303886][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.309085][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 331.315401][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 331.321541][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.326719][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 331.332606][ T5691] __msan_chain_origin+0xbf/0x140 [ 331.337703][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.342932][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.347932][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 331.352955][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.357545][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.362896][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 331.368780][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 331.373943][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 331.379106][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 331.385414][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.391971][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.396718][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.403101][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.408176][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 331.413941][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.418852][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.423405][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.429788][ T5691] RIP: 0023:0xf6ea6549 [ 331.433873][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 331.454041][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 331.462498][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 331.470501][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 331.478497][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 331.486488][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 331.494485][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 331.502493][ T5691] [ 331.507552][ T5691] Uninit was stored to memory at: [ 331.513033][ T5691] __get_compat_msghdr+0x6e1/0x9d0 18:45:25 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:45:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:45:25 executing program 5: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000040)={{0x12, 0x1, 0x351, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000440)={0x0, 0x0, 0xc, &(0x7f0000000300)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7}]}}) 18:45:25 executing program 1: syz_open_procfs$namespace(0x0, &(0x7f00000023c0)='ns/net\x00') 18:45:25 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x1, {[@local=@item_012={0x0, 0x2, 0x2}]}}, 0x0}, 0x0) [ 331.518199][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.523349][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.527910][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.532852][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.539264][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.544500][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.549420][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.554192][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.560599][ T5691] [ 331.563057][ T5691] Uninit was stored to memory at: [ 331.568178][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.573480][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.578470][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.583146][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.587882][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.594406][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.599672][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.604723][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.609289][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.615821][ T5691] [ 331.618158][ T5691] Uninit was stored to memory at: [ 331.623374][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.628530][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.633644][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.638202][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.643062][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.649442][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.654644][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.659554][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.664235][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.670633][ T5691] [ 331.673096][ T5691] Uninit was stored to memory at: [ 331.678196][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.683483][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.688476][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.693258][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.698010][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.704627][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.709721][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.714761][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.719327][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.725928][ T5691] [ 331.728273][ T5691] Uninit was stored to memory at: [ 331.733552][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.738728][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.743894][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.748491][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.753411][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.759803][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.765076][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.769991][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.774748][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.781144][ T5691] [ 331.783664][ T5691] Uninit was stored to memory at: [ 331.788758][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.794037][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.799020][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.803738][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.808493][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.815070][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.820165][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.825274][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.829863][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.836460][ T5691] [ 331.838806][ T5691] Uninit was stored to memory at: [ 331.844108][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 331.849281][ T5691] get_compat_msghdr+0x108/0x2c0 [ 331.854459][ T5691] do_recvmmsg+0xd77/0x2120 [ 331.859052][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 331.864003][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 331.870408][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 331.875691][ T5691] do_fast_syscall_32+0x34/0x70 [ 331.880602][ T5691] do_SYSENTER_32+0x1b/0x20 [ 331.885340][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 331.891755][ T5691] [ 331.894319][ T5691] Local variable msg_sys created at: [ 331.899808][ T5691] do_recvmmsg+0xbb/0x2120 [ 331.904469][ T5691] __sys_recvmmsg+0x51c/0x6f0 18:45:26 executing program 1: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) [ 331.987274][ T5709] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:45:26 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 332.212617][ T1020] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 332.352398][ T120] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 332.433239][ T3547] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 332.461072][ T5717] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 332.463210][ T1020] usb 6-1: Using ep0 maxpacket: 8 18:45:26 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 332.579769][ T1745] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 332.631950][ T5691] not chained 50000 origins [ 332.637099][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 332.645469][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.655557][ T5691] Call Trace: [ 332.658855][ T5691] [ 332.661802][ T5691] dump_stack_lvl+0x1ff/0x28e [ 332.666550][ T5691] dump_stack+0x25/0x28 [ 332.670769][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 332.676583][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.681762][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.686943][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.692118][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 332.698070][ T5691] ? preempt_count_sub+0xf8/0x330 [ 332.703128][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.708287][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 332.714151][ T5691] ? should_fail+0x75/0x9c0 [ 332.718688][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.723935][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 332.730248][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 332.736396][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.741556][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 332.747415][ T5691] __msan_chain_origin+0xbf/0x140 [ 332.753185][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 332.758364][ T5691] get_compat_msghdr+0x108/0x2c0 [ 332.763345][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 332.768260][ T5691] do_recvmmsg+0xd77/0x2120 [ 332.772825][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.778081][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 332.783964][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 332.789130][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 332.794294][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 332.800965][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 332.807519][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 332.812258][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 332.818643][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 332.823720][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 332.829485][ T5691] do_fast_syscall_32+0x34/0x70 [ 332.834388][ T5691] do_SYSENTER_32+0x1b/0x20 [ 332.838937][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 332.845321][ T5691] RIP: 0023:0xf6ea6549 [ 332.849408][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 332.869057][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 332.877504][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 332.885499][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 332.893490][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 332.901482][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 332.909474][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 332.917479][ T5691] [ 332.923771][ T5691] Uninit was stored to memory at: [ 332.928884][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 332.934600][ T5691] get_compat_msghdr+0x108/0x2c0 [ 332.939593][ T5691] do_recvmmsg+0xd77/0x2120 [ 332.944252][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 332.948980][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 332.955556][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 332.960652][ T5691] do_fast_syscall_32+0x34/0x70 [ 332.965665][ T5691] do_SYSENTER_32+0x1b/0x20 [ 332.970224][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 332.976728][ T5691] [ 332.979065][ T5691] Uninit was stored to memory at: [ 332.984273][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 332.989433][ T5691] get_compat_msghdr+0x108/0x2c0 [ 332.994524][ T5691] do_recvmmsg+0xd77/0x2120 [ 332.994544][ T1020] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 332.999103][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 332.999161][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 332.999219][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 332.999285][ T5691] do_fast_syscall_32+0x34/0x70 [ 332.999341][ T5691] do_SYSENTER_32+0x1b/0x20 [ 332.999396][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 332.999460][ T5691] [ 332.999467][ T5691] Uninit was stored to memory at: [ 332.999538][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 332.999584][ T5691] get_compat_msghdr+0x108/0x2c0 [ 332.999629][ T5691] do_recvmmsg+0xd77/0x2120 [ 332.999682][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 332.999736][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 332.999789][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 332.999850][ T5691] do_fast_syscall_32+0x34/0x70 [ 332.999908][ T5691] do_SYSENTER_32+0x1b/0x20 [ 332.999963][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.000026][ T5691] [ 333.000032][ T5691] Uninit was stored to memory at: [ 333.000097][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 333.000145][ T5691] get_compat_msghdr+0x108/0x2c0 [ 333.000192][ T5691] do_recvmmsg+0xd77/0x2120 [ 333.000249][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.000303][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.000357][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 333.000414][ T5691] do_fast_syscall_32+0x34/0x70 [ 333.000473][ T5691] do_SYSENTER_32+0x1b/0x20 [ 333.000530][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.000593][ T5691] [ 333.000600][ T5691] Uninit was stored to memory at: [ 333.000667][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 333.166281][ T5691] get_compat_msghdr+0x108/0x2c0 [ 333.171885][ T5691] do_recvmmsg+0xd77/0x2120 [ 333.176619][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.181358][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.188003][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 333.193221][ T5691] do_fast_syscall_32+0x34/0x70 [ 333.198141][ T5691] do_SYSENTER_32+0x1b/0x20 [ 333.202850][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.209250][ T5691] [ 333.211583][ T5691] Uninit was stored to memory at: [ 333.216828][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 333.222080][ T5691] get_compat_msghdr+0x108/0x2c0 [ 333.227075][ T5691] do_recvmmsg+0xd77/0x2120 [ 333.231645][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.236554][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.243042][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 333.248134][ T5691] do_fast_syscall_32+0x34/0x70 [ 333.253159][ T5691] do_SYSENTER_32+0x1b/0x20 [ 333.257728][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.264213][ T5691] [ 333.266552][ T5691] Uninit was stored to memory at: [ 333.271649][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 333.273672][ T1020] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 333.276904][ T5691] get_compat_msghdr+0x108/0x2c0 [ 333.276959][ T5691] do_recvmmsg+0xd77/0x2120 [ 333.277017][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.277073][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.286509][ T1020] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 333.291135][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 333.295877][ T1020] usb 6-1: Product: syz [ 333.300425][ T5691] do_fast_syscall_32+0x34/0x70 [ 333.308336][ T1020] usb 6-1: Manufacturer: syz [ 333.314922][ T5691] do_SYSENTER_32+0x1b/0x20 [ 333.314985][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.315050][ T5691] [ 333.315059][ T5691] Local variable msg_sys created at: [ 333.315073][ T5691] do_recvmmsg+0xbb/0x2120 [ 333.315128][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.362132][ T1020] usb 6-1: SerialNumber: syz [ 333.367951][ T3547] usb 1-1: Using ep0 maxpacket: 16 [ 333.454964][ T1020] cdc_ether: probe of 6-1:1.0 failed with error -22 [ 333.459433][ T1745] usb 2-1: Using ep0 maxpacket: 8 [ 333.468338][ T120] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 333.477896][ T120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.503725][ T3547] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 333.517520][ T3547] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 333.528105][ T3547] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 333.541189][ T3547] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 333.550555][ T3547] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.581822][ T120] usb 4-1: config 0 descriptor?? [ 333.591622][ T3547] usb 1-1: config 0 descriptor?? [ 333.630924][ T120] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 333.654854][ T1745] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 333.661377][ T1020] usb 6-1: USB disconnect, device number 8 [ 333.724815][ T5719] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 333.781807][ T5691] not chained 60000 origins [ 333.786988][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 333.795370][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.805456][ T5691] Call Trace: [ 333.808928][ T5691] [ 333.811876][ T5691] dump_stack_lvl+0x1ff/0x28e [ 333.816625][ T5691] dump_stack+0x25/0x28 [ 333.820836][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 333.826614][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.831796][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.836986][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 333.842877][ T5691] ? preempt_count_sub+0xf8/0x330 [ 333.847955][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.853138][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 333.859129][ T5691] ? should_fail+0x75/0x9c0 [ 333.863680][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.868863][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 333.875175][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 333.881289][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.886468][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 333.892348][ T5691] __msan_chain_origin+0xbf/0x140 [ 333.897441][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 333.902630][ T5691] get_compat_msghdr+0x108/0x2c0 [ 333.907629][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 333.912533][ T5691] do_recvmmsg+0xd77/0x2120 [ 333.917113][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.922291][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 333.928174][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 333.933353][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 333.938541][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 333.944912][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.951456][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 333.956203][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 333.962573][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 333.967637][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 333.973394][ T5691] do_fast_syscall_32+0x34/0x70 [ 333.978310][ T5691] do_SYSENTER_32+0x1b/0x20 [ 333.982859][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 333.989258][ T5691] RIP: 0023:0xf6ea6549 [ 333.993372][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 334.013010][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 334.021480][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 334.029483][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 334.037475][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 334.045471][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 334.053453][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 334.061493][ T5691] [ 334.067078][ T5691] Uninit was stored to memory at: [ 334.072847][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.078006][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.083118][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.087670][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.092520][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.098900][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.104106][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.109013][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.113697][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.120094][ T5691] [ 334.122559][ T5691] Uninit was stored to memory at: [ 334.127678][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.132957][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.137943][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.142624][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.147355][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.153874][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.159048][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.164107][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.168666][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.175183][ T5691] [ 334.177516][ T5691] Uninit was stored to memory at: [ 334.182732][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.187890][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.193047][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.197604][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.202451][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.208923][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.214185][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.219096][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.223828][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.230221][ T5691] [ 334.232659][ T1745] usb 2-1: string descriptor 0 read error: -22 [ 334.232718][ T5691] Uninit was stored to memory at: [ 334.232794][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.239336][ T1745] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 334.244061][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.244112][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.244169][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.244224][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.244281][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.249419][ T1745] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 334.258515][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.297185][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.301749][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.308347][ T5691] [ 334.310681][ T5691] Uninit was stored to memory at: [ 334.315886][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.321036][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.326149][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.330708][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.335564][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.341944][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.347145][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.352166][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.356726][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.363249][ T5691] [ 334.365583][ T5691] Uninit was stored to memory at: [ 334.370683][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.376035][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.381024][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.385721][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.390467][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.396983][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.402187][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.406997][ T1745] cdc_ether: probe of 2-1:1.0 failed with error -22 [ 334.407090][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.418375][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.424915][ T5691] [ 334.427253][ T5691] Uninit was stored to memory at: [ 334.432470][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 334.437634][ T5691] get_compat_msghdr+0x108/0x2c0 [ 334.442789][ T5691] do_recvmmsg+0xd77/0x2120 [ 334.447358][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.452218][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 334.458605][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 334.463844][ T5691] do_fast_syscall_32+0x34/0x70 [ 334.468782][ T5691] do_SYSENTER_32+0x1b/0x20 [ 334.473552][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 334.479955][ T5691] [ 334.482431][ T5691] Local variable msg_sys created at: [ 334.487727][ T5691] do_recvmmsg+0xbb/0x2120 [ 334.492342][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 334.584218][ T3547] usbhid 1-1:0.0: can't add hid device: -71 [ 334.590622][ T3547] usbhid: probe of 1-1:0.0 failed with error -71 [ 334.610879][ T19] usb 2-1: USB disconnect, device number 2 [ 334.675865][ T3547] usb 1-1: USB disconnect, device number 50 [ 334.900131][ T5691] not chained 70000 origins [ 334.905030][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 334.913410][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.923498][ T5691] Call Trace: [ 334.926807][ T5691] [ 334.929758][ T5691] dump_stack_lvl+0x1ff/0x28e [ 334.934509][ T5691] dump_stack+0x25/0x28 [ 334.938719][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 334.944594][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 334.949775][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 334.954951][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 334.960824][ T5691] ? preempt_count_sub+0xf8/0x330 [ 334.965892][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 334.971072][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 334.976951][ T5691] ? should_fail+0x75/0x9c0 [ 334.981482][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 334.986655][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 334.992965][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 334.999104][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 335.004282][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 335.010167][ T5691] __msan_chain_origin+0xbf/0x140 [ 335.015262][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.020440][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.025416][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 335.030329][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.034892][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 335.040065][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 335.045925][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 335.051097][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 335.056276][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 335.062590][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.069154][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.073884][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.080301][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.085376][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 335.091156][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.096074][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.100637][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.107033][ T5691] RIP: 0023:0xf6ea6549 [ 335.111131][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 335.130804][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 335.139251][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 335.147264][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 335.155274][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 335.163287][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 335.171292][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 335.179300][ T5691] [ 335.185709][ T5691] Uninit was stored to memory at: [ 335.190825][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.196574][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.201566][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.206225][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.210959][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.217477][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.222679][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.227598][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.232266][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.238668][ T5691] [ 335.241008][ T5691] Uninit was stored to memory at: [ 335.246212][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.251396][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.256575][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.261143][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.266046][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.272529][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.277616][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.282675][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.287240][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.293771][ T5691] [ 335.296101][ T5691] Uninit was stored to memory at: [ 335.301199][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.306508][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.311498][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.316246][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.320987][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.327539][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.332724][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.337761][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.342484][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.348877][ T5691] [ 335.351210][ T5691] Uninit was stored to memory at: [ 335.356462][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.361619][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.366704][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.371263][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.376106][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.382587][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.387673][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.392776][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.397344][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.403822][ T5691] [ 335.406156][ T5691] Uninit was stored to memory at: [ 335.411248][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.416502][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.421484][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.426147][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.430877][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.437376][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.442601][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.447510][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.452170][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.458556][ T5691] [ 335.460892][ T5691] Uninit was stored to memory at: [ 335.466153][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.471308][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.476481][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.481044][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.485876][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.492361][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.497450][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.502464][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.507028][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.513544][ T5691] [ 335.515888][ T5691] Uninit was stored to memory at: [ 335.520989][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 335.526252][ T5691] get_compat_msghdr+0x108/0x2c0 [ 335.531254][ T5691] do_recvmmsg+0xd77/0x2120 [ 335.535917][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.540641][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 335.547128][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 335.552326][ T5691] do_fast_syscall_32+0x34/0x70 [ 335.557230][ T5691] do_SYSENTER_32+0x1b/0x20 [ 335.561796][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 335.568300][ T5691] [ 335.570633][ T5691] Local variable msg_sys created at: [ 335.576080][ T5691] do_recvmmsg+0xbb/0x2120 [ 335.580550][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 335.593894][ T120] gspca_topro: reg_w err -71 [ 335.632240][ T120] gspca_topro: Sensor soi763a [ 335.663495][ T120] usb 4-1: USB disconnect, device number 10 [ 335.943291][ T5691] not chained 80000 origins [ 335.947847][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 335.956223][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.966313][ T5691] Call Trace: [ 335.969610][ T5691] [ 335.972556][ T5691] dump_stack_lvl+0x1ff/0x28e [ 335.977391][ T5691] dump_stack+0x25/0x28 [ 335.981608][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 335.987400][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 335.992574][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 335.997764][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.003614][ T5691] ? preempt_count_sub+0xf8/0x330 [ 336.008677][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.013850][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.019693][ T5691] ? should_fail+0x75/0x9c0 [ 336.024218][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.029379][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 336.035783][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 336.041895][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.047048][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.052923][ T5691] __msan_chain_origin+0xbf/0x140 [ 336.058014][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.063192][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.068182][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 336.073094][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.077663][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.082813][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.088693][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 336.093841][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.098980][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 336.105296][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.111850][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.116566][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.122937][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.128021][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 336.133782][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.138665][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.143312][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.149705][ T5691] RIP: 0023:0xf6ea6549 [ 336.153789][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 336.173449][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 336.181915][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 336.189918][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 336.197903][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 336.205887][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 336.213886][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 336.221892][ T5691] [ 336.227955][ T5691] Uninit was stored to memory at: [ 336.233605][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.238762][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.243846][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.248424][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.253255][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.259644][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.264898][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.269816][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.274538][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.280929][ T5691] [ 336.283419][ T5691] Uninit was stored to memory at: [ 336.288511][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.293782][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.298762][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.303454][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.308270][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.314771][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.319872][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.324920][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.329471][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.336162][ T5691] [ 336.338505][ T5691] Uninit was stored to memory at: [ 336.343755][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.348914][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.354017][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.358690][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.363564][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.369944][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.375166][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.380076][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.384780][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.391174][ T5691] [ 336.393662][ T5691] Uninit was stored to memory at: [ 336.398747][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.404063][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.409040][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.413740][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.418469][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.425004][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.430082][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.435092][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.439652][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.446192][ T5691] [ 336.448527][ T5691] Uninit was stored to memory at: [ 336.453781][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.458933][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.464074][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.468627][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.473499][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.479881][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.485129][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.490044][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.494781][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.501259][ T5691] [ 336.503746][ T5691] Uninit was stored to memory at: [ 336.508825][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.514136][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.519123][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.523830][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.528559][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.535097][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.540180][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.545231][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.549815][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.556310][ T5691] [ 336.558640][ T5691] Uninit was stored to memory at: [ 336.563884][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.569055][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.574171][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.578725][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.583585][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.589966][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.595213][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.600126][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.604827][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.611218][ T5691] [ 336.613707][ T5691] Local variable msg_sys created at: [ 336.619023][ T5691] do_recvmmsg+0xbb/0x2120 [ 336.623681][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.756165][ T5691] not chained 90000 origins [ 336.760732][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 336.769082][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.779143][ T5691] Call Trace: [ 336.782567][ T5691] [ 336.785518][ T5691] dump_stack_lvl+0x1ff/0x28e [ 336.790240][ T5691] dump_stack+0x25/0x28 [ 336.794459][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 336.800217][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.805362][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.810501][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.816342][ T5691] ? preempt_count_sub+0xf8/0x330 [ 336.821381][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.826534][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.832377][ T5691] ? should_fail+0x75/0x9c0 [ 336.836895][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.842046][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 336.848329][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 336.854444][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.859591][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.865429][ T5691] __msan_chain_origin+0xbf/0x140 [ 336.870479][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 336.875626][ T5691] get_compat_msghdr+0x108/0x2c0 [ 336.880584][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 336.885462][ T5691] do_recvmmsg+0xd77/0x2120 [ 336.890010][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.895175][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 336.901057][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 336.906201][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 336.911344][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 336.917619][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.924149][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 336.928862][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 336.935222][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 336.940278][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 336.946020][ T5691] do_fast_syscall_32+0x34/0x70 [ 336.950898][ T5691] do_SYSENTER_32+0x1b/0x20 [ 336.955433][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 336.961793][ T5691] RIP: 0023:0xf6ea6549 [ 336.965860][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 336.985494][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 336.993924][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 337.001922][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 337.009903][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 337.017886][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 337.025860][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 337.033852][ T5691] [ 337.038906][ T5691] Uninit was stored to memory at: [ 337.044478][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.049636][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.054756][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.059316][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.064162][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.070546][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.075782][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.080679][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.085370][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.091760][ T5691] [ 337.094243][ T5691] Uninit was stored to memory at: [ 337.099333][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.104834][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.109823][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.114515][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.119431][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.125949][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.131047][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.136126][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.140682][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.147187][ T5691] [ 337.149515][ T5691] Uninit was stored to memory at: [ 337.154780][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.159931][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.165080][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.169633][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.174529][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.180908][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.186188][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.191100][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.195768][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.202276][ T5691] [ 337.204606][ T5691] Uninit was stored to memory at: [ 337.209697][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.214962][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.219937][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.224607][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.229362][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.235920][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.241001][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.246050][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.250604][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.257106][ T5691] [ 337.259437][ T5691] Uninit was stored to memory at: [ 337.264706][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.269855][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.275007][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.279559][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.284406][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.290781][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.296027][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.300937][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.305676][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.312187][ T5691] [ 337.314519][ T5691] Uninit was stored to memory at: [ 337.319591][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.324857][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.329830][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.334552][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.339277][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.345772][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.350851][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.355870][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.360431][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.367017][ T5691] [ 337.369356][ T5691] Uninit was stored to memory at: [ 337.374578][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.379726][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.384877][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.389429][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.394352][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.400727][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.405992][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.410895][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.415710][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.422222][ T5691] [ 337.424556][ T5691] Local variable msg_sys created at: [ 337.429840][ T5691] do_recvmmsg+0xbb/0x2120 [ 337.434424][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.574976][ T5691] not chained 100000 origins [ 337.579637][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 337.587982][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.598048][ T5691] Call Trace: [ 337.601336][ T5691] [ 337.604268][ T5691] dump_stack_lvl+0x1ff/0x28e [ 337.608986][ T5691] dump_stack+0x25/0x28 [ 337.613179][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 337.618964][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.624133][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.629301][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 337.635146][ T5691] ? preempt_count_sub+0xf8/0x330 [ 337.640203][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.645345][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 337.651185][ T5691] ? should_fail+0x75/0x9c0 [ 337.655705][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.660873][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 337.667174][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 337.673291][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.678462][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 337.684330][ T5691] __msan_chain_origin+0xbf/0x140 [ 337.689384][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.694536][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.699523][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 337.704426][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.708974][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.714142][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 337.720050][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 337.725193][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 337.730335][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 337.736619][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.743202][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.747934][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.754328][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.759430][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 337.765179][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.770080][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.774615][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.781006][ T5691] RIP: 0023:0xf6ea6549 [ 337.785100][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 337.804762][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 337.813431][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 337.821435][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 337.829420][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 337.837503][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 337.845486][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 337.853502][ T5691] [ 337.859781][ T5691] Uninit was stored to memory at: [ 337.865496][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.870656][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.875751][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.880314][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.885148][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.891536][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.896725][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.901635][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.906364][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.912859][ T5691] [ 337.915190][ T5691] Uninit was stored to memory at: [ 337.920266][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.925582][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.930562][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.935261][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.940021][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 337.946500][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 337.951581][ T5691] do_fast_syscall_32+0x34/0x70 [ 337.956589][ T5691] do_SYSENTER_32+0x1b/0x20 [ 337.961144][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 337.967632][ T5691] [ 337.969961][ T5691] Uninit was stored to memory at: [ 337.975208][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 337.980361][ T5691] get_compat_msghdr+0x108/0x2c0 [ 337.985484][ T5691] do_recvmmsg+0xd77/0x2120 [ 337.990047][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 337.994929][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.001322][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.006530][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.011435][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.016133][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.022616][ T5691] [ 338.024951][ T5691] Uninit was stored to memory at: [ 338.030044][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.035364][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.040342][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.045043][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.049774][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.056292][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.061502][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.066556][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.071114][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.077598][ T5691] [ 338.079927][ T5691] Uninit was stored to memory at: [ 338.085171][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.090325][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.095424][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.099978][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.104849][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.111240][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.116446][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.121351][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.126056][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.132692][ T5691] [ 338.135026][ T5691] Uninit was stored to memory at: [ 338.140105][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.145403][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.150379][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.155078][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.159814][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.166292][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.171373][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.176427][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.180984][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.187495][ T5691] [ 338.189843][ T5691] Uninit was stored to memory at: [ 338.195100][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.200262][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.205398][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.209953][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.214828][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.221208][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.226466][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.231379][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.236033][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.242519][ T5691] [ 338.244855][ T5691] Local variable msg_sys created at: [ 338.250139][ T5691] do_recvmmsg+0xbb/0x2120 [ 338.254840][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.388575][ T5691] not chained 110000 origins [ 338.393356][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 338.401787][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.411845][ T5691] Call Trace: [ 338.415122][ T5691] [ 338.418068][ T5691] dump_stack_lvl+0x1ff/0x28e [ 338.422777][ T5691] dump_stack+0x25/0x28 [ 338.426954][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 338.432731][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.437879][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.443017][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 338.448858][ T5691] ? preempt_count_sub+0xf8/0x330 [ 338.453895][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.459034][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 338.464886][ T5691] ? should_fail+0x75/0x9c0 [ 338.469404][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.474542][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 338.480820][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 338.486931][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.492073][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 338.497923][ T5691] __msan_chain_origin+0xbf/0x140 [ 338.502989][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.508133][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.513115][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 338.518012][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.522555][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.527704][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 338.533580][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 338.538725][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 338.543867][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 338.550153][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.556698][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.561418][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.567779][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.572841][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 338.578606][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.583519][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.588058][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.594420][ T5691] RIP: 0023:0xf6ea6549 [ 338.598491][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 338.618128][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 338.626566][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 338.634553][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 338.642561][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 338.650550][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 338.658529][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 338.666519][ T5691] [ 338.671621][ T5691] Uninit was stored to memory at: [ 338.677083][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.682452][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.687429][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.692097][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.696825][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.703331][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.708408][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.713448][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.718007][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.724541][ T5691] [ 338.726876][ T5691] Uninit was stored to memory at: [ 338.732092][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.737244][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.742355][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.746908][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.751636][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.758109][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.763309][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.768222][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.772940][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.779333][ T5691] [ 338.781662][ T5691] Uninit was stored to memory at: [ 338.786886][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.792155][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.797135][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.801683][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.806605][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.813069][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.818129][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.823180][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.827739][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.834271][ T5691] [ 338.836606][ T5691] Uninit was stored to memory at: [ 338.841776][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.847068][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.852167][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.856725][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.861443][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.867943][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.873157][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.878072][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.882818][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.889225][ T5691] [ 338.891560][ T5691] Uninit was stored to memory at: [ 338.896808][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.901957][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.907110][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.911660][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.916685][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.923152][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.928215][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.933282][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.937836][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.944431][ T5691] [ 338.946770][ T5691] Uninit was stored to memory at: [ 338.951847][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 338.957123][ T5691] get_compat_msghdr+0x108/0x2c0 [ 338.962216][ T5691] do_recvmmsg+0xd77/0x2120 [ 338.966777][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 338.971495][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 338.977991][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 338.983200][ T5691] do_fast_syscall_32+0x34/0x70 [ 338.988108][ T5691] do_SYSENTER_32+0x1b/0x20 [ 338.992812][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 338.999288][ T5691] [ 339.001617][ T5691] Uninit was stored to memory at: [ 339.006907][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.012171][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.017162][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.021716][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.026628][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.033138][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.038240][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.043264][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.047814][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.054336][ T5691] [ 339.056668][ T5691] Local variable msg_sys created at: [ 339.061953][ T5691] do_recvmmsg+0xbb/0x2120 [ 339.066533][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.255828][ T5691] not chained 120000 origins [ 339.260463][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 339.268822][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.278887][ T5691] Call Trace: [ 339.282291][ T5691] [ 339.285228][ T5691] dump_stack_lvl+0x1ff/0x28e [ 339.289944][ T5691] dump_stack+0x25/0x28 [ 339.294125][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 339.299900][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.305069][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.310250][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 339.316112][ T5691] ? preempt_count_sub+0xf8/0x330 [ 339.321151][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.326294][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 339.332169][ T5691] ? should_fail+0x75/0x9c0 [ 339.336692][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.341844][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 339.348133][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 339.354269][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.359415][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 339.365279][ T5691] __msan_chain_origin+0xbf/0x140 [ 339.370361][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.375514][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.380497][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 339.385379][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.389942][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.395085][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 339.400934][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 339.406075][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 339.411243][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 339.417543][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.424082][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.428821][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.435195][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.440273][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 339.446016][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.450900][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.455460][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.461853][ T5691] RIP: 0023:0xf6ea6549 [ 339.465926][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 339.485568][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 339.494006][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 339.502005][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 339.509999][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 339.517979][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 339.525978][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 339.534000][ T5691] [ 339.540093][ T5691] Uninit was stored to memory at: [ 339.545682][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.550850][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.555944][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.560506][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.565398][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.571778][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.576968][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.581876][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.586579][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.593072][ T5691] [ 339.595402][ T5691] Uninit was stored to memory at: [ 339.600558][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.605886][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.610874][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.615532][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.620393][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.626950][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.632128][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.637043][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.641592][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.648079][ T5691] [ 339.650409][ T5691] Uninit was stored to memory at: [ 339.655641][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.660796][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.665958][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.670687][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.675522][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.681905][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.687162][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.692208][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.696768][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.703300][ T5691] [ 339.705635][ T5691] Uninit was stored to memory at: [ 339.710710][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.715955][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.720931][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.725620][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.730346][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.736864][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.741944][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.746989][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.751542][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.758046][ T5691] [ 339.760430][ T5691] Uninit was stored to memory at: [ 339.765669][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.770818][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.775888][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.780440][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.785305][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.791685][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.796860][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.801760][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.806463][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.812946][ T5691] [ 339.815271][ T5691] Uninit was stored to memory at: [ 339.820344][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.825631][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.830605][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.835255][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.839982][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.846506][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.851586][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.856645][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.861199][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.867711][ T5691] [ 339.870042][ T5691] Uninit was stored to memory at: [ 339.875281][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 339.880437][ T5691] get_compat_msghdr+0x108/0x2c0 [ 339.885513][ T5691] do_recvmmsg+0xd77/0x2120 [ 339.890065][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 339.894934][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 339.901314][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 339.906508][ T5691] do_fast_syscall_32+0x34/0x70 [ 339.911406][ T5691] do_SYSENTER_32+0x1b/0x20 [ 339.916100][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 339.922585][ T5691] [ 339.924912][ T5691] Local variable msg_sys created at: [ 339.930183][ T5691] do_recvmmsg+0xbb/0x2120 [ 339.934779][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.056175][ T5691] not chained 130000 origins [ 340.060814][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 340.069162][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.079233][ T5691] Call Trace: [ 340.082530][ T5691] [ 340.085474][ T5691] dump_stack_lvl+0x1ff/0x28e [ 340.090212][ T5691] dump_stack+0x25/0x28 [ 340.094396][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 340.100172][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.105324][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.110487][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.116335][ T5691] ? preempt_count_sub+0xf8/0x330 [ 340.121376][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.126529][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.132399][ T5691] ? should_fail+0x75/0x9c0 [ 340.136943][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.142103][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 340.148420][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 340.154530][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.159695][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.165535][ T5691] __msan_chain_origin+0xbf/0x140 [ 340.170612][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.175779][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.180770][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 340.185659][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.190240][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.195410][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.201297][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 340.206460][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.211608][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 340.217886][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.224429][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.229182][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.235580][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.240667][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 340.246416][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.251302][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.255839][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.262240][ T5691] RIP: 0023:0xf6ea6549 [ 340.266341][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 340.285995][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 340.294434][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 340.302439][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 340.310434][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 340.318416][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 340.326397][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.334499][ T5691] [ 340.341078][ T5691] Uninit was stored to memory at: [ 340.346932][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.352201][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.357205][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.361764][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.366613][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.373157][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.378262][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.383314][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.387876][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.394425][ T5691] [ 340.396755][ T5691] Uninit was stored to memory at: [ 340.401827][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.407126][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.412198][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.416757][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.421583][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.428077][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.433316][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.438230][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.442904][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.449290][ T5691] [ 340.451603][ T5691] Uninit was stored to memory at: [ 340.456940][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.462180][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.467166][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.471693][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.476569][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.483047][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.488130][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.493205][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.497780][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.504361][ T5691] [ 340.506699][ T5691] Uninit was stored to memory at: [ 340.511767][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.517071][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.522146][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.526713][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.531435][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.537909][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.543100][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.548016][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.552723][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.559114][ T5691] [ 340.561437][ T5691] Uninit was stored to memory at: [ 340.566682][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.571835][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.576945][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.581503][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.586419][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.592903][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.597988][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.603037][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.607596][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.614111][ T5691] [ 340.616468][ T5691] Uninit was stored to memory at: [ 340.621533][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.626834][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.631815][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.636539][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.641269][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.647761][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.653002][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.657915][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.662617][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.669009][ T5691] [ 340.671359][ T5691] Uninit was stored to memory at: [ 340.676617][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.681780][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.686841][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.691400][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.696316][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 340.702787][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 340.707877][ T5691] do_fast_syscall_32+0x34/0x70 [ 340.712955][ T5691] do_SYSENTER_32+0x1b/0x20 [ 340.717512][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 340.724059][ T5691] [ 340.726397][ T5691] Local variable msg_sys created at: [ 340.731682][ T5691] do_recvmmsg+0xbb/0x2120 [ 340.736309][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 340.862974][ T5691] not chained 140000 origins [ 340.867597][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 340.875942][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.886008][ T5691] Call Trace: [ 340.889300][ T5691] [ 340.892232][ T5691] dump_stack_lvl+0x1ff/0x28e [ 340.896966][ T5691] dump_stack+0x25/0x28 [ 340.901157][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 340.906919][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.912064][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.917207][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.923045][ T5691] ? preempt_count_sub+0xf8/0x330 [ 340.928098][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.933236][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.939081][ T5691] ? should_fail+0x75/0x9c0 [ 340.943597][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.948747][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 340.955027][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 340.961144][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 340.966306][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 340.972155][ T5691] __msan_chain_origin+0xbf/0x140 [ 340.977218][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 340.982373][ T5691] get_compat_msghdr+0x108/0x2c0 [ 340.987350][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 340.992280][ T5691] do_recvmmsg+0xd77/0x2120 [ 340.996827][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.001973][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 341.007845][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 341.012982][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.018137][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 341.024430][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.030979][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.035702][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.042076][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.047137][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 341.052891][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.057770][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.062308][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.068689][ T5691] RIP: 0023:0xf6ea6549 [ 341.072776][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 341.092410][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 341.100871][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 341.108850][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 341.116826][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 341.124798][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 341.132777][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 341.140871][ T5691] [ 341.146286][ T5691] Uninit was stored to memory at: [ 341.151396][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.157004][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.162115][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.166682][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.171413][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.177943][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.183156][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.188074][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.192755][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.199149][ T5691] [ 341.201478][ T5691] Uninit was stored to memory at: [ 341.206724][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.211873][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.216962][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.221512][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.226411][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.232917][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.237996][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.243052][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.247602][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.254102][ T5691] [ 341.256429][ T5691] Uninit was stored to memory at: [ 341.261491][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.266812][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.271808][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.276540][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.281270][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.287792][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.293046][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.297956][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.302702][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.309095][ T5691] [ 341.311419][ T5691] Uninit was stored to memory at: [ 341.316637][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.321782][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.326885][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.331436][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.336343][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.342850][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.347929][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.352990][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.357541][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.364114][ T5691] [ 341.366446][ T5691] Uninit was stored to memory at: [ 341.371508][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.376777][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.381753][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.386477][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.391211][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.397768][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.402991][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.407920][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.412640][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.419030][ T5691] [ 341.421347][ T5691] Uninit was stored to memory at: [ 341.426590][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.431741][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.436938][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.441512][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.446441][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.452952][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.458112][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.463232][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.467807][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.474375][ T5691] [ 341.476705][ T5691] Uninit was stored to memory at: [ 341.481768][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.487036][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.492128][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.496680][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.501404][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.507978][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.513144][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.518030][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.522756][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.529166][ T5691] [ 341.531503][ T5691] Local variable msg_sys created at: [ 341.536924][ T5691] do_recvmmsg+0xbb/0x2120 [ 341.541405][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.674198][ T5691] not chained 150000 origins [ 341.678827][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 341.687182][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.697287][ T5691] Call Trace: [ 341.700569][ T5691] [ 341.703497][ T5691] dump_stack_lvl+0x1ff/0x28e [ 341.708242][ T5691] dump_stack+0x25/0x28 [ 341.712455][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 341.718236][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.723499][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.728670][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 341.734556][ T5691] ? preempt_count_sub+0xf8/0x330 [ 341.739621][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.744810][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 341.750674][ T5691] ? should_fail+0x75/0x9c0 [ 341.755201][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.760371][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 341.766650][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 341.772784][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.778044][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 341.783910][ T5691] __msan_chain_origin+0xbf/0x140 [ 341.789005][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.794158][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.799139][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 341.804046][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.808610][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.813763][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 341.819637][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 341.824787][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 341.829945][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 341.836227][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.842803][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.847544][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.853911][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.858988][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 341.864739][ T5691] do_fast_syscall_32+0x34/0x70 [ 341.869654][ T5691] do_SYSENTER_32+0x1b/0x20 [ 341.874186][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 341.880577][ T5691] RIP: 0023:0xf6ea6549 [ 341.884670][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 341.904322][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 341.912785][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 341.920792][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 341.928775][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 341.936757][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 341.944755][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 341.952759][ T5691] [ 341.958713][ T5691] Uninit was stored to memory at: [ 341.965514][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 341.970682][ T5691] get_compat_msghdr+0x108/0x2c0 [ 341.975770][ T5691] do_recvmmsg+0xd77/0x2120 [ 341.980331][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 341.985155][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 341.991547][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 341.996781][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.001693][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.006371][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.012858][ T5691] [ 342.015193][ T5691] Uninit was stored to memory at: [ 342.020318][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.025566][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.030549][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.035287][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.040015][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.046494][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.051576][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.056634][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.061199][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.067694][ T5691] [ 342.070026][ T5691] Uninit was stored to memory at: [ 342.075278][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.080428][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.085512][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.090155][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.095028][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.101415][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.106662][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.111574][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.116300][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.122791][ T5691] [ 342.125129][ T5691] Uninit was stored to memory at: [ 342.130210][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.135526][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.140509][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.145221][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.149982][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.157656][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.164398][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.169317][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.174006][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.180404][ T5691] [ 342.182884][ T5691] Uninit was stored to memory at: [ 342.187976][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.193295][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.198276][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.202970][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.207697][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.214232][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.219319][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.224411][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.228988][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.235493][ T5691] [ 342.237820][ T5691] Uninit was stored to memory at: [ 342.243060][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.248214][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.253350][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.257903][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.262772][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.269152][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.274384][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.279290][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.283997][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.290387][ T5691] [ 342.292859][ T5691] Uninit was stored to memory at: [ 342.297959][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.303256][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.308232][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.312923][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.317654][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.324133][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.329337][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.334357][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.338910][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.345454][ T5691] [ 342.347790][ T5691] Local variable msg_sys created at: [ 342.353245][ T5691] do_recvmmsg+0xbb/0x2120 [ 342.357721][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.491827][ T5691] not chained 160000 origins [ 342.496617][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 342.504984][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.515048][ T5691] Call Trace: [ 342.518323][ T5691] [ 342.521256][ T5691] dump_stack_lvl+0x1ff/0x28e [ 342.525989][ T5691] dump_stack+0x25/0x28 [ 342.530177][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 342.535934][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.541074][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.546211][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 342.552070][ T5691] ? preempt_count_sub+0xf8/0x330 [ 342.557163][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.562302][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 342.568147][ T5691] ? should_fail+0x75/0x9c0 [ 342.572672][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.577810][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 342.584085][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 342.590241][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.595398][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 342.601237][ T5691] __msan_chain_origin+0xbf/0x140 [ 342.606290][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.611447][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.616409][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 342.621286][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.625835][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.631028][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 342.636884][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 342.642031][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 342.647185][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 342.653550][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.660082][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.664809][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.671171][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.676224][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 342.681985][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.686968][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.691499][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.697857][ T5691] RIP: 0023:0xf6ea6549 [ 342.701929][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 342.721565][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 342.730000][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 342.738007][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 342.745989][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 342.753964][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 342.762371][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 342.770728][ T5691] [ 342.776270][ T5691] Uninit was stored to memory at: [ 342.781405][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.786966][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.791964][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.796656][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.801386][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.807919][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.813131][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.818044][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.822725][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.829145][ T5691] [ 342.831478][ T5691] Uninit was stored to memory at: [ 342.836719][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.841875][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.847052][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.851612][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.856453][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.863010][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.868094][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.873178][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.877738][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.884282][ T5691] [ 342.886620][ T5691] Uninit was stored to memory at: [ 342.891689][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.897026][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.902126][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.906772][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.911496][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.918013][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.923216][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.928128][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.932838][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.939250][ T5691] [ 342.941586][ T5691] Uninit was stored to memory at: [ 342.946821][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 342.952111][ T5691] get_compat_msghdr+0x108/0x2c0 [ 342.957294][ T5691] do_recvmmsg+0xd77/0x2120 [ 342.961851][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 342.966734][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 342.973218][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 342.978290][ T5691] do_fast_syscall_32+0x34/0x70 [ 342.983403][ T5691] do_SYSENTER_32+0x1b/0x20 [ 342.987988][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 342.994549][ T5691] [ 342.996891][ T5691] Uninit was stored to memory at: [ 343.001958][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.007315][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.012514][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.017163][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.021890][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.028425][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.033623][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.038540][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.043335][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.049732][ T5691] [ 343.052235][ T5691] Uninit was stored to memory at: [ 343.057343][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.062642][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.067633][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.072347][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.077093][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.083648][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.088731][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.093791][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.098365][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.104875][ T5691] [ 343.107208][ T5691] Uninit was stored to memory at: [ 343.112523][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.117684][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.122856][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.127417][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.132300][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.138678][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.143988][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.148905][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.153654][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.160043][ T5691] [ 343.162501][ T5691] Local variable msg_sys created at: [ 343.167790][ T5691] do_recvmmsg+0xbb/0x2120 [ 343.172414][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.304767][ T5691] not chained 170000 origins [ 343.309393][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 343.317879][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.327964][ T5691] Call Trace: [ 343.331242][ T5691] [ 343.334176][ T5691] dump_stack_lvl+0x1ff/0x28e [ 343.338890][ T5691] dump_stack+0x25/0x28 [ 343.343079][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 343.348862][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.354028][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.359170][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 343.365012][ T5691] ? preempt_count_sub+0xf8/0x330 [ 343.370068][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.375252][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 343.381094][ T5691] ? should_fail+0x75/0x9c0 [ 343.385608][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.390762][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 343.397059][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 343.403163][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.408319][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 343.414178][ T5691] __msan_chain_origin+0xbf/0x140 [ 343.419239][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.424405][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.429365][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 343.434270][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.438811][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.443970][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 343.449850][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 343.454997][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 343.460136][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 343.466409][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.472937][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.477648][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.484019][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.489082][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 343.494828][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.499712][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.504249][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.510610][ T5691] RIP: 0023:0xf6ea6549 [ 343.514684][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 343.534323][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 343.542858][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 343.550884][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 343.558882][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 343.566856][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 343.574840][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 343.582874][ T5691] [ 343.587953][ T5691] Uninit was stored to memory at: [ 343.593452][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.598606][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.603711][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.608273][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.613136][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.619517][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.624729][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.629735][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.634587][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.640994][ T5691] [ 343.643518][ T5691] Uninit was stored to memory at: [ 343.648648][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.654008][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.658997][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.663707][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.668522][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.675078][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.680170][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.685216][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.689779][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.696345][ T5691] [ 343.698678][ T5691] Uninit was stored to memory at: [ 343.703966][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.709123][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.714313][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.718867][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.723673][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.730204][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.735454][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.740357][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.745028][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.751415][ T5691] [ 343.753921][ T5691] Uninit was stored to memory at: [ 343.759001][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.764331][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.769312][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.773985][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.778708][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.785265][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.790353][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.795456][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.800013][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.806518][ T5691] [ 343.808848][ T5691] Uninit was stored to memory at: [ 343.814121][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.819279][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.824392][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.828942][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.833792][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.840169][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.845390][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.850299][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.855035][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.861422][ T5691] [ 343.863934][ T5691] Uninit was stored to memory at: [ 343.869049][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.874407][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.879391][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.884149][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.888877][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.895385][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.900466][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.905545][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.910099][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.916601][ T5691] [ 343.918932][ T5691] Uninit was stored to memory at: [ 343.924226][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 343.929382][ T5691] get_compat_msghdr+0x108/0x2c0 [ 343.934539][ T5691] do_recvmmsg+0xd77/0x2120 [ 343.939092][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 343.943937][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 343.950329][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 343.955574][ T5691] do_fast_syscall_32+0x34/0x70 [ 343.960479][ T5691] do_SYSENTER_32+0x1b/0x20 [ 343.965227][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 343.971624][ T5691] [ 343.974093][ T5691] Local variable msg_sys created at: [ 343.979382][ T5691] do_recvmmsg+0xbb/0x2120 [ 343.983981][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.101881][ T5691] not chained 180000 origins [ 344.106833][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 344.115204][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.125270][ T5691] Call Trace: [ 344.128580][ T5691] [ 344.131509][ T5691] dump_stack_lvl+0x1ff/0x28e [ 344.136223][ T5691] dump_stack+0x25/0x28 [ 344.140405][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 344.146158][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.151343][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.156508][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.162382][ T5691] ? preempt_count_sub+0xf8/0x330 [ 344.167450][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.172612][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.178478][ T5691] ? should_fail+0x75/0x9c0 [ 344.182997][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.188159][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 344.194434][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 344.200577][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.205722][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.211595][ T5691] __msan_chain_origin+0xbf/0x140 [ 344.216651][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.221816][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.226788][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 344.231817][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.236378][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.241538][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.247397][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 344.252553][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.257716][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 344.264002][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.270566][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.275292][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.281668][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.286744][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 344.292542][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.297457][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.302017][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.308401][ T5691] RIP: 0023:0xf6ea6549 [ 344.312483][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 344.332133][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 344.340596][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 344.348589][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 344.356569][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 344.364551][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 344.372576][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 344.380611][ T5691] [ 344.386525][ T5691] Uninit was stored to memory at: [ 344.391633][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.397322][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.402446][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.407007][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.411741][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.418216][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.423425][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.428330][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.433034][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.439423][ T5691] [ 344.441741][ T5691] Uninit was stored to memory at: [ 344.446993][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.452263][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.457244][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.461772][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.466630][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.473110][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.478318][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.483381][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.487952][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.494512][ T5691] [ 344.496842][ T5691] Uninit was stored to memory at: [ 344.501910][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.507218][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.512297][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.516855][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.522296][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.528677][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.533914][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.538828][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.543530][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.549921][ T5691] [ 344.552401][ T5691] Uninit was stored to memory at: [ 344.557483][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.562770][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.567746][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.572435][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.577170][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.583697][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.588780][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.593822][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.598375][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.604903][ T5691] [ 344.607230][ T5691] Uninit was stored to memory at: [ 344.612456][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.617605][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.622722][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.627276][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.632149][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.638537][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.643832][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.648748][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.653564][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.659987][ T5691] [ 344.662487][ T5691] Uninit was stored to memory at: [ 344.667573][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.672863][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.677981][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.682703][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.687454][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.693978][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.699068][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.704126][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.708681][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.715210][ T5691] [ 344.717539][ T5691] Uninit was stored to memory at: [ 344.722793][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 344.727966][ T5691] get_compat_msghdr+0x108/0x2c0 [ 344.733083][ T5691] do_recvmmsg+0xd77/0x2120 [ 344.737632][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.742492][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 344.748867][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 344.754085][ T5691] do_fast_syscall_32+0x34/0x70 [ 344.758991][ T5691] do_SYSENTER_32+0x1b/0x20 [ 344.763756][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 344.770150][ T5691] [ 344.772629][ T5691] Local variable msg_sys created at: [ 344.777920][ T5691] do_recvmmsg+0xbb/0x2120 [ 344.782538][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 344.920695][ T5691] not chained 190000 origins [ 344.925417][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 344.933762][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.943836][ T5691] Call Trace: [ 344.947124][ T5691] [ 344.950065][ T5691] dump_stack_lvl+0x1ff/0x28e [ 344.954794][ T5691] dump_stack+0x25/0x28 [ 344.958974][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 344.964725][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.969864][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.975003][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.980848][ T5691] ? preempt_count_sub+0xf8/0x330 [ 344.985909][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 344.991059][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 344.996902][ T5691] ? should_fail+0x75/0x9c0 [ 345.001429][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.006571][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 345.012856][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 345.018953][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.024096][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.029946][ T5691] __msan_chain_origin+0xbf/0x140 [ 345.035012][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.040171][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.045136][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 345.050027][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.054580][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.059735][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.065585][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 345.070725][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.075872][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 345.082159][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.088810][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.093547][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.099912][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.104971][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 345.110716][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.115599][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.120127][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.126491][ T5691] RIP: 0023:0xf6ea6549 [ 345.130561][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 345.150184][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 345.158698][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 345.166678][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 345.174655][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 345.182717][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 345.190696][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 345.198691][ T5691] [ 345.203769][ T5691] Uninit was stored to memory at: [ 345.208874][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.214485][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.219482][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.224172][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.228905][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.235429][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.240517][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.245585][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.250143][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.256715][ T5691] [ 345.259055][ T5691] Uninit was stored to memory at: [ 345.264303][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.269456][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.274615][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.279282][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.284183][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.290591][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.295820][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.300814][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.305552][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.311941][ T5691] [ 345.314469][ T5691] Uninit was stored to memory at: [ 345.319551][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.324879][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.329859][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.334650][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.339397][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.345915][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.351083][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.356114][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.360692][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.367201][ T5691] [ 345.369531][ T5691] Uninit was stored to memory at: [ 345.374807][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.379958][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.385107][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.389668][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.394592][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.400981][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.406187][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.411094][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.415816][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.422328][ T5691] [ 345.424665][ T5691] Uninit was stored to memory at: [ 345.429740][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.435003][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.439980][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.444728][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.449456][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.456007][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.461100][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.466146][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.470704][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.477226][ T5691] [ 345.479560][ T5691] Uninit was stored to memory at: [ 345.484841][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.490017][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.495169][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.499749][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.504623][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.511021][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.516275][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.521186][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.525864][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.532372][ T5691] [ 345.534707][ T5691] Uninit was stored to memory at: [ 345.539781][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.545101][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.550077][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.554751][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.559478][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.566024][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.571106][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.576202][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.580756][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.587279][ T5691] [ 345.589614][ T5691] Local variable msg_sys created at: [ 345.595057][ T5691] do_recvmmsg+0xbb/0x2120 [ 345.599530][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.723761][ T5691] not chained 200000 origins [ 345.728382][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 345.736721][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.746779][ T5691] Call Trace: [ 345.750058][ T5691] [ 345.753008][ T5691] dump_stack_lvl+0x1ff/0x28e [ 345.757720][ T5691] dump_stack+0x25/0x28 [ 345.761912][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 345.767669][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.772814][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.777960][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.783820][ T5691] ? preempt_count_sub+0xf8/0x330 [ 345.788871][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.794027][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.799875][ T5691] ? should_fail+0x75/0x9c0 [ 345.804469][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.809618][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 345.815910][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 345.822027][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.827191][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.833055][ T5691] __msan_chain_origin+0xbf/0x140 [ 345.838115][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 345.843264][ T5691] get_compat_msghdr+0x108/0x2c0 [ 345.848233][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 345.853133][ T5691] do_recvmmsg+0xd77/0x2120 [ 345.857677][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.862817][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 345.868664][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 345.873820][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 345.878960][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 345.885253][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.891799][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 345.896526][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 345.902896][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 345.907998][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 345.913744][ T5691] do_fast_syscall_32+0x34/0x70 [ 345.918625][ T5691] do_SYSENTER_32+0x1b/0x20 [ 345.923171][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 345.929537][ T5691] RIP: 0023:0xf6ea6549 [ 345.933614][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 345.953260][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 345.961798][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 345.969788][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 345.977767][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 345.985746][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 345.993722][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 346.001708][ T5691] [ 346.008094][ T5691] Uninit was stored to memory at: [ 346.013632][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.018786][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.023869][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.028465][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.033292][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.039675][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.044878][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.049791][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.054432][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.060822][ T5691] [ 346.063246][ T5691] Uninit was stored to memory at: [ 346.068341][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.073602][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.078595][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.083260][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.087991][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.094480][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.099569][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.104642][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.109228][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.115698][ T5691] [ 346.118015][ T5691] Uninit was stored to memory at: [ 346.123258][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.128410][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.133555][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.138109][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.142977][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.149357][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.154581][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.159485][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.164133][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.170522][ T5691] [ 346.173000][ T5691] Uninit was stored to memory at: [ 346.178080][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.183377][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.188356][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.193091][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.197822][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.204355][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.209443][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.214475][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.219033][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.225565][ T5691] [ 346.227897][ T5691] Uninit was stored to memory at: [ 346.233160][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.238313][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.243445][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.248001][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.252886][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.259271][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.264494][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.269395][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.274053][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.280445][ T5691] [ 346.282919][ T5691] Uninit was stored to memory at: [ 346.288008][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.293307][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.298285][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.303009][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.307740][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.314259][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.319348][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.324386][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.328946][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.335488][ T5691] [ 346.337826][ T5691] Uninit was stored to memory at: [ 346.343078][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.348253][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.353385][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.357944][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.362842][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.369223][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.374454][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.379360][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.384024][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.390419][ T5691] [ 346.392905][ T5691] Local variable msg_sys created at: [ 346.398276][ T5691] do_recvmmsg+0xbb/0x2120 [ 346.402891][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.525620][ T5691] not chained 210000 origins [ 346.530271][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 346.538616][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.548681][ T5691] Call Trace: [ 346.551964][ T5691] [ 346.554905][ T5691] dump_stack_lvl+0x1ff/0x28e [ 346.559644][ T5691] dump_stack+0x25/0x28 [ 346.563833][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 346.569619][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.574785][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.579955][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 346.585819][ T5691] ? preempt_count_sub+0xf8/0x330 [ 346.590866][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.596019][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 346.601891][ T5691] ? should_fail+0x75/0x9c0 [ 346.606430][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.611594][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 346.617876][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 346.624012][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.629195][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 346.635039][ T5691] __msan_chain_origin+0xbf/0x140 [ 346.640096][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.645254][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.650255][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 346.655157][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.659719][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.664868][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 346.670755][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 346.675898][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 346.681042][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 346.687323][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.693860][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.698599][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.704967][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.710050][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 346.715814][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.720749][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.725308][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.731672][ T5691] RIP: 0023:0xf6ea6549 [ 346.735746][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 346.755402][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 346.763856][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 346.771856][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 346.779859][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 346.787839][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 346.795822][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 346.803854][ T5691] [ 346.809686][ T5691] Uninit was stored to memory at: [ 346.816020][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.821184][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.826280][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.830848][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.835680][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.842153][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.847242][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.852278][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.856867][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.863441][ T5691] [ 346.865776][ T5691] Uninit was stored to memory at: [ 346.870876][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.876191][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.881195][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.885867][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.890607][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.897156][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.902346][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.907258][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.911795][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.918365][ T5691] [ 346.920702][ T5691] Uninit was stored to memory at: [ 346.925959][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.931114][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.936206][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.940777][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 346.945630][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 346.952174][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 346.957274][ T5691] do_fast_syscall_32+0x34/0x70 [ 346.962343][ T5691] do_SYSENTER_32+0x1b/0x20 [ 346.966912][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 346.973471][ T5691] [ 346.975804][ T5691] Uninit was stored to memory at: [ 346.980886][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 346.986156][ T5691] get_compat_msghdr+0x108/0x2c0 [ 346.991135][ T5691] do_recvmmsg+0xd77/0x2120 [ 346.995840][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.000569][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.007054][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.012222][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.017136][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.021685][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.028190][ T5691] [ 347.030522][ T5691] Uninit was stored to memory at: [ 347.035778][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.040937][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.046089][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.050639][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.055509][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.061890][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.067146][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.072208][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.076770][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.083272][ T5691] [ 347.085605][ T5691] Uninit was stored to memory at: [ 347.090686][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.095977][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.100953][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.105601][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.110330][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.116867][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.121953][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.127008][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.131543][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.138109][ T5691] [ 347.140446][ T5691] Uninit was stored to memory at: [ 347.145707][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.150943][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.156026][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.160579][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.165415][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.171792][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.177018][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.181925][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.186611][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.193132][ T5691] [ 347.195460][ T5691] Local variable msg_sys created at: [ 347.200744][ T5691] do_recvmmsg+0xbb/0x2120 [ 347.205307][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.321438][ T5691] not chained 220000 origins [ 347.326343][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 347.334716][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.344796][ T5691] Call Trace: [ 347.348097][ T5691] [ 347.351033][ T5691] dump_stack_lvl+0x1ff/0x28e [ 347.355754][ T5691] dump_stack+0x25/0x28 [ 347.359949][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 347.365706][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.370878][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.376047][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 347.381912][ T5691] ? preempt_count_sub+0xf8/0x330 [ 347.386958][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.392109][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 347.398000][ T5691] ? should_fail+0x75/0x9c0 [ 347.402522][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.407684][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 347.413960][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 347.420083][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.425230][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 347.431069][ T5691] __msan_chain_origin+0xbf/0x140 [ 347.436128][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.441321][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.446292][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 347.451176][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.455725][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.460892][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 347.466740][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 347.471936][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 347.477104][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 347.483452][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.490144][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.495018][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.501424][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.506597][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 347.512401][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.517325][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.521860][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.528232][ T5691] RIP: 0023:0xf6ea6549 [ 347.532331][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 347.551993][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 347.560487][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 347.568478][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 347.576465][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 347.584457][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 347.592476][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 347.600493][ T5691] [ 347.606275][ T5691] Uninit was stored to memory at: [ 347.611396][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.617059][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.622184][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.626746][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.631468][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.637973][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.643163][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.648087][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.652921][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.659334][ T5691] [ 347.661662][ T5691] Uninit was stored to memory at: [ 347.666918][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.672166][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.677156][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.681693][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.686559][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.693039][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.698125][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.703183][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.707746][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.714310][ T5691] [ 347.716640][ T5691] Uninit was stored to memory at: [ 347.721703][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.726998][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.732072][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.736688][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.741392][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.747916][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.753186][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.758120][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.762857][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.769242][ T5691] [ 347.771574][ T5691] Uninit was stored to memory at: [ 347.776774][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.781928][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.787052][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.791610][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.796435][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.802914][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.808006][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.813147][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.817703][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.824265][ T5691] [ 347.826601][ T5691] Uninit was stored to memory at: [ 347.831667][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.836987][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.842069][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.846637][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.851376][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.857862][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.863043][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.867953][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.872645][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.879032][ T5691] [ 347.881354][ T5691] Uninit was stored to memory at: [ 347.886561][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.891711][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.896841][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.901398][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.906228][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.912713][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.917805][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.922854][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.927417][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.933977][ T5691] [ 347.936335][ T5691] Uninit was stored to memory at: [ 347.941403][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 347.946705][ T5691] get_compat_msghdr+0x108/0x2c0 [ 347.951697][ T5691] do_recvmmsg+0xd77/0x2120 [ 347.956399][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 347.961130][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 347.967715][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 347.972891][ T5691] do_fast_syscall_32+0x34/0x70 [ 347.977802][ T5691] do_SYSENTER_32+0x1b/0x20 [ 347.982522][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 347.988916][ T5691] [ 347.991234][ T5691] Local variable msg_sys created at: [ 347.996711][ T5691] do_recvmmsg+0xbb/0x2120 [ 348.001193][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.138810][ T5691] not chained 230000 origins [ 348.143563][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 348.151923][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.162000][ T5691] Call Trace: [ 348.165298][ T5691] [ 348.168228][ T5691] dump_stack_lvl+0x1ff/0x28e [ 348.173035][ T5691] dump_stack+0x25/0x28 [ 348.177244][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 348.183033][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.188202][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.193345][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 348.199187][ T5691] ? preempt_count_sub+0xf8/0x330 [ 348.204234][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.209378][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 348.215220][ T5691] ? should_fail+0x75/0x9c0 [ 348.219757][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.225077][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 348.231356][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 348.237475][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.242621][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 348.248486][ T5691] __msan_chain_origin+0xbf/0x140 [ 348.253565][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.258744][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.263734][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 348.268641][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.273182][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.278324][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 348.284171][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 348.289313][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.294466][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 348.300743][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.307290][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.312014][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.318396][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.323451][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 348.329209][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.334107][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.338636][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.345010][ T5691] RIP: 0023:0xf6ea6549 [ 348.349081][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 348.368720][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 348.377155][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 348.385144][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 348.393124][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 348.401102][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 348.409083][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 348.417162][ T5691] [ 348.423124][ T5691] Uninit was stored to memory at: [ 348.428251][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.433926][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.438917][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.443625][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.448354][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.454867][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.459954][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.465049][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.469622][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.476108][ T5691] [ 348.478440][ T5691] Uninit was stored to memory at: [ 348.483691][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.488850][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.494062][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.498789][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.503664][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.510042][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.515270][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.520187][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.524852][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.531272][ T5691] [ 348.533786][ T5691] Uninit was stored to memory at: [ 348.538884][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.544211][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.549196][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.553899][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.558634][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.565146][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.570320][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.575419][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.579979][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.586538][ T5691] [ 348.588873][ T5691] Uninit was stored to memory at: [ 348.594126][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.599282][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.604419][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.609004][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.613884][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.620293][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.625540][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.630446][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.635148][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.641555][ T5691] [ 348.644054][ T5691] Uninit was stored to memory at: [ 348.649142][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.654443][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.659422][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.664129][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.668860][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.675403][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.680514][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.685559][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.690203][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.696758][ T5691] [ 348.699095][ T5691] Uninit was stored to memory at: [ 348.704352][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.709503][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.714623][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.719177][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.724058][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.730436][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.735655][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.740575][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.745269][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.751661][ T5691] [ 348.754136][ T5691] Uninit was stored to memory at: [ 348.759217][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 348.764552][ T5691] get_compat_msghdr+0x108/0x2c0 [ 348.769532][ T5691] do_recvmmsg+0xd77/0x2120 [ 348.774246][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.779004][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 348.785527][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 348.790606][ T5691] do_fast_syscall_32+0x34/0x70 [ 348.795655][ T5691] do_SYSENTER_32+0x1b/0x20 [ 348.800214][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 348.806777][ T5691] [ 348.809113][ T5691] Local variable msg_sys created at: [ 348.814568][ T5691] do_recvmmsg+0xbb/0x2120 [ 348.819039][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 348.941587][ T5691] not chained 240000 origins [ 348.946446][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 348.954815][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.964893][ T5691] Call Trace: [ 348.968267][ T5691] [ 348.971223][ T5691] dump_stack_lvl+0x1ff/0x28e [ 348.975943][ T5691] dump_stack+0x25/0x28 [ 348.980158][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 348.985921][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.991110][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 348.996256][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.002104][ T5691] ? preempt_count_sub+0xf8/0x330 [ 349.007171][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.012320][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.018211][ T5691] ? should_fail+0x75/0x9c0 [ 349.022735][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.027906][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 349.034185][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 349.040331][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.045482][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.051358][ T5691] __msan_chain_origin+0xbf/0x140 [ 349.056445][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.061703][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.066669][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 349.071557][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.076122][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.081295][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.087175][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 349.092324][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.097488][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 349.103772][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.110332][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.115058][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.121462][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.126521][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 349.132273][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.137181][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.141713][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.148073][ T5691] RIP: 0023:0xf6ea6549 [ 349.152149][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 349.171797][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 349.180237][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 349.188244][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 349.196226][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 349.204208][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 349.212203][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 349.220207][ T5691] [ 349.225535][ T5691] Uninit was stored to memory at: [ 349.230637][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.236191][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.241178][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.245843][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.250574][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.257052][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.262216][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.267117][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.271670][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.278155][ T5691] [ 349.280507][ T5691] Uninit was stored to memory at: [ 349.285707][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.290859][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.295950][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.300504][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.305330][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.311715][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.316965][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.321871][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.326560][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.333227][ T5691] [ 349.335573][ T5691] Uninit was stored to memory at: [ 349.340742][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.346004][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.350989][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.355697][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.360436][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.367030][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.372257][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.377174][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.381752][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.388332][ T5691] [ 349.390778][ T5691] Uninit was stored to memory at: [ 349.396024][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.401191][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.406325][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.410886][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.415714][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.422193][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.427298][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.432323][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.436962][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.443499][ T5691] [ 349.445838][ T5691] Uninit was stored to memory at: [ 349.450916][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.456170][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.461154][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.465861][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.470590][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.477071][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.482244][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.487156][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.491709][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.498260][ T5691] [ 349.500595][ T5691] Uninit was stored to memory at: [ 349.505834][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.510992][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.516135][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.520705][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.525553][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.531939][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.537183][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.542246][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.546802][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.553336][ T5691] [ 349.555665][ T5691] Uninit was stored to memory at: [ 349.560753][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.566003][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.570986][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.575682][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.580416][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.586922][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.592110][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.597039][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.601590][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.608271][ T5691] [ 349.610692][ T5691] Local variable msg_sys created at: [ 349.616097][ T5691] do_recvmmsg+0xbb/0x2120 [ 349.620588][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.738880][ T5691] not chained 250000 origins [ 349.743719][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 349.752097][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.762192][ T5691] Call Trace: [ 349.765487][ T5691] [ 349.768424][ T5691] dump_stack_lvl+0x1ff/0x28e [ 349.773166][ T5691] dump_stack+0x25/0x28 [ 349.777392][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 349.783193][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.788380][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.793530][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.799408][ T5691] ? preempt_count_sub+0xf8/0x330 [ 349.804481][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.809665][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.815515][ T5691] ? should_fail+0x75/0x9c0 [ 349.820056][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.825225][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 349.831526][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 349.837655][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.842809][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.848690][ T5691] __msan_chain_origin+0xbf/0x140 [ 349.853753][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 349.858920][ T5691] get_compat_msghdr+0x108/0x2c0 [ 349.863884][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 349.868800][ T5691] do_recvmmsg+0xd77/0x2120 [ 349.873349][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.878516][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 349.884375][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 349.889537][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 349.894682][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 349.901031][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.907594][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 349.912331][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 349.918739][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 349.923802][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 349.929569][ T5691] do_fast_syscall_32+0x34/0x70 [ 349.934478][ T5691] do_SYSENTER_32+0x1b/0x20 [ 349.939122][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 349.945485][ T5691] RIP: 0023:0xf6ea6549 [ 349.949573][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 349.969203][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 349.977743][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 349.985733][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 349.993718][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 350.001711][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 350.009694][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 350.017708][ T5691] [ 350.022630][ T5691] Uninit was stored to memory at: [ 350.027740][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.033333][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.038318][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.042968][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.047700][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.054255][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.059350][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.064399][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.068959][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.075467][ T5691] [ 350.077823][ T5691] Uninit was stored to memory at: [ 350.083064][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.088219][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.093370][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.097942][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.102802][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.109186][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.114387][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.119294][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.124024][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.130524][ T5691] [ 350.133083][ T5691] Uninit was stored to memory at: [ 350.138186][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.143471][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.148449][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.153094][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.157826][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.164335][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.169419][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.174471][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.179028][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.185535][ T5691] [ 350.187868][ T5691] Uninit was stored to memory at: [ 350.193110][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.198262][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.203396][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.207953][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.212823][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.219206][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.224395][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.229321][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.234025][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.240416][ T5691] [ 350.242893][ T5691] Uninit was stored to memory at: [ 350.247988][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.253277][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.258259][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.262908][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.267633][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.274182][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.279265][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.284345][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.288901][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.295416][ T5691] [ 350.297745][ T5691] Uninit was stored to memory at: [ 350.302981][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.308135][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.313278][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.317853][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.322721][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.329104][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.334349][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.339267][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.344009][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.350405][ T5691] [ 350.352884][ T5691] Uninit was stored to memory at: [ 350.357973][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.363307][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.368302][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.372957][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.377706][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.384210][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.389296][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.394374][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.398937][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.405476][ T5691] [ 350.407811][ T5691] Local variable msg_sys created at: [ 350.413246][ T5691] do_recvmmsg+0xbb/0x2120 [ 350.417831][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.540050][ T5691] not chained 260000 origins [ 350.545002][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 350.553381][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.563467][ T5691] Call Trace: [ 350.566764][ T5691] [ 350.569707][ T5691] dump_stack_lvl+0x1ff/0x28e [ 350.574431][ T5691] dump_stack+0x25/0x28 [ 350.578634][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 350.584395][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.589576][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.594764][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 350.600650][ T5691] ? preempt_count_sub+0xf8/0x330 [ 350.605757][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.610922][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 350.616806][ T5691] ? should_fail+0x75/0x9c0 [ 350.621385][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.626539][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 350.632822][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 350.638947][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.644093][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 350.649932][ T5691] __msan_chain_origin+0xbf/0x140 [ 350.655011][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.660181][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.665161][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 350.670048][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.674684][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.679849][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 350.685698][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 350.690839][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 350.695983][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 350.702375][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.709025][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.713755][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.720142][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.725207][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 350.730984][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.735867][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.740399][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.746765][ T5691] RIP: 0023:0xf6ea6549 [ 350.750854][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 350.770485][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 350.778918][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 350.786909][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 350.794915][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 350.802899][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 350.810894][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 350.818906][ T5691] [ 350.823886][ T5691] Uninit was stored to memory at: [ 350.829014][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.834637][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.839629][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.844301][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.849033][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.855524][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.860610][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.865668][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.870262][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.876760][ T5691] [ 350.879095][ T5691] Uninit was stored to memory at: [ 350.884345][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.889497][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.894621][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.899179][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.904073][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.910460][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.915705][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.920642][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.925362][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.931755][ T5691] [ 350.934203][ T5691] Uninit was stored to memory at: [ 350.939326][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.944636][ T5691] get_compat_msghdr+0x108/0x2c0 [ 350.949621][ T5691] do_recvmmsg+0xd77/0x2120 [ 350.954322][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 350.959068][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 350.965771][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 350.970858][ T5691] do_fast_syscall_32+0x34/0x70 [ 350.975901][ T5691] do_SYSENTER_32+0x1b/0x20 [ 350.980465][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 350.986999][ T5691] [ 350.989330][ T5691] Uninit was stored to memory at: [ 350.994572][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 350.999721][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.004934][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.009490][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.014359][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.020744][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.025989][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.030901][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.035622][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.042113][ T5691] [ 351.044534][ T5691] Uninit was stored to memory at: [ 351.049599][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.054899][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.059884][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.064558][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.069289][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.075818][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.080905][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.086698][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.091254][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.097797][ T5691] [ 351.100126][ T5691] Uninit was stored to memory at: [ 351.105330][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.110488][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.115616][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.120171][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.125027][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.131408][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.136637][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.141549][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.146268][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.152761][ T5691] [ 351.155096][ T5691] Uninit was stored to memory at: [ 351.160352][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.166081][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.171062][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.175777][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.180507][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.186991][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.192155][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.197077][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.201604][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.208085][ T5691] [ 351.210414][ T5691] Local variable msg_sys created at: [ 351.215859][ T5691] do_recvmmsg+0xbb/0x2120 [ 351.220329][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.350413][ T5691] not chained 270000 origins [ 351.355218][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 351.363595][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.373697][ T5691] Call Trace: [ 351.376996][ T5691] [ 351.379946][ T5691] dump_stack_lvl+0x1ff/0x28e [ 351.384686][ T5691] dump_stack+0x25/0x28 [ 351.388889][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 351.394646][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.399793][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.404939][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 351.410811][ T5691] ? preempt_count_sub+0xf8/0x330 [ 351.415854][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.420998][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 351.426844][ T5691] ? should_fail+0x75/0x9c0 [ 351.431386][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.436556][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 351.442887][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 351.449017][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.454171][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 351.460036][ T5691] __msan_chain_origin+0xbf/0x140 [ 351.465099][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.470275][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.475265][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 351.480172][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.484721][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.489909][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 351.495778][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 351.500983][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 351.506152][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 351.512480][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.519069][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.523795][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.530181][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.535248][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 351.541042][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.545943][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.550501][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.556865][ T5691] RIP: 0023:0xf6ea6549 [ 351.560952][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 351.580581][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 351.589022][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 351.597026][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 351.605014][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 351.613011][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 351.621003][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 351.628999][ T5691] [ 351.633968][ T5691] Uninit was stored to memory at: [ 351.640875][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.646370][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.651364][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.656097][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.660836][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.667295][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.672503][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.677410][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.682110][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.688501][ T5691] [ 351.690829][ T5691] Uninit was stored to memory at: [ 351.696063][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.701212][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.706322][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.710875][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.715752][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.722221][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.727310][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.732347][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.736918][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.743458][ T5691] [ 351.745791][ T5691] Uninit was stored to memory at: [ 351.750867][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.756113][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.761092][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.765788][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.770516][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.776997][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.782167][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.787077][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.791605][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.798127][ T5691] [ 351.800461][ T5691] Uninit was stored to memory at: [ 351.805712][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.810862][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.815941][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.820494][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.825366][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.831748][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.836931][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.841843][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.846570][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.853062][ T5691] [ 351.855393][ T5691] Uninit was stored to memory at: [ 351.860454][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.865743][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.870720][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.875373][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.880097][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.886617][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.891710][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.896709][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.901262][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.907789][ T5691] [ 351.910121][ T5691] Uninit was stored to memory at: [ 351.915382][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.920535][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.925662][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.930218][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.935095][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.941499][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 351.946734][ T5691] do_fast_syscall_32+0x34/0x70 [ 351.951647][ T5691] do_SYSENTER_32+0x1b/0x20 [ 351.956305][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 351.962796][ T5691] [ 351.965129][ T5691] Uninit was stored to memory at: [ 351.970203][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 351.975498][ T5691] get_compat_msghdr+0x108/0x2c0 [ 351.980475][ T5691] do_recvmmsg+0xd77/0x2120 [ 351.985176][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 351.989921][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 351.996427][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.001508][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.006514][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.011154][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.017687][ T5691] [ 352.020024][ T5691] Local variable msg_sys created at: [ 352.025470][ T5691] do_recvmmsg+0xbb/0x2120 [ 352.029937][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.155687][ T5691] not chained 280000 origins [ 352.160390][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 352.168755][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.178819][ T5691] Call Trace: [ 352.182105][ T5691] [ 352.185048][ T5691] dump_stack_lvl+0x1ff/0x28e [ 352.189783][ T5691] dump_stack+0x25/0x28 [ 352.193989][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 352.199760][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.204903][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.210065][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.215203][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 352.221051][ T5691] ? preempt_count_sub+0xf8/0x330 [ 352.226095][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.231255][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 352.237099][ T5691] ? should_fail+0x75/0x9c0 [ 352.241634][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.246779][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 352.253082][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 352.259231][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.264384][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 352.270252][ T5691] __msan_chain_origin+0xbf/0x140 [ 352.275305][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.280462][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.285450][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 352.290368][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.294912][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.300055][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 352.305908][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 352.311082][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 352.316243][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 352.322543][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.329111][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.333845][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.340240][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.345325][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 352.351098][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.356005][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.360570][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.366971][ T5691] RIP: 0023:0xf6ea6549 [ 352.371061][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 352.390705][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 352.399143][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 352.407131][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 352.415132][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 352.423132][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 352.431127][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 352.439138][ T5691] [ 352.444094][ T5691] Uninit was stored to memory at: [ 352.449205][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.456177][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.461175][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.466055][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.470788][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.477276][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.482504][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.487410][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.491949][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.498574][ T5691] [ 352.500898][ T5691] Uninit was stored to memory at: [ 352.506092][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.511244][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.516382][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.520951][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.525839][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.532336][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.537430][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.542490][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.547160][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.553692][ T5691] [ 352.556051][ T5691] Uninit was stored to memory at: [ 352.561142][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.566461][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.571444][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.576143][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.580875][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.587349][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.592531][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.597439][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.601964][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.608482][ T5691] [ 352.610804][ T5691] Uninit was stored to memory at: [ 352.616009][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.621158][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.626236][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.630791][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.635666][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.642142][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.647223][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.652391][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.656979][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.664323][ T5691] [ 352.666664][ T5691] Uninit was stored to memory at: [ 352.671853][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.677154][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.682229][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.686794][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.691516][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.698017][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.703190][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.708117][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.712803][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.719215][ T5691] [ 352.721542][ T5691] Uninit was stored to memory at: [ 352.726746][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.731895][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.737000][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.741554][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.746409][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.752882][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.757988][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.763011][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.767574][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.774132][ T5691] [ 352.776468][ T5691] Uninit was stored to memory at: [ 352.781562][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 352.786864][ T5691] get_compat_msghdr+0x108/0x2c0 [ 352.791850][ T5691] do_recvmmsg+0xd77/0x2120 [ 352.796566][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.801299][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 352.807780][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 352.813051][ T5691] do_fast_syscall_32+0x34/0x70 [ 352.817956][ T5691] do_SYSENTER_32+0x1b/0x20 [ 352.822633][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 352.829018][ T5691] [ 352.831334][ T5691] Local variable msg_sys created at: [ 352.836763][ T5691] do_recvmmsg+0xbb/0x2120 [ 352.841251][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 352.958858][ T5691] not chained 290000 origins [ 352.963666][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 352.972038][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.982128][ T5691] Call Trace: [ 352.985427][ T5691] [ 352.988374][ T5691] dump_stack_lvl+0x1ff/0x28e [ 352.993095][ T5691] dump_stack+0x25/0x28 [ 352.997295][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 353.003055][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.008222][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.013390][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.019258][ T5691] ? preempt_count_sub+0xf8/0x330 [ 353.024304][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.029477][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.035323][ T5691] ? should_fail+0x75/0x9c0 [ 353.039867][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.045016][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 353.051313][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 353.057421][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.062571][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.068437][ T5691] __msan_chain_origin+0xbf/0x140 [ 353.073517][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.078694][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.083663][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 353.088566][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.093116][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.098302][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.104178][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 353.109339][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.114489][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 353.120791][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.127328][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.132083][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.138481][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.143540][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 353.149309][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.154202][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.159539][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.165907][ T5691] RIP: 0023:0xf6ea6549 [ 353.169997][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 353.189627][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 353.198062][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 353.206052][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 353.214042][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 353.222038][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 353.230032][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 353.238047][ T5691] [ 353.243059][ T5691] Uninit was stored to memory at: [ 353.248169][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.253691][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.258680][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.263324][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.268059][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.274599][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.279687][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.284755][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.289310][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.295891][ T5691] [ 353.298237][ T5691] Uninit was stored to memory at: [ 353.303484][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.308649][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.313776][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.318335][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.323212][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.329596][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.334828][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.339737][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.344453][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.350845][ T5691] [ 353.353330][ T5691] Uninit was stored to memory at: [ 353.358426][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.363733][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.368719][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.373424][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.378155][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.384705][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.389798][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.394886][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.399449][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.405997][ T5691] [ 353.408325][ T5691] Uninit was stored to memory at: [ 353.413573][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.418725][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.423844][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.428419][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.433286][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.439694][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.444924][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.449834][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.454554][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.460946][ T5691] [ 353.463440][ T5691] Uninit was stored to memory at: [ 353.468537][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.473807][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.478792][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.483510][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.488252][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.494774][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.499888][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.504946][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.509507][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.516001][ T5691] [ 353.518336][ T5691] Uninit was stored to memory at: [ 353.523584][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.528741][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.533841][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.538406][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.543298][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.549686][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.554915][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.559817][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.564597][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.570988][ T5691] [ 353.573486][ T5691] Uninit was stored to memory at: [ 353.578566][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.583936][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.588984][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.593695][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.598423][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.605068][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.610152][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.615163][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.619810][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.626347][ T5691] [ 353.628687][ T5691] Local variable msg_sys created at: [ 353.634107][ T5691] do_recvmmsg+0xbb/0x2120 [ 353.638572][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.759027][ T5691] not chained 300000 origins [ 353.763853][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 353.772238][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.782325][ T5691] Call Trace: [ 353.785623][ T5691] [ 353.788568][ T5691] dump_stack_lvl+0x1ff/0x28e [ 353.793315][ T5691] dump_stack+0x25/0x28 [ 353.797524][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 353.803408][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.808661][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.813807][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.819778][ T5691] ? preempt_count_sub+0xf8/0x330 [ 353.824823][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.829992][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.835836][ T5691] ? should_fail+0x75/0x9c0 [ 353.840374][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.845517][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 353.851815][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 353.857926][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.863099][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.868966][ T5691] __msan_chain_origin+0xbf/0x140 [ 353.874030][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 353.879200][ T5691] get_compat_msghdr+0x108/0x2c0 [ 353.884191][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 353.889102][ T5691] do_recvmmsg+0xd77/0x2120 [ 353.893678][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.898853][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 353.904730][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 353.909874][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 353.915062][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 353.921363][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.927901][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 353.932639][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 353.939024][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 353.944110][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 353.949857][ T5691] do_fast_syscall_32+0x34/0x70 [ 353.954747][ T5691] do_SYSENTER_32+0x1b/0x20 [ 353.959300][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 353.965660][ T5691] RIP: 0023:0xf6ea6549 [ 353.969738][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 353.989363][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 353.997801][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 354.005808][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 354.013900][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 354.021896][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 354.029874][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 354.037869][ T5691] [ 354.042741][ T5691] Uninit was stored to memory at: [ 354.047847][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.053377][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.058396][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.063102][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.067855][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.074381][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.079462][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.084511][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.089241][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.095759][ T5691] [ 354.098093][ T5691] Uninit was stored to memory at: [ 354.103286][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.108440][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.113569][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.118124][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.123011][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.129391][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.134611][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.139514][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.144206][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.150594][ T5691] [ 354.153069][ T5691] Uninit was stored to memory at: [ 354.158151][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.163441][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.168421][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.173112][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.177839][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.184444][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.190566][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.195607][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.200163][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.206695][ T5691] [ 354.209043][ T5691] Uninit was stored to memory at: [ 354.214313][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.219470][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.224617][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.229176][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.234066][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.240460][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.245702][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.250608][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.255298][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.261684][ T5691] [ 354.264171][ T5691] Uninit was stored to memory at: [ 354.269250][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.274541][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.279520][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.284216][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.288945][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.295466][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.300550][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.305626][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.310204][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.316714][ T5691] [ 354.319056][ T5691] Uninit was stored to memory at: [ 354.324320][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.329486][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.334645][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.339216][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.344149][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.350767][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.356011][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.360925][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.365607][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.372088][ T5691] [ 354.374432][ T5691] Uninit was stored to memory at: [ 354.379534][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.384840][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.389821][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.394519][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.399253][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.405811][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.410907][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.415958][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.420519][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.427088][ T5691] [ 354.429442][ T5691] Local variable msg_sys created at: [ 354.434896][ T5691] do_recvmmsg+0xbb/0x2120 [ 354.439363][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.567470][ T5691] not chained 310000 origins [ 354.572515][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 354.580884][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.590943][ T5691] Call Trace: [ 354.594237][ T5691] [ 354.597182][ T5691] dump_stack_lvl+0x1ff/0x28e [ 354.601894][ T5691] dump_stack+0x25/0x28 [ 354.606111][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 354.612007][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.617176][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.622315][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 354.628173][ T5691] ? preempt_count_sub+0xf8/0x330 [ 354.633212][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.638363][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 354.644406][ T5691] ? should_fail+0x75/0x9c0 [ 354.649051][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.654196][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 354.660468][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 354.666566][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.671703][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 354.677538][ T5691] __msan_chain_origin+0xbf/0x140 [ 354.682588][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.687735][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.692698][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 354.697577][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.702117][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.707259][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 354.713136][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 354.718976][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 354.724116][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 354.730391][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.736919][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.741631][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.747987][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.753040][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 354.758779][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.763682][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.768211][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.774569][ T5691] RIP: 0023:0xf6ea6549 [ 354.778637][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 354.798275][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 354.806719][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 354.814702][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 354.822708][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 354.830682][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 354.838657][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 354.846646][ T5691] [ 354.852650][ T5691] Uninit was stored to memory at: [ 354.857765][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.863451][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.868441][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.873219][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.877994][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.884507][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.889587][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.894605][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.899160][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.905707][ T5691] [ 354.908041][ T5691] Uninit was stored to memory at: [ 354.913308][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.918464][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.923580][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.928134][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.933030][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.939411][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.944669][ T5691] do_fast_syscall_32+0x34/0x70 [ 354.949575][ T5691] do_SYSENTER_32+0x1b/0x20 [ 354.954282][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 354.960683][ T5691] [ 354.963196][ T5691] Uninit was stored to memory at: [ 354.968293][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 354.973646][ T5691] get_compat_msghdr+0x108/0x2c0 [ 354.978625][ T5691] do_recvmmsg+0xd77/0x2120 [ 354.983262][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 354.987988][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 354.994527][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 354.999609][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.004719][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.009275][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.015824][ T5691] [ 355.018157][ T5691] Uninit was stored to memory at: [ 355.023447][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.028602][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.033850][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.038407][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.043250][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.049633][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.054887][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.059796][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.064573][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.070977][ T5691] [ 355.073490][ T5691] Uninit was stored to memory at: [ 355.078572][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.083892][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.088883][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.093598][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.098327][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.104827][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.109913][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.114978][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.119534][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.126031][ T5691] [ 355.128354][ T5691] Uninit was stored to memory at: [ 355.133611][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.138785][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.143939][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.148509][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.153382][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.159938][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.165184][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.170089][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.174845][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.181235][ T5691] [ 355.183738][ T5691] Uninit was stored to memory at: [ 355.188817][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.194130][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.199108][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.203803][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.208532][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.215085][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.220167][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.225206][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.229770][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.236290][ T5691] [ 355.238628][ T5691] Local variable msg_sys created at: [ 355.244052][ T5691] do_recvmmsg+0xbb/0x2120 [ 355.248518][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.373125][ T5691] not chained 320000 origins [ 355.377862][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 355.386207][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.396361][ T5691] Call Trace: [ 355.399700][ T5691] [ 355.402633][ T5691] dump_stack_lvl+0x1ff/0x28e [ 355.407400][ T5691] dump_stack+0x25/0x28 [ 355.411581][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 355.417346][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.422502][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.427675][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 355.433559][ T5691] ? preempt_count_sub+0xf8/0x330 [ 355.438632][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.443779][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 355.449674][ T5691] ? should_fail+0x75/0x9c0 [ 355.454200][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.459375][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 355.465684][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 355.471823][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.476997][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 355.482867][ T5691] __msan_chain_origin+0xbf/0x140 [ 355.487944][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.493283][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.498267][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 355.503162][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.507724][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.512875][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 355.518759][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 355.523906][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 355.529090][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 355.535667][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.542245][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.547003][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.553404][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.558488][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 355.564244][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.569154][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.573685][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.580050][ T5691] RIP: 0023:0xf6ea6549 [ 355.584126][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 355.603778][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 355.612239][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 355.620239][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 355.628223][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 355.636226][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 355.644231][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 355.652248][ T5691] [ 355.657164][ T5691] Uninit was stored to memory at: [ 355.662659][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.667814][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.672897][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.677590][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.682462][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.688848][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.694073][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.698982][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.703634][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.710025][ T5691] [ 355.712477][ T5691] Uninit was stored to memory at: [ 355.717559][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.722863][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.727845][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.732537][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.737268][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.743805][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.748887][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.753910][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.758466][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.765002][ T5691] [ 355.767335][ T5691] Uninit was stored to memory at: [ 355.772604][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.777758][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.782876][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.787433][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.792299][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.798687][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.803946][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.808879][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.813533][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.819940][ T5691] [ 355.822512][ T5691] Uninit was stored to memory at: [ 355.827592][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.832882][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.837865][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.842577][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.847308][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.853827][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.858911][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.863996][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.868553][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.875088][ T5691] [ 355.877419][ T5691] Uninit was stored to memory at: [ 355.882659][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.887815][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.892935][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.897491][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.902381][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.908760][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.913985][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.918895][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.923548][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.930032][ T5691] [ 355.932489][ T5691] Uninit was stored to memory at: [ 355.937590][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.942906][ T5691] get_compat_msghdr+0x108/0x2c0 [ 355.947896][ T5691] do_recvmmsg+0xd77/0x2120 [ 355.952575][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 355.957315][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 355.963899][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 355.968997][ T5691] do_fast_syscall_32+0x34/0x70 [ 355.974040][ T5691] do_SYSENTER_32+0x1b/0x20 [ 355.978619][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 355.985148][ T5691] [ 355.987484][ T5691] Uninit was stored to memory at: [ 355.992693][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 355.997841][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.003144][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.007702][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.012546][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.018925][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.024155][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.029058][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.033713][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.040106][ T5691] [ 356.042604][ T5691] Local variable msg_sys created at: [ 356.047895][ T5691] do_recvmmsg+0xbb/0x2120 [ 356.052500][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.169723][ T5691] not chained 330000 origins [ 356.174493][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 356.182840][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.192921][ T5691] Call Trace: [ 356.196250][ T5691] [ 356.199181][ T5691] dump_stack_lvl+0x1ff/0x28e [ 356.203898][ T5691] dump_stack+0x25/0x28 [ 356.208116][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 356.213891][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.219052][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.224201][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 356.230071][ T5691] ? preempt_count_sub+0xf8/0x330 [ 356.235125][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.240365][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 356.246219][ T5691] ? should_fail+0x75/0x9c0 [ 356.250770][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.255943][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 356.262253][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 356.268391][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.273650][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 356.279518][ T5691] __msan_chain_origin+0xbf/0x140 [ 356.284589][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.289740][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.294706][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 356.299612][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.304156][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.309308][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 356.315201][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 356.320372][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 356.325517][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 356.331796][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.338347][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.343123][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.349495][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.354594][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 356.360373][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.365286][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.369850][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.376216][ T5691] RIP: 0023:0xf6ea6549 [ 356.380291][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 356.399922][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 356.408355][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 356.416346][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 356.424336][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 356.432341][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 356.440341][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 356.448349][ T5691] [ 356.453273][ T5691] Uninit was stored to memory at: [ 356.458388][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.463901][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.468906][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.473557][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.478291][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.484799][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.489894][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.494954][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.499522][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.506095][ T5691] [ 356.508434][ T5691] Uninit was stored to memory at: [ 356.513695][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.518853][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.523976][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.528532][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.533404][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.539787][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.544993][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.549924][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.554641][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.561120][ T5691] [ 356.563514][ T5691] Uninit was stored to memory at: [ 356.568595][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.573870][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.578844][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.583487][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.588213][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.594755][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.599836][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.604877][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.609518][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.616041][ T5691] [ 356.618373][ T5691] Uninit was stored to memory at: [ 356.623608][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.628753][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.633870][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.638436][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.643308][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.649703][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.654902][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.659811][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.664530][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.670915][ T5691] [ 356.673391][ T5691] Uninit was stored to memory at: [ 356.678494][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.683778][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.688755][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.693405][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.698135][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.704624][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.709729][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.714774][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.719333][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.725856][ T5691] [ 356.728199][ T5691] Uninit was stored to memory at: [ 356.733450][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.738601][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.743693][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.748242][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.753096][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.759474][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.764802][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.769705][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.774397][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.780783][ T5691] [ 356.783254][ T5691] Uninit was stored to memory at: [ 356.788331][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 356.793621][ T5691] get_compat_msghdr+0x108/0x2c0 [ 356.798597][ T5691] do_recvmmsg+0xd77/0x2120 [ 356.803242][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.807974][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 356.814475][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 356.819558][ T5691] do_fast_syscall_32+0x34/0x70 [ 356.824610][ T5691] do_SYSENTER_32+0x1b/0x20 [ 356.829170][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 356.835676][ T5691] [ 356.838018][ T5691] Local variable msg_sys created at: [ 356.843459][ T5691] do_recvmmsg+0xbb/0x2120 [ 356.847926][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 356.970815][ T5691] not chained 340000 origins [ 356.975746][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 356.984118][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.994194][ T5691] Call Trace: [ 356.997471][ T5691] [ 357.000397][ T5691] dump_stack_lvl+0x1ff/0x28e [ 357.005110][ T5691] dump_stack+0x25/0x28 [ 357.009289][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 357.015041][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.020180][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.025333][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.031175][ T5691] ? preempt_count_sub+0xf8/0x330 [ 357.036212][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.041371][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.047227][ T5691] ? should_fail+0x75/0x9c0 [ 357.051741][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.056882][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 357.063156][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 357.069281][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.074605][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.080443][ T5691] __msan_chain_origin+0xbf/0x140 [ 357.085495][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.090640][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.095597][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 357.100492][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.105035][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.110179][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.116024][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 357.121163][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.126300][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 357.132588][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.139115][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.143829][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.150204][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.155257][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 357.160999][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.165893][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.170447][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.176899][ T5691] RIP: 0023:0xf6ea6549 [ 357.180971][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 357.200768][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 357.209207][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 357.217197][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 357.225174][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 357.233160][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 357.241136][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 357.249123][ T5691] [ 357.254994][ T5691] Uninit was stored to memory at: [ 357.260105][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.265743][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.270751][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.275440][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.280170][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.286681][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.291759][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.296782][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.301335][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.307918][ T5691] [ 357.310249][ T5691] Uninit was stored to memory at: [ 357.315497][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.320648][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.325846][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.330411][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.335281][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.341663][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.346874][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.351784][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.356521][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.363044][ T5691] [ 357.365398][ T5691] Uninit was stored to memory at: [ 357.370482][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.375831][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.380816][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.385549][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.390281][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.396856][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.401963][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.407077][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.411653][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.418183][ T5691] [ 357.420513][ T5691] Uninit was stored to memory at: [ 357.425738][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.430974][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.436134][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.440693][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.445627][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.452158][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.457550][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.462654][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.467220][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.473865][ T5691] [ 357.476195][ T5691] Uninit was stored to memory at: [ 357.481346][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.486616][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.491592][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.496318][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.501045][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.507591][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.512793][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.517712][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.522415][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.528803][ T5691] [ 357.531118][ T5691] Uninit was stored to memory at: [ 357.536343][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.541510][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.546608][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.551174][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.556082][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.562581][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.567760][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.572816][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.577372][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.583882][ T5691] [ 357.586394][ T5691] Uninit was stored to memory at: [ 357.591479][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.596752][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.601734][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.606470][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.611223][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.617783][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.622991][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.627896][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.632606][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.639003][ T5691] [ 357.641409][ T5691] Local variable msg_sys created at: [ 357.646825][ T5691] do_recvmmsg+0xbb/0x2120 [ 357.651466][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.784616][ T5691] not chained 350000 origins [ 357.789345][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 357.797716][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.807786][ T5691] Call Trace: [ 357.811089][ T5691] [ 357.814022][ T5691] dump_stack_lvl+0x1ff/0x28e [ 357.818736][ T5691] dump_stack+0x25/0x28 [ 357.822924][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 357.828703][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.833874][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.839014][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.844872][ T5691] ? preempt_count_sub+0xf8/0x330 [ 357.849933][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.855171][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.861042][ T5691] ? should_fail+0x75/0x9c0 [ 357.865562][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.870721][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 357.877004][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 357.883137][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.888306][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.894177][ T5691] __msan_chain_origin+0xbf/0x140 [ 357.899344][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 357.904499][ T5691] get_compat_msghdr+0x108/0x2c0 [ 357.909481][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 357.914364][ T5691] do_recvmmsg+0xd77/0x2120 [ 357.918927][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.924075][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 357.929947][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 357.935093][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 357.940259][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 357.946538][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.953098][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 357.957837][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 357.964227][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 357.969305][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 357.975050][ T5691] do_fast_syscall_32+0x34/0x70 [ 357.979955][ T5691] do_SYSENTER_32+0x1b/0x20 [ 357.984499][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 357.990887][ T5691] RIP: 0023:0xf6ea6549 [ 357.994985][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 358.014727][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 358.023189][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 358.031293][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 358.039275][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 358.047259][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 358.055242][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 358.063256][ T5691] [ 358.068141][ T5691] Uninit was stored to memory at: [ 358.073948][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.079105][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.084190][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.088774][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.093594][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.099979][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.105158][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.110061][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.114756][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.121145][ T5691] [ 358.123633][ T5691] Uninit was stored to memory at: [ 358.128717][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.134020][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.139042][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.143747][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.148480][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.155004][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.160086][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.165094][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.169647][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.176203][ T5691] [ 358.178537][ T5691] Uninit was stored to memory at: [ 358.183786][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.188943][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.194087][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.198671][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.203540][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.209923][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.215183][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.220130][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.224858][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.231255][ T5691] [ 358.233756][ T5691] Uninit was stored to memory at: [ 358.238842][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.244175][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.249167][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.253896][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.258655][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.265161][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.270278][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.275326][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.279895][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.286385][ T5691] [ 358.288717][ T5691] Uninit was stored to memory at: [ 358.293956][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.299111][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.304257][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.308816][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.313686][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.320070][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.325318][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.330224][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.334929][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.341320][ T5691] [ 358.343808][ T5691] Uninit was stored to memory at: [ 358.348886][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.354189][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.359182][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.363915][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.368660][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.375217][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.380398][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.385452][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.390037][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.396557][ T5691] [ 358.398890][ T5691] Uninit was stored to memory at: [ 358.404153][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.409304][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.414601][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.419195][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.424079][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.430461][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.435761][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.440669][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.445376][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.451786][ T5691] [ 358.454267][ T5691] Local variable msg_sys created at: [ 358.459566][ T5691] do_recvmmsg+0xbb/0x2120 [ 358.464175][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.581610][ T5691] not chained 360000 origins [ 358.586421][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 358.594808][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.604967][ T5691] Call Trace: [ 358.608261][ T5691] [ 358.611194][ T5691] dump_stack_lvl+0x1ff/0x28e [ 358.616010][ T5691] dump_stack+0x25/0x28 [ 358.620193][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 358.625950][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.631121][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.636264][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 358.642201][ T5691] ? preempt_count_sub+0xf8/0x330 [ 358.647265][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.652439][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 358.658324][ T5691] ? should_fail+0x75/0x9c0 [ 358.662848][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.668021][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 358.674305][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 358.680442][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.685590][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 358.691455][ T5691] __msan_chain_origin+0xbf/0x140 [ 358.696512][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.701668][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.706655][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 358.711591][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.716142][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.721310][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 358.727179][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 358.732326][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 358.737499][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 358.743807][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.750364][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.755088][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.761472][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.766536][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 358.772313][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.777204][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.781734][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.788097][ T5691] RIP: 0023:0xf6ea6549 [ 358.792188][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 358.811846][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 358.820309][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 358.828300][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 358.836281][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 358.844357][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 358.852354][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 358.860366][ T5691] [ 358.865481][ T5691] Uninit was stored to memory at: [ 358.870589][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.876111][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.881103][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.885764][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.890581][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.897072][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.902294][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.907231][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.911798][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.918374][ T5691] [ 358.920710][ T5691] Uninit was stored to memory at: [ 358.925971][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.931124][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.936195][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.940752][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 358.945587][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 358.951961][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 358.957200][ T5691] do_fast_syscall_32+0x34/0x70 [ 358.962254][ T5691] do_SYSENTER_32+0x1b/0x20 [ 358.966827][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 358.973364][ T5691] [ 358.975699][ T5691] Uninit was stored to memory at: [ 358.980795][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 358.986120][ T5691] get_compat_msghdr+0x108/0x2c0 [ 358.991103][ T5691] do_recvmmsg+0xd77/0x2120 [ 358.995804][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.000534][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.007063][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.012240][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.017155][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.021688][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.028177][ T5691] [ 359.030509][ T5691] Uninit was stored to memory at: [ 359.035712][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.040861][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.045991][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.050548][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.055381][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.061764][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.066989][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.071897][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.076585][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.083083][ T5691] [ 359.085419][ T5691] Uninit was stored to memory at: [ 359.090511][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.095823][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.100804][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.105507][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.110238][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.116788][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.121869][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.126921][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.131563][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.138049][ T5691] [ 359.140380][ T5691] Uninit was stored to memory at: [ 359.145622][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.150772][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.155848][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.160400][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.165270][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.171654][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.176835][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.181739][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.186450][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.192938][ T5691] [ 359.195269][ T5691] Uninit was stored to memory at: [ 359.200362][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.205651][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.210630][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.215337][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.220072][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.226596][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.231676][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.236684][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.241239][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.247764][ T5691] [ 359.250096][ T5691] Local variable msg_sys created at: [ 359.255492][ T5691] do_recvmmsg+0xbb/0x2120 [ 359.259959][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.381312][ T5691] not chained 370000 origins [ 359.386224][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 359.394595][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.404775][ T5691] Call Trace: [ 359.408060][ T5691] [ 359.411006][ T5691] dump_stack_lvl+0x1ff/0x28e [ 359.415740][ T5691] dump_stack+0x25/0x28 [ 359.419925][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 359.425707][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.430851][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.436134][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 359.442000][ T5691] ? preempt_count_sub+0xf8/0x330 [ 359.447068][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.452411][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 359.458268][ T5691] ? should_fail+0x75/0x9c0 [ 359.462794][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.467932][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 359.474203][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 359.480305][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.485442][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 359.491278][ T5691] __msan_chain_origin+0xbf/0x140 [ 359.496336][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.501480][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.506440][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 359.511319][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.515858][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.521001][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 359.526883][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 359.532030][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 359.537191][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 359.543465][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.550255][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.554970][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.561329][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.566425][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 359.572167][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.577059][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.581590][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.587956][ T5691] RIP: 0023:0xf6ea6549 [ 359.592042][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 359.611825][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 359.620264][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 359.628516][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 359.636509][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 359.644506][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 359.652490][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 359.660491][ T5691] [ 359.666445][ T5691] Uninit was stored to memory at: [ 359.671566][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.679338][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.684437][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.688997][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.693921][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.700303][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.705531][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.710472][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.715211][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.721627][ T5691] [ 359.724159][ T5691] Uninit was stored to memory at: [ 359.729276][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.734627][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.739609][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.744343][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.749075][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.755630][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.760748][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.765786][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.770365][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.776880][ T5691] [ 359.779252][ T5691] Uninit was stored to memory at: [ 359.784534][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.789704][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.794872][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.799436][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.804311][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.810691][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.815951][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.820860][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.825588][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.832100][ T5691] [ 359.834433][ T5691] Uninit was stored to memory at: [ 359.839508][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.844781][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.849753][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.854566][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.859293][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.865851][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.870951][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.875979][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.880535][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.887072][ T5691] [ 359.889430][ T5691] Uninit was stored to memory at: [ 359.894700][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.899856][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.905040][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.909637][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.914545][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.920931][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.926209][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.931126][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.935867][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.942404][ T5691] [ 359.944741][ T5691] Uninit was stored to memory at: [ 359.949819][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 359.955338][ T5691] get_compat_msghdr+0x108/0x2c0 [ 359.960365][ T5691] do_recvmmsg+0xd77/0x2120 [ 359.965152][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 359.969879][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 359.976441][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 359.981525][ T5691] do_fast_syscall_32+0x34/0x70 [ 359.986553][ T5691] do_SYSENTER_32+0x1b/0x20 [ 359.991131][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 359.997640][ T5691] [ 359.999991][ T5691] Uninit was stored to memory at: [ 360.005270][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.010419][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.015586][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.020142][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.024992][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.031380][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.036662][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.041575][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.046337][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.052827][ T5691] [ 360.055146][ T5691] Local variable msg_sys created at: [ 360.060417][ T5691] do_recvmmsg+0xbb/0x2120 [ 360.064994][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.197001][ T5691] not chained 380000 origins [ 360.201625][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 360.209971][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.220034][ T5691] Call Trace: [ 360.223334][ T5691] [ 360.226263][ T5691] dump_stack_lvl+0x1ff/0x28e [ 360.230975][ T5691] dump_stack+0x25/0x28 [ 360.235153][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 360.240913][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.246070][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.251209][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 360.257049][ T5691] ? preempt_count_sub+0xf8/0x330 [ 360.262095][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.267258][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 360.273099][ T5691] ? should_fail+0x75/0x9c0 [ 360.277612][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.282751][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 360.289022][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 360.295127][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.300292][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 360.306128][ T5691] __msan_chain_origin+0xbf/0x140 [ 360.311182][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.316326][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.321287][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 360.326168][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.330710][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.335850][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 360.341713][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 360.346884][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 360.352034][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 360.358331][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.364864][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.369588][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.375950][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.381005][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 360.386744][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.391623][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.396153][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.402516][ T5691] RIP: 0023:0xf6ea6549 [ 360.406603][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 360.426248][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 360.434679][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 360.442659][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 360.450653][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 360.458637][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 360.466613][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 360.474601][ T5691] [ 360.479693][ T5691] Uninit was stored to memory at: [ 360.485216][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.490373][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.495461][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.500020][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.504852][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.511271][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.516508][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.521419][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.526146][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.532603][ T5691] [ 360.534922][ T5691] Uninit was stored to memory at: [ 360.539984][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.545261][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.550244][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.554960][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.559684][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.566181][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.571257][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.576253][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.580807][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.587296][ T5691] [ 360.589626][ T5691] Uninit was stored to memory at: [ 360.594863][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.600017][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.605137][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.609692][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.614557][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.620934][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.626188][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.631102][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.635825][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.642284][ T5691] [ 360.644601][ T5691] Uninit was stored to memory at: [ 360.649680][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.655004][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.659992][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.664673][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.669405][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.675927][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.681015][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.686018][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.690663][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.697198][ T5691] [ 360.699531][ T5691] Uninit was stored to memory at: [ 360.704743][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.709892][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.715104][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.719664][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.724515][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.730979][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.736212][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.741122][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.745851][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.752345][ T5691] [ 360.754687][ T5691] Uninit was stored to memory at: [ 360.759781][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.766093][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.771073][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.775776][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.780504][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.787074][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.792244][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.797151][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.801683][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.808259][ T5691] [ 360.810592][ T5691] Uninit was stored to memory at: [ 360.815850][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 360.821003][ T5691] get_compat_msghdr+0x108/0x2c0 [ 360.826087][ T5691] do_recvmmsg+0xd77/0x2120 [ 360.830654][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.835535][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 360.841914][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 360.847130][ T5691] do_fast_syscall_32+0x34/0x70 [ 360.852125][ T5691] do_SYSENTER_32+0x1b/0x20 [ 360.856680][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 360.863186][ T5691] [ 360.865516][ T5691] Local variable msg_sys created at: [ 360.870789][ T5691] do_recvmmsg+0xbb/0x2120 [ 360.875399][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 360.993935][ T5691] not chained 390000 origins [ 360.998561][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 361.006909][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.016985][ T5691] Call Trace: [ 361.020259][ T5691] [ 361.023188][ T5691] dump_stack_lvl+0x1ff/0x28e [ 361.027923][ T5691] dump_stack+0x25/0x28 [ 361.032126][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 361.037900][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.043046][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.048208][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.054069][ T5691] ? preempt_count_sub+0xf8/0x330 [ 361.059115][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.064289][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.070162][ T5691] ? should_fail+0x75/0x9c0 [ 361.074697][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.079856][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 361.086136][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 361.092261][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.097422][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.103264][ T5691] __msan_chain_origin+0xbf/0x140 [ 361.108337][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.113492][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.118470][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 361.123351][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.127914][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.133057][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.138926][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 361.144068][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.149320][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 361.155613][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.162154][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.166905][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.173300][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.178385][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 361.184154][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.189066][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.193621][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.200006][ T5691] RIP: 0023:0xf6ea6549 [ 361.204080][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 361.223729][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 361.232181][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 361.240246][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 361.248228][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 361.256220][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 361.264205][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 361.272218][ T5691] [ 361.277384][ T5691] Uninit was stored to memory at: [ 361.282828][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.287980][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.293056][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.297611][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.302441][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.308831][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.314084][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.318993][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.323708][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.330102][ T5691] [ 361.332572][ T5691] Uninit was stored to memory at: [ 361.337668][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.343069][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.348048][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.352881][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.357611][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.364139][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.369311][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.374370][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.378928][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.385435][ T5691] [ 361.387767][ T5691] Uninit was stored to memory at: [ 361.392996][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.398147][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.403275][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.407829][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.412702][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.419080][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.424303][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.429206][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.433899][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.440283][ T5691] [ 361.442746][ T5691] Uninit was stored to memory at: [ 361.447824][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.453109][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.458081][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.462759][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.467487][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.474031][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.479115][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.484152][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.488742][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.495269][ T5691] [ 361.497597][ T5691] Uninit was stored to memory at: [ 361.502819][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.507979][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.513108][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.517660][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.522533][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.528909][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.534135][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.539040][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.543733][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.550331][ T5691] [ 361.552846][ T5691] Uninit was stored to memory at: [ 361.557936][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.563225][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.568219][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.572939][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.577671][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.584190][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.589282][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.594329][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.598882][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.605429][ T5691] [ 361.607780][ T5691] Uninit was stored to memory at: [ 361.613019][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.618175][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.623333][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.627896][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.632785][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.639165][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.644395][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.649302][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.654000][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 361.660387][ T5691] [ 361.662870][ T5691] Local variable msg_sys created at: [ 361.668161][ T5691] do_recvmmsg+0xbb/0x2120 [ 361.672754][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.795620][ T5691] not chained 400000 origins [ 361.800260][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 361.808609][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.818676][ T5691] Call Trace: [ 361.821966][ T5691] [ 361.824917][ T5691] dump_stack_lvl+0x1ff/0x28e [ 361.829644][ T5691] dump_stack+0x25/0x28 [ 361.833823][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 361.839586][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.844725][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.849874][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.855713][ T5691] ? preempt_count_sub+0xf8/0x330 [ 361.860758][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.865913][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.871828][ T5691] ? should_fail+0x75/0x9c0 [ 361.876376][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.881557][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 361.887957][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 361.894061][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.899203][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.905045][ T5691] __msan_chain_origin+0xbf/0x140 [ 361.910102][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 361.915270][ T5691] get_compat_msghdr+0x108/0x2c0 [ 361.920240][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 361.925134][ T5691] do_recvmmsg+0xd77/0x2120 [ 361.929674][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.934812][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 361.940666][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 361.945804][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 361.950945][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 361.957232][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.963791][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 361.968516][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 361.974877][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 361.979937][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 361.985709][ T5691] do_fast_syscall_32+0x34/0x70 [ 361.990591][ T5691] do_SYSENTER_32+0x1b/0x20 [ 361.995119][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.001478][ T5691] RIP: 0023:0xf6ea6549 [ 362.005549][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 362.025174][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 362.033598][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 362.041578][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 362.049570][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 362.057546][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 362.065520][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 362.073512][ T5691] [ 362.079579][ T5691] Uninit was stored to memory at: [ 362.087352][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.093799][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.098791][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.103498][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.108240][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.114769][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.119857][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.124943][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.129500][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.136022][ T5691] [ 362.138351][ T5691] Uninit was stored to memory at: [ 362.143625][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.148778][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.153931][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.158511][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.163557][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.169954][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.175222][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.180133][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.184863][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.191295][ T5691] [ 362.193836][ T5691] Uninit was stored to memory at: [ 362.198922][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.204251][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.209235][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.213923][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.218657][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.225159][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.230277][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.235358][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.239932][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.246510][ T5691] [ 362.248843][ T5691] Uninit was stored to memory at: [ 362.254123][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.259321][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.264496][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.269071][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.274065][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.280448][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.285686][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.290598][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.295347][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.301741][ T5691] [ 362.304273][ T5691] Uninit was stored to memory at: [ 362.309360][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.314688][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.319670][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.324399][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.329135][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.335651][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.340749][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.345766][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.350344][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.356857][ T5691] [ 362.359239][ T5691] Uninit was stored to memory at: [ 362.364519][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.369674][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.374834][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.379397][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.384267][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.390662][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.395926][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.400833][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.405579][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.412110][ T5691] [ 362.414447][ T5691] Uninit was stored to memory at: [ 362.419539][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.424812][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.429790][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.434465][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.439196][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.445760][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.450847][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.455938][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.460515][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.467020][ T5691] [ 362.469354][ T5691] Local variable msg_sys created at: [ 362.474829][ T5691] do_recvmmsg+0xbb/0x2120 [ 362.479294][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.610556][ T5691] not chained 410000 origins [ 362.615532][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 362.623900][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.633983][ T5691] Call Trace: [ 362.637274][ T5691] [ 362.640213][ T5691] dump_stack_lvl+0x1ff/0x28e [ 362.644966][ T5691] dump_stack+0x25/0x28 [ 362.649164][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 362.655042][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.660199][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.665356][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 362.671236][ T5691] ? preempt_count_sub+0xf8/0x330 [ 362.676314][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.681474][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 362.687322][ T5691] ? should_fail+0x75/0x9c0 [ 362.691844][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.696995][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 362.703308][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 362.709426][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.714574][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 362.720424][ T5691] __msan_chain_origin+0xbf/0x140 [ 362.725482][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.730723][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.735682][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 362.740568][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.745134][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.750291][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 362.756159][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 362.761307][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 362.766499][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 362.772834][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.779366][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.784078][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.790435][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.795497][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 362.801244][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.806156][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.810739][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.817098][ T5691] RIP: 0023:0xf6ea6549 [ 362.821168][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 362.840808][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 362.849248][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 362.857241][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 362.865221][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 362.873209][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 362.881186][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 362.889190][ T5691] [ 362.894118][ T5691] Uninit was stored to memory at: [ 362.901139][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.906658][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.911637][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.916337][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.921069][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.927581][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.932789][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.937696][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.942408][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 362.948791][ T5691] [ 362.951111][ T5691] Uninit was stored to memory at: [ 362.956334][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 362.961482][ T5691] get_compat_msghdr+0x108/0x2c0 [ 362.966580][ T5691] do_recvmmsg+0xd77/0x2120 [ 362.971228][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 362.976127][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 362.982591][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 362.987656][ T5691] do_fast_syscall_32+0x34/0x70 [ 362.992707][ T5691] do_SYSENTER_32+0x1b/0x20 [ 362.997260][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.003799][ T5691] [ 363.006129][ T5691] Uninit was stored to memory at: [ 363.011206][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.016472][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.021450][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.026177][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.030996][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.037512][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.042725][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.047632][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.052316][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.058704][ T5691] [ 363.061031][ T5691] Uninit was stored to memory at: [ 363.066256][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.071409][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.076507][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.081063][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.085965][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.092448][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.097507][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.102562][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.107117][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.113683][ T5691] [ 363.116017][ T5691] Uninit was stored to memory at: [ 363.121090][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.126357][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.131335][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.136045][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.140774][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.147324][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.152488][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.157368][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.161894][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.168398][ T5691] [ 363.170728][ T5691] Uninit was stored to memory at: [ 363.175923][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.181069][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.186222][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.190779][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.195642][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.202141][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.207224][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.212322][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.216881][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.223386][ T5691] [ 363.225718][ T5691] Uninit was stored to memory at: [ 363.230785][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.236102][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.241085][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.245807][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.250534][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.257080][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.262349][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.267268][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.271832][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.278432][ T5691] [ 363.280825][ T5691] Local variable msg_sys created at: [ 363.286232][ T5691] do_recvmmsg+0xbb/0x2120 [ 363.290699][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.418657][ T5691] not chained 420000 origins [ 363.423466][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 363.431849][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.441909][ T5691] Call Trace: [ 363.445193][ T5691] [ 363.448137][ T5691] dump_stack_lvl+0x1ff/0x28e [ 363.452940][ T5691] dump_stack+0x25/0x28 [ 363.457124][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 363.462894][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.468063][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.473226][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 363.479128][ T5691] ? preempt_count_sub+0xf8/0x330 [ 363.484174][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.489338][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 363.495180][ T5691] ? should_fail+0x75/0x9c0 [ 363.499697][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.504840][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 363.511156][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 363.517270][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.522450][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 363.528324][ T5691] __msan_chain_origin+0xbf/0x140 [ 363.533528][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.538714][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.543703][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 363.548623][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.553202][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.558375][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 363.564257][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 363.569397][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 363.574539][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 363.580842][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.587376][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.592100][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.598482][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.603540][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 363.609321][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.614208][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.618761][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.625156][ T5691] RIP: 0023:0xf6ea6549 [ 363.629247][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 363.648897][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 363.657336][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 363.665318][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 363.673406][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 363.681409][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 363.689395][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 363.697400][ T5691] [ 363.703649][ T5691] Uninit was stored to memory at: [ 363.708781][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.714443][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.719466][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.724130][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.728867][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.735370][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.740456][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.745547][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.750123][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.756633][ T5691] [ 363.759026][ T5691] Uninit was stored to memory at: [ 363.764357][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.769535][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.774677][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.779237][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.784200][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.790583][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.795809][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.800715][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.805423][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.811812][ T5691] [ 363.814302][ T5691] Uninit was stored to memory at: [ 363.819386][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.824677][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.829667][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.834367][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.839115][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.845637][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.850721][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.855798][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.860368][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.866896][ T5691] [ 363.869231][ T5691] Uninit was stored to memory at: [ 363.874480][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.879634][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.884763][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.889389][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.894258][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.900643][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.905884][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.910802][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.915512][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.921904][ T5691] [ 363.924377][ T5691] Uninit was stored to memory at: [ 363.929476][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.934797][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.939796][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.944506][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 363.949260][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 363.955812][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 363.960903][ T5691] do_fast_syscall_32+0x34/0x70 [ 363.965981][ T5691] do_SYSENTER_32+0x1b/0x20 [ 363.970544][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 363.977059][ T5691] [ 363.979400][ T5691] Uninit was stored to memory at: [ 363.984650][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 363.989806][ T5691] get_compat_msghdr+0x108/0x2c0 [ 363.994931][ T5691] do_recvmmsg+0xd77/0x2120 [ 363.999486][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.004357][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.010739][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.015986][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.020896][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.025600][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.032090][ T5691] [ 364.034425][ T5691] Uninit was stored to memory at: [ 364.039527][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.044831][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.049814][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.054519][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.059257][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.065795][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.070883][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.075960][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.080606][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.087101][ T5691] [ 364.089435][ T5691] Local variable msg_sys created at: [ 364.094878][ T5691] do_recvmmsg+0xbb/0x2120 [ 364.099347][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.235696][ T5691] not chained 430000 origins [ 364.240328][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 364.248687][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.258771][ T5691] Call Trace: [ 364.262054][ T5691] [ 364.264995][ T5691] dump_stack_lvl+0x1ff/0x28e [ 364.269736][ T5691] dump_stack+0x25/0x28 [ 364.273917][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 364.279673][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.284821][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.289994][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 364.295866][ T5691] ? preempt_count_sub+0xf8/0x330 [ 364.300945][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.306102][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 364.312003][ T5691] ? should_fail+0x75/0x9c0 [ 364.316582][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.321736][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 364.328019][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 364.334141][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.339322][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 364.345172][ T5691] __msan_chain_origin+0xbf/0x140 [ 364.350282][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.355456][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.360423][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 364.365334][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.369926][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.375106][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 364.380967][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 364.386131][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 364.391396][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 364.397684][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.404249][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.408999][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.415408][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.420466][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 364.426214][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.431139][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.435681][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.442077][ T5691] RIP: 0023:0xf6ea6549 [ 364.446188][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 364.465841][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 364.474300][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 364.482310][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 364.490313][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 364.498306][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 364.506303][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 364.514337][ T5691] [ 364.520135][ T5691] Uninit was stored to memory at: [ 364.525760][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.530926][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.536016][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.540601][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.545444][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.551829][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.557032][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.561942][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.566651][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.573220][ T5691] [ 364.575557][ T5691] Uninit was stored to memory at: [ 364.580651][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.585971][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.590957][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.595687][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.600419][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.606984][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.612166][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.617080][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.621630][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.628163][ T5691] [ 364.630500][ T5691] Uninit was stored to memory at: [ 364.635718][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.640875][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.646032][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.650596][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.655493][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.661880][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.667114][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.672150][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.676738][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.683275][ T5691] [ 364.685623][ T5691] Uninit was stored to memory at: [ 364.690704][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.695962][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.700945][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.705652][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.710381][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.716868][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.722073][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.726987][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.731545][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.738059][ T5691] [ 364.740395][ T5691] Uninit was stored to memory at: [ 364.745631][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.750790][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.755896][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.760486][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.765367][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.771750][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.776936][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.781843][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.786554][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.793048][ T5691] [ 364.795379][ T5691] Uninit was stored to memory at: [ 364.800441][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.805735][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.810719][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.815383][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.820114][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.826641][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.831733][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.836794][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.841354][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.847880][ T5691] [ 364.850219][ T5691] Uninit was stored to memory at: [ 364.855483][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 364.860640][ T5691] get_compat_msghdr+0x108/0x2c0 [ 364.865721][ T5691] do_recvmmsg+0xd77/0x2120 [ 364.870276][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 364.875149][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 364.881530][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 364.886721][ T5691] do_fast_syscall_32+0x34/0x70 [ 364.891630][ T5691] do_SYSENTER_32+0x1b/0x20 [ 364.896364][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 364.902854][ T5691] [ 364.905186][ T5691] Local variable msg_sys created at: [ 364.910462][ T5691] do_recvmmsg+0xbb/0x2120 [ 364.915070][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.031910][ T5691] not chained 440000 origins [ 365.036759][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 365.045130][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.055200][ T5691] Call Trace: [ 365.058497][ T5691] [ 365.061442][ T5691] dump_stack_lvl+0x1ff/0x28e [ 365.066184][ T5691] dump_stack+0x25/0x28 [ 365.070395][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 365.076154][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.081324][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.086477][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.092349][ T5691] ? preempt_count_sub+0xf8/0x330 [ 365.097411][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.102559][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.108447][ T5691] ? should_fail+0x75/0x9c0 [ 365.112972][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.118135][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 365.124412][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 365.130535][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.135683][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.141566][ T5691] __msan_chain_origin+0xbf/0x140 [ 365.146640][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.151800][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.156789][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 365.161706][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.166289][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.171458][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.177314][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 365.182486][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.187654][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 365.193938][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.200518][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.205250][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.211629][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.216696][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 365.222468][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.227374][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.231903][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.238293][ T5691] RIP: 0023:0xf6ea6549 [ 365.242398][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 365.262055][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 365.270516][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 365.278507][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 365.286623][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 365.294627][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 365.302638][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 365.310647][ T5691] [ 365.316405][ T5691] Uninit was stored to memory at: [ 365.321515][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.327295][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.332411][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.336986][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.341719][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.348238][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.353436][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.358374][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.363099][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.369501][ T5691] [ 365.371822][ T5691] Uninit was stored to memory at: [ 365.377071][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.382315][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.387301][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.391852][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.396714][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.403201][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.408297][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.413341][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.417897][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.424462][ T5691] [ 365.426796][ T5691] Uninit was stored to memory at: [ 365.431867][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.437155][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.442225][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.446782][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.451489][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.457961][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.463146][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.468057][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.472744][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.479154][ T5691] [ 365.481475][ T5691] Uninit was stored to memory at: [ 365.486683][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.491835][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.496979][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.501541][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.506444][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.512926][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.518012][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.523093][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.527688][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.534230][ T5691] [ 365.536567][ T5691] Uninit was stored to memory at: [ 365.541648][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.546908][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.551911][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.556614][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.561334][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.567877][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.573062][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.577968][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.582649][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.589042][ T5691] [ 365.591381][ T5691] Uninit was stored to memory at: [ 365.596604][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.601753][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.606891][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.611453][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.616436][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.622914][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.628005][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.633072][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.637632][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.644180][ T5691] [ 365.646515][ T5691] Uninit was stored to memory at: [ 365.651592][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.656842][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.661820][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.666602][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.671343][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 365.677849][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 365.683036][ T5691] do_fast_syscall_32+0x34/0x70 [ 365.687974][ T5691] do_SYSENTER_32+0x1b/0x20 [ 365.692684][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 365.699074][ T5691] [ 365.701397][ T5691] Local variable msg_sys created at: [ 365.706836][ T5691] do_recvmmsg+0xbb/0x2120 [ 365.711301][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 365.840332][ T5691] not chained 450000 origins [ 365.845140][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 365.853513][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.863591][ T5691] Call Trace: [ 365.866881][ T5691] [ 365.869814][ T5691] dump_stack_lvl+0x1ff/0x28e [ 365.874557][ T5691] dump_stack+0x25/0x28 [ 365.878785][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 365.884553][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.889724][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.894881][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.900773][ T5691] ? preempt_count_sub+0xf8/0x330 [ 365.905829][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.911002][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.916850][ T5691] ? should_fail+0x75/0x9c0 [ 365.921375][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.926519][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 365.932808][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 365.938951][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.944130][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.950006][ T5691] __msan_chain_origin+0xbf/0x140 [ 365.955065][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 365.960237][ T5691] get_compat_msghdr+0x108/0x2c0 [ 365.965219][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 365.970138][ T5691] do_recvmmsg+0xd77/0x2120 [ 365.974699][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.979885][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 365.985760][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 365.990950][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 365.996098][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 366.002383][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.008936][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.013656][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.020040][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.025099][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 366.030865][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.035752][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.040308][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.046672][ T5691] RIP: 0023:0xf6ea6549 [ 366.050761][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 366.070407][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 366.078857][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 366.086846][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 366.094826][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 366.102820][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 366.110812][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 366.118804][ T5691] [ 366.124665][ T5691] Uninit was stored to memory at: [ 366.129778][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.135486][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.140475][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.145133][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.149871][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.156402][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.161484][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.166559][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.171116][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.177638][ T5691] [ 366.179973][ T5691] Uninit was stored to memory at: [ 366.185217][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.190373][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.195493][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.200050][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.204922][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.211307][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.216485][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.221392][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.226099][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.232582][ T5691] [ 366.234916][ T5691] Uninit was stored to memory at: [ 366.239991][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.245370][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.250350][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.255045][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.259771][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.266299][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.271396][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.276465][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.281031][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.287537][ T5691] [ 366.289866][ T5691] Uninit was stored to memory at: [ 366.295054][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.300211][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.305354][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.309911][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.314787][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.321165][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.326404][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.331311][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.335970][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.342459][ T5691] [ 366.344791][ T5691] Uninit was stored to memory at: [ 366.349867][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.355133][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.360128][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.364832][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.369563][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.376098][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.381183][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.386273][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.390838][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.397354][ T5691] [ 366.399686][ T5691] Uninit was stored to memory at: [ 366.404928][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.410103][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.415215][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.419774][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.424647][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.431026][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.436232][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.441141][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.445843][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.452359][ T5691] [ 366.454691][ T5691] Uninit was stored to memory at: [ 366.459764][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.465052][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.470031][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.474735][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.479461][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.485988][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.491078][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.496146][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.500711][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.507223][ T5691] [ 366.509565][ T5691] Local variable msg_sys created at: [ 366.515007][ T5691] do_recvmmsg+0xbb/0x2120 [ 366.519474][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.638562][ T5691] not chained 460000 origins [ 366.643395][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 366.651758][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.661824][ T5691] Call Trace: [ 366.665117][ T5691] [ 366.668070][ T5691] dump_stack_lvl+0x1ff/0x28e [ 366.672807][ T5691] dump_stack+0x25/0x28 [ 366.677016][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 366.682800][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.687973][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.693141][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 366.699018][ T5691] ? preempt_count_sub+0xf8/0x330 [ 366.704063][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.709229][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 366.715077][ T5691] ? should_fail+0x75/0x9c0 [ 366.719626][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.724792][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 366.731066][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 366.737168][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.742347][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 366.748208][ T5691] __msan_chain_origin+0xbf/0x140 [ 366.753268][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.758438][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.763407][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 366.768308][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.772855][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.778019][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 366.783895][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 366.789064][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 366.794210][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 366.800519][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.807069][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.811792][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.818162][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.823289][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 366.829057][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.833940][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.838494][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.844860][ T5691] RIP: 0023:0xf6ea6549 [ 366.848934][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 366.868561][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 366.877084][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 366.885079][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 366.893063][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 366.901058][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 366.909043][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 366.917145][ T5691] [ 366.922996][ T5691] Uninit was stored to memory at: [ 366.928107][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.933759][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.938748][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.943398][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 366.948129][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 366.954610][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 366.959703][ T5691] do_fast_syscall_32+0x34/0x70 [ 366.964756][ T5691] do_SYSENTER_32+0x1b/0x20 [ 366.969320][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 366.975836][ T5691] [ 366.978177][ T5691] Uninit was stored to memory at: [ 366.983432][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 366.988586][ T5691] get_compat_msghdr+0x108/0x2c0 [ 366.993689][ T5691] do_recvmmsg+0xd77/0x2120 [ 366.998263][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.003143][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.009525][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.014727][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.019631][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.024329][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.030715][ T5691] [ 367.033189][ T5691] Uninit was stored to memory at: [ 367.038267][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.043568][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.048543][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.053255][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.057986][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.064508][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.069588][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.074595][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.079150][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.085689][ T5691] [ 367.088025][ T5691] Uninit was stored to memory at: [ 367.093286][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.098443][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.103597][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.108162][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.113054][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.119469][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.124696][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.129601][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.134264][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.140681][ T5691] [ 367.143159][ T5691] Uninit was stored to memory at: [ 367.148260][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.153570][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.158552][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.163265][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.168020][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.174547][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.179627][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.184675][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.189227][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.195768][ T5691] [ 367.198103][ T5691] Uninit was stored to memory at: [ 367.203342][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.208526][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.213644][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.218217][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.223081][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.229456][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.234678][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.239604][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.244298][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.250688][ T5691] [ 367.253160][ T5691] Uninit was stored to memory at: [ 367.258252][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.263582][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.268563][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.273288][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.278016][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.284541][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.289622][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.294673][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.299230][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.305768][ T5691] [ 367.308111][ T5691] Local variable msg_sys created at: [ 367.313567][ T5691] do_recvmmsg+0xbb/0x2120 [ 367.318040][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.438354][ T5691] not chained 470000 origins [ 367.443235][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 367.451602][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 367.461666][ T5691] Call Trace: [ 367.464949][ T5691] [ 367.467902][ T5691] dump_stack_lvl+0x1ff/0x28e [ 367.472634][ T5691] dump_stack+0x25/0x28 [ 367.476838][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 367.482613][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.487782][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.492953][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 367.498823][ T5691] ? preempt_count_sub+0xf8/0x330 [ 367.503991][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.509178][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 367.515067][ T5691] ? should_fail+0x75/0x9c0 [ 367.519608][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.524760][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 367.531059][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 367.537172][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.542417][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 367.548349][ T5691] __msan_chain_origin+0xbf/0x140 [ 367.553427][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.558641][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.563612][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 367.568519][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.573083][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.578255][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 367.584115][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 367.589293][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 367.594467][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 367.600774][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.607317][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.612051][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.618448][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.623513][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 367.629279][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.634188][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.638745][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.645111][ T5691] RIP: 0023:0xf6ea6549 [ 367.649187][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 367.668927][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 367.677366][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 367.685467][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 367.693455][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 367.701456][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 367.709457][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 367.717480][ T5691] [ 367.723369][ T5691] Uninit was stored to memory at: [ 367.728485][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.734274][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.739274][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.743993][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.748728][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.755226][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.760361][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.765438][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.770001][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.776519][ T5691] [ 367.778853][ T5691] Uninit was stored to memory at: [ 367.784115][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.789275][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.794436][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.799017][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.803904][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.810308][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.815576][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.820491][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.825224][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.831625][ T5691] [ 367.834109][ T5691] Uninit was stored to memory at: [ 367.839196][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.844502][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.849500][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.854178][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.858907][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.865470][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.870556][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.875593][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.880161][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.886709][ T5691] [ 367.889044][ T5691] Uninit was stored to memory at: [ 367.894292][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.899450][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.904593][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.909146][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.914012][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.920393][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.925648][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.930564][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.935293][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.941691][ T5691] [ 367.944136][ T5691] Uninit was stored to memory at: [ 367.949246][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 367.954567][ T5691] get_compat_msghdr+0x108/0x2c0 [ 367.959655][ T5691] do_recvmmsg+0xd77/0x2120 [ 367.964309][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 367.969045][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 367.975571][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 367.980653][ T5691] do_fast_syscall_32+0x34/0x70 [ 367.985658][ T5691] do_SYSENTER_32+0x1b/0x20 [ 367.990215][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 367.996760][ T5691] [ 367.999092][ T5691] Uninit was stored to memory at: [ 368.004367][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.009539][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.014677][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.019244][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.024150][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.030541][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.035765][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.040678][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.045420][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.051835][ T5691] [ 368.054321][ T5691] Uninit was stored to memory at: [ 368.059403][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.064656][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.069634][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.074342][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.079210][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.085714][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.090797][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.095845][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.100399][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.106886][ T5691] [ 368.109240][ T5691] Local variable msg_sys created at: [ 368.114702][ T5691] do_recvmmsg+0xbb/0x2120 [ 368.119173][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.247657][ T5691] not chained 480000 origins [ 368.252430][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 368.260800][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.270883][ T5691] Call Trace: [ 368.274168][ T5691] [ 368.277130][ T5691] dump_stack_lvl+0x1ff/0x28e [ 368.281859][ T5691] dump_stack+0x25/0x28 [ 368.286063][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 368.291820][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.297026][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.302176][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 368.308041][ T5691] ? preempt_count_sub+0xf8/0x330 [ 368.313089][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.318274][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 368.324116][ T5691] ? should_fail+0x75/0x9c0 [ 368.328645][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.333825][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 368.340128][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 368.346336][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.351481][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 368.357328][ T5691] __msan_chain_origin+0xbf/0x140 [ 368.362412][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.367579][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.372555][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 368.377469][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.382016][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.387176][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 368.393037][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 368.398206][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 368.403358][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 368.409634][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.416166][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.420891][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.427253][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.432316][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 368.438088][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.442996][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.447525][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.453888][ T5691] RIP: 0023:0xf6ea6549 [ 368.457977][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 368.477606][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 368.486041][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 368.494032][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 368.502030][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 368.510025][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 368.518005][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 368.526002][ T5691] [ 368.532082][ T5691] Uninit was stored to memory at: [ 368.537208][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.543490][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.548486][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.553284][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.558016][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.564561][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.569647][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.574693][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.579254][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.585807][ T5691] [ 368.588145][ T5691] Uninit was stored to memory at: [ 368.593409][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.598567][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.603691][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.608246][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.613112][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.619490][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.624710][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.629615][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.634300][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.640697][ T5691] [ 368.643177][ T5691] Uninit was stored to memory at: [ 368.648348][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.653638][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.658624][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.663342][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.668076][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.674599][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.679706][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.684764][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.689343][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.695900][ T5691] [ 368.698234][ T5691] Uninit was stored to memory at: [ 368.703500][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.708651][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.713775][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.718329][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.723200][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.729672][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.734895][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.739802][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.744529][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.750920][ T5691] [ 368.753420][ T5691] Uninit was stored to memory at: [ 368.758521][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.763886][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.768887][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.773582][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.778310][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.784841][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.789923][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.794969][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.799529][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.806083][ T5691] [ 368.808419][ T5691] Uninit was stored to memory at: [ 368.813697][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.818865][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.824043][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.828610][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.833469][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.839865][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.845160][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.850121][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.854811][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.861285][ T5691] [ 368.863789][ T5691] Uninit was stored to memory at: [ 368.868891][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 368.874180][ T5691] get_compat_msghdr+0x108/0x2c0 [ 368.879185][ T5691] do_recvmmsg+0xd77/0x2120 [ 368.883906][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 368.888660][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 368.895166][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 368.900252][ T5691] do_fast_syscall_32+0x34/0x70 [ 368.905311][ T5691] do_SYSENTER_32+0x1b/0x20 [ 368.909869][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 368.916431][ T5691] [ 368.918766][ T5691] Local variable msg_sys created at: [ 368.924219][ T5691] do_recvmmsg+0xbb/0x2120 [ 368.928752][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.053304][ T5691] not chained 490000 origins [ 369.057957][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 369.066326][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.076570][ T5691] Call Trace: [ 369.079859][ T5691] [ 369.082792][ T5691] dump_stack_lvl+0x1ff/0x28e [ 369.087505][ T5691] dump_stack+0x25/0x28 [ 369.091686][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 369.097442][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.102608][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.107751][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.112910][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.118780][ T5691] ? preempt_count_sub+0xf8/0x330 [ 369.123843][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.128988][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.134834][ T5691] ? should_fail+0x75/0x9c0 [ 369.139378][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.144546][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 369.150858][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 369.156995][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.162180][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.168050][ T5691] __msan_chain_origin+0xbf/0x140 [ 369.173134][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.178305][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.183280][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 369.188191][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.192765][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.197932][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.203786][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 369.208946][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.214091][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 369.220396][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.226931][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.231670][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.238057][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.243128][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 369.248898][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.253810][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.258367][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.264739][ T5691] RIP: 0023:0xf6ea6549 [ 369.268849][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 369.288499][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 369.296933][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 369.304920][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 369.312918][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 369.320909][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 369.328890][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 369.336902][ T5691] [ 369.341910][ T5691] Uninit was stored to memory at: [ 369.347407][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.352662][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.357652][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.362318][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.367060][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.373604][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.378690][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.383749][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.388309][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.394859][ T5691] [ 369.397191][ T5691] Uninit was stored to memory at: [ 369.402411][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.407588][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.412733][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.417311][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.422176][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.428553][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.433781][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.438709][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.443517][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.449907][ T5691] [ 369.452363][ T5691] Uninit was stored to memory at: [ 369.457461][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.462777][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.467759][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.472453][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.477176][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.483689][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.488776][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.493867][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.498439][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.505011][ T5691] [ 369.507347][ T5691] Uninit was stored to memory at: [ 369.512579][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.517731][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.522851][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.527425][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.532275][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.538658][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.543891][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.548816][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.553533][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.559939][ T5691] [ 369.562464][ T5691] Uninit was stored to memory at: [ 369.567547][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.572837][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.577816][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.582545][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.587288][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.593803][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.598884][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.603966][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.608525][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.615077][ T5691] [ 369.617413][ T5691] Uninit was stored to memory at: [ 369.622763][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.627924][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.633048][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.637609][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.642492][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.648891][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.654118][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.659033][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.663759][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.670159][ T5691] [ 369.672633][ T5691] Uninit was stored to memory at: [ 369.677717][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.683007][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.687988][ T5691] do_recvmmsg+0xd77/0x2120 [ 369.692681][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.697406][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 369.703920][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 369.709024][ T5691] do_fast_syscall_32+0x34/0x70 [ 369.714095][ T5691] do_SYSENTER_32+0x1b/0x20 [ 369.718662][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 369.725214][ T5691] [ 369.727550][ T5691] Local variable msg_sys created at: [ 369.732987][ T5691] do_recvmmsg+0xbb/0x2120 [ 369.737474][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 369.875033][ T5691] not chained 500000 origins [ 369.879830][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 369.888266][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.898337][ T5691] Call Trace: [ 369.901612][ T5691] [ 369.904554][ T5691] dump_stack_lvl+0x1ff/0x28e [ 369.909282][ T5691] dump_stack+0x25/0x28 [ 369.913476][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 369.919227][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.924367][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.929506][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.935364][ T5691] ? preempt_count_sub+0xf8/0x330 [ 369.940403][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.945557][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.951403][ T5691] ? should_fail+0x75/0x9c0 [ 369.955939][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.961083][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 369.967366][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 369.973488][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 369.978646][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 369.984487][ T5691] __msan_chain_origin+0xbf/0x140 [ 369.989554][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 369.994714][ T5691] get_compat_msghdr+0x108/0x2c0 [ 369.999696][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 370.004593][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.009150][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.014292][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 370.020138][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 370.025280][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.030440][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 370.036718][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.043255][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.047972][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.054331][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.059386][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 370.065130][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.070015][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.074568][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.080937][ T5691] RIP: 0023:0xf6ea6549 [ 370.085010][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 370.104657][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 370.113087][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 370.121067][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 370.129047][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 370.137025][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 370.145003][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 370.152997][ T5691] [ 370.158896][ T5691] Uninit was stored to memory at: [ 370.164511][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.169694][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.174804][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.179360][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.184222][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.190605][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.195828][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.200735][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.205471][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.211857][ T5691] [ 370.214368][ T5691] Uninit was stored to memory at: [ 370.219447][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.224767][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.229744][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.234461][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.239196][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.245760][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.250843][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.255866][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.260420][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.266989][ T5691] [ 370.269321][ T5691] Uninit was stored to memory at: [ 370.274589][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.279745][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.284910][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.289469][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.294334][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.300718][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.305914][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.310846][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.315533][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.321943][ T5691] [ 370.324465][ T5691] Uninit was stored to memory at: [ 370.329551][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.334868][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.340008][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.344722][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.349457][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.356025][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.361110][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.366139][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.370694][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.377260][ T5691] [ 370.379599][ T5691] Uninit was stored to memory at: [ 370.384881][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.390034][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.395186][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.399802][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.404733][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.411120][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.416327][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.421263][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.425960][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.432496][ T5691] [ 370.434830][ T5691] Uninit was stored to memory at: [ 370.439926][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.445214][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.450206][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.454880][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.459747][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.466313][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.471403][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.476469][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.481032][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.487562][ T5691] [ 370.489900][ T5691] Uninit was stored to memory at: [ 370.495177][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.500332][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.505576][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.510138][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.514985][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.521387][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.526653][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.531563][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.536292][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.542774][ T5691] [ 370.545096][ T5691] Local variable msg_sys created at: [ 370.550367][ T5691] do_recvmmsg+0xbb/0x2120 [ 370.555005][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.685889][ T5691] not chained 510000 origins [ 370.690591][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 370.699086][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.709174][ T5691] Call Trace: [ 370.712456][ T5691] [ 370.715403][ T5691] dump_stack_lvl+0x1ff/0x28e [ 370.720217][ T5691] dump_stack+0x25/0x28 [ 370.724416][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 370.730195][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.735384][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.740546][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.745710][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 370.751567][ T5691] ? preempt_count_sub+0xf8/0x330 [ 370.756609][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.761752][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 370.767596][ T5691] ? should_fail+0x75/0x9c0 [ 370.772127][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.777289][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 370.783583][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 370.789711][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.794876][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 370.800730][ T5691] __msan_chain_origin+0xbf/0x140 [ 370.805799][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.810944][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.815904][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 370.820792][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.825351][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.830524][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 370.836430][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 370.841575][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 370.846718][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 370.852997][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.859527][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 370.864243][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 370.870608][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 370.875660][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 370.881408][ T5691] do_fast_syscall_32+0x34/0x70 [ 370.886294][ T5691] do_SYSENTER_32+0x1b/0x20 [ 370.890870][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 370.897242][ T5691] RIP: 0023:0xf6ea6549 [ 370.901318][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 370.920942][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 370.929382][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 370.937361][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 370.945336][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 370.953311][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 370.961286][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 370.969277][ T5691] [ 370.976269][ T5691] Uninit was stored to memory at: [ 370.981393][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 370.987185][ T5691] get_compat_msghdr+0x108/0x2c0 [ 370.992291][ T5691] do_recvmmsg+0xd77/0x2120 [ 370.996875][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.001607][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.008127][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.013338][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.018249][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.022985][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.029384][ T5691] [ 371.031719][ T5691] Uninit was stored to memory at: [ 371.037013][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.042295][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.047281][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.051851][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.056695][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.063162][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.068224][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.073314][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.077870][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.084425][ T5691] [ 371.086754][ T5691] Uninit was stored to memory at: [ 371.091832][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.097123][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.102268][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.106828][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.111554][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.118075][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.123302][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.128228][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.132947][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.139336][ T5691] [ 371.141667][ T5691] Uninit was stored to memory at: [ 371.146889][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.152158][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.157147][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.161699][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.166550][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.173021][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.178078][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.183132][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.187686][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.194246][ T5691] [ 371.196582][ T5691] Uninit was stored to memory at: [ 371.201746][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.207016][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.212119][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.216678][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.221401][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.227918][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.233140][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.238052][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.242749][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.249138][ T5691] [ 371.251486][ T5691] Uninit was stored to memory at: [ 371.256709][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.261860][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.266961][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.271516][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.276426][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.282916][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.287978][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.293039][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.297592][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.304171][ T5691] [ 371.306503][ T5691] Uninit was stored to memory at: [ 371.311580][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.316848][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.321826][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.326544][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.331272][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.337814][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.343026][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.347937][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.352688][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.359146][ T5691] [ 371.361467][ T5691] Local variable msg_sys created at: [ 371.366904][ T5691] do_recvmmsg+0xbb/0x2120 [ 371.371375][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.497158][ T5691] not chained 520000 origins [ 371.504390][ T5691] CPU: 1 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 371.512774][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.522844][ T5691] Call Trace: [ 371.526123][ T5691] [ 371.529053][ T5691] dump_stack_lvl+0x1ff/0x28e [ 371.533849][ T5691] dump_stack+0x25/0x28 [ 371.538042][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 371.543810][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.548959][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.554120][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 371.559963][ T5691] ? preempt_count_sub+0xf8/0x330 [ 371.565131][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.570291][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 371.576137][ T5691] ? should_fail+0x75/0x9c0 [ 371.580676][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.585817][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 371.592095][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 371.598207][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.603376][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 371.609256][ T5691] __msan_chain_origin+0xbf/0x140 [ 371.614340][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.619499][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.624473][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 371.629355][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.633895][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.639053][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 371.644912][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 371.650056][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 371.655220][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 371.661509][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.668058][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.672783][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.679162][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.684232][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 371.690011][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.694900][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.699436][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.705803][ T5691] RIP: 0023:0xf6ea6549 [ 371.709893][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 371.729528][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 371.737967][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 371.745973][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 371.753956][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 371.761938][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 371.769948][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 371.777958][ T5691] [ 371.784443][ T5691] Uninit was stored to memory at: [ 371.789566][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.795239][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.800234][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.804931][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.809684][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.816190][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.821279][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.826354][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.830919][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.837450][ T5691] [ 371.839783][ T5691] Uninit was stored to memory at: [ 371.845007][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.850155][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.855317][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.859874][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.864766][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.871146][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.876346][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.881305][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.886037][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.892559][ T5691] [ 371.894891][ T5691] Uninit was stored to memory at: [ 371.899957][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.905297][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.910280][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.915030][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.919762][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.926291][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.931372][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.936423][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.941003][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 371.947579][ T5691] [ 371.949914][ T5691] Uninit was stored to memory at: [ 371.955143][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 371.960306][ T5691] get_compat_msghdr+0x108/0x2c0 [ 371.965551][ T5691] do_recvmmsg+0xd77/0x2120 [ 371.970106][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 371.974979][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 371.981360][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 371.986565][ T5691] do_fast_syscall_32+0x34/0x70 [ 371.991468][ T5691] do_SYSENTER_32+0x1b/0x20 [ 371.996199][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.002725][ T5691] [ 372.005078][ T5691] Uninit was stored to memory at: [ 372.010144][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.015457][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.020444][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.025185][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.029923][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.036508][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.041601][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.046717][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.051282][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.057817][ T5691] [ 372.060151][ T5691] Uninit was stored to memory at: [ 372.065377][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.070528][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.075683][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.080242][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.085120][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.091499][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.096705][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.101615][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.106354][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.112876][ T5691] [ 372.115210][ T5691] Uninit was stored to memory at: [ 372.120310][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.125657][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.130635][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.135319][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.140051][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.146607][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.151699][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.156748][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.161305][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.167810][ T5691] [ 372.170143][ T5691] Local variable msg_sys created at: [ 372.175609][ T5691] do_recvmmsg+0xbb/0x2120 [ 372.180079][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.313817][ T5691] not chained 530000 origins [ 372.318465][ T5691] CPU: 0 PID: 5691 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 372.326850][ T5691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.336924][ T5691] Call Trace: [ 372.340217][ T5691] [ 372.343146][ T5691] dump_stack_lvl+0x1ff/0x28e [ 372.347862][ T5691] dump_stack+0x25/0x28 [ 372.352044][ T5691] kmsan_internal_chain_origin+0x78/0x110 [ 372.357823][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.362988][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.368137][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.373290][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 372.379170][ T5691] ? preempt_count_sub+0xf8/0x330 [ 372.384249][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.389407][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 372.395261][ T5691] ? should_fail+0x75/0x9c0 [ 372.399797][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.404936][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 372.411218][ T5691] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 372.417328][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.422495][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 372.428362][ T5691] __msan_chain_origin+0xbf/0x140 [ 372.433448][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.438623][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.443590][ T5691] ? __sys_recvmmsg+0x51c/0x6f0 [ 372.448610][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.453162][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.458335][ T5691] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 372.464194][ T5691] ? __stack_depot_save+0x21/0x4d0 [ 372.469361][ T5691] ? kmsan_get_metadata+0x33/0x220 [ 372.474506][ T5691] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 372.480806][ T5691] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.487788][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.492606][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.499037][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.504104][ T5691] ? irqentry_exit_to_user_mode+0x15/0x30 [ 372.509910][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.514902][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.519458][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.525823][ T5691] RIP: 0023:0xf6ea6549 [ 372.529913][ T5691] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 372.549999][ T5691] RSP: 002b:00000000f58a05cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 372.558662][ T5691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020002440 [ 372.566654][ T5691] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000 [ 372.574727][ T5691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 372.582726][ T5691] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 372.590776][ T5691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 372.598766][ T5691] [ 372.603782][ T5691] Uninit was stored to memory at: [ 372.608893][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.614419][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.619409][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.624146][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.628904][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.635442][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.640533][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.645605][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.650165][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.656736][ T5691] [ 372.659068][ T5691] Uninit was stored to memory at: [ 372.664317][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.669470][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.674546][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.679102][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.684306][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.690680][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.695856][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.700760][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.705468][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.711858][ T5691] [ 372.714299][ T5691] Uninit was stored to memory at: [ 372.719383][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.724672][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.729650][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.734364][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.739098][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.745629][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.750713][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.755732][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.760295][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.766802][ T5691] [ 372.769132][ T5691] Uninit was stored to memory at: [ 372.774378][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.779634][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.784761][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.789318][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.794188][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.800571][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.805796][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.810713][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.815418][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.821810][ T5691] [ 372.824301][ T5691] Uninit was stored to memory at: [ 372.829385][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.834660][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.839645][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.844369][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.849102][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.855661][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.860753][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.865829][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.870387][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.876986][ T5691] [ 372.879321][ T5691] Uninit was stored to memory at: [ 372.884585][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.889758][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.894878][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.899432][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.904310][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.910686][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.915904][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.920810][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.925514][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.931901][ T5691] [ 372.934376][ T5691] Uninit was stored to memory at: [ 372.939468][ T5691] __get_compat_msghdr+0x6e1/0x9d0 [ 372.944779][ T5691] get_compat_msghdr+0x108/0x2c0 [ 372.949761][ T5691] do_recvmmsg+0xd77/0x2120 [ 372.954458][ T5691] __sys_recvmmsg+0x51c/0x6f0 [ 372.959186][ T5691] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 372.965733][ T5691] __do_fast_syscall_32+0x96/0xf0 [ 372.970817][ T5691] do_fast_syscall_32+0x34/0x70 [ 372.975888][ T5691] do_SYSENTER_32+0x1b/0x20 [ 372.980448][ T5691] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 372.986948][ T5691] [ 372.989289][ T5691] Local variable msg_sys created at: [ 372.994724][ T5691] do_recvmmsg+0xbb/0x2120 [ 372.999191][ T5691] __sys_recvmmsg+0x51c/0x6f0 18:46:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0x20}}, 0x0) 18:46:07 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:07 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8901, &(0x7f0000000000)={'wlan0\x00'}) 18:46:07 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x2, {[@local=@item_012={0x1, 0x2, 0x2, '8'}]}}, 0x0}, 0x0) 18:46:07 executing program 1: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) write$proc_mixer(r0, 0x0, 0x0) 18:46:07 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 373.347160][ T5730] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:07 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, 0x0) 18:46:07 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:07 executing program 5: set_mempolicy(0x10000, 0x0, 0x0) [ 373.572749][ T19] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 373.632559][ T1745] usb 4-1: new high-speed USB device number 11 using dummy_hcd 18:46:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0x20}}, 0x0) [ 373.832349][ T19] usb 1-1: Using ep0 maxpacket: 16 18:46:07 executing program 1: prctl$PR_SET_UNALIGN(0x21, 0x0) [ 373.889173][ T5741] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 373.963472][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 373.974800][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 373.985071][ T19] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 373.998253][ T19] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 374.007589][ T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:46:08 executing program 5: syz_read_part_table(0x0, 0x1, &(0x7f00000001c0)=[{0x0, 0x0, 0xffffffff}]) [ 374.058020][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 374.069847][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:46:08 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 374.155528][ T1745] usb 4-1: config 0 descriptor?? [ 374.201059][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 374.226008][ T19] usb 1-1: config 0 descriptor?? 18:46:08 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0x20}}, 0x0) 18:46:08 executing program 1: write$UHID_DESTROY(0xffffffffffffffff, &(0x7f0000000000), 0x4) connect$x25(0xffffffffffffffff, &(0x7f0000000040), 0x12) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/net\x00') ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000180)={'syztnl1\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x4, 0x7f, 0x4, 0x0, 0x14, @loopback, @ipv4={'\x00', '\xff\xff', @empty}, 0x1, 0x700, 0x0, 0x9}}) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$CAPI_INSTALLED(0xffffffffffffffff, 0x80024322) [ 374.411773][ T5748] loop5: detected capacity change from 0 to 264192 [ 374.446648][ T5749] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 374.999918][ T19] usbhid 1-1:0.0: can't add hid device: -71 [ 375.006418][ T19] usbhid: probe of 1-1:0.0 failed with error -71 [ 375.051158][ T19] usb 1-1: USB disconnect, device number 51 18:46:09 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x2, {[@local=@item_012={0x1, 0x2, 0x2, '8'}]}}, 0x0}, 0x0) 18:46:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 375.453035][ T1745] gspca_topro: reg_w err -71 [ 375.492521][ T1745] gspca_topro: Sensor soi763a [ 375.519094][ T5760] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 375.548432][ T1745] usb 4-1: USB disconnect, device number 11 [ 375.912455][ T1020] usb 1-1: new high-speed USB device number 52 using dummy_hcd 18:46:10 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:10 executing program 5: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$SIOCRSGL2CALL(r0, 0x8912, &(0x7f0000000000)=@null) 18:46:10 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0x20}}, 0x0) 18:46:10 executing program 1: r0 = socket(0x2a, 0x2, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00', 0x0}) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000001c0)={r2, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) 18:46:10 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 376.076629][ T5770] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 376.172716][ T1020] usb 1-1: Using ep0 maxpacket: 16 18:46:10 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)={0x1c, 0x4, 0x8, 0x801, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}]}, 0x1c}}, 0x0) [ 376.293033][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 376.304223][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 376.314273][ T1020] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 376.327405][ T1020] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 18:46:10 executing program 5: syz_mount_image$ntfs(0x0, 0x0, 0x0, 0x1, &(0x7f0000000780)=[{&(0x7f0000000180)="d8", 0x1}], 0x0, 0x0) [ 376.336722][ T1020] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:46:10 executing program 2: syz_mount_image$fuse(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={{}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[], [{@seclabel}]}}) 18:46:10 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 376.535128][ T1020] usb 1-1: config 0 descriptor?? [ 376.589107][ T5777] fuse: Bad value for 'fd' 18:46:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x2, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil}) [ 376.672634][ T3614] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 376.790891][ T5781] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 377.032839][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 377.042194][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.087853][ T3614] usb 4-1: config 0 descriptor?? [ 377.148546][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 377.272980][ T1020] usbhid 1-1:0.0: can't add hid device: -71 [ 377.279259][ T1020] usbhid: probe of 1-1:0.0 failed with error -71 [ 377.289630][ T1020] usb 1-1: USB disconnect, device number 52 18:46:11 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18b1, 0x37, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x14, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x2, {[@local=@item_012={0x1, 0x2, 0x2, '8'}]}}, 0x0}, 0x0) 18:46:11 executing program 2: openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x743382, 0x0) [ 378.112439][ T1020] usb 1-1: new high-speed USB device number 53 using dummy_hcd [ 378.352222][ T1020] usb 1-1: Using ep0 maxpacket: 16 [ 378.453057][ T3614] gspca_topro: reg_w err -71 [ 378.472769][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 378.484044][ T1020] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.494168][ T1020] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 378.507317][ T1020] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.40 [ 378.516831][ T1020] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.531180][ T3614] gspca_topro: Sensor soi763a [ 378.539281][ T1020] usb 1-1: config 0 descriptor?? [ 378.548662][ T3614] usb 4-1: USB disconnect, device number 12 18:46:13 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:13 executing program 5: r0 = socket$caif_stream(0x25, 0x1, 0x5) connect$caif(r0, &(0x7f0000000080)=@dgm, 0x18) 18:46:13 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:13 executing program 1: io_setup(0x1b, &(0x7f0000000080)=0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) io_pgetevents(r0, 0x1, 0x1, &(0x7f00000005c0)=[{}], 0x0, 0x0) io_submit(r0, 0x1, &(0x7f0000000200)=[&(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) 18:46:13 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x101}, @NFT_MSG_DELOBJ={0x14, 0x14, 0xa, 0x701}], {0x14}}, 0x70}}, 0x0) [ 379.088082][ T5794] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:13 executing program 5: r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) connect$nfc_raw(r0, &(0x7f0000002600)={0x27, 0x1}, 0x10) 18:46:13 executing program 2: syz_open_dev$hidraw(&(0x7f00000002c0), 0x0, 0x0) 18:46:13 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 379.262931][ T1020] usbhid 1-1:0.0: can't add hid device: -71 [ 379.269218][ T1020] usbhid: probe of 1-1:0.0 failed with error -71 18:46:13 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x29, 0x16, 0x0, 0x0) [ 379.333889][ T1020] usb 1-1: USB disconnect, device number 53 18:46:13 executing program 2: set_mempolicy(0x4002, &(0x7f0000000080)=0x3, 0x7ff) [ 379.595029][ T1745] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 379.654817][ T5807] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:13 executing program 5: pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000100)={0x3f}, 0x0, &(0x7f00000001c0)={&(0x7f0000000180), 0x8}) 18:46:13 executing program 1: syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) [ 379.972921][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 379.982294][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.078019][ T1745] usb 4-1: config 0 descriptor?? [ 380.129732][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 380.177763][ T5814] fuse: Bad value for 'fd' [ 381.432468][ T1745] gspca_topro: reg_w err -71 [ 381.472358][ T1745] gspca_topro: Sensor soi763a [ 381.490960][ T1745] usb 4-1: USB disconnect, device number 13 18:46:16 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:16 executing program 2: socketpair(0x28, 0x1, 0x0, &(0x7f0000000280)) 18:46:16 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:16 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) 18:46:16 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8942, &(0x7f0000000000)={'wlan0\x00'}) [ 382.058172][ T5824] kcapi: manufacturer command 4294967288 unknown. [ 382.077233][ T5825] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:16 executing program 2: openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0)={0xd}, 0x0, 0x0, 0x0, 0x0) 18:46:16 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x29, 0x30, 0x0, 0x0) 18:46:16 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x89b0, &(0x7f0000000000)={'wlan0\x00'}) 18:46:16 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:16 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) [ 382.512412][ T1745] usb 4-1: new high-speed USB device number 14 using dummy_hcd 18:46:16 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x10, r1, 0x1}, 0x14}}, 0x0) [ 382.602733][ T5836] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 382.613712][ T5837] kcapi: manufacturer command 4294967288 unknown. [ 382.883405][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 382.892834][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.939245][ T1745] usb 4-1: config 0 descriptor?? [ 382.989812][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 384.312396][ T1745] gspca_topro: reg_w err -71 [ 384.352202][ T1745] gspca_topro: Sensor soi763a [ 384.363602][ T1745] usb 4-1: USB disconnect, device number 14 18:46:18 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:18 executing program 1: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x0, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bpq0, 0x0, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast]}) 18:46:18 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:18 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:18 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x89a2, &(0x7f0000000000)={'wlan0\x00'}) 18:46:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)=ANY=[@ANYBLOB="dc030000", @ANYRES16=r1, @ANYBLOB="3f052abd7000fedbdf2503000000a0000580080001006574680008000100657468004400028008000300640b000008000400080000000800040046f5000008000300166e000008000300010001000800020001800000080003000800000008000400d10a00000c00028008000200030000003c000280080001002000000008000400060000000800020090460000080004000400000008000200c0a21400080004008000000008000200010000000800068004000500900001800d0001007564703a73797a3000000000440004"], 0x3dc}}, 0x0) [ 384.955502][ T5851] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 384.957393][ T5853] kcapi: manufacturer command 4294967288 unknown. [ 384.972451][ T5847] netlink: 656 bytes leftover after parsing attributes in process `syz-executor.2'. [ 384.982144][ T5847] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.2'. [ 384.991584][ T5847] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.2'. [ 385.001195][ T5847] tipc: Invalid UDP bearer configuration [ 385.001301][ T5847] tipc: Enabling of bearer rejected, failed to enable media 18:46:19 executing program 1: syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000180)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x9, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x0, 0x7, 0x1, 0x3, 0x5, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x0, 0x80}}, [{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x20, 0xa}}]}}}]}}]}}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x4, [{0x4, &(0x7f0000000440)=@lang_id={0x4}}, {0x2, &(0x7f0000000480)=@string={0x2}}, {0x16, &(0x7f0000000500)=@string={0x16, 0x3, "387a216755fe27d81007457303718eff85054795"}}, {0x4, &(0x7f0000000540)=@lang_id={0x4}}]}) 18:46:19 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:19 executing program 5: keyctl$get_persistent(0x5, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, r0) 18:46:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:19 executing program 2: sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x0, 0x5b}, 0x0) [ 385.387880][ T5859] kcapi: manufacturer command 4294967288 unknown. [ 385.482385][ T1745] usb 4-1: new high-speed USB device number 15 using dummy_hcd 18:46:19 executing program 0: ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) [ 385.587694][ T5863] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 385.612358][ T1020] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 385.842820][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 385.852422][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 385.882627][ T1020] usb 2-1: Using ep0 maxpacket: 32 [ 385.934129][ T1745] usb 4-1: config 0 descriptor?? [ 385.991651][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 386.002730][ T1020] usb 2-1: config 1 interface 0 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 386.016123][ T1020] usb 2-1: config 1 interface 0 has no altsetting 0 [ 386.203255][ T1020] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 386.212653][ T1020] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 386.220799][ T1020] usb 2-1: Product: 稸朡﹕ܐ獅焃ホօ镇 [ 386.293398][ T5857] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 386.300521][ T5857] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 386.625381][ T1020] usb 2-1: USB disconnect, device number 3 [ 387.292486][ T1745] gspca_topro: reg_w err -71 [ 387.332396][ T1745] gspca_topro: Sensor soi763a [ 387.356101][ T1745] usb 4-1: USB disconnect, device number 15 18:46:21 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:21 executing program 5: fsmount(0xffffffffffffffff, 0x0, 0xf2) 18:46:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:21 executing program 2: add_key(&(0x7f0000000000)='ceph\x00', 0x0, &(0x7f0000000080)='\r', 0x1, 0xfffffffffffffffe) 18:46:21 executing program 0: ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:21 executing program 1: add_key(&(0x7f0000000000)='user\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000100)='cifs.idmap\x00', &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) [ 387.920243][ T5879] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:22 executing program 1: socketpair(0x0, 0xf, 0x0, &(0x7f0000000280)) 18:46:22 executing program 0: ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={0x0, @local, @multicast2}, 0xc) 18:46:22 executing program 5: r0 = add_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$set_timeout(0x6, r0, 0x2) 18:46:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:22 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) [ 388.473244][ T1020] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 388.503147][ T5894] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 388.852977][ T1020] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 388.862711][ T1020] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.896766][ T1020] usb 4-1: config 0 descriptor?? [ 388.953147][ T1020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 390.232399][ T1020] gspca_topro: reg_w err -71 [ 390.272335][ T1020] gspca_topro: Sensor soi763a [ 390.290011][ T1020] usb 4-1: USB disconnect, device number 16 18:46:24 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:24 executing program 1: keyctl$set_timeout(0xb, 0x0, 0x0) 18:46:24 executing program 2: prctl$PR_SET_UNALIGN(0x39, 0x0) 18:46:24 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002100)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x401, 0x0, 0x0, {0x1}}], {0x14}}, 0x3c}}, 0x0) 18:46:24 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}], [{@uid_eq}]}) 18:46:24 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) [ 390.933395][ T5906] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:25 executing program 2: socketpair(0xa, 0x3, 0x0, &(0x7f00000004c0)) 18:46:25 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x29, 0x33, 0x0, 0x0) 18:46:25 executing program 5: getrandom(&(0x7f0000000000)=""/32, 0x20, 0x0) 18:46:25 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}]}) 18:46:25 executing program 5: socket(0x2c, 0x3, 0xf5) [ 391.332855][ T1020] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 391.602380][ T5921] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 391.713004][ T1020] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 391.722643][ T1020] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 391.780526][ T1020] usb 4-1: config 0 descriptor?? [ 391.843448][ T1020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 392.098564][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 392.105343][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 393.142385][ T1020] gspca_topro: reg_w err -71 [ 393.182257][ T1020] gspca_topro: Sensor soi763a [ 393.192264][ T1020] usb 4-1: USB disconnect, device number 17 18:46:27 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:27 executing program 1: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) write$UHID_INPUT2(r0, &(0x7f0000000100), 0x6) 18:46:27 executing program 0: openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:27 executing program 5: r0 = socket(0x2a, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000200)={'ip6tnl0\x00', 0x0}) 18:46:27 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000023c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x801}], {0x14}}, 0x3c}}, 0x0) 18:46:27 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}]}) [ 393.769467][ T5931] ntfs: (device loop4): parse_options(): Unrecognized mount option . 18:46:27 executing program 0: openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:27 executing program 2: socketpair(0x1, 0x3, 0x0, &(0x7f00000000c0)) 18:46:28 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)={0x18, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_SOPASS={0x4}]}, 0x18}}, 0x0) 18:46:28 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000027c0)={0x0, 0x3, &(0x7f0000002540)=@framed, &(0x7f00000025c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:46:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000480)={[{@nls={'nls', 0x3d, 'cp862'}}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@case_sensitive_no}, {@errors_continue}, {}, {@mft_zone_multiplier}]}) 18:46:28 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001b00)={0x11, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x2}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0xff7, &(0x7f0000000a00)=""/4087, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 394.252342][ T1745] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 394.383400][ T5945] ntfs: (device loop4): parse_options(): Unrecognized mount option . [ 394.613655][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 394.623322][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 394.694090][ T1745] usb 4-1: config 0 descriptor?? [ 394.739821][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 396.042538][ T1745] gspca_topro: reg_w err -71 [ 396.082280][ T1745] gspca_topro: Sensor soi763a [ 396.101091][ T1745] usb 4-1: USB disconnect, device number 18 18:46:30 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:30 executing program 0: openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(0xffffffffffffffff, 0xc0104320, &(0x7f00000000c0)={0xfffffffffffffff8, 0x0}) 18:46:30 executing program 5: setreuid(0xee00, 0xee01) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 18:46:30 executing program 1: r0 = syz_open_dev$rtc(&(0x7f0000000100), 0x0, 0x0) ioctl$RTC_AIE_ON(r0, 0x7001) socket$packet(0x11, 0x3, 0x300) 18:46:30 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000000c0)={r2, 0x1, 0x6, @dev}, 0x10) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r4, 0x1, 0x6, @multicast}, 0x10) 18:46:30 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000000e00)={&(0x7f0000000a00)={{0x14}, [@NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}}, 0x0) [ 396.650285][ T5954] rtc_cmos 00:00: Alarms can be up to one day in the future 18:46:30 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, 0x0) [ 396.712365][ T5959] device batadv_slave_0 entered promiscuous mode [ 396.779945][ T5959] device batadv_slave_1 entered promiscuous mode 18:46:30 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r1, 0x1, 0x7, @multicast}, 0x10) 18:46:30 executing program 1: syz_open_dev$vcsn(&(0x7f00000007c0), 0x535d, 0x101000) [ 396.821263][ T5957] device batadv_slave_1 left promiscuous mode [ 396.828372][ T5957] device batadv_slave_0 left promiscuous mode 18:46:30 executing program 4: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0) r0 = socket(0x0, 0x0, 0x8000) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0) mkdirat$cgroup(0xffffffffffffffff, 0x0, 0x1ff) openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff, 0x16}, 0x10) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 18:46:31 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, 0x0) 18:46:31 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', 0x0}) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x11, 0x0, r1}, 0x14) [ 397.135319][ T1745] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 397.514780][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 397.524684][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 397.584652][ T1745] usb 4-1: config 0 descriptor?? [ 397.629471][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 398.932388][ T1745] gspca_topro: reg_w err -71 [ 398.972539][ T1745] gspca_topro: Sensor soi763a [ 398.986564][ T1745] usb 4-1: USB disconnect, device number 19 18:46:33 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:33 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r1, 0x3, 0x6, @multicast}, 0x10) 18:46:33 executing program 1: mkdir(&(0x7f0000000800)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000240)='./file0\x00', 0x0, 0xa51000, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) sendfile(r2, r1, 0x0, 0xe3) 18:46:33 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, 0x0) 18:46:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0) 18:46:33 executing program 4: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2) ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00\a\x00\x00\x00', @ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000000001000040000000000000", @ANYBLOB="0000000000f0fffffd"]) [ 399.569391][ T5986] device batadv_slave_0 entered promiscuous mode [ 399.598791][ T5983] device batadv_slave_0 left promiscuous mode 18:46:33 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000027c0)={0x18, 0x4, &(0x7f0000002540)=@framed={{}, [@jmp]}, &(0x7f00000025c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:46:33 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f00000000c0)={0x0, 0x0}) 18:46:33 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000340)={0x18, r1, 0xb70bf63c965bbc1, 0x0, 0x0, {}, [@HEADER={0x4}]}, 0x18}}, 0x0) 18:46:33 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000340)={0x14, r1, 0x1}, 0x14}}, 0x0) 18:46:33 executing program 5: r0 = socket(0x11, 0x2, 0x0) ioctl$SIOCSIFMTU(r0, 0x8942, &(0x7f0000000000)={'veth1_to_batadv\x00'}) [ 399.938267][ T5993] kcapi: manufacturer command 0 unknown. 18:46:34 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(r0) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x4c}}, 0x0) [ 400.112760][ T19] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 400.503884][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 400.513250][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 400.560502][ T19] usb 4-1: config 0 descriptor?? [ 400.609360][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 401.902306][ T19] gspca_topro: reg_w err -71 [ 401.942482][ T19] gspca_topro: Sensor soi763a [ 401.970627][ T19] usb 4-1: USB disconnect, device number 20 18:46:36 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:36 executing program 4: ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x82401, 0x0) ioctl$SNAPSHOT_CREATE_IMAGE(0xffffffffffffffff, 0x40043311, &(0x7f0000000080)) 18:46:36 executing program 2: r0 = syz_open_dev$media(&(0x7f0000000540), 0x0, 0x0) ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000840)=[{}], 0x0, 0x0, 0x0}) 18:46:36 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x6) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10) sendmmsg(r1, &(0x7f0000000ac0), 0x3c, 0x0) 18:46:36 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000240)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x38, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x38}}, 0x0) 18:46:36 executing program 0: r0 = socket(0x11, 0x2, 0x0) ioctl$SIOCSIFMTU(r0, 0xc0189436, &(0x7f0000000000)={'veth1_to_batadv\x00', 0x80000000}) 18:46:36 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x6) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10) sendmmsg(r1, &(0x7f0000000ac0), 0x3c, 0x0) 18:46:36 executing program 2: r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f00000057c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {}, 0x3, 0x0, 0x0, 0x1}}, 0x2e) 18:46:36 executing program 5: openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x82401, 0x0) ioctl$SNAPSHOT_CREATE_IMAGE(0xffffffffffffffff, 0x40043311, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, 0x0) 18:46:36 executing program 0: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304) ioctl$SNAPSHOT_GET_IMAGE_SIZE(r0, 0x8008330e, 0x0) [ 403.162497][ T19] usb 4-1: new high-speed USB device number 21 using dummy_hcd 18:46:37 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x13}, 0x55) 18:46:37 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNAPSHOT_SET_SWAP_AREA(r0, 0x400c330d, &(0x7f0000000140)) [ 403.522559][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 403.532545][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 403.613745][ T19] usb 4-1: config 0 descriptor?? [ 403.676395][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 404.962541][ T19] gspca_topro: reg_w err -71 [ 405.002415][ T19] gspca_topro: Sensor soi763a [ 405.027130][ T19] usb 4-1: USB disconnect, device number 21 18:46:39 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x6) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10) sendmmsg(r1, &(0x7f0000000ac0), 0x3c, 0x0) 18:46:39 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:39 executing program 2: r0 = socket(0x11, 0x8080a, 0x0) bind$xdp(r0, 0x0, 0x0) 18:46:39 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305) ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304) 18:46:39 executing program 0: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNAPSHOT_CREATE_IMAGE(0xffffffffffffffff, 0x40043311, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(0xffffffffffffffff, 0x8008330e, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$SNAPSHOT_SET_SWAP_AREA(r0, 0x400c330d, &(0x7f0000000140)={0x0, 0xf6b8}) 18:46:39 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(r0) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x5, 0x0, 0xf0ffff, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x4c}}, 0x0) 18:46:39 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x6) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10) sendmmsg(r1, &(0x7f0000000ac0), 0x3c, 0x0) 18:46:39 executing program 5: socket$inet_udp(0x2, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) syz_open_dev$vcsn(&(0x7f0000000000), 0x1, 0x0) pselect6(0x40, &(0x7f0000000180), 0x0, &(0x7f0000000200)={0xf8}, 0x0, 0x0) 18:46:39 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x11}, 0x48) 18:46:39 executing program 4: openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000640), 0x10402, 0x0) 18:46:39 executing program 0: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000cc0)='fd/3\x00') 18:46:40 executing program 1: r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000040)='FREEZING\x00', 0x9) [ 406.102461][ T19] usb 4-1: new high-speed USB device number 22 using dummy_hcd 18:46:40 executing program 4: r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000400)='FREEZING\x00', 0xfdef) ftruncate(r0, 0x0) [ 406.463065][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 406.472627][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 406.512382][ T19] usb 4-1: config 0 descriptor?? [ 406.559397][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 407.882409][ T19] gspca_topro: reg_w err -71 [ 407.932404][ T19] gspca_topro: Sensor soi763a [ 407.946384][ T19] usb 4-1: USB disconnect, device number 22 18:46:42 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:42 executing program 2: openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) 18:46:42 executing program 0: memfd_create(0x0, 0x2836fab7d3b84816) 18:46:42 executing program 4: r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000400)='FREEZING\x00', 0x9) creat(&(0x7f0000000040)='./file0\x00', 0x0) 18:46:42 executing program 1: syz_open_dev$vcsa(&(0x7f0000001100), 0x0, 0x440) 18:46:42 executing program 5: openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000cc0)='fd/3\x00') 18:46:42 executing program 0: syz_clone(0x20008100, 0x0, 0x0, 0x0, 0x0, 0x0) 18:46:42 executing program 1: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000002280), 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 18:46:42 executing program 2: io_setup(0x800, &(0x7f0000000000)=0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000380)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x2, 0x0, r1, 0x0, 0x0, 0x7}]) 18:46:42 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x4, 0x3}]}]}}, &(0x7f0000000340)=""/234, 0x32, 0xea, 0x1}, 0x20) 18:46:42 executing program 5: r0 = userfaultfd(0x0) read(r0, 0x0, 0x0) [ 408.943147][ T6077] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability 18:46:43 executing program 1: io_setup(0x800, &(0x7f0000000000)=0x0) io_cancel(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) [ 409.002580][ T1020] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 409.363007][ T1020] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 409.372436][ T1020] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 409.423094][ T1020] usb 4-1: config 0 descriptor?? [ 409.469116][ T1020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 410.752544][ T1020] gspca_topro: reg_w err -71 [ 410.792578][ T1020] gspca_topro: Sensor soi763a [ 410.816381][ T1020] usb 4-1: USB disconnect, device number 23 18:46:45 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:45 executing program 2: syz_mount_image$fuse(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}, 0x2c, {[], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}]}}) 18:46:45 executing program 4: r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000400)='FREEZING\x00', 0xfdef) 18:46:45 executing program 5: setpriority(0x1, 0x0, 0x3) 18:46:45 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1c, 0x3, &(0x7f0000000480)=@framed, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2}, 0x80) 18:46:45 executing program 1: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000100)="d3", 0x1}], 0x1}, 0x0) recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000004c0)=""/27, 0x1b}], 0x1}, 0x0) [ 411.359701][ T6093] fuse: Bad value for 'fd' 18:46:45 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002580)=[{0x0}, {0x0}, {&(0x7f00000014c0)='D', 0x1}], 0x3, 0x0, 0x803e}, 0x0) 18:46:45 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001280)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$sock(r0, &(0x7f0000006d00)={&(0x7f0000005980)=@l2={0x1f, 0x0, @none}, 0x80, 0x0}, 0x0) 18:46:45 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) sendmsg$sock(r0, &(0x7f00000016c0)={0xfffffffffffffffe, 0x3e80, 0x0}, 0x0) 18:46:45 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000010c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x2, [@func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x4}, {0x0, 0x4}]}, @func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{}, {}]}]}}, &(0x7f00000000c0)=""/4096, 0x52, 0x1000, 0x1}, 0x20) 18:46:45 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8940, &(0x7f0000000200)={'wg2\x00'}) [ 411.872641][ T3614] usb 4-1: new high-speed USB device number 24 using dummy_hcd 18:46:46 executing program 1: socketpair(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8921, &(0x7f0000000100)={'vxcan1\x00'}) [ 412.293097][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 412.302416][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 412.375604][ T3614] usb 4-1: config 0 descriptor?? [ 412.429172][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 413.962454][ T3614] gspca_topro: reg_r err -71 [ 413.967176][ T3614] gspca_topro: Sensor soi763a [ 413.979078][ T3614] usb 4-1: USB disconnect, device number 24 18:46:48 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) 18:46:48 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x24, 0x1, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_MARK_MASK={0x8}, @CTA_MARK={0x8}]}, 0x24}}, 0x0) 18:46:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x89a1, &(0x7f0000000200)={'wg2\x00'}) 18:46:48 executing program 2: socketpair(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x801c581f, 0x0) 18:46:48 executing program 0: socketpair(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r0) sendmsg$TIPC_NL_BEARER_DISABLE(r1, &(0x7f0000000440)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0) 18:46:48 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(cast6)\x00'}, 0x58) 18:46:48 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0x13, 0x0, &(0x7f00000003c0)) 18:46:48 executing program 2: r0 = socket(0x23, 0x2, 0x0) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x1) 18:46:49 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 18:46:49 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@mcast1}]}, 0x38}}, 0x0) 18:46:49 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x68}}, 0x0) 18:46:49 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x28, 0xe, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x0) 18:46:49 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) 18:46:50 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x6, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x5}]}, 0x1c}}, 0x0) 18:46:50 executing program 0: r0 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0xc}) 18:46:50 executing program 5: r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/keys\x00', 0x0, 0x0) read$msr(r0, &(0x7f0000000140)=""/4096, 0x1000) read$FUSE(r0, 0x0, 0x0) 18:46:50 executing program 1: r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 18:46:50 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x14, 0x10, 0x6, 0x5}, 0x14}}, 0x0) 18:46:50 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SWAP(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0x6, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}}, 0x0) 18:46:50 executing program 5: mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x4010131, 0xffffffffffffffff, 0x8000000) 18:46:50 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xe, 0x4, 0x0, 0x9}, 0x48) 18:46:50 executing program 0: r0 = openat$cuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x6}, 0x28) 18:46:50 executing program 3: syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) 18:46:50 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x5, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x5}]}, 0x1c}}, 0x0) 18:46:50 executing program 2: r0 = openat$procfs(0xffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002180)={0x2020}, 0x2020) 18:46:50 executing program 5: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x1fffff, 0x0, 0x11, r0, 0x8000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x8000000) 18:46:50 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000700)={0x28}, 0x28) 18:46:50 executing program 0: r0 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002700)={0x2020}, 0x2020) read$FUSE(r0, 0x0, 0x56) 18:46:51 executing program 4: r0 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae03, 0x0) 18:46:51 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x3, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 18:46:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, r1, 0x1, 0x0, 0x0, {0x2}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x0) 18:46:51 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0xc, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x5}]}, 0x1c}}, 0x0) 18:46:51 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000640)={0x28, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x28}}, 0x0) 18:46:51 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000640)={0x18, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x4}]}, 0x18}}, 0x0) 18:46:51 executing program 3: r0 = syz_usb_connect(0x0, 0x24, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:51 executing program 1: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000a, 0x28032, 0xffffffffffffffff, 0x8000000) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x8000000) 18:46:51 executing program 2: syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000a, 0x28032, 0xffffffffffffffff, 0x8000000) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0xffffffffffffffff) 18:46:51 executing program 4: mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0xffffe000, 0x0, 0x12032, 0xffffffffffffffff, 0x10000000) 18:46:51 executing program 5: r0 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 18:46:51 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x20}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="480000001000050700000000f6c3000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x20}]}}]}, 0x3c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 18:46:52 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x3, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x5}]}, 0x1c}}, 0x0) [ 418.146873][ T6199] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 18:46:52 executing program 1: r0 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$vcs(0xffffff9c, &(0x7f0000000b00), 0x0, 0x0) dup3(r1, r0, 0x0) 18:46:52 executing program 4: r0 = openat$cuse(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000080)={0x28}, 0x28) 18:46:52 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000015c0)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f00000005c0)=""/4096, 0x26, 0x1000, 0x1}, 0x20) 18:46:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, r1, 0x1, 0x0, 0x0, {0x11}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x0) 18:46:52 executing program 3: r0 = syz_usb_connect(0x0, 0x24, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:52 executing program 2: r0 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002700)={0x2020}, 0x2020) read$FUSE(r0, 0x0, 0x56) 18:46:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={0x1c, r1, 0x939, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5}]}, 0x1c}}, 0x0) 18:46:52 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockname$packet(r0, 0x0, &(0x7f0000000680)) 18:46:52 executing program 4: syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x202) 18:46:53 executing program 0: r0 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002700)={0x2020}, 0x2020) 18:46:53 executing program 2: r0 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/schedstat\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002700)={0x2020}, 0x2020) read$FUSE(r0, 0x0, 0x56) 18:46:53 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_ADD(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[], 0x20}}, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="480000001000050700000000f6c3000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_dsmark={{0xb}, {0xc, 0x2, [@TCA_DSMARK_INDICES={0x6, 0x1, 0x20}]}}]}, 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {}, {0x5}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8}]}}]}, 0x38}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 18:46:53 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xa, 0x4, 0xe, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) 18:46:53 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x0) 18:46:53 executing program 0: r0 = openat$procfs(0xffffff9c, &(0x7f0000000080)='/proc/bus/input/handlers\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f00000000c0)={0x2020}, 0x2020) 18:46:53 executing program 3: r0 = syz_usb_connect(0x0, 0x24, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 419.519111][ T6228] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 18:46:53 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x3c, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100), 0xfffffffc, r0}, 0x38) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x402, r0}, 0x38) socket(0x0, 0x0, 0x0) 18:46:53 executing program 5: mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000a, 0x28032, 0xffffffffffffffff, 0x8000000) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) 18:46:53 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, r1, 0x1, 0x0, 0x0, {0x4}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x20}}, 0x0) 18:46:53 executing program 1: r0 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/bus/input/handlers\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002700)={0x2020}, 0x2020) read$FUSE(r0, 0x0, 0x56) 18:46:53 executing program 0: mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0xdf002000, 0x0, 0x12032, 0xffffffffffffffff, 0x10000000) 18:46:54 executing program 5: r0 = openat$cuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x3, 0x0, {0x0, 0x7}}, 0x28) 18:46:54 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x7, 0x6, 0x3}, 0x14}}, 0x0) 18:46:54 executing program 4: io_setup(0x1, &(0x7f00000014c0)=0x0) r1 = socket$unix(0x1, 0x5, 0x0) io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0}]) 18:46:54 executing program 1: openat$cgroup_root(0xffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) pkey_mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xe, 0x28032, 0xffffffffffffffff, 0x8000000) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) 18:46:54 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:46:54 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x4, 0x6, 0x3}, 0x14}}, 0x0) 18:46:54 executing program 0: r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x1, 0x0) poll(&(0x7f0000000040)=[{r0}], 0x1, 0x0) write$khugepaged_scan(r0, &(0x7f00000000c0), 0x8) [ 421.122538][ T3614] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 421.322528][ T3614] usb 4-1: device descriptor read/64, error 18 [ 421.612411][ T3614] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 421.812255][ T3614] usb 4-1: device descriptor read/64, error 18 [ 421.933073][ T3614] usb usb4-port1: attempt power cycle [ 422.352498][ T3614] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 422.537669][ T3614] usb 4-1: device descriptor read/8, error -61 [ 422.832997][ T3614] usb 4-1: new high-speed USB device number 28 using dummy_hcd [ 423.042854][ T3614] usb 4-1: device descriptor read/8, error -61 [ 423.163492][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:00 executing program 2: r0 = syz_io_uring_setup(0x16de, &(0x7f0000000240), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4080853, r0, 0x10000000) 18:47:00 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x14, 0x2, 0x6, 0x5}, 0x14}}, 0x0) 18:47:00 executing program 1: mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x44171, 0xffffffffffffffff, 0x8000000) 18:47:00 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/tty/drivers\x00', 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) fsetxattr$security_ima(r1, &(0x7f0000000280), &(0x7f00000002c0)=@v2={0x0, 0x0, 0x0, 0x0, 0xf8, "87fa799b7e80f39973b86d74c03cd0c0592c5047aa65fd72650b2a8f6472a723f0b60a1b91931b953e2860638ceebed333302fd06576275470d49a9f67fa5931a8e627ca5bcc55d4e90a308e4e4b003f53c7b2bf8ff41acc378a1fc6affbd6c1d3a4d386375c83022e55863481ae099473497d87a2bcde54ae52424da44c370786fb9f529f77a6046ca03dfd56a5b1a5023355d75a4745a63d42ad8a5f439e086458e5784085972f766b2e2d95f6c4bf15bb3e552d0f5ddd7f3fd3c2d7f80f85c09014e98c748210f2cf3273f6fa5a5e20726fdbaacad26e4d093ec2a54f7950ec17436be78ed7769adc5a5d85ea31915be92d80722cae91"}, 0x200003c1, 0x0) 18:47:00 executing program 0: r0 = syz_open_dev$ndb(&(0x7f0000000140), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x11, &(0x7f0000000180)="00acb80dd75966b7e0315ad3c9ef8e6104"}) r1 = syz_open_dev$ndb(&(0x7f0000000140), 0x0, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000000)={0x2, 0x0, 0x7, &(0x7f0000000180)}) 18:47:00 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:01 executing program 5: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) write$UHID_INPUT(r0, &(0x7f0000000140)={0x8, {"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", 0x1000}}, 0x1006) 18:47:01 executing program 0: io_setup(0x800, &(0x7f0000000000)=0x0) io_pgetevents(r0, 0xc6b, 0x0, 0x0, 0x0, 0x0) 18:47:01 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f000000a380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0, 0x0) fsync(r2) syz_fuse_handle_req(r0, &(0x7f00000021c0)="37bb55d559a7e985b77db5d23df373a1a140b183658feb5c488bc8b9c32c8ae83f4f542f72eb11e34bfa3fdec6518a4d06fd2b53a9762ea5a7e509c49361af5bd1fccdad87eb26227e122dc08db18b6dc76883169d1e0f475cb26a25b40fba77e0d532d15dea536dee3e735ffb3cd9ebba5d07ce9d769e49b7a6750b242805376e5100a954b0267ee899b699d5e361c23f8e7f1eece50aff144735feaa8bed274be36cbe1b61e0192f771322877e3070e17373beae49c5fc7300758dda1ae062370bf5ea15878ffe73bb3cf4d2d456d66d4cdfd7485b6ff57e9c0fedf18dfcad61a97deaa193cc44ff66315542094c2f6e2d9c5e6cd822b1b7091be7e5107b62508a39bd929a262e99ed0f28af6340580d09cee9bc764334ba233274289719deae878b0230a81db8f716b626b0293ae96884377c9af4e24a50cce9ccafe5a7c9cdad1866b3b320dc66fdae72a040984a112cc7697255b941e4fff0c80214e9468d406570dfedd1474291e01e923dc369cbbcc626073a8deacf612d2dc637cb579b07e3220833770666f7384302d2bfb7631b8c385ccbe78a749351f7246f41e729b9461d2998a71012de4aa0f3f94b0e2b60b50097cb7bc8c60430c5d03a2979262f69a0e714e1d3960def485557c0e05942abc8963f2e8711a4600f730871947a79f903455b524b0e934326ca2164cb5a0d2eba389a5e043947fd56f755336bafb500c6ec3457354ed2c31372f69c9bcae3330770a7238012b6e192433eee5c1e39bd5976ea84ee31f3921eeab993b225ef666d7792c1031475e6ba37bb668b52403e2f6baa759c87e52315d5e79f0c1ba75c47dc71a7893e48e804794dfed006660120115cdb70bf99d22dbb75b58a873ec4caffca4919d20a4aa34b1c2603b920eb3912181dd8e50f3ff47e5184d254c75a8c9937d81eec6fbccba5b12d91b330c8142383ee659da254dea9b0dd0850adcfe33c38e003c27c04ffb0ae712be35d3213ebea396a0639632b01aa25e3d72dfe0717855d997a0c1813705b8f2e3259eb0079bdbe1720c83d35f3d5cab122f998e5e8505b67924391eeb1b749afafc6cc491c18b48d7b4d6984d427c614de2273af10b131cb36c35f9d2d5258d4a6bfce488e00a6973c4faab4669a145ba8fd1006b5e6df028b41e183ace667f55ba3d9070043d6c16a46cb29c384ebd4b9ef9faa088d5b2da5a2cc0826514aef965565eee203a040764d719867b9a60bdad450be9654919593f20efac5d45464121341f4721d8340308931fbcc85068e87f19c862df5626da5cedbefd9261a527f6d2e0e40b9143f1c9be25c0c3dfc3fbd7a9a3a69dcc5d2658d6a56f392f76a49b51eafd00d802295a39a963c73183de7aa84394d79d509cc34672a63cd01c1eaba50073b8e8cc490b34f1be53012f249bf9148cb604833aa71bf62a434bdf46a6816c17e90606e46dde485e8fcc5741065c7631498e07a91ab123abefda1ed4448c35bc3f285c8d8250cb4f5ee33b11751886588bd87b83b9c5f1ebcd82e8fd5a10155610831ed95cf67aba511b2c1028a5d11a15e481008679cc27ef7f09a89bab58cdf5fc3aaff68b63ffec3ec14d3c95cd6950683b3f658dfb4d65515c445972ec7a91a43c2892511f8b458877a537880b886342197b6174368b7321158cfc5200730a391ea53c8e3b1d7793236f9dcb40a80e7435288059f5baa0b0e02a6bf9aab97444c846c37bb25cca91d7ea90d801e7a1a27522de046e6b26277d25dd3e497516b52ba180c28e67be8a056884546ea3f13ad78334c7ff4cc13c2c52312d3b5ccbac6e5d5fe506813813d0da13a4c53fa5f9323ea4bdd95335928a9d24278b34e4e03e7b4f5d714e4e3e1781a4350dae0218b00d4f1387d10851d650b0251012346d4a78079d152f4868950886d87eaa6bd70c43127bd1963efc16187cfd3792956ebc45e71eb71e9450bcebcfd69c63e102af96d5f06e491569793d4a112ebd63c9dbf02a10c464eebb1bec2559de4ad881dcf046aa9bedf1b4de31d2c8080fb5df58bde814007eda206cb476f6f28958cd0368d1fd009032268c88b5fca960d2028baa0f99d06155016e8d7f77e310028d9e0767a3280fa200d3091ea02f23bfd5a57dc5edb136bb8f1fec3fa5a128cb4d9f789f4fb020c963a20c3b65487a35352c91316a98c32c9527f40be4c3c91918c2b73405544fb0bec86c3c0e91d607a8128c685e119094c971054567cc52c2357cf1b1b1f3ae2e6a4cc336b4a8b696de51cb3240c1eae227867249c4b1d616b7a7e1940dc7686b17bf4b99f2f067a072cb6a215ada5152963d2c64e32e8120ad17d6f71aca96f8b32501780582db8c4d8031e7a13fcd3c408aee55c069aa85df4d85c61c0c91e7c7a865fc3abffecdf76b39e6b164ecf92dc506d7a3d22de446efdf27b43bffedd3c9086fdfc4f885936d09f435ecfcdef373b92e735609c91d41f127fad735c2b145c8005be274c43eb63058873e6d9829a61a811a289275c95106e20c792467d11c1c3e3018bb51e9e2cc06ca6d27b3ecc34fc77c1d46fe7a6dbceb272539740ccf93fdb69e481de15f9632e6621ed1889959443de633787cdaf090d6b947c801ef4e339eece317ede70db44019b22823c2d127a55899f16e519693319d93170e79b79f85217d828514f7d69a8eff8c4bf1c2f05f22a650d2a17017fabe1ff3ed335153f01803615f285734785918d50044d93685a394f44c4adf457f72481f02a13b1375d29e17c0474512eb4b450a8cd02f4e6ad51bd5da4a8da5b847a3d91f3641f40f46778ca08cc6fdeec2d040aacf98eefc33a5fb352a42fa628f02564830bdda5d20b9c3951d6c01fc5fb5e0de9d7b21ee96cb06913efcdae4653022665b78d29929ee61ce77392af27b5354d495830330c971886552c4c9176a9f4e3075793c60ecef497a146d46cb987a4ae29a3f0bd0c690c5bbf8c7496af6042fb481b7f9736196192dfaa0ee421d74d6e7ee1ee3e4b7a820a756764d6460d325da200e46601f9ddf2e0f92f12bf4ca284f02759c635e3a86454c48fd2ada4fae44a82dd192352a4e736f19ce399b42d964e288c91052ea48de40ea093816877321d37b8def4c4a6346078d10175a546fa584fb0fd54bf955bfb1eb42da43a66cb9d86a123ec2758e91346be87019aa4a163bab3522807724948783d1b885bb9365bc47ae61d7cfe38b6711e43a2fbb52e136868e3407a689012ad3881e8e478d993499a5e1dd64b271cb15be4fd15e5df76d232cb4b71e25419daeed56e269372decf562c8395f04f56f46fab6043992c1f993fc827ab5fc8b7b4c581e015b3b90aa9a9afe559adf8bec414e87d88e2dd5cf12d22205d76f6a34ecad67767555e2f42c5f0c90199213636d30ba9c24cff919f77a53a70e183cdafaca166568d6f7d2f03c3aab6c2be5eb7f3f5f49bbd847adfc6bb7c5ada72963fff087816354b8b32627a5f36ac82fec052a22fa4ebb4602fb20e6893da8c4ecaabebdaa7152e95d14802142de7e6ab78875d1d9dfe25e8cc8c934e5235830115c6696800d977d778f9b5d25f1c64cebcbfc3ac15acbd83ef2cd5206cc0c3e5abc8156724ece042c59fc50d21f66d0563dbec35398c45db873048afdb33f0cff70cdf5e3ba7d94395122733c43ceb2189b8da0273303f6b6cbf1967e34843f3859a979b86a81c37fc3f11d3c4e4b09f78d38b7d3f239d90bcc7921b96c2c0e78c735a3c7fae4794ea1ac0c006795e6935fdf18cacb59eb76076d288e187ee4d82c74ab49ea65357246686732f0882c9a11b66290a04b6126eed0f2db711814bd34da356379606a0fa76fcd5deedba1ca52420e0c684b42d7a70aef5e24022e9639799af61018db44495b3084686ba857ddd6b377d2b0556ef987de6bd923bab3a4b3502188249a8c5e5afe6f3396c759ef9601e969727a0630affe376ed01736f4f412c2448c9f53ccd2099c7a1213cb7ad3ebbad1e442ff2c2f485a37df18bba9180279b042acc7dab1d6f08c547378d7f0e7a02dc0a93f6e73b2ea60d85635fa54036bca98c04e653dc95661bffb412c83d9351b4bc849fe07f8c3c54f65ed8f9bc70f618b7e72b1ae56967bddf7143707170215e251ac7b66631a35b9339580b6c171f1e936e0d8df9677930dee2bd2e278e4dcac5ed96ec8d31d3f7bf368f23fb7cddc30f60bb1dd369dbafd04660bbcb2b3914f3f8ce1c96594cd49008e67c9c883624b3f6f26a3aaf8e047758bd6e405cfb61932d2ce9d024e9c95369321f43c1c4eda93559b34333a97cf0f39f3040d0bf9dfc296f80620ac065d0ac75a6717653e1225902de693590f9ebc1c6117ee517d8a8f9a74b36b47353f0ebe8a287e5d0dbb41677f5d6216d8a286a1317ae1d26c1ecf65811f96fa58cc65dfdf6e70e537ab4838dabba9a4a0adc4122235256e2792d7b31bb7349562a01aa7d2830627f31f7812465eda182aa5a5a39c52ef5fd3bf43e1773cac19c578cd67e22ceac17fba2bb2ceeea2a6e8e7d1cf1330edf485f8a002d27f4dcafbc24647d55caad376a02c12ca8c051158497370a1ba13a9f7a54cc274e38692b9b975cbabbf74ada81a9de138edd9dd2aa3ec605d808483ed4dc146dc4f31c377c52fa200822df024fb8b793b25dff2c6c93f58598484ec67bff172369e0fa452ac7c34142877767c53df7a06b5640f87a8275d1958737fa070e9ccab0d44b76b2e24e585fc1e0e7a58ced8f5b537c3a2ed96dc853da0510d631a4aef4db93b3a83563b54819c79f706ab1db08f7eca8110264565d147da67b1b188d8d8e31874b7e4c91634f769eac6f694952553aeb7766b957bbe3dd80c460e94318ea911e743514ebbaeccafa270771ea34e3d386e48e19558d9dd189228f98a3681d9038f3f1dcc23269ca88d46371530abc5bf8ae70362dbbe91b62f3efa1a2ab34fca60ce27031c68b975356617fe60db7a0260b0ddacc2b2b19a9009b709479c081f966e396d171f02767d142eaa1672b6c4c165f1028479670aac73c4fa420e331f7eca2231980142612d5dbbb34f6d2bbaa1671287f0c6ec08b5bbd0b1437c4a215888369f26d1ebd5caefe010704606250ee0ba0bc99bcbc417ad2b9d65f7f3d468e980b8d0c149ff2ba0b8b57f2288410a49cd494f519d9649c99d9323e13b85278be770bc8d3675fc8d51ef6f7c21e2a720d445d0f49664f47a517b47f06c88edb624e5bdfa0b3b935dad8df1a3a571b47de482c9ad7138ce61d6082e4a388604d418c0f3d9cf14c3ea61d435e02679b143414ff14884c44b650942cc7541385f959ed5f5d1d684c597413068f4cb7a600671c3560bc89d3479579f3b1ce54f7b2e18cfd9bd843154bbbc85f7ea32e107683d5cadf513986f2d270119644db28717add65f2f4cddbac8968f76571f9b58f23ad3fbabbb4a166a1030a6d60fd5742722be3775749413539d09af1d4974d534f8841fab55c9239c26bc5fb2198dfa2e82ba8df78be0cf932656b335faba9da831da4d65adb1bf2d22ff438ec6eafd767dd171b6c809fa1933944887e0b32d4ee8f0d9200ce6e6e659fcfcb4339d10dc165a41ef0310bdc34347208fc41f767492ba236e5b18aebd989cdbaaeed0050aa949146617783f698f9697ad14c9963b197ea24bb426c685633aad28f8ab31960c5784e8a27f8b31f99e68102408aecb2b1a9423a9e2cad43b82cf1206b2cdc1553d6222ab6b0dbb97fadd685553886cb37199b6d6266a4e45f307c0edb210153450833a9da0eea63267acef13c8a99a8a7994e0e56c0ca4e2b142b62180697ff5573cb510e0a03e68811c20d8609651d3e560f910049dda5ce4a5a73cefe31ea20fa31221d2ed52364d2f1676eae3fb211733f4f22864848d6854e6556974cfe9c9db8fc6db0f6ae0626c6f3978420ffe7ea86dbf8db5cada770092a9494b63de0fc2c505c7d6c6f6da42f2d9327ddae7dfe60db31acdd950b94f24643cf8f73d737b6d5d86b9676307bf63fbe919d253f89aa1fc5131dd0cb377c3223c557dabd60bd8b1b0b42864d2a6df1bafdc15dbed5c1b5da6f9ecbd419ed4a901ced3b0e9149f6f4d4078622d266493bb20a2542edae35b69dce3b3c64515ee5a27a13db74b58db9a00cc128bd33e4aaf05616535a9180ed905e7e90edcee17736e4870704b7b75bb035de55bb61e309196db334b530542456a07cd93ae0170539eaf11ada2e53a64c05a5054ded8883458106b5004c6ba90f004534fa16cd8fdf281d1804670c2bcf10b1403bf7471ae5bbfa3d56596c9dd352fab97486c44bd9f74be25e41cf1d2d152d479945a177e7e33e7fdbb288e2963fd83568c5c70d361009565d771ee72bde42003ff39ef01d52ac17ad9192f0ca3dc56b696865ef95f97a3d5af62bbf67a7561553b68865f8b3e6e750608cfa8970e255186ea6c3c7be2602ddc5f3c0b6a4d33edd152e42f86518dd4576fa80dfad9053dd80544a8c5d9fb6884f25b9ad36c7a5b6359ef8485412fdff30f7f921f6406cfa4cbd98c3511c8ea2e4b878a1aff76512ef0e6c64e995304a3f55e408f3ee0b46dccc0fe52ec08a56e0e604ff0f202aafbf354f8c04220bb64790b94b3065d6825cc9aa8599c70fe8aa2679937326c003ec53582988d0b66612becdf61d3cc66c9d104eb2e4116d08a86877a0bada0c7b810ccdb0f736a2f2f04219fbd3e477a10c149fa8d20439b1fecfb7b7b9a4aa27cf33764de8217c96ad9aa53074b5c84fa44a363d1cef4ad0a9fe42e77944eb315cffea0f95e064c336ee061b144ec71e7e4a1c1b3694e313a0bd0967f9de86854601cea0763c2562b9f79f9e4baf67302358fed16b3d50941b4e661756de0b4a1c3fe5e7b29c2861a81539d67e01ff21e959634f231172bb8b4b023ca8436bd9ec07bb5a2110f25057bf28166c8410525d802a599ff8267941342aeb8f15c07190187f1a0b71ae388c9783d33b4c847c0da5d7c99fe096c0430131c50d58220a6706ba009bec21a06898b6d71103148ee4648a3cb08fd56e1e6d6e03d472f7274fa629bb6619c69d5dcdbe171c9415ec928645b8a11110d145978e1fa1d831652a8f5921af8705851ca7dfb8fdee9fc1f55f139f6a0025e3a3d869b5e1b4f1c097be2ff2375945a33d47d295e232b871f6a7d9e15b783fa592541c1c495ce80dc0f632005ab670959c8253493f2e464c4d5437dea9cc999c81a0227de04cee5bce1476507e83eae2260c19a4dcc14774af0bd5df62eff71f8c677ce02d9355b6a94e5117360b61d24785d4731efd5bd97fafcf7a8023edb7431875cceaab6226819f7990727c3e9d74c214d77ce3f241c6daa5dcb9c1f9fd5e4544ba9be003b91a05ee2bdc9cdfc7b83d22270679536fc800c90c1d2a8f0659e13966ce7716049d50c874d1e0da15c4027661f1e0b9d4f45e8c587bf06fa68461ccce374743d421e2134adaadc85762fee2bf84775b8e2fd415f2e8be70afab953a52debdf18c154d889b70216738a270ce86f1a7208fd0e5701403a562ee0bb5e78d70eeae3a7ec358d017fd6a2fe7ac4fef00c1fef4215f9f050594676e64533a0dedea561680c3a120ff2563463626d19733a99b93a50551923fc85494e169f493e9c8f3a4739a1b6abfc6b22d0e9383912ff4b2d401c66a88ac191f029051edcd51a582a2da4d4f45b6a685a6afe2b6c17c52db867e7f70e5cdc21059ecdbd96ab6882d0f80abc25778e222a212971bc3bb9a02ec127e55113d4e586b12bb79ca6b71523f76835aea1c0f7ae6c581f8a6eadfca7385c8aa686cf85a1b4aeeed0677b25249ed737897c92928fc3d0835081abbc3517af8acb22b716d0b5893c4ef17a781c294ead5b0df0a5fd947626d4c56f34bd6f09f89392b458f85a61174a3f9e9cf6f36faa0d62dc942bfbbcacc042185da40c1c47cf9e227ceb0c676ccf0c8312728847b814f8d0a198416430b37fb8cac4b7594630c212509061fa0dcb24b246a3251d5f789ec856c91dbb3fed6c5a23ae94c4d7b76e3ff6c45812aafcded170272ca34c7c43e1caebc85e39a2dfc98f1cff6122cf91250430747d260970e6aadaa9af5d0ef68b8a437650680b62cfdfcdd1b558b24467001af0a8f7848561051ac3b64958c1d9e21a0f0e72f97c8c74ad2ee45fddb0e09c7beff3b4ee2514d054b12fe591de4aa95cfdd5ec56ae96af31824924f3259c327874182c2d0e81d75dd576824884f0a3826497bbaca696b1649c35ef6f3db6e10b8ba81c83cc36cf7e926b9135a1a065b53881d736683b2bec3cec2521cc79d70c7218898044b655afb23d40f56a6ab7f30aea935506824bf57fd996d690efdbac5195096eaf4ed19c198fe2fd32d895eac77ed27ce5a6cb33b18c2e9fa2e4f747747c2416fc573dcb9ada41d93744e2f54f2d11ab08feb0c23d26a39cc58a58b1310bff0881852ae729397322c1f75977a2d18699340a9fd53b0ec8810b7bd4c86a05a99697f1fa26f7736c04aebf99d0f428e20a83d09e45272a5ec41a63ca0b1f1deb5803d4a6925203e8ab48193b076a1b5fdca342dd384cb83e327e0f50481aab6c87bf2167974c4e7e9c8147c663a1f5c457d6aeb09885bad7a61d6a7754be2c246253cbbaa8ccd1d4912025555d639b228b31b8ddf7cb2d12180537521a5417623ea18d5fcab36475a1c45f099adcf5690b2c00eb7d4f4cf863ac714b6d8c473994df7eae75441d34a4d746dd60227879deddd40c3096122375b18bd0f04bdeb9020b829dce935b89917c3700f2f4113c763f49fb49d7d299e00bb42fef6cabec1e2e2b614919e53b9c6d7722aa1571cf7ec15c49e2306f6a35451297bb61a0acbb5b7abdc4f28a7757596234f273a9f305f0bb908eebdf3ada44a573f1f3af25b0ec0407baf863a692a5e55f825948c0bb1182f1a5f384c389d04c59af749014c0b35e2d86d799c724bdf852d6a872b6df479eef495ca4f0b3038152b70c997a59c8ebc9744ecf1399700f7476632115a0eed868e99d2caf8571cc914541188957a0021d9f27a0bee062be844ff0307e00c540ced213e8579b3df6d77da2f912679d035ec0e3d1957d645003bff537e3e02b80e34aab237c625bc84259184f0c36059d52ae9c3757d526174109722305114d376edaaac87d460b4333830b7da1812c84e9bd7728c7f45ab3b73ad9f000f2a07a20d112b0cbdc7c4913843f2ed06ebd92e86362236c9d1ddb0d5f2a342d825216be6f51211a1a3c40a9b96ea7b0ef5d2e872b592db8621f279ac31f154a2eafacc634e1ac006c2d0e96809e585142304c6a1adf76a7857129b3fc80fb2948db53335885902ac2a082b0bcdc42194ec131b5e6ccb8a9af62ad6256efeea40e3a5730e0aead833e0d4a0a83945e792975956acaed85d7e7aebcc40b5090f52caa8d3a5a5755d33cefb2f6aefb6cc82d223ce80b108274e8d2f45a79637750f9164dabd48bcb77a2e7eba4b1ec29aa47abd639b01c7fc4ac87b115b5f44aca3deee3951dcbbe4f5d0c78319520d451b6ae9d02223f206a31a504ee10787488dd8217f2390a7f9c6475962133720384e0614eef64ee4755a31359a945fca8fdbe42c9c38e8595a92e28eecb592de3462914ffe551badab286514d439dcaab1de02958786f0de30db4263f07077efb23784a10e5d02a2d486dd34fa8abf25dc712ae8a2eaa8a39bbeca808e515ad3da684c3892835d2fcf77424d5853456df480a0a61c0a1b5f792ee44e69f65f605af900232123954453039135cdc63dc65099abc673b6e4fa10fa833f85c489b6561a88ac80411f41e7a912532899f21a23c1fcc118634a00135886a35bb6702edd119d4dfc1fa939f64f7a26c6217d2f1da891014cfd6dcbc05367928f666de7d926a400c82bcce8aaeb20b90b821d59ee526f76d7f160a96bba8387c8281198aec15d0e0d8e60a9ffcf0b48956267b65f3a07154898a986ab9b16b65a2c18508ef035b95686fb5dd6acf4569f83d7c3304836083ca901a3820cdd994c04f1b7c2c4a651315ff87c5e76877dd79e0f78fedd3e26ae20890f5f9c4a6f6c3e7dad2bc74b586ed90cdf6d6c9c7a5580f59cab0089b81e87956fd1723c4de8ee3dc07bea538918d29cf6e69a215efb9ae7b40345f3cc876f3d554b16d47a9dd6abc2da749d726821ad4f73680d1e7f4ed33c4be3cfbbe1099b21ee11b23e5ff65d13af0fd5181f842fd59b0a825dc8c9b55b6ec1b6105c0609826cd6231bceff6765c2b402e8adfad6cb4a3a3e33d344707c3aa4ce78a56ea1291b78e75023fb38e9dcc0753ef788fa88f7f8eac92e5e6086a73f2638cb564b17242d4ec693b324015bd9f86bb04960a5d174172811b970c4f46cdf6e0b3341e053a673776ff2911dde9a32072a609b08479d5d2b7a538c3a449ae52674c107f243a6cfe9900ebe48c605f12c1dfd05ff6a91d1e503cc090c8910f4e791573267724ffb8830e85f2aff3d50870d3a35409736861086c598ee9e7e80da0f09b1cdd229fe12ce728a9aeb87e6022a8a1111dc294acf055dfb8734055c405d11c5480e3de99b70d921aea4981c613e3e396a99305f0a91a46352934fb5f1223be4a8047f59ec53282a0f546ee5d834f24b5d86fe0bf1e10cc5b7fe6d7b759e91f5e7c6cd7ac4f75dfbc696c2504fbac5af88d32ecc0fea16155baad8828ea142890ee17e9c457f9f8d3e98458d2257758f41679f5314e811e341aaecda44681e1520f93806a78e7ea14aeb996ca89ad71bebcc745f7ff98c4b7f6f4d1109f88b0a06c2ca2525548cec3afba1a9f3b5d56b06c14fee654bf7c51d82cd1a39c5c684b09a80472b111b1d97fdbeca4a6e8cb4091366a59b0b07ab8f7336458d300edeb74c75d0d315787c5ab345d0b13a0886104359a6d5b0ddea89772aae9422b39a71ad2698b70e830b274f7f5dcb1a6af032b5aab83f1c6675cdaf2e503be8d3ae0addd67d48f8ce64df3de6d8cec3be31ca4225dd54863adc2d54483b6d48714796735b78a9c78dcfa02c9ce0e3964be1694fd3ecf912cb9a46aa667d325855e79d9a856d2b06482ac56b7ff0a212d017241863dc640f34fbfbff4f55ea2960f8fc178bbb22144f76a6f6acd5883f3fe9605b376cdaecfefadbeeba1112163b013764b3c4837a32762840e58b0892f31302ffad945484b512937a22d9754a00ec90330f16821970f920f77b38cb83256c5524b2a958e582e01104dc2dd57daf6d07af86dd158e9d248929a63d6fedcc172555a9a04b26a1b2c1f5996c457341fac9b6134237e46f26b08f6857cc9227b205027e0c9c84178f94374367ee234dd16281b132e8277b91740affb65d751d14454163e7040e91bd035dbdc1e8d7748c04f34037acc711d5c8b53b4a66f85a8323bfbe2a7e07c31503a589dd3df55b94efa7396f5dd2337a3fdfc6c7bc7191c080cef990ffd06a9abd14217113ddf6781ba4714f2f8d3a444f6ae5278adc74be7ffa237c9c2fda077513722173193426b02ed5fc6438e7c5919d3f09cbd7c6c4d46631c3ae99908d2001c2732d4a1c01f4819bf313f311f3abd8084531ebda41", 0x2000, &(0x7f0000000cc0)={&(0x7f0000000000)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 18:47:01 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x1c, r1, 0x3fe3cd7f5d50888f, 0x0, 0x0, {}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0) [ 427.312277][ T3614] usb 4-1: new high-speed USB device number 29 using dummy_hcd 18:47:01 executing program 2: syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@random="71a1913617c3", @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0714f1", 0xb, 0x21, 0x0, @ipv4, @dev, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 427.512202][ T3614] usb 4-1: device descriptor read/64, error 18 18:47:01 executing program 5: syz_emit_ethernet(0x8e, &(0x7f0000000000)={@link_local, @multicast, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast1, @remote, {[@timestamp={0x44, 0x4}]}}, {0x0, 0x0, 0x68, 0x0, @opaque="80b95c779b23e3dd2a3de9671539706c8c626e7cd1f4c71188bcdfb7891549a00a80a6ddf248ae985856eecc4893da294c1b7dc3413b956f122125df52f0db445b9c5a68fafdd9a794c807bb714c0c1ee2c5fc3ead767246c0e7a2e822597b6e"}}}}}, 0x0) 18:47:01 executing program 1: syz_emit_ethernet(0x3e, &(0x7f0000000140)={@random="71a1913617c3", @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "3ff6ce", 0x8, 0x3c, 0x0, @private0, @mcast2, {[], "f3e921719d2a40d2"}}}}}, 0x0) 18:47:01 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f00000024c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x14, 0x4, 0x6, 0x101}, 0x14}}, 0x0) 18:47:01 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x0, 0x0) bind$bt_hci(r0, &(0x7f0000000800), 0x6) [ 427.792490][ T3614] usb 4-1: new high-speed USB device number 30 using dummy_hcd 18:47:01 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r3, 0x0, 0x0) recvmsg$can_j1939(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x8931, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) [ 428.012622][ T3614] usb 4-1: device descriptor read/64, error 18 [ 428.145526][ T3614] usb usb4-port1: attempt power cycle 18:47:02 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 428.562899][ T3614] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 428.744361][ T3614] usb 4-1: device descriptor read/8, error -61 [ 429.022439][ T3614] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 429.212754][ T3614] usb 4-1: device descriptor read/8, error -61 [ 429.335487][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:04 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:04 executing program 0: syz_emit_ethernet(0x7a, &(0x7f00000000c0)={@random="71a1913617c3", @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "fe22ec", 0x44, 0x2f, 0x0, @private0, @mcast2}}}}, 0x0) 18:47:04 executing program 1: syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@random="71a1913617c3", @multicast, @void, {@ipv6={0x86dd, @tipc_packet={0x0, 0x6, "ef05a6", 0x18, 0x6, 0x0, @private0, @empty, {[], @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}}, 0x0) 18:47:04 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000880)={0x10, 0x11, 0x1}, 0x10}], 0x1}, 0x0) 18:47:04 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r3, 0x0, 0x0) recvmsg$can_j1939(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x8931, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) 18:47:04 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:04 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r3, 0x0, 0x0) recvmsg$can_j1939(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x8931, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) 18:47:04 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r3, 0x0, 0x0) recvmsg$can_j1939(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x8931, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) 18:47:04 executing program 0: syz_emit_ethernet(0xe, &(0x7f0000000040)={@random="71a1913617c3", @multicast, @void, {@generic={0x8864}}}, 0x0) 18:47:04 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0xaf, 0xffffffbd}, [@ldst={0x6, 0x0, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0x7628, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1cd30000}, 0x48) 18:47:04 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3f9, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x6, 0xaf, &(0x7f00000000c0)=""/175, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 430.642931][ T3614] usb 4-1: new high-speed USB device number 33 using dummy_hcd 18:47:04 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r3, 0x0, 0x0) recvmsg$can_j1939(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x8931, &(0x7f0000000000)={'ip6_vti0\x00', 0x0}) [ 430.842366][ T3614] usb 4-1: device descriptor read/64, error 18 [ 431.113370][ T3614] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 431.322230][ T3614] usb 4-1: device descriptor read/64, error 18 [ 431.455165][ T3614] usb usb4-port1: attempt power cycle [ 431.862457][ T3614] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 432.032504][ T3614] usb 4-1: device descriptor read/8, error -61 [ 432.312200][ T3614] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 432.505580][ T3614] usb 4-1: device descriptor read/8, error -61 [ 432.622606][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:07 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:07 executing program 0: unlink(&(0x7f00000007c0)='./file0\x00') 18:47:07 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f0000000400)=""/197, 0x2e, 0xc5, 0x1}, 0x20) 18:47:07 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:07 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$sock(r1, &(0x7f0000001000)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r0, &(0x7f00000013c0)={&(0x7f0000000040)=@abs, 0x6e, 0x0}, 0x0) 18:47:07 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r2, 0x0, 0x0) recvmsg$can_j1939(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/131, 0x83}, {&(0x7f0000000180)=""/235, 0xeb}], 0x2}, 0x0) 18:47:07 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$tun(r0, &(0x7f0000000440)={@void, @val, @eth={@link_local, @multicast, @val={@void}, {@llc_tr={0x11, {@snap={0x0, 0x0, "d6", "a7480c"}}}}}}, 0x24) write$tun(r0, &(0x7f0000000000)={@val, @void, @x25}, 0x7) 18:47:07 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$alg(r2, 0x0, 0x0) 18:47:07 executing program 2: syz_open_procfs$userns(0x0, &(0x7f00000013c0)) syz_open_procfs$userns(0x0, &(0x7f00000000c0)) 18:47:07 executing program 1: bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000400)={0x0}, 0x10) [ 433.912371][ T3614] usb 4-1: new high-speed USB device number 37 using dummy_hcd 18:47:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x14}, 0x14}}, 0x0) 18:47:08 executing program 0: r0 = syz_usb_connect$uac1(0x0, 0xcc, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xba, 0x3, 0x1, 0x3, 0xa0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9, 0x7}, [@feature_unit={0xd, 0x24, 0x6, 0x0, 0x3, 0x3, [0x3, 0x4, 0x2], 0xcd}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x72, 0xff}]}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0xbe, 0x81, 0x0, {0x7, 0x25, 0x1, 0x82, 0x7, 0x2}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x1, 0x1, 0xf4}, @format_type_i_discrete={0xe, 0x24, 0x2, 0x1, 0x0, 0x2, 0x80, 0x20, "05dfb3f92546"}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x9, 0x4, 0x0, 0x4}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0xffff, 0x13, 0x6, "518e"}, @format_type_i_discrete={0xe, 0x24, 0x2, 0x1, 0x7f, 0x3, 0x9, 0x1, "5c2988f02329"}, @format_type_ii_discrete={0x10, 0x24, 0x2, 0x2, 0x1000, 0x800, 0x58, "c6bba30cdebd22"}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x1, 0xc, 0x1, {0x7, 0x25, 0x1, 0x0, 0x5, 0x7fff}}}}}}}]}}, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000600)={0x44, 0x0, &(0x7f0000000440)={0x0, 0xa, 0x1}, &(0x7f0000000480)={0x0, 0x8, 0x1, 0x81}, &(0x7f00000004c0)={0x20, 0x81, 0x1, "c4"}, &(0x7f0000000500)={0x20, 0x82, 0x3, "f3cf5a"}, &(0x7f0000000540)={0x20, 0x83, 0x2, "a466"}, &(0x7f0000000580)={0x20, 0x84, 0x1, 'g'}, &(0x7f00000005c0)={0x20, 0x85, 0x3, 'n$c'}}) [ 434.114263][ T3614] usb 4-1: device descriptor read/64, error 18 [ 434.382502][ T3614] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 434.585406][ T3614] usb 4-1: device descriptor read/64, error 18 [ 434.591729][ T1020] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 434.713199][ T3614] usb usb4-port1: attempt power cycle [ 434.832393][ T1020] usb 1-1: Using ep0 maxpacket: 16 [ 434.962495][ T1020] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 434.972970][ T1020] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 435.142341][ T3614] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 435.153097][ T1020] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 435.162589][ T1020] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 435.170825][ T1020] usb 1-1: Product: syz [ 435.175378][ T1020] usb 1-1: Manufacturer: syz [ 435.180095][ T1020] usb 1-1: SerialNumber: syz [ 435.372627][ T3614] usb 4-1: device descriptor read/8, error -61 [ 435.552549][ T1020] usb 1-1: 0:2 : does not exist [ 435.590295][ T1020] usb 1-1: USB disconnect, device number 54 [ 435.647133][ T6274] udevd[6274]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 435.650101][ T3614] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 435.862699][ T3614] usb 4-1: device descriptor read/8, error -61 [ 435.993199][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:10 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:10 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) pipe(&(0x7f0000000780)) 18:47:10 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x5421, 0x0) 18:47:10 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:10 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) 18:47:10 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000100)='oU') 18:47:10 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0) bind$bt_hci(r0, &(0x7f0000000040), 0x6) 18:47:10 executing program 2: syz_usb_connect$cdc_ncm(0x2, 0x6e, &(0x7f00000005c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10}}, {{0x9, 0x5, 0x3, 0x2, 0x40}}}}}}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x4, &(0x7f00000006c0)=@lang_id={0x4}}, {0x4, &(0x7f00000007c0)=@lang_id={0x4}}]}) 18:47:10 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) accept4(r0, 0x0, &(0x7f0000000040), 0x80000) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:11 executing program 1: r0 = socket(0x1e, 0x5, 0x0) setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0) 18:47:11 executing program 0: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, 0x930, 0x0, 0x2013, r0, 0x0) [ 437.212248][ T19] usb 4-1: new high-speed USB device number 41 using dummy_hcd 18:47:11 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_CCA_MODE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x0) [ 437.402718][ T19] usb 4-1: device descriptor read/64, error 18 [ 437.432337][ T1745] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 437.674168][ T19] usb 4-1: new high-speed USB device number 42 using dummy_hcd [ 437.793332][ T1745] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 437.872289][ T19] usb 4-1: device descriptor read/64, error 18 [ 437.963439][ T1745] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 437.973073][ T1745] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 437.981220][ T1745] usb 3-1: Product: syz [ 437.985698][ T1745] usb 3-1: SerialNumber: syz [ 437.996901][ T19] usb usb4-port1: attempt power cycle [ 438.282547][ T1745] cdc_ncm 3-1:1.0: bind() failure [ 438.296352][ T1745] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 438.303698][ T1745] cdc_ncm 3-1:1.1: bind() failure [ 438.317622][ T1745] usb 3-1: USB disconnect, device number 3 [ 438.412386][ T19] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 438.582425][ T19] usb 4-1: device descriptor read/8, error -61 [ 438.852523][ T19] usb 4-1: new high-speed USB device number 44 using dummy_hcd [ 439.022586][ T19] usb 4-1: device descriptor read/8, error -61 [ 439.142824][ T19] usb usb4-port1: unable to enumerate USB device 18:47:13 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:13 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000640)={0x0, 'team_slave_0\x00'}) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:13 executing program 0: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) io_setup(0x2, &(0x7f0000000100)=0x0) io_submit(r1, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x0, r0, 0x0}]) 18:47:13 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:13 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000002a00)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x500, &(0x7f0000002b00)=[@tclass={{0x14}}], 0x18}}], 0x2, 0x0) 18:47:13 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x840, 0x0) 18:47:14 executing program 1: setitimer(0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setitimer(0x2, &(0x7f00000001c0)={{0x0, 0x2710}, {0x0, r0/1000+10000}}, 0x0) 18:47:14 executing program 2: bpf$ITER_CREATE(0x1e, &(0x7f0000000400), 0x8) 18:47:14 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:14 executing program 0: r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/ipc\x00') close(r0) [ 440.502807][ T3614] usb 4-1: new high-speed USB device number 45 using dummy_hcd 18:47:14 executing program 2: semget(0x1, 0x0, 0x611) 18:47:14 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) [ 440.692497][ T3614] usb 4-1: device descriptor read/64, error 18 [ 440.983799][ T3614] usb 4-1: new high-speed USB device number 46 using dummy_hcd [ 441.172337][ T3614] usb 4-1: device descriptor read/64, error 18 [ 441.295282][ T3614] usb usb4-port1: attempt power cycle [ 441.712333][ T3614] usb 4-1: new high-speed USB device number 47 using dummy_hcd [ 441.912480][ T3614] usb 4-1: device descriptor read/8, error -61 [ 442.186227][ T3614] usb 4-1: new high-speed USB device number 48 using dummy_hcd [ 442.402640][ T3614] usb 4-1: device descriptor read/8, error -61 [ 442.536327][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:17 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de0500"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:17 executing program 1: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, r0) r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$search(0xa, r2, &(0x7f0000000640)='cifs.spnego\x00', &(0x7f00000000c0)={'syz', 0x2}, r1) 18:47:17 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0) ioctl$UI_SET_PROPBIT(r0, 0x4008556c, 0x0) 18:47:17 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:17 executing program 2: syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuseblk(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x0, 0x1000, 0x0) 18:47:17 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:17 executing program 0: syz_emit_ethernet(0x103, &(0x7f0000000180)={@local, @empty, @val, {@ipv4}}, 0x0) 18:47:17 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x9, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:17 executing program 1: socketpair(0x0, 0x0, 0x0, &(0x7f0000000000)) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(0xffffffffffffffff, 0xf505, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_int(r0, 0x0, 0x0, 0x0, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000340)={'mangle\x00', 0x2, [{}, {}]}, 0x48) creat(&(0x7f0000001400)='./file0\x00', 0x0) 18:47:17 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) [ 443.782865][ T3614] usb 4-1: new high-speed USB device number 49 using dummy_hcd 18:47:17 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) accept4(r0, 0x0, 0x0, 0x0) 18:47:18 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) [ 444.082680][ T3614] usb 4-1: no configurations [ 444.087616][ T3614] usb 4-1: can't read configurations, error -22 [ 444.282638][ T3614] usb 4-1: new high-speed USB device number 50 using dummy_hcd [ 444.592897][ T3614] usb 4-1: no configurations [ 444.597655][ T3614] usb 4-1: can't read configurations, error -22 [ 444.606985][ T3614] usb usb4-port1: attempt power cycle [ 445.022373][ T3614] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 445.152566][ T3614] usb 4-1: no configurations [ 445.157390][ T3614] usb 4-1: can't read configurations, error -22 [ 445.312235][ T3614] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 445.442470][ T3614] usb 4-1: no configurations [ 445.447226][ T3614] usb 4-1: can't read configurations, error -22 [ 445.454265][ T3614] usb usb4-port1: unable to enumerate USB device 18:47:20 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de0500"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:20 executing program 2: setuid(0xee01) bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0) 18:47:20 executing program 1: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x54, 0x0, &(0x7f0000000100)=[@request_death, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x4, 0x0, &(0x7f0000000180)="47578643"}) 18:47:20 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:20 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:20 executing program 0: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f00000027c0)=[{&(0x7f0000000200)="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", 0x1000, 0x80000001}, {&(0x7f0000001200)=';', 0x1}], 0x0, 0x0) [ 446.610099][ T6437] loop0: detected capacity change from 0 to 264192 18:47:20 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'ip6gre0\x00', 0x2}) ioctl$TUNSETSNDBUF(r0, 0x54e3, 0x0) 18:47:20 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:20 executing program 1: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f00000001c0)={0x283}) 18:47:20 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x1}}, @struct={0x0, 0x0, 0x0, 0x3}]}}, &(0x7f0000000140)=""/205, 0x3e, 0xcd, 0x1}, 0x20) [ 447.152490][ T1745] usb 4-1: new high-speed USB device number 53 using dummy_hcd 18:47:21 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x6}]}, 0x30}}, 0x0) 18:47:21 executing program 2: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8931, &(0x7f00000003c0)={'veth0_to_hsr\x00'}) [ 447.442924][ T1745] usb 4-1: no configurations [ 447.447692][ T1745] usb 4-1: can't read configurations, error -22 [ 447.642524][ T1745] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 447.962854][ T1745] usb 4-1: no configurations [ 447.967600][ T1745] usb 4-1: can't read configurations, error -22 [ 447.976292][ T1745] usb usb4-port1: attempt power cycle [ 448.426491][ T1745] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 448.583107][ T1745] usb 4-1: no configurations [ 448.588003][ T1745] usb 4-1: can't read configurations, error -22 [ 448.742273][ T1745] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 448.872741][ T1745] usb 4-1: no configurations [ 448.877452][ T1745] usb 4-1: can't read configurations, error -22 [ 448.887183][ T1745] usb usb4-port1: unable to enumerate USB device 18:47:23 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de0500"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:23 executing program 4: socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00', {}, 0x3ff}) 18:47:23 executing program 1: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000004c0)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)) 18:47:23 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:23 executing program 2: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000250000005400000054"], &(0x7f0000000080)=""/200, 0x71, 0xc8, 0x1}, 0x20) 18:47:23 executing program 0: r0 = socket$pppl2tp(0x18, 0x1, 0x1) syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0) 18:47:24 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, 0x0) 18:47:24 executing program 0: keyctl$set_reqkey_keyring(0x1e, 0x0) 18:47:24 executing program 2: r0 = getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f00000005c0)=[{r2, 0x47}], 0x1, 0x0, 0x0, 0x0) sched_setscheduler(r0, 0x3, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x7a) 18:47:24 executing program 1: r0 = syz_open_dev$loop(&(0x7f00000007c0), 0x0, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x2, 0x0, 0x11, &(0x7f0000000040)="6770c9323fd8073357140440245dff2e62"}) 18:47:24 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 450.443158][ T1745] usb 4-1: new high-speed USB device number 57 using dummy_hcd 18:47:24 executing program 0: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x29, &(0x7f0000000000), 0x4) [ 450.732774][ T1745] usb 4-1: no configurations [ 450.737529][ T1745] usb 4-1: can't read configurations, error -22 [ 450.949574][ T1745] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 451.233092][ T1745] usb 4-1: no configurations [ 451.237842][ T1745] usb 4-1: can't read configurations, error -22 [ 451.250120][ T1745] usb usb4-port1: attempt power cycle [ 451.310457][ T6477] not chained 540000 origins [ 451.315224][ T6477] CPU: 1 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 451.323606][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 451.333690][ T6477] Call Trace: [ 451.336980][ T6477] [ 451.339919][ T6477] dump_stack_lvl+0x1ff/0x28e [ 451.344676][ T6477] dump_stack+0x25/0x28 [ 451.348877][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 451.354662][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 451.360768][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.365927][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 451.371825][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 451.377496][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.382676][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 451.388531][ T6477] ? should_fail+0x75/0x9c0 [ 451.393073][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.398246][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 451.404532][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 451.410646][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.415795][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 451.421642][ T6477] __msan_chain_origin+0xbf/0x140 [ 451.426729][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.431915][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.436897][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 451.441792][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.446355][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 451.451506][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.456677][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 451.462350][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 451.467512][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 451.472664][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 451.479077][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.485838][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.490598][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.496981][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.502072][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.506992][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.511538][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.517999][ T6477] RIP: 0023:0xf6ea6549 [ 451.522102][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 451.541769][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 451.550233][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 451.558231][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 451.566243][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 451.574231][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 451.582231][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 451.590258][ T6477] [ 451.596363][ T6477] Uninit was stored to memory at: [ 451.601490][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.607147][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.612266][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.616832][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.621656][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.628199][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.633429][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.638346][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.643075][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.649492][ T6477] [ 451.651811][ T6477] Uninit was stored to memory at: [ 451.657090][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.662378][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.667365][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.671902][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.676822][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.683406][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.688499][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.693601][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.698171][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.704720][ T6477] [ 451.707054][ T6477] Uninit was stored to memory at: [ 451.712310][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.717469][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.722569][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.727130][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.731854][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.738410][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.743566][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.748450][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.753159][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.759554][ T6477] [ 451.761884][ T6477] Uninit was stored to memory at: [ 451.767162][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.772442][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.777434][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.782182][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.786926][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.793501][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.798594][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.803706][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.808277][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.814854][ T6477] [ 451.817192][ T6477] Uninit was stored to memory at: [ 451.822458][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.827619][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.832732][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.837291][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.842186][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.848578][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.853806][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.858721][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.863483][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.869902][ T6477] [ 451.872424][ T6477] Uninit was stored to memory at: [ 451.877525][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.882956][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.887951][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.892704][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.897443][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.904028][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.909146][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.914209][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.918769][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.925335][ T6477] [ 451.927681][ T6477] Uninit was stored to memory at: [ 451.932966][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 451.938134][ T6477] get_compat_msghdr+0x108/0x2c0 [ 451.943308][ T6477] do_recvmmsg+0xd77/0x2120 [ 451.947872][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 451.952725][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 451.959109][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 451.964353][ T6477] do_fast_syscall_32+0x34/0x70 [ 451.969268][ T6477] do_SYSENTER_32+0x1b/0x20 [ 451.973969][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.980364][ T6477] [ 451.982878][ T6477] Local variable msg_sys created at: [ 451.988177][ T6477] do_recvmmsg+0xbb/0x2120 [ 451.992819][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.170369][ T6477] not chained 550000 origins [ 452.175346][ T6477] CPU: 1 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 452.183721][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 452.193791][ T6477] Call Trace: [ 452.197086][ T6477] [ 452.200028][ T6477] dump_stack_lvl+0x1ff/0x28e [ 452.204754][ T6477] dump_stack+0x25/0x28 [ 452.208961][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 452.214718][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 452.220825][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.225979][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 452.231864][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 452.237471][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.242624][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 452.248509][ T6477] ? should_fail+0x75/0x9c0 [ 452.253057][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.258209][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 452.264521][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 452.270658][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.275809][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 452.281662][ T6477] __msan_chain_origin+0xbf/0x140 [ 452.286733][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.291924][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.296923][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 452.301853][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.306431][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 452.311595][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.316751][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 452.322424][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 452.327573][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 452.332746][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 452.339050][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.345605][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.350369][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.356788][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.361864][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.366761][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.371340][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.377717][ T6477] RIP: 0023:0xf6ea6549 [ 452.381817][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 452.401450][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 452.409889][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 452.417896][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 452.425898][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 452.433888][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 452.441889][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 452.449884][ T6477] [ 452.456615][ T6477] Uninit was stored to memory at: [ 452.461734][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.467540][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.472653][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.477473][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.482335][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.488724][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.493958][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.498903][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.503647][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.510052][ T6477] [ 452.512563][ T6477] Uninit was stored to memory at: [ 452.517649][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.522963][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.527949][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.532680][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.537504][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.544132][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.549228][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.554288][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.558916][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.565465][ T6477] [ 452.567809][ T6477] Uninit was stored to memory at: [ 452.573084][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.578252][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.583418][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.587984][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.592933][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.599418][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.604700][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.609626][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.614380][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.620786][ T6477] [ 452.623299][ T6477] Uninit was stored to memory at: [ 452.628403][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.633744][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.638735][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.643470][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.648209][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.654796][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.659882][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.664961][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.669530][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.676142][ T6477] [ 452.678740][ T6477] Uninit was stored to memory at: [ 452.684033][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.689199][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.694353][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.698923][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.703842][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.710256][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.715527][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.720439][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.725177][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.731689][ T6477] [ 452.734185][ T6477] Uninit was stored to memory at: [ 452.739331][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.744686][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.749678][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.754474][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.759207][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.765771][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.770860][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.775969][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.780535][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.787091][ T6477] [ 452.789430][ T6477] Uninit was stored to memory at: [ 452.794715][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 452.799875][ T6477] get_compat_msghdr+0x108/0x2c0 [ 452.805047][ T6477] do_recvmmsg+0xd77/0x2120 [ 452.809614][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.814541][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 452.820926][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 452.826185][ T6477] do_fast_syscall_32+0x34/0x70 [ 452.831104][ T6477] do_SYSENTER_32+0x1b/0x20 [ 452.835840][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.842353][ T6477] [ 452.844682][ T6477] Local variable msg_sys created at: [ 452.849957][ T6477] do_recvmmsg+0xbb/0x2120 [ 452.854583][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 452.932229][ T1745] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 453.032349][ T6477] not chained 560000 origins [ 453.036988][ T6477] CPU: 1 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 453.045337][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 453.055422][ T6477] Call Trace: [ 453.058717][ T6477] [ 453.061652][ T6477] dump_stack_lvl+0x1ff/0x28e [ 453.066486][ T6477] dump_stack+0x25/0x28 [ 453.070679][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 453.076463][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 453.082593][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.087754][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 453.093630][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 453.099223][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.104407][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 453.110287][ T6477] ? should_fail+0x75/0x9c0 [ 453.114833][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.120011][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 453.126338][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 18:47:27 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:27 executing program 1: pselect6(0x40, &(0x7f0000000300), 0x0, &(0x7f0000000380)={0x70}, &(0x7f0000000640)={0x0, 0x3938700}, &(0x7f00000006c0)={&(0x7f0000000680)={[0x4]}, 0x8}) 18:47:27 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, 0x0) 18:47:27 executing program 0: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r0, 0x800) lseek(r0, 0x200, 0x0) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ftruncate(r1, 0x800) lseek(r1, 0x200, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0) sendfile(r1, r2, 0x0, 0x10000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WOWLAN(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010100000000000000001f0000000800010058000000080003002a"], 0x24}}, 0x0) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x48, r4, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x59}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0xff}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x2}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x80) r5 = openat$cgroup_ro(r1, &(0x7f00000001c0)='cpuset.memory_pressure_enabled\x00', 0x0, 0x0) getsockname$tipc(r5, &(0x7f0000000200)=@id, &(0x7f0000000240)=0x10) r6 = open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0) sendfile(r0, r6, 0x0, 0x10000) 18:47:27 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 453.132478][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.137660][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 453.143547][ T6477] __msan_chain_origin+0xbf/0x140 [ 453.148642][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.153832][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.158835][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 453.163755][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.168330][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 453.173509][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.178783][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 453.184485][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 453.189664][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 453.194848][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 453.201168][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.207745][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.212499][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.218883][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.223985][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.228891][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.233443][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.239827][ T6477] RIP: 0023:0xf6ea6549 [ 453.243918][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 453.263580][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 453.272028][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 453.280027][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 453.288020][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 453.296012][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 453.304000][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 453.312009][ T6477] [ 453.318505][ T6477] Uninit was stored to memory at: [ 453.326177][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.331368][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.336714][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.341388][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.346281][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.352791][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.357889][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.362928][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.367491][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.374018][ T6477] [ 453.376355][ T6477] Uninit was stored to memory at: [ 453.381454][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.386742][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.391730][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.396486][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.401233][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.407816][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.413035][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.417949][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.422683][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.429084][ T6477] [ 453.431421][ T6477] Uninit was stored to memory at: [ 453.436721][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.441880][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.447087][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.451652][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.456620][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.463149][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.468246][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.473398][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.477979][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.484566][ T6477] [ 453.486909][ T6477] Uninit was stored to memory at: [ 453.492190][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.497369][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.502555][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.507124][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.511866][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.513839][ T24] audit: type=1804 audit(1648579647.556:2): pid=6488 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir458971327/syzkaller.QF7Hii/180/bus" dev="sda1" ino=1170 res=1 errno=0 [ 453.518456][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.548575][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.553622][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.553679][ T24] audit: type=1800 audit(1648579647.556:3): pid=6488 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1170 res=0 errno=0 [ 453.558184][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.584980][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 453.585339][ T6477] [ 453.591610][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 453.593970][ T6477] Uninit was stored to memory at: [ 453.594050][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.610555][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.615663][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.620228][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.625169][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 18:47:27 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8932, &(0x7f00000003c0)={'veth0_to_hsr\x00', 0x3ff}) [ 453.631560][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.636849][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.641819][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.646562][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.653098][ T6477] [ 453.655456][ T6477] Uninit was stored to memory at: [ 453.660553][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.665914][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.670906][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.675710][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.680450][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.687073][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.692314][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.697238][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.701817][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.708451][ T6477] [ 453.710811][ T6477] Uninit was stored to memory at: [ 453.716072][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 453.721263][ T6477] get_compat_msghdr+0x108/0x2c0 [ 453.726470][ T6477] do_recvmmsg+0xd77/0x2120 [ 453.731037][ T6477] __sys_recvmmsg+0x51c/0x6f0 18:47:27 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, 0x0) [ 453.735968][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 453.742489][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 453.747588][ T6477] do_fast_syscall_32+0x34/0x70 [ 453.752680][ T6477] do_SYSENTER_32+0x1b/0x20 [ 453.757251][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.763808][ T6477] [ 453.766141][ T6477] Local variable msg_sys created at: [ 453.771430][ T6477] do_recvmmsg+0xbb/0x2120 [ 453.776023][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 453.834380][ T1745] usb 4-1: device descriptor read/all, error -71 [ 453.941935][ T24] audit: type=1804 audit(1648579647.876:4): pid=6492 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir458971327/syzkaller.QF7Hii/180/bus" dev="sda1" ino=1170 res=1 errno=0 [ 453.967992][ T24] audit: type=1800 audit(1648579647.876:5): pid=6492 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1170 res=0 errno=0 18:47:28 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 454.303290][ T1745] usb 4-1: new high-speed USB device number 60 using dummy_hcd [ 454.514181][ T1745] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 454.524610][ T1745] usb 4-1: config 0 has no interfaces? [ 454.530249][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 454.539615][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 454.642521][ T1745] usb 4-1: config 0 descriptor?? [ 454.671559][ T6477] not chained 570000 origins [ 454.676437][ T6477] CPU: 0 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 454.684820][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 454.694909][ T6477] Call Trace: [ 454.698226][ T6477] [ 454.701193][ T6477] dump_stack_lvl+0x1ff/0x28e [ 454.705946][ T6477] dump_stack+0x25/0x28 [ 454.710180][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 454.715984][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 454.722120][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.727304][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 454.733190][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 454.738812][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.743997][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 454.749886][ T6477] ? should_fail+0x75/0x9c0 [ 454.754443][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.759625][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 454.765945][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 454.772087][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.777270][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 454.783145][ T6477] __msan_chain_origin+0xbf/0x140 [ 454.788553][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 454.793740][ T6477] get_compat_msghdr+0x108/0x2c0 [ 454.798742][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 454.803658][ T6477] do_recvmmsg+0xd77/0x2120 [ 454.808237][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 454.813422][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.818603][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 454.824320][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 454.829499][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 454.834688][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 454.841005][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 454.847574][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 454.852443][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 454.858843][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 454.863940][ T6477] do_fast_syscall_32+0x34/0x70 [ 454.868867][ T6477] do_SYSENTER_32+0x1b/0x20 [ 454.873410][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.879808][ T6477] RIP: 0023:0xf6ea6549 [ 454.883891][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 454.903568][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 454.912035][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 454.920053][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 454.928064][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 454.936071][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 454.944079][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 454.952105][ T6477] [ 454.957536][ T6477] Uninit was stored to memory at: [ 454.962984][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 454.968143][ T6477] get_compat_msghdr+0x108/0x2c0 [ 454.973236][ T6477] do_recvmmsg+0xd77/0x2120 [ 454.977798][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 454.982634][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 454.989021][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 454.994212][ T6477] do_fast_syscall_32+0x34/0x70 [ 454.999130][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.003811][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.010218][ T6477] [ 455.012709][ T6477] Uninit was stored to memory at: [ 455.017809][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.023120][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.028105][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.032804][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.037537][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.044094][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.049189][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.054329][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.058924][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.065472][ T6477] [ 455.067810][ T6477] Uninit was stored to memory at: [ 455.073134][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.078297][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.083437][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.088002][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.092965][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.099351][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.104579][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.109494][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.114205][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.120630][ T6477] [ 455.123107][ T6477] Uninit was stored to memory at: [ 455.128209][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.133526][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.138520][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.143242][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.147985][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.154528][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.159617][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.164674][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.169243][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.175787][ T6477] [ 455.178127][ T6477] Uninit was stored to memory at: [ 455.183381][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.188546][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.193676][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.198240][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.203131][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.209529][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.214771][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.219686][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.224435][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.230919][ T6477] [ 455.233437][ T6477] Uninit was stored to memory at: [ 455.238523][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.243809][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.248797][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.253511][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.258255][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.264783][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.269871][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.274947][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.279519][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.286051][ T6477] [ 455.288396][ T6477] Uninit was stored to memory at: [ 455.293643][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.298806][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.303961][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.308527][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.313435][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.319828][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.325084][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.330000][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.334761][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.341156][ T6477] [ 455.343639][ T6477] Local variable msg_sys created at: [ 455.348935][ T6477] do_recvmmsg+0xbb/0x2120 [ 455.353568][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.598200][ T6477] not chained 580000 origins [ 455.603171][ T6477] CPU: 0 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 455.611547][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 455.621627][ T6477] Call Trace: [ 455.624943][ T6477] [ 455.627903][ T6477] dump_stack_lvl+0x1ff/0x28e [ 455.632655][ T6477] dump_stack+0x25/0x28 [ 455.636892][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 455.642801][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 455.648955][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.654117][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 455.659995][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 455.665584][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.670763][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 455.676623][ T6477] ? should_fail+0x75/0x9c0 [ 455.681267][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.686449][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 455.692764][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 455.698996][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.704179][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 455.710052][ T6477] __msan_chain_origin+0xbf/0x140 [ 455.715126][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.720387][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.725362][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 455.730280][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.734849][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 455.740014][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.745258][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 455.750976][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 455.756156][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 455.761318][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 455.767637][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.774211][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.779055][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.785461][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.790578][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.795472][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.800040][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.806417][ T6477] RIP: 0023:0xf6ea6549 [ 455.810517][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 455.830181][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 455.838642][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 455.846650][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 455.854665][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 455.862669][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 455.870742][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 455.878833][ T6477] [ 455.883869][ T6477] Uninit was stored to memory at: [ 455.888979][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.894545][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.899531][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.904201][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.908940][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.915429][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.920522][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.925543][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.930108][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.936666][ T6477] [ 455.939005][ T6477] Uninit was stored to memory at: [ 455.944265][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 455.949427][ T6477] get_compat_msghdr+0x108/0x2c0 [ 455.954574][ T6477] do_recvmmsg+0xd77/0x2120 [ 455.959137][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 455.964003][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 455.970481][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 455.975725][ T6477] do_fast_syscall_32+0x34/0x70 [ 455.980667][ T6477] do_SYSENTER_32+0x1b/0x20 [ 455.985388][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.991780][ T6477] [ 455.994265][ T6477] Uninit was stored to memory at: [ 455.999351][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.004643][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.009638][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.014361][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.019101][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.025667][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.030759][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.035849][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.040413][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.046929][ T6477] [ 456.049267][ T6477] Uninit was stored to memory at: [ 456.054542][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.059705][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.064841][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.069397][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.074284][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.080672][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.085919][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.090840][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.095563][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.101958][ T6477] [ 456.104432][ T6477] Uninit was stored to memory at: [ 456.109513][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.114817][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.119816][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.124532][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.129284][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.135820][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.140915][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.145944][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.150506][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.157060][ T6477] [ 456.159401][ T6477] Uninit was stored to memory at: [ 456.164657][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.169808][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.174968][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.179526][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.184415][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.190799][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.196059][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.200974][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.205654][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.212134][ T6477] [ 456.214470][ T6477] Uninit was stored to memory at: [ 456.219569][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.224873][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.229855][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.234557][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.239295][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.245847][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.250938][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.256018][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.260602][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.267096][ T6477] [ 456.269435][ T6477] Local variable msg_sys created at: [ 456.274879][ T6477] do_recvmmsg+0xbb/0x2120 [ 456.279350][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.445876][ T6477] not chained 590000 origins [ 456.450505][ T6477] CPU: 1 PID: 6477 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 456.458896][ T6477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 456.468965][ T6477] Call Trace: [ 456.472258][ T6477] [ 456.475211][ T6477] dump_stack_lvl+0x1ff/0x28e [ 456.479944][ T6477] dump_stack+0x25/0x28 [ 456.484167][ T6477] kmsan_internal_chain_origin+0x78/0x110 [ 456.489937][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 456.496236][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.501420][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 456.507288][ T6477] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 456.512884][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.518077][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 456.523926][ T6477] ? should_fail+0x75/0x9c0 [ 456.528472][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.533636][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 456.539923][ T6477] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 456.546420][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.551607][ T6477] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 456.557459][ T6477] __msan_chain_origin+0xbf/0x140 [ 456.562544][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.567694][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.572665][ T6477] ? __sys_recvmmsg+0x51c/0x6f0 [ 456.577553][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.582095][ T6477] ? xfd_validate_state+0xd1/0x2d0 [ 456.587247][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.592426][ T6477] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 456.598097][ T6477] ? __stack_depot_save+0x21/0x4d0 [ 456.603249][ T6477] ? kmsan_get_metadata+0x33/0x220 [ 456.608405][ T6477] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 456.614698][ T6477] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.621240][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.625987][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.632375][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.637453][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.642348][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.646882][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.653252][ T6477] RIP: 0023:0xf6ea6549 [ 456.657331][ T6477] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 456.676982][ T6477] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 456.685438][ T6477] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 456.693430][ T6477] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 456.701416][ T6477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 456.709408][ T6477] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 456.717409][ T6477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 456.725433][ T6477] [ 456.732595][ T6477] Uninit was stored to memory at: [ 456.737825][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.743782][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.748775][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.753467][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.758202][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.764785][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.769880][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.775000][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.779571][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.786156][ T6477] [ 456.788498][ T6477] Uninit was stored to memory at: [ 456.793767][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.798925][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.804109][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.808681][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.813594][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.819982][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.825244][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.830153][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.834887][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.841288][ T6477] [ 456.843807][ T6477] Uninit was stored to memory at: [ 456.848916][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.854266][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.859260][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.864023][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.868762][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.875324][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.880420][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.885497][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.890064][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.896622][ T6477] [ 456.898960][ T6477] Uninit was stored to memory at: [ 456.904247][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.909413][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.914597][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.919162][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.924128][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.930530][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.935830][ T6477] do_fast_syscall_32+0x34/0x70 [ 456.940746][ T6477] do_SYSENTER_32+0x1b/0x20 [ 456.945513][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.951911][ T6477] [ 456.954442][ T6477] Uninit was stored to memory at: [ 456.959543][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 456.964897][ T6477] get_compat_msghdr+0x108/0x2c0 [ 456.969891][ T6477] do_recvmmsg+0xd77/0x2120 [ 456.971694][ T3614] usb 4-1: USB disconnect, device number 60 [ 456.974630][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 456.974696][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 456.991743][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 456.997029][ T6477] do_fast_syscall_32+0x34/0x70 [ 457.001947][ T6477] do_SYSENTER_32+0x1b/0x20 [ 457.006689][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.013217][ T6477] [ 457.015564][ T6477] Uninit was stored to memory at: [ 457.020669][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 457.026027][ T6477] get_compat_msghdr+0x108/0x2c0 [ 457.031023][ T6477] do_recvmmsg+0xd77/0x2120 [ 457.035796][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 457.040565][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 457.047157][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 457.052401][ T6477] do_fast_syscall_32+0x34/0x70 [ 457.057317][ T6477] do_SYSENTER_32+0x1b/0x20 [ 457.061883][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.068482][ T6477] [ 457.070818][ T6477] Uninit was stored to memory at: [ 457.076065][ T6477] __get_compat_msghdr+0x6e1/0x9d0 [ 457.081238][ T6477] get_compat_msghdr+0x108/0x2c0 [ 457.086376][ T6477] do_recvmmsg+0xd77/0x2120 [ 457.090934][ T6477] __sys_recvmmsg+0x51c/0x6f0 [ 457.095806][ T6477] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 457.102326][ T6477] __do_fast_syscall_32+0x96/0xf0 [ 457.107413][ T6477] do_fast_syscall_32+0x34/0x70 [ 457.112455][ T6477] do_SYSENTER_32+0x1b/0x20 [ 457.117025][ T6477] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.123555][ T6477] [ 457.125886][ T6477] Local variable msg_sys created at: [ 457.131181][ T6477] do_recvmmsg+0xbb/0x2120 [ 457.135808][ T6477] __sys_recvmmsg+0x51c/0x6f0 18:47:31 executing program 2: r0 = getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f00000005c0)=[{r2, 0x47}], 0x1, 0x0, 0x0, 0x0) sched_setscheduler(r0, 0x3, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x7a) 18:47:31 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x2) r1 = memfd_create(&(0x7f0000000200)=')-})*@!\x00', 0x0) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, 0x0, 0x0) 18:47:31 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000080)={0x0, 'bond0\x00'}) 18:47:31 executing program 0: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) lseek(r0, 0x800002, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0x8a) r1 = socket$inet6(0xa, 0x400000000001, 0x0) close(r1) r2 = socket(0x1e, 0x4, 0x0) connect$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10) r3 = open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0x200fc0) 18:47:31 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:31 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 457.459551][ T24] audit: type=1804 audit(1648579651.516:6): pid=6514 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir458971327/syzkaller.QF7Hii/181/bus" dev="sda1" ino=1177 res=1 errno=0 18:47:31 executing program 1: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x29, 0x2d, 0x0, 0x0) 18:47:31 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x0, 0x18c, 0x203, 0x0, 0x0, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @loopback}, @mcast1, [], [], 'macvlan0\x00', 'veth0_to_hsr\x00'}, 0x0, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}}, @common=@eui64={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@private, 'veth1_macvtap\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) [ 457.732658][ T3614] usb 4-1: new high-speed USB device number 61 using dummy_hcd 18:47:32 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x40047459, 0x0) 18:47:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x2c}}, 0x0) [ 458.096986][ T6525] not chained 600000 origins [ 458.101904][ T6525] CPU: 1 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 458.110289][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.120383][ T6525] Call Trace: [ 458.123686][ T6525] [ 458.126646][ T6525] dump_stack_lvl+0x1ff/0x28e [ 458.131402][ T6525] dump_stack+0x25/0x28 [ 458.135624][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 458.141420][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.146603][ T6525] ? update_misfit_status+0x2c/0xd30 [ 458.152027][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.157209][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 458.163094][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.168295][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.173457][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 458.179323][ T6525] ? should_fail+0x75/0x9c0 [ 458.183858][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.189035][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 458.195334][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 458.201462][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.206624][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 458.212488][ T6525] __msan_chain_origin+0xbf/0x140 [ 458.217563][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.222735][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.227748][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 458.232655][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.237222][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 458.242389][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.247559][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 458.253243][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 458.258402][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 458.263564][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 458.269883][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.276527][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.281307][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.287865][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.292949][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.297859][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.302410][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.308794][ T6525] RIP: 0023:0xf6ea6549 [ 458.312965][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 458.332609][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 458.341057][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 458.349075][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 458.357068][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 458.365060][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 458.373054][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 458.381090][ T6525] [ 458.387366][ T6525] Uninit was stored to memory at: [ 458.393898][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.399080][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.399312][ T3614] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 458.404182][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.414348][ T3614] usb 4-1: config 0 has no interfaces? [ 458.418886][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.424498][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 458.429163][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.438317][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 458.444747][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.457844][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.462884][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.467451][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.473976][ T6525] [ 458.476311][ T6525] Uninit was stored to memory at: [ 458.481416][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.486702][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.491686][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.496384][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.501126][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.507655][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.512896][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.517816][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.522512][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.528947][ T6525] [ 458.531293][ T6525] Uninit was stored to memory at: [ 458.536529][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.542677][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.547675][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.552456][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.557196][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.563840][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.568958][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.574113][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.578675][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.585202][ T6525] [ 458.587546][ T6525] Uninit was stored to memory at: [ 458.592773][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.597943][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.603072][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.607633][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.612503][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.618892][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.624124][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.629056][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.633753][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.640157][ T6525] [ 458.642616][ T6525] Uninit was stored to memory at: [ 458.647714][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.653005][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.657996][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.662681][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.667414][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.673927][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.679036][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.684100][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.688652][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.695188][ T6525] [ 458.697518][ T6525] Uninit was stored to memory at: [ 458.702729][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.707887][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.713013][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.717575][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.722431][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.728830][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.734053][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.738967][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.743664][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 18:47:32 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 458.750060][ T6525] [ 458.752530][ T6525] Uninit was stored to memory at: [ 458.757622][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 458.762954][ T6525] get_compat_msghdr+0x108/0x2c0 [ 458.767961][ T6525] do_recvmmsg+0xd77/0x2120 [ 458.772714][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.777465][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 458.784056][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 458.789167][ T6525] do_fast_syscall_32+0x34/0x70 [ 458.794286][ T6525] do_SYSENTER_32+0x1b/0x20 [ 458.798853][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.805442][ T6525] [ 458.807781][ T6525] Local variable msg_sys created at: [ 458.813272][ T6525] do_recvmmsg+0xbb/0x2120 [ 458.817747][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 458.951378][ T3614] usb 4-1: config 0 descriptor?? 18:47:33 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x80047437, 0x0) [ 459.979828][ T6525] not chained 610000 origins [ 459.984917][ T6525] CPU: 0 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 459.993298][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 460.003383][ T6525] Call Trace: [ 460.006682][ T6525] [ 460.009631][ T6525] dump_stack_lvl+0x1ff/0x28e [ 460.014382][ T6525] dump_stack+0x25/0x28 [ 460.018593][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 460.024380][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 460.030517][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.035700][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 460.041586][ T6525] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 460.047194][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.052375][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 460.058255][ T6525] ? should_fail+0x75/0x9c0 [ 460.062802][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.067974][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 460.074282][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 460.080412][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.085584][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 460.091458][ T6525] __msan_chain_origin+0xbf/0x140 [ 460.096546][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.101728][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.106719][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 460.111636][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.116281][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 460.121450][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.126624][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 460.132317][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 460.137488][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 460.142662][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 460.148972][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.155538][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.160287][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.166680][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.171771][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.176685][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.181252][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.187649][ T6525] RIP: 0023:0xf6ea6549 [ 460.191747][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 460.211401][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 460.219863][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 460.227875][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 460.235883][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 460.243885][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 460.251908][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 460.259927][ T6525] [ 460.265802][ T6525] Uninit was stored to memory at: [ 460.270920][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.276453][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.281465][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.286122][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.290860][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.297357][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.302537][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.307447][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.312089][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.318484][ T6525] [ 460.320814][ T6525] Uninit was stored to memory at: [ 460.326001][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.331154][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.336225][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.340789][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.345618][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.352089][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.357179][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.362182][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.366750][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.373315][ T6525] [ 460.375648][ T6525] Uninit was stored to memory at: [ 460.380750][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.386178][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.391175][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.395836][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.400571][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.405754][ T24] audit: type=1800 audit(1648579654.466:7): pid=6514 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=1177 res=0 errno=0 [ 460.407047][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.431818][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.436832][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.441391][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.447897][ T6525] [ 460.450235][ T6525] Uninit was stored to memory at: [ 460.455438][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.460607][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.465700][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.470266][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.475095][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.481476][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.486651][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.491562][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.496220][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.502716][ T6525] [ 460.505055][ T6525] Uninit was stored to memory at: [ 460.510152][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.515426][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.520415][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.525136][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.529875][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.536421][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.541511][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.546582][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.551241][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.557799][ T6525] [ 460.560137][ T6525] Uninit was stored to memory at: [ 460.565392][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.570555][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.575697][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.580306][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.585202][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.591591][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.596796][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.601710][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.606452][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.612971][ T6525] [ 460.615313][ T6525] Uninit was stored to memory at: [ 460.620410][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 460.625738][ T6525] get_compat_msghdr+0x108/0x2c0 [ 460.630738][ T6525] do_recvmmsg+0xd77/0x2120 [ 460.635501][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.640242][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 460.646726][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 460.651816][ T6525] do_fast_syscall_32+0x34/0x70 [ 460.656895][ T6525] do_SYSENTER_32+0x1b/0x20 [ 460.661464][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.668025][ T6525] [ 460.670366][ T6525] Local variable msg_sys created at: [ 460.675824][ T6525] do_recvmmsg+0xbb/0x2120 [ 460.680392][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 460.772269][ T3614] usb 4-1: USB disconnect, device number 61 [ 461.060280][ T6525] not chained 620000 origins [ 461.065121][ T6525] CPU: 0 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 461.073481][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 461.083571][ T6525] Call Trace: [ 461.086873][ T6525] [ 461.089819][ T6525] dump_stack_lvl+0x1ff/0x28e [ 461.094543][ T6525] dump_stack+0x25/0x28 [ 461.098744][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 461.104515][ T6525] ? do_user_addr_fault+0x13f7/0x1f20 [ 461.109975][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.115129][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 461.121000][ T6525] ? should_fail+0x75/0x9c0 [ 461.125524][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 461.131629][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.136805][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 461.143122][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 461.149255][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.154436][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 461.160363][ T6525] __msan_chain_origin+0xbf/0x140 [ 461.165433][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.170661][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.175635][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 461.180566][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.185370][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 461.190536][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.195704][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 461.201441][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 461.206589][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.211764][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 461.218053][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.224597][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.229341][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.235716][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.240805][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.245724][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.250288][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.256681][ T6525] RIP: 0023:0xf6ea6549 [ 461.260889][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 461.280535][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 461.288995][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 461.297164][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 461.305199][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 461.313211][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 461.321228][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 461.329252][ T6525] [ 461.334658][ T6525] Uninit was stored to memory at: [ 461.339772][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.345411][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.350409][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.355075][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.359808][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.366362][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.371458][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.376516][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.381084][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.387645][ T6525] [ 461.389985][ T6525] Uninit was stored to memory at: [ 461.395218][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.400370][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.405510][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.410103][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.415009][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.421403][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.426635][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.431662][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.436356][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.442848][ T6525] [ 461.445203][ T6525] Uninit was stored to memory at: [ 461.450303][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.455633][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.460625][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.465320][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.470054][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.476681][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.481778][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.487296][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.491858][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.498356][ T6525] [ 461.500694][ T6525] Uninit was stored to memory at: [ 461.505900][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.511061][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.516252][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.520824][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.525680][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.532158][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.537258][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.542284][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.546842][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.553374][ T6525] [ 461.555709][ T6525] Uninit was stored to memory at: [ 461.560785][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.566034][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.571014][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.575710][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.580442][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.586948][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.592169][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.597087][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.601646][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.608128][ T6525] [ 461.610459][ T6525] Uninit was stored to memory at: [ 461.615686][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.620841][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.625984][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.630538][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.635429][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.641810][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.647032][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.651943][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.656648][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.663162][ T6525] [ 461.665501][ T6525] Uninit was stored to memory at: [ 461.670608][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.675861][ T6525] get_compat_msghdr+0x108/0x2c0 [ 461.680851][ T6525] do_recvmmsg+0xd77/0x2120 [ 461.685552][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.690289][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 461.696795][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 461.701878][ T6525] do_fast_syscall_32+0x34/0x70 [ 461.706914][ T6525] do_SYSENTER_32+0x1b/0x20 [ 461.711476][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.718008][ T6525] [ 461.720348][ T6525] Local variable msg_sys created at: [ 461.725797][ T6525] do_recvmmsg+0xbb/0x2120 [ 461.730271][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 461.876085][ T6525] not chained 630000 origins [ 461.880716][ T6525] CPU: 0 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 461.889067][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 461.899148][ T6525] Call Trace: [ 461.902436][ T6525] [ 461.905380][ T6525] dump_stack_lvl+0x1ff/0x28e [ 461.910124][ T6525] dump_stack+0x25/0x28 [ 461.914332][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 461.920142][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 461.926277][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.931452][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 461.937305][ T6525] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 461.942905][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.948092][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 461.953943][ T6525] ? should_fail+0x75/0x9c0 [ 461.958480][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.963629][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 461.969942][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 461.976051][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 461.981205][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 461.987066][ T6525] __msan_chain_origin+0xbf/0x140 [ 461.992129][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 461.997297][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.002269][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 462.007197][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.011740][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 462.016890][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.022061][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 462.027757][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 462.032931][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.038105][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 462.044418][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.050977][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.055696][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.062069][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.067155][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.072060][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.076616][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.082983][ T6525] RIP: 0023:0xf6ea6549 [ 462.087417][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 462.107052][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 462.115521][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 462.123513][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 462.131515][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 462.139521][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 462.147525][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 462.155535][ T6525] [ 462.160556][ T6525] Uninit was stored to memory at: [ 462.166095][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.171257][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.176357][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.180922][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.185758][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.192278][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.197370][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.202445][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.207022][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.213551][ T6525] [ 462.215887][ T6525] Uninit was stored to memory at: [ 462.220987][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.226260][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.231285][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.236008][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.240736][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.247221][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.252476][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.257384][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.261939][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.268485][ T6525] [ 462.270806][ T6525] Uninit was stored to memory at: [ 462.276063][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.281220][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.286362][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.290929][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.295805][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.302285][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.307371][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.312398][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.316957][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.323509][ T6525] [ 462.325845][ T6525] Uninit was stored to memory at: [ 462.330972][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.336473][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.341457][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.346162][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.350898][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.357417][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.362748][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.367663][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.372371][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.378772][ T6525] [ 462.381094][ T6525] Uninit was stored to memory at: [ 462.386302][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.391458][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.396594][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.401166][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.406075][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.412564][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.417660][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.422720][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.427369][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.433918][ T6525] [ 462.436264][ T6525] Uninit was stored to memory at: [ 462.441355][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.446656][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.451646][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.456339][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.461073][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.467609][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.472820][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.478078][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.482766][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.489159][ T6525] [ 462.491487][ T6525] Uninit was stored to memory at: [ 462.496711][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.501864][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.506997][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.511556][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.516424][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.522902][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.527988][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.533050][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.537613][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.544114][ T6525] [ 462.546454][ T6525] Local variable msg_sys created at: [ 462.551751][ T6525] do_recvmmsg+0xbb/0x2120 [ 462.556419][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.705356][ T6525] not chained 640000 origins [ 462.709996][ T6525] CPU: 1 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 462.718340][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 462.728410][ T6525] Call Trace: [ 462.731700][ T6525] [ 462.734645][ T6525] dump_stack_lvl+0x1ff/0x28e [ 462.739449][ T6525] dump_stack+0x25/0x28 [ 462.743674][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 462.749438][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 462.755540][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.760696][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 462.766549][ T6525] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 462.772144][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.777288][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 462.783137][ T6525] ? should_fail+0x75/0x9c0 [ 462.787656][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.792799][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 462.799080][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 462.805184][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.810330][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 462.816180][ T6525] __msan_chain_origin+0xbf/0x140 [ 462.821345][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 462.826582][ T6525] get_compat_msghdr+0x108/0x2c0 [ 462.831549][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 462.836466][ T6525] do_recvmmsg+0xd77/0x2120 [ 462.841005][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 462.846171][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.851343][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 462.857007][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 462.862156][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 462.867304][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 462.873586][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.880123][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 462.885377][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 462.891893][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 462.896980][ T6525] do_fast_syscall_32+0x34/0x70 [ 462.901886][ T6525] do_SYSENTER_32+0x1b/0x20 [ 462.906437][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.912815][ T6525] RIP: 0023:0xf6ea6549 [ 462.916891][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 462.936721][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 462.945160][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 462.953196][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 462.961202][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 462.969182][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 462.977164][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 462.985161][ T6525] [ 462.991884][ T6525] Uninit was stored to memory at: [ 462.997641][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.002936][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.007919][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.012610][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.017346][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.023872][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.028978][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.034000][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.038580][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.045137][ T6525] [ 463.047487][ T6525] Uninit was stored to memory at: [ 463.052715][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.057869][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.062993][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.067551][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.072468][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.078868][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.084139][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.089048][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.093756][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.100146][ T6525] [ 463.102640][ T6525] Uninit was stored to memory at: [ 463.107738][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.113076][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.118061][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.122792][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.127526][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.134063][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.139150][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.144247][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.148805][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.155438][ T6525] [ 463.157774][ T6525] Uninit was stored to memory at: [ 463.163044][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.168201][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.173324][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.177885][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.182772][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.189154][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.194408][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.199320][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.204010][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.210396][ T6525] [ 463.212903][ T6525] Uninit was stored to memory at: [ 463.218000][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.223330][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.228308][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.233045][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.237774][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.244339][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.249435][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.254506][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.259064][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.265572][ T6525] [ 463.267902][ T6525] Uninit was stored to memory at: [ 463.273177][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.278330][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.283482][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.288039][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.292903][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.299281][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.304543][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.309457][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.314240][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.320644][ T6525] [ 463.323161][ T6525] Uninit was stored to memory at: [ 463.328272][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.333598][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.338585][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.343313][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.348347][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.354916][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.360006][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.365109][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.369671][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.376241][ T6525] [ 463.378578][ T6525] Local variable msg_sys created at: [ 463.384156][ T6525] do_recvmmsg+0xbb/0x2120 [ 463.388628][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.539896][ T6525] not chained 650000 origins [ 463.544766][ T6525] CPU: 0 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 463.553141][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 463.563213][ T6525] Call Trace: [ 463.566515][ T6525] [ 463.569460][ T6525] dump_stack_lvl+0x1ff/0x28e [ 463.574202][ T6525] dump_stack+0x25/0x28 [ 463.578391][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 463.584149][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 463.590274][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.595464][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 463.601324][ T6525] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 463.606906][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.612081][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 463.617952][ T6525] ? should_fail+0x75/0x9c0 [ 463.622498][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.627668][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 463.634078][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 463.640196][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.645353][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 463.651229][ T6525] __msan_chain_origin+0xbf/0x140 [ 463.656297][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.661455][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.666447][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 463.671362][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.675921][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 463.681177][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.686336][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 463.692026][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 463.697269][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 463.702432][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 463.708740][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.715296][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.720031][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.726431][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.731524][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.736433][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.741016][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.747383][ T6525] RIP: 0023:0xf6ea6549 [ 463.751461][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 463.771094][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 463.779537][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 463.787548][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 463.795539][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 463.803542][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 463.811569][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 463.819578][ T6525] [ 463.830940][ T6525] Uninit was stored to memory at: [ 463.840090][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.845369][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.850355][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.855003][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.859734][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.866252][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.871339][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.876387][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.880941][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.887438][ T6525] [ 463.889770][ T6525] Uninit was stored to memory at: [ 463.894989][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.900142][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.905233][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.909789][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.914642][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.921044][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.926226][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.931155][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.935847][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.942329][ T6525] [ 463.944658][ T6525] Uninit was stored to memory at: [ 463.949745][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 463.955049][ T6525] get_compat_msghdr+0x108/0x2c0 [ 463.960028][ T6525] do_recvmmsg+0xd77/0x2120 [ 463.964698][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 463.969497][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 463.976040][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 463.981128][ T6525] do_fast_syscall_32+0x34/0x70 [ 463.986579][ T6525] do_SYSENTER_32+0x1b/0x20 [ 463.991139][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.997636][ T6525] [ 463.999973][ T6525] Uninit was stored to memory at: [ 464.005154][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.010311][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.015416][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.019978][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.024866][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.031249][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.036442][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.041355][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.046084][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.052571][ T6525] [ 464.054904][ T6525] Uninit was stored to memory at: [ 464.059993][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.065236][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.070223][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.074891][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.079623][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.086118][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.091216][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.096203][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.100736][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.107262][ T6525] [ 464.109604][ T6525] Uninit was stored to memory at: [ 464.114841][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.119999][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.125132][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.129694][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.134524][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.140907][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.146121][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.151030][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.155710][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.162192][ T6525] [ 464.164524][ T6525] Uninit was stored to memory at: [ 464.169616][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.174920][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.179992][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.184711][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.189445][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.195989][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.201076][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.206112][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.210673][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.217162][ T6525] [ 464.219496][ T6525] Local variable msg_sys created at: [ 464.224945][ T6525] do_recvmmsg+0xbb/0x2120 [ 464.229417][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.376580][ T6525] not chained 660000 origins [ 464.382758][ T6525] CPU: 0 PID: 6525 Comm: syz-executor.2 Not tainted 5.17.0-syzkaller #0 [ 464.391150][ T6525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.401246][ T6525] Call Trace: [ 464.404540][ T6525] [ 464.407485][ T6525] dump_stack_lvl+0x1ff/0x28e [ 464.412214][ T6525] dump_stack+0x25/0x28 [ 464.416434][ T6525] kmsan_internal_chain_origin+0x78/0x110 [ 464.422223][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 464.428364][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.433537][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 464.439418][ T6525] ? __unix_dgram_recvmsg+0x1a0b/0x1c20 [ 464.445002][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.450268][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 464.456132][ T6525] ? should_fail+0x75/0x9c0 [ 464.460658][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.465813][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 464.472125][ T6525] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 464.478263][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.483432][ T6525] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 464.489309][ T6525] __msan_chain_origin+0xbf/0x140 [ 464.494374][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.499553][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.504540][ T6525] ? __sys_recvmmsg+0x51c/0x6f0 [ 464.509446][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.513990][ T6525] ? xfd_validate_state+0xd1/0x2d0 [ 464.519160][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.524311][ T6525] ? btf_decl_tag_check_meta+0x6c0/0x770 [ 464.530003][ T6525] ? __stack_depot_save+0x21/0x4d0 [ 464.535153][ T6525] ? kmsan_get_metadata+0x33/0x220 [ 464.540350][ T6525] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 464.546648][ T6525] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.553218][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.558065][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.564461][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.569568][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.574462][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.579022][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.585390][ T6525] RIP: 0023:0xf6ea6549 [ 464.589488][ T6525] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 464.609148][ T6525] RSP: 002b:00000000f585e5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 464.617610][ T6525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 464.625622][ T6525] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 464.633628][ T6525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 464.641625][ T6525] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 464.649610][ T6525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 464.657626][ T6525] [ 464.663092][ T6525] Uninit was stored to memory at: [ 464.668219][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.673731][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.678723][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.683371][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.688127][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.694620][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.699715][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.704789][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.709353][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.715916][ T6525] [ 464.718257][ T6525] Uninit was stored to memory at: [ 464.723450][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.728605][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.733726][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.738316][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.743204][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.749613][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.754840][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.759767][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.764480][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.770900][ T6525] [ 464.773402][ T6525] Uninit was stored to memory at: [ 464.778505][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.783831][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.788821][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.793549][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.798282][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.804892][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.809990][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.815054][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.819612][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.826151][ T6525] [ 464.828486][ T6525] Uninit was stored to memory at: [ 464.833746][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.838900][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.844064][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.848624][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.853503][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.859887][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.865112][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.870108][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.874806][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.881195][ T6525] [ 464.883678][ T6525] Uninit was stored to memory at: [ 464.888773][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.894088][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.899073][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.903811][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.908538][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.915060][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.920143][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.925171][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.929740][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.936284][ T6525] [ 464.938629][ T6525] Uninit was stored to memory at: [ 464.943884][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 464.949063][ T6525] get_compat_msghdr+0x108/0x2c0 [ 464.954210][ T6525] do_recvmmsg+0xd77/0x2120 [ 464.958773][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 464.963647][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 464.970034][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 464.975229][ T6525] do_fast_syscall_32+0x34/0x70 [ 464.980141][ T6525] do_SYSENTER_32+0x1b/0x20 [ 464.984843][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.991242][ T6525] [ 464.993710][ T6525] Uninit was stored to memory at: [ 464.998830][ T6525] __get_compat_msghdr+0x6e1/0x9d0 [ 465.004152][ T6525] get_compat_msghdr+0x108/0x2c0 [ 465.009136][ T6525] do_recvmmsg+0xd77/0x2120 [ 465.013833][ T6525] __sys_recvmmsg+0x51c/0x6f0 [ 465.018560][ T6525] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0 [ 465.025079][ T6525] __do_fast_syscall_32+0x96/0xf0 [ 465.030164][ T6525] do_fast_syscall_32+0x34/0x70 [ 465.035195][ T6525] do_SYSENTER_32+0x1b/0x20 [ 465.039867][ T6525] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.046415][ T6525] [ 465.048757][ T6525] Local variable msg_sys created at: [ 465.054209][ T6525] do_recvmmsg+0xbb/0x2120 [ 465.058687][ T6525] __sys_recvmmsg+0x51c/0x6f0 18:47:39 executing program 2: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x29, 0x2b, 0x0, 0x0) 18:47:39 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000080)={{0xeb9f, 0x2, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000140)=""/205, 0x1a, 0xcd, 0x1}, 0x20) 18:47:39 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x0, 0x18c, 0x203, 0x0, 0x0, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @loopback}, @mcast1, [], [], 'macvlan0\x00', 'veth0_to_hsr\x00'}, 0x0, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13}}, @common=@eui64={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@private, 'veth1_macvtap\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) 18:47:39 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x13) ioctl$TUNSETLINK(r0, 0x400454cb, 0x200) 18:47:39 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:39 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 465.364739][ T6546] tap0: tun_chr_ioctl cmd 1074025675 [ 465.370694][ T6546] tap0: persist enabled 18:47:39 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000340)=ANY=[@ANYBLOB="e28e1816e94ad3f0f6505dd3ded079721009c4592cd116e6a202909fbe11bdeb0eb299a1a02accfd360bc2b9ca0dc7854557b054c31467db8118e5"]) 18:47:39 executing program 1: bpf$BPF_BTF_LOAD(0xd, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 18:47:39 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000002600012f"], 0x28}}, 0x0) [ 465.612330][ T3614] usb 4-1: new high-speed USB device number 62 using dummy_hcd 18:47:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r1, 0x801}, 0x1c}}, 0x0) 18:47:40 executing program 1: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x29, 0x5, 0x0, 0x0) [ 465.938014][ T6562] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 465.993386][ T3614] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 466.003850][ T3614] usb 4-1: config 0 has no interfaces? [ 466.009496][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 466.018836][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:47:40 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x8, &(0x7f0000000240)) 18:47:40 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000340)=ANY=[@ANYBLOB="e28e1816e94ad3f0f6505dd3ded079721009c4592cd116e6a202909fbe11bdeb0eb299a1a02accfd360bc2b9ca0dc7854557b054c31467db8118e5"]) [ 466.143801][ T3614] usb 4-1: config 0 descriptor?? 18:47:40 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mknodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) statx(r0, &(0x7f00000001c0)='./file0\x00', 0x100, 0x8, &(0x7f0000000200)) 18:47:40 executing program 5: setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r0 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:40 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0) 18:47:40 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000100)='.pending_reads\x00', 0x2442, 0x126) 18:47:42 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:42 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.pending_reads\x00', 0x20a41, 0x0) openat$incfs(r0, &(0x7f00000000c0)='.pending_reads\x00', 0x0, 0x2c) 18:47:42 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000340)=ANY=[@ANYBLOB="e28e1816e94ad3f0f6505dd3ded079721009c4592cd116e6a202909fbe11bdeb0eb299a1a02accfd360bc2b9ca0dc7854557b054c31467db8118e5"]) 18:47:42 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.log\x00', 0xe3a43, 0xa2) 18:47:42 executing program 5: setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r0 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:42 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmmsg(r0, 0x0, 0x0, 0x8000) [ 468.266736][ T19] usb 4-1: USB disconnect, device number 62 18:47:42 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.pending_reads\x00', 0x20a41, 0x0) openat$incfs(r0, &(0x7f0000000100)='.pending_reads\x00', 0x400, 0x1a6) 18:47:42 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.log\x00', 0x20841, 0x40) 18:47:42 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.pending_reads\x00', 0x189e40, 0x6a) 18:47:42 executing program 5: setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r0 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:42 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000340)=ANY=[@ANYBLOB="e28e1816e94ad3f0f6505dd3ded079721009c4592cd116e6a202909fbe11bdeb0eb299a1a02accfd360bc2b9ca0dc7854557b054c31467db8118e5"]) [ 468.832364][ T3614] usb 4-1: new high-speed USB device number 63 using dummy_hcd [ 468.906887][ T24] audit: type=1804 audit(1648579662.966:8): pid=6605 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir1186608572/syzkaller.FuaIeF/232/file0/.pending_reads" dev="sda1" ino=1169 res=1 errno=0 18:47:43 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x20, &(0x7f0000000100)) [ 469.202727][ T3614] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 469.213682][ T3614] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 469.222955][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 469.232232][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 469.266172][ T3614] usb 4-1: config 0 descriptor?? 18:47:45 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:45 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) openat$incfs(r0, &(0x7f0000000080)='.log\x00', 0x20841, 0x0) r1 = openat$incfs(r0, &(0x7f00000000c0)='.log\x00', 0x140181, 0x0) write$tun(r1, 0x0, 0x0) 18:47:45 executing program 0: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x49042, 0x0) write$P9_RSTATu(r0, &(0x7f00000001c0)={0x6a, 0x7d, 0x0, {{0x0, 0x4b, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1, '#', 0xa, 'sessionid\x00', 0xa, 'sessionid\x00', 0x3, ',,Z'}, 0xa, 'sessionid\x00'}}, 0x6a) 18:47:45 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000002340)=@base={0x0, 0x0, 0x0, 0x0, 0x805, 0x1}, 0x48) 18:47:45 executing program 4: socketpair$nbd(0x1, 0x2, 0x0, &(0x7f0000000000)) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000500)) 18:47:45 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 471.528935][ T19] usb 4-1: USB disconnect, device number 63 18:47:45 executing program 0: syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x2, 0x1, 0xff, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@mdlm_detail={0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0xff}}}}}}]}}, 0x0) 18:47:45 executing program 1: r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000040)={0x8, @sdr}) 18:47:45 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000480)='net/ip6_tables_names\x00') read$alg(r0, &(0x7f00000004c0)=""/13, 0xd) 18:47:45 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x3, 0x4, 0x4, 0x2, 0x800, 0x1}, 0x48) [ 472.152746][ T3614] usb 4-1: new high-speed USB device number 64 using dummy_hcd 18:47:46 executing program 4: socketpair(0x28, 0x0, 0x2, &(0x7f0000000000)) 18:47:46 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 472.292493][ T3546] usb 1-1: new high-speed USB device number 55 using dummy_hcd [ 472.523165][ T3614] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 472.533764][ T3614] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 472.543136][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 472.552491][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.562946][ T3546] usb 1-1: Using ep0 maxpacket: 32 [ 472.579265][ T3614] usb 4-1: config 0 descriptor?? [ 472.683754][ T3546] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 472.695437][ T3546] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 472.705529][ T3546] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 472.715540][ T3546] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 472.725558][ T3546] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 472.735543][ T3546] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 472.952991][ T3546] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 472.962451][ T3546] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.970627][ T3546] usb 1-1: Product: syz [ 472.975127][ T3546] usb 1-1: Manufacturer: syz [ 472.981228][ T3546] usb 1-1: SerialNumber: syz [ 473.314718][ T3546] cdc_ncm 1-1:1.0: bind() failure [ 473.329201][ T3546] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 473.336372][ T3546] cdc_ncm 1-1:1.1: bind() failure [ 473.371451][ T3546] usb 1-1: USB disconnect, device number 55 18:47:48 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:48 executing program 2: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000f00)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 18:47:48 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:48 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r0, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f00000010c0)="97", 0x1}, {&(0x7f0000001100)='\"', 0x1}, {&(0x7f0000001180)="0e", 0x1}], 0x3, &(0x7f00000015c0)=[{0x10}], 0x10}, 0x0) 18:47:48 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 474.835922][ T19] usb 4-1: USB disconnect, device number 64 18:47:48 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000040)=ANY=[@ANYBLOB="001603"]) 18:47:49 executing program 2: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:49 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:49 executing program 4: socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 18:47:49 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff}) close(r0) [ 475.463543][ T1745] usb 4-1: new high-speed USB device number 65 using dummy_hcd 18:47:49 executing program 2: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:49 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x3, 0x4, 0x4, 0x1001, 0x180c}, 0x48) [ 475.832845][ T1745] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 475.843569][ T1745] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 475.855441][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 475.865292][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 476.014748][ T1745] usb 4-1: config 0 descriptor?? 18:47:52 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200010000000009"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:52 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:52 executing program 0: socketpair(0x22, 0x0, 0x0, &(0x7f0000000080)) 18:47:52 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:52 executing program 2: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:52 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x3, 0x4, 0x4, 0x1001}, 0x48) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r0, &(0x7f00000003c0)="d0c3"}, 0x20) [ 478.156672][ T1745] usb 4-1: USB disconnect, device number 65 18:47:52 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8922, &(0x7f0000000200)={'wg2\x00'}) 18:47:52 executing program 4: r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2) ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000180)={0x0, 0x0, 0x0, @stepwise}) 18:47:52 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:52 executing program 2: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 478.743043][ T1745] usb 4-1: new high-speed USB device number 66 using dummy_hcd 18:47:52 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:52 executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000000)=@raw={0x0, 0x0, "0427fafcf3fd"}) [ 479.103629][ T1745] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 479.112925][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 479.122344][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 479.241144][ T1745] usb 4-1: config 0 descriptor?? 18:47:55 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200010000000009"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:55 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0x2, 0xa1}, 0x1c) 18:47:55 executing program 0: socketpair(0x22, 0x0, 0x3129, &(0x7f0000000080)) 18:47:55 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:55 executing program 4: syz_usb_connect$cdc_ecm(0x0, 0x83, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x71, 0x1, 0x1, 0x2, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xe1, 0x3, 0x2, 0x6, 0x0, 0x81, {{0x5}, {0x5, 0x24, 0x0, 0x1f}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x1000, 0x4, 0x3}, [@mdlm_detail={0x25, 0x24, 0x13, 0x7, "c7e960e3975a46fd23554f33d83de626f0d0e6f27e1a0595bfe791b5b412ec73c3"}, @call_mgmt={0x5, 0x24, 0x1, 0x3, 0x8}, @mbim={0xc, 0x24, 0x1b, 0x6, 0x77a, 0x7, 0x1, 0x2, 0x2}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x10, 0x6, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x88, 0x1, 0x1}}}}}]}}]}}, &(0x7f0000000140)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0xdc, 0x8, 0x0, 0xff, 0x1}, 0x5, &(0x7f0000000100)={0x5, 0xf, 0x5}}) openat$cgroup(0xffffffffffffffff, &(0x7f0000000240)='syz0\x00', 0x200002, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) ioctl$RTC_AIE_ON(r0, 0x7001) ioctl$RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000200)) 18:47:55 executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 481.437219][ T1745] usb 4-1: USB disconnect, device number 66 18:47:55 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f00000000c0)=@v={0x93, 0x0, 0x90}) 18:47:55 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFCONF(r0, 0x8982, 0x0) [ 481.822526][ T19] usb 5-1: new high-speed USB device number 9 using dummy_hcd 18:47:56 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:56 executing program 0: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000000)={0x2}) 18:47:56 executing program 2: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x185000, 0x0) [ 482.096240][ T1745] usb 4-1: new high-speed USB device number 67 using dummy_hcd [ 482.263516][ T19] usb 5-1: config 1 interface 0 altsetting 225 bulk endpoint 0x82 has invalid maxpacket 16 [ 482.273849][ T19] usb 5-1: config 1 interface 0 altsetting 225 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 482.287290][ T19] usb 5-1: config 1 interface 0 has no altsetting 0 [ 482.462970][ T1745] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 482.472679][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 482.481899][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 482.526572][ T19] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 482.536049][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 482.544523][ T19] usb 5-1: Product: syz [ 482.548839][ T19] usb 5-1: Manufacturer: syz [ 482.553709][ T19] usb 5-1: SerialNumber: syz [ 482.637397][ T1745] usb 4-1: config 0 descriptor?? [ 482.683551][ T6717] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 483.002819][ T19] cdc_ether: probe of 5-1:1.0 failed with error -71 [ 483.033482][ T19] usb 5-1: USB disconnect, device number 9 18:47:58 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de050000000109021200010000000009"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:47:58 executing program 0: socketpair(0x2c, 0x3, 0x3f, &(0x7f0000000080)) 18:47:58 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:58 executing program 2: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000100)=@v={0x93, 0x0, 0xa0, 0x0, @MIDI_NOTEON=@special}) 18:47:58 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:47:58 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6d9a, 0x0, "122d927a143343ce93b7d29c30dcb5f66bb0e2"}) [ 484.796579][ T3614] usb 4-1: USB disconnect, device number 67 18:47:59 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x4, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000008c0)='./binderfs/binder1\x00', 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0) mmap$binder(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x11, r0, 0x100000f2c004000) mmap$binder(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x400000) 18:47:59 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000000)=@generic={0x8}) 18:47:59 executing program 2: socketpair(0x1e, 0x0, 0x2000c1, &(0x7f0000000040)) 18:47:59 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x0, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:47:59 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x0, 0x0) syz_clone3(&(0x7f0000000240)={0x242007400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) [ 485.299369][ T6761] binder_alloc: binder_alloc_mmap_handler: 6758 20ffb000-20ffd000 already mapped failed -16 [ 485.373202][ T120] usb 4-1: new high-speed USB device number 68 using dummy_hcd 18:47:59 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000000)=@raw={0xfe, 0x0, "173a140bc67a"}) [ 485.732803][ T120] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 485.742197][ T120] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 485.751423][ T120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 485.820887][ T120] usb 4-1: config 0 descriptor?? 18:48:02 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x0, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:02 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:02 executing program 2: syz_clone3(&(0x7f0000000340)={0x42040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 18:48:02 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:02 executing program 0: syz_clone3(&(0x7f0000000300)={0x40002000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0], 0x2}, 0x58) 18:48:02 executing program 4: openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) [ 488.060921][ T120] usb 4-1: USB disconnect, device number 68 18:48:02 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000540)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00'}) 18:48:02 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x0, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:02 executing program 2: fsopen(&(0x7f0000000000)='hfs\x00', 0x0) [ 488.653067][ T3614] usb 4-1: new high-speed USB device number 69 using dummy_hcd 18:48:02 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000540)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00'}) 18:48:02 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x0, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:03 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x0, {0x0, 0x4}}) [ 489.038081][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 489.047695][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:48:03 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 489.122466][ T3614] usb 4-1: config 0 descriptor?? [ 489.184257][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 490.472729][ T3614] gspca_topro: reg_w err -71 [ 490.512406][ T3614] gspca_topro: Sensor soi763a [ 490.530207][ T3614] usb 4-1: USB disconnect, device number 69 18:48:05 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:05 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454e2, &(0x7f0000000080)) 18:48:05 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x13) 18:48:05 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) 18:48:05 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x0, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:05 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:05 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x0, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:05 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:05 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x8}]}) 18:48:05 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) close(r0) ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000380)) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) 18:48:05 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x8927, &(0x7f0000000080)) 18:48:05 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x0, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 491.652303][ T120] usb 4-1: new high-speed USB device number 70 using dummy_hcd [ 492.012830][ T120] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 492.022723][ T120] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 492.124834][ T120] usb 4-1: config 0 descriptor?? [ 492.184917][ T120] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 493.472403][ T120] gspca_topro: reg_w err -71 [ 493.512286][ T120] gspca_topro: Sensor soi763a [ 493.525691][ T120] usb 4-1: USB disconnect, device number 70 18:48:08 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:08 executing program 4: syz_clone(0x40a04400, 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000480), &(0x7f00000004c0)) 18:48:08 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x3}]}}, &(0x7f0000000100)=""/209, 0x26, 0xd1, 0x1}, 0x20) 18:48:08 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:08 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x0, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:08 executing program 2: syz_clone(0x40a04400, &(0x7f0000000080)="254e292edf390bb06de3203a2bafe683cb7b869a90f3fb61a41611c8f8b6c656ee4801e786091dd05971aee49a244a0517f9954d73128b9a98010fbf028dc7098a9232efe1b1d553dc978c2789e7", 0x4e, &(0x7f0000000140), 0x0, 0x0) 18:48:08 executing program 0: syz_clone(0x40a04400, 0x0, 0x0, 0x0, 0x0, 0x0) 18:48:08 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x0, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:08 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 494.622920][ T19] usb 4-1: new high-speed USB device number 71 using dummy_hcd 18:48:08 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:08 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:08 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xf, 0x0, 0x0, 0x8}, 0x48) [ 495.014008][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 495.023364][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 495.077619][ T19] usb 4-1: config 0 descriptor?? [ 495.143429][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 496.434073][ T19] gspca_topro: reg_w err -71 [ 496.472516][ T19] gspca_topro: Sensor soi763a [ 496.506811][ T19] usb 4-1: USB disconnect, device number 71 18:48:11 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:11 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x0, 0x2, &(0x7f00000004c0)=@raw=[@map_fd], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:11 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:11 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:11 executing program 4: getresuid(&(0x7f00000001c0), 0x0, 0x0) 18:48:11 executing program 0: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/block/loop6', 0x0, 0x0) 18:48:11 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x18, 0x0, 0x1, 0x301, 0x0, 0x0, {}, [@CTA_NAT_DST={0x4}]}, 0x18}}, 0x0) 18:48:11 executing program 4: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/software', 0x0, 0x0) 18:48:11 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:11 executing program 0: syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x1000, &(0x7f0000002640)={{}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}) 18:48:11 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 497.522884][ T19] usb 4-1: new high-speed USB device number 72 using dummy_hcd 18:48:11 executing program 2: syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000200)={[{@fat=@nocase}, {@fat=@dmask}]}) [ 497.913500][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 497.922892][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 497.979878][ T19] usb 4-1: config 0 descriptor?? [ 498.016821][ T6879] FAT-fs (loop2): bogus number of reserved sectors [ 498.023827][ T6879] FAT-fs (loop2): Can't find a valid FAT filesystem [ 498.040139][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 499.322524][ T19] gspca_topro: reg_w err -71 [ 499.362395][ T19] gspca_topro: Sensor soi763a [ 499.373510][ T19] usb 4-1: USB disconnect, device number 72 18:48:13 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:13 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, 0x0) 18:48:13 executing program 4: r0 = syz_clone(0x200c00, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)="ae8d7e14c588acaa22656acff091786235b560e77428bb5ef06c2629ba7223876e4bf7f703d5d035ef685173be1b031950afea5cec5ca0cf5cbb1af5d29ad12f499855aec5c0b4da51d2594264ee312846408d08c8") ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000280)=r0) syz_clone(0x20000, &(0x7f00000002c0)="c2902229efbfdf60163a6528", 0xc, &(0x7f0000000300), &(0x7f0000000340), &(0x7f0000000380)="5c99fdd345238509a2b7886b217b72ab4aa2ee7ff68b20169f665e39e2efac4191b4dc9d985d235d598645ecd5d61c3b829933660f9d926aa45af027956927b27fd41eb6faff08bd9b8331") syz_open_procfs$namespace(r0, 0x0) 18:48:13 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 18:48:13 executing program 2: syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000020c0)={{}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {}, 0x2c, {[{@default_permissions}, {@blksize}, {@default_permissions}], [{@pcr}, {@obj_role={'obj_role', 0x3d, '\\'}}, {@context={'context', 0x3d, 'unconfined_u'}}]}}) 18:48:13 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 499.946406][ T6890] fuse: Bad value for 'fd' 18:48:14 executing program 0: r0 = syz_open_procfs$userns(0x0, &(0x7f00000010c0)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) 18:48:14 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 18:48:14 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0xc, &(0x7f0000000000), 0x4) 18:48:14 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x14}, 0x14}}, 0x0) syz_genetlink_get_family_id$team(&(0x7f0000000840), 0xffffffffffffffff) 18:48:14 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 500.432268][ T19] usb 4-1: new high-speed USB device number 73 using dummy_hcd 18:48:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x4}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8}]}, 0x24}}, 0x0) [ 500.747062][ T6907] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.5'. [ 500.813126][ T19] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 500.822478][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 500.872611][ T19] usb 4-1: config 0 descriptor?? [ 500.921618][ T19] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 502.192459][ T19] gspca_topro: reg_w err -71 [ 502.232417][ T19] gspca_topro: Sensor soi763a [ 502.253586][ T19] usb 4-1: USB disconnect, device number 73 18:48:16 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:16 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 18:48:16 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x2, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x17, 0x0, 0xa0, 0x0, @in6={0xa, 0x0, 0x0, @loopback}}]}, 0x38}}, 0x0) 18:48:16 executing program 0: timer_create(0x0, &(0x7f0000000140)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000180)) 18:48:16 executing program 2: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0) syz_mount_image$msdos(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuseblk(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}, {@blksize}]}}) 18:48:16 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 502.827244][ T6920] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.5'. 18:48:16 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040), 0x4) 18:48:17 executing program 2: mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={[{}, {@stats}]}) 18:48:17 executing program 0: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8904, &(0x7f00000001c0)) 18:48:17 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:17 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x19, 0x4, 0x0, 0x401}, 0x48) [ 503.295362][ T3614] usb 4-1: new high-speed USB device number 74 using dummy_hcd 18:48:17 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x12, 0x132c, 0x0, 0x664}, 0x48) [ 503.663840][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 503.673407][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 503.774826][ T3614] usb 4-1: config 0 descriptor?? [ 503.819541][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 505.122470][ T3614] gspca_topro: reg_w err -71 [ 505.162460][ T3614] gspca_topro: Sensor soi763a [ 505.180932][ T3614] usb 4-1: USB disconnect, device number 74 18:48:19 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:19 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xf, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x48) 18:48:19 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:19 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_buf(r0, 0x107, 0x6, &(0x7f0000000000)=""/4096, &(0x7f0000001000)=0x1000) 18:48:19 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:19 executing program 4: pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x7}, 0x0, &(0x7f0000000100), 0x0) [ 505.768972][ T6946] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.5'. 18:48:19 executing program 0: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x3, 0x0) r2 = socket(0x11, 0x800000003, 0x0) bind(r2, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r2, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4001000024000b0f00e400000000f10febca0746", @ANYRES32=r3, @ANYBLOB="00000000ffffffff000000f6090001006e6574656d00000010010200ca000000b41d84dd3bb3170b48d9d3c95b3c5dbb7ce4"], 0x140}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000580)) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, r5, 0x8cbdc66f99dfbbb}, 0x14}}, 0x0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x34, r5, 0x200, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfffffeff}, @BATADV_ATTR_VLANID={0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x20044000) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x14e24}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) recvmsg(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x20) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x8002a0) socket(0x9, 0x1, 0xfffffffe) 18:48:19 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:20 executing program 4: syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8d3e07", 0x10, 0x21, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "066395", 0x0, "86597f"}}}}}}}, 0x0) 18:48:20 executing program 2: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x2, &(0x7f00000001c0)) [ 506.193406][ T1745] usb 4-1: new high-speed USB device number 75 using dummy_hcd 18:48:20 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:20 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg(r0, &(0x7f00000048c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000003480)=[{0x10, 0x1, 0x1}], 0x10}, 0x0) 18:48:20 executing program 4: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8906, 0x0) 18:48:20 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) socket$netlink(0x10, 0x3, 0x4000000000000004) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) [ 506.562941][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 506.574698][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.639229][ T1745] usb 4-1: config 0 descriptor?? [ 506.689564][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 506.752759][ T6953] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.0'. [ 507.962621][ T1745] gspca_topro: reg_w err -71 [ 508.002415][ T1745] gspca_topro: Sensor soi763a [ 508.031650][ T1745] usb 4-1: USB disconnect, device number 75 18:48:22 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:22 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'wg1\x00', 0x20}) 18:48:22 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x2c}}, 0x0) 18:48:22 executing program 0: syz_emit_ethernet(0x7e, &(0x7f0000000100)={@link_local, @local, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "981aba", 0x44, 0x2f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}}}}}}}, 0x0) 18:48:22 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) socket$netlink(0x10, 0x3, 0x4000000000000004) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:22 executing program 2: syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8d3e07", 0x10, 0x2b, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "066395", 0x0, "86597f"}}}}}}}, 0x0) 18:48:22 executing program 0: socketpair(0x10, 0x2, 0x1f0, &(0x7f0000000000)) 18:48:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {0x5}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x2c}}, 0x0) 18:48:22 executing program 1: bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:23 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000280)=@security={'security\x00', 0xe, 0x4, 0x340, 0xffffffff, 0x0, 0x1f8, 0xf8, 0xffffffff, 0xffffffff, 0x320, 0x320, 0x320, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@loopback, @remote, [], [], '\x00', 'vlan0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE1={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @remote, [], [], 'netdevsim0\x00', 'ip6erspan0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xf8}}, {{@ipv6={@mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, [], [], 'veth1_to_batadv\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0) [ 509.122513][ T1745] usb 4-1: new high-speed USB device number 76 using dummy_hcd 18:48:23 executing program 0: syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f00000009c0), 0xffffffffffffffff) [ 509.502889][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 509.512411][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 509.589078][ T1745] usb 4-1: config 0 descriptor?? [ 509.671720][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 510.912469][ T1745] gspca_topro: reg_w err -71 [ 510.962379][ T1745] gspca_topro: Sensor soi763a [ 510.989410][ T1745] usb 4-1: USB disconnect, device number 76 18:48:25 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:25 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000200), r1) sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x0) 18:48:25 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:25 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) socket$netlink(0x10, 0x3, 0x4000000000000004) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17a5", 0x58}], 0x1) 18:48:25 executing program 2: syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8d3e07", 0x10, 0x6, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "066395", 0x0, "86597f"}}}}}}}, 0x0) 18:48:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {0x11}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x2c}}, 0x0) [ 511.594703][ T7008] block nbd4: not configured, cannot reconfigure 18:48:25 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {0x4}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x2c}}, 0x0) 18:48:25 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:25 executing program 2: socket(0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) unshare(0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x38, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {}, {0x10}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8}]}}]}, 0x38}}, 0x0) 18:48:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0xe, 0x2, 'veth1_to_bridge\x00'}]}]}, 0x2c}}, 0x0) [ 511.953336][ T3614] usb 4-1: new high-speed USB device number 77 using dummy_hcd 18:48:26 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x1c, 0x3, 0x1, 0x5, 0x0, 0x0, {}, [@CTA_ZONE={0x6}]}, 0x1c}}, 0x0) 18:48:26 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 512.313193][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 512.322661][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 512.404848][ T3614] usb 4-1: config 0 descriptor?? [ 512.459631][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 513.762549][ T3614] gspca_topro: reg_w err -71 [ 513.802644][ T3614] gspca_topro: Sensor soi763a [ 513.815681][ T3614] usb 4-1: USB disconnect, device number 77 18:48:28 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:28 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000200)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x43273, @empty}, 0x1c) 18:48:28 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000002c0)=@framed={{}, [@generic={0x4, 0x4}]}, &(0x7f0000000300)='syzkaller\x00', 0x6, 0x1000, &(0x7f00000005c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:28 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, 0x0, 0x0) 18:48:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000), &(0x7f0000000080)=0x3) 18:48:28 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:28 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_int(r0, 0x88, 0xa, 0x0, &(0x7f0000000080)) 18:48:28 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x0, 0x1}, 0x4) 18:48:28 executing program 2: open$dir(&(0x7f0000000040)='.\x00', 0x200, 0x0) 18:48:28 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 514.842443][ T1745] usb 4-1: new high-speed USB device number 78 using dummy_hcd 18:48:29 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) 18:48:29 executing program 0: syz_emit_ethernet(0xe, &(0x7f0000000080)={@broadcast, @empty, @val, {@ipv4}}, 0x0) [ 514.979077][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 514.985707][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 515.243662][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 515.253040][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 515.327013][ T1745] usb 4-1: config 0 descriptor?? [ 515.390134][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 516.662354][ T1745] gspca_topro: reg_w err -71 [ 516.702406][ T1745] gspca_topro: Sensor soi763a [ 516.719202][ T1745] usb 4-1: USB disconnect, device number 78 18:48:31 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:31 executing program 2: syz_emit_ethernet(0x8e, &(0x7f0000000240)={@broadcast, @broadcast, @val, {@ipv6}}, 0x0) 18:48:31 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:31 executing program 0: syz_emit_ethernet(0x20, 0x0, 0x0) 18:48:31 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, 0x0, 0x0) 18:48:31 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) faccessat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x6, 0x1200) 18:48:31 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x103) renameat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') 18:48:31 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:31 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) faccessat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x4, 0x200) 18:48:31 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f0000000080)='.\x00', 0x4, 0x1200) [ 517.762391][ T3614] usb 4-1: new high-speed USB device number 79 using dummy_hcd 18:48:31 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f0000000080)='.\x00', 0x1, 0x1200) 18:48:31 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f0000000100)='.\x00', 0x4, 0x1000) [ 518.142809][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 518.152324][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 518.244842][ T3614] usb 4-1: config 0 descriptor?? [ 518.294757][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 519.582374][ T3614] gspca_topro: reg_w err -71 [ 519.622314][ T3614] gspca_topro: Sensor soi763a [ 519.633911][ T3614] usb 4-1: USB disconnect, device number 79 18:48:34 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:34 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f0000000080)='.\x00', 0x1, 0x0) 18:48:34 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, 0x0, 0x0) 18:48:34 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, 0x0, 0x0) renameat(r1, &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00') r2 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f0000000180)=[{&(0x7f0000000340)="444a8f1821170b3fcb8de1f16c3db79f33578e3bfdfdd91ca4c3c0f5c8d7e093a25e9fdc4e73c92c45f4eef3a080cfb920a5527aff8962183a5f78dab3e118f981d4025ff9bf0baa8c37a1cd7651468d4659193eb9e7da2b0c1da9bc9b561cef22268afd7c885a68797fb3997649303347d357e28523bec452e55ed84cb8c4eff751dbdbbe3a187acd2d1c6a5a4caaf1ea99d6e99439a5c660884a8d9730ccc0ba49af15ace6c76682da6bdd7b9affcffd13d932503fe13283962ddeca75127948afaf9c983fa3a2b63c5d00618e0f7077ca2f", 0xd3, 0x237}], 0x880000, &(0x7f00000005c0)=ANY=[@ANYBLOB="6769643d24f09b20da8a430f2bb2b3329097fc55c4083bbbb9d73b9ee4d5777556fc8eb1caf0df98eee5f06364f1c8344a96c9cd96607a80108eac1b0b8899459849794a9925d57de74d08beeaedca810a8794c3001aa99f0d96ce3385fb87beb7b43a85725d87eed2d05c8788d7e05ecd568538fa8b6b3405e048a016d11557655a9bde9bdf70bfb0dee20185bdffb2d7e26bbc854f56316f47a9e58327cf8cc34b7d930a00"/181, @ANYRESHEX, @ANYBLOB=',nr_blocks=%761e92,uid=', @ANYRESHEX=0xee01, @ANYBLOB=',context=staff_u,appraise,fsuuid=b9d9a\x00S0-a11f-dc55-ec\x00e-e2aa639a,\x00']) mq_open(&(0x7f0000000200)='tmpfs\x00', 0x40, 0x20, &(0x7f0000000440)={0x4, 0x3, 0x16, 0x9}) faccessat(r2, &(0x7f00000001c0)='./file0\x00', 0x30) statx(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6000, 0x0, &(0x7f0000000240)) getpeername$unix(r0, &(0x7f0000000480), &(0x7f0000000500)=0x6e) 18:48:34 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) faccessat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x1200) 18:48:34 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) [ 520.257279][ T7091] loop2: detected capacity change from 0 to 2 18:48:34 executing program 0: ioctl$KDSKBMODE(0xffffffffffffffff, 0x4b45, &(0x7f0000000000)=0x1) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000040)) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, 0x0, 0x0) faccessat(r1, &(0x7f00000000c0)='./file0\x00', 0x1) r2 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x8) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x0) semget(0x3, 0x2, 0x684) pipe(&(0x7f0000000080)) 18:48:34 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:34 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) faccessat2(r0, &(0x7f0000000100)='.\x00', 0x4, 0x300) 18:48:34 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) faccessat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x5, 0x1100) [ 520.702929][ T3614] usb 4-1: new high-speed USB device number 80 using dummy_hcd 18:48:34 executing program 0: socketpair(0x10, 0x2, 0x7, &(0x7f0000000080)) 18:48:35 executing program 4: bpf$BPF_BTF_LOAD(0x1d, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 18:48:35 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:35 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x5451, 0x0) [ 521.083985][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 521.093314][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.193457][ T3614] usb 4-1: config 0 descriptor?? 18:48:35 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100), 0x0) [ 521.252959][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 18:48:35 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1a3442, 0x0) close(r0) 18:48:35 executing program 2: openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x111841, 0x0) [ 522.562704][ T3614] gspca_topro: reg_w err -71 [ 522.605167][ T3614] gspca_topro: Sensor soi763a [ 522.629114][ T3614] usb 4-1: USB disconnect, device number 80 18:48:37 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:37 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:37 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x6000000, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/159, 0x1a, 0x9f, 0x1}, 0x20) 18:48:37 executing program 4: socketpair(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000640)="91", 0x1}], 0x1, &(0x7f0000001c40)=[@cred], 0x20}, 0x0) 18:48:37 executing program 2: socketpair(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000640)="91dc0a02e55127f04153bc6648e9440c4bcb0c3f1020452aaf573a62fb72f9b6a61957cbb5cf675affd122b11e202cbc17f58cd6daa5e0f3b9e66e8a2128555048aa41db", 0x44}, {&(0x7f00000006c0)="9f59e24c9a6ce53ad98b306e6d", 0xd}, {&(0x7f0000000700)="3595354f38f3d114bf47695e4fb5cbcb1e0142d3bb2d6437d8e44084cfdd97a936aeb51a2aac34540cf1c8f5022076f681f05878c2b9302168ed9daf42703975f0de05d0af414212040a41060d52321b853731645e162e23787517bfdcc2e320b861ed1e6d6141af6e88ff501c77e7a445362129e3f6d1e325d0eb81ef18f167ba986775bb14747162977785b89fe2986d7da68ae75e01ca3d622a98c23b52fa526db68684618df8c5a3ca58138e2d44a9d4fc0fcc85", 0xb6}, {&(0x7f00000007c0)="664d2e89cac59b56c3e19f6f15e5874c41071ade6d6860e10f6d07b9a53d35dc30c2714ebdf5e39eedffa81efbff522ac15e5ec9aed2f56ba927afce7c1f98e3", 0x40}, {&(0x7f0000000840)="2a90bbfd1f4bd07e74e64bafb3b53dfdef856aea1d79b470db19c0dfafcf2db586e4124352e4f1aece5d949b5bc3a80c04e0495b32e45ad233edfc833faea8f8ca51bbb5eea822361d5466bfdb5652e5a68e5bfeaec025ee85115b2ab88db30299e38cff66252640d1e94c0882e2fd6b9843a8cf477cc8ef96e9d94cb21c663073a307f3e17b481225e253b9afc2ee00f28dc528b771718b83d2b31a382929aa6abfa361ea7c29d5dfb5998360c215c737488e80718c6e285768f1eb388823f9c4aa9d37f0fa00cce9232fd160ac6a62204754600a0d5af8bc13553d83f33db96fc55653f4e89d330d615723180e3fd67fa879f72dcb6d2e6e87b13ce46784942ba41925f4b8cd6b34642ac0272e80836f1ad20fba8694bac2813216bcf3c65d421a35c1248075266a91bfd9377b84fc1ce0e4e466030212da8b758a28329d4decf89930c9bd0682278335a7c41a98d60569aa9e0288150771f7df962e4834129bdc23904ee7b4f6034559c58808437ecdb8e4ced321528a78a9ce8d8d52bf9414cef15de97128fc43a3dba242b43cdd26f593606ba33478338dd0f168f2332775e26bcbf966b2b39d87dcf521457b5cc6f0f7d4c6499357f8572bb0423c85f8e7efa97c9edeedafd8c5f1f13c55ff0b9d0ae0bf60d4f0d2b00ff41a534fc45cc9dbe0bcd5c621ce691faaccc33c931f52dd43fddddc469efd4ac382bbdb4991d0d115307db12dfa27342b7b94f8f5b1d8d5781635c03d4f3677ca78eeb0f9451ec6ddb4ae299b79420fc239319a612ebd2329a3c9dd25b25b47c1814b86387adfbbcde48c84ff0264054cd4e8f2e0704357a2c1df983a261b0b9f6142f663c267c167caead2078aeebca6934c6b45249805c6410a02588f10c3250994b5bdc963e0fb37b2c4d021e80d452950355ec4755e29244243445be940271a50eaac062ee2aa81098dd952cc994cab48bbd7d9b5d0e11a8b1f5538c5f9b19483d447153f52ef5dfaec896440455fae923fa81d3c90bef0f866ce8499b112a30da28573aea5fdc23ba8e616b504c8a4dd414fb7e98e04972d4652a4a01d3ae2f6ede6fddff63e2d7a06b1255496cd2444d1a281d95f5186bcecda856319206403b7f1ba5c760c6910368d277265482a245912198d7326e8c20921588c974c452c6f54d0f414761e8c66103314b36bd9908a5cb82259b3faaffab36e8a1641313c6c870c155d7c967aad036e8a46ccc690c379d2dc39d022507e8dca0b20d3638712c9883ecec7ebc17f28c320d09d5d8418b2daa947c4613bb5d6aaac5d976e5cee824abc0f8ef2e149c56bde1fe8ec35e8c0b270d981ac0a1e954b49ac307bf47dce73b6d86130013f16597d1ebe3a9dc65314cd2321c37f4c77020e0ed2ec0052d4bdeb2eeea86221631228755354574980ac69410568656f201aa385f531961068c59a555afdfee0faef2c7d125b277249adedd7cb05760d5eaa7d80471060c9ca8a7183dbef65aa9bb24b540a5cba03c38fc43d366c3d01083d3667809c7ae9b5dbf56e2ffbaee3d78b7836640f82c08ea7ae381254fbd3050e7dd83526b5da1c2d89388931acddf5daa3b692d529321e5fe28d73b157b8fc39e555bebb7789089899baee7f4bebf8cfd9cd5904fee84187ac687190c9e732840ae252e8e3bd929195772b50e63ab83baff9327f603d5ec6a15fd06d8b1b6fe1777e812ae298ab2773d8a36b7f12a88307ef3f7de63aa166797c196b3259cf261da22752f05a8fb7f4c85ad4874f6d5f0f533823225e164a1b155231eba67d4d524f8fa43f0450ae8f14c30ef63ec2edb3f0313dec6dea1d967c6fe61d5418bfe8de1295306f8788ffdd34c5f100729eefdd2ed95009e7071a2f73d456332f35635df817ff3f777134c2ff71152417bd42fe0b5eddcaa19f6af9055d42008878a8b2195bfc68bd6e9dec658c5badf859a54bfc79f8575bf68cdabf451d866258f3c31a968d1bec7bd6eef784e8e4df6f9f2e7fe31489a3960bbfa2b0886d4484672613867352b9369b2287fdf7d91a473775bce2733f75b5ea4972db4b99a94352f12b6eece74a73231ef54a1a8e89fa27444511ed5c6b886143faf3e90cdcb4a3da53c78fb0c2e0344068dbeb5b1df0f6ba00ac6ba23539ffb92a958a5efa1abca7c19511a5a8d359a908337ab1125b6c3b3bc58cffb6c08810c0ce2d8b890b9ae46b26babae1a0f6f7ac712633ad96dea718af5c838354ac20a1b411690380adc2ca2e2c25c6d23509d7d6f5ba4557aab7b2506180ece0b33a2b64e1363ebb42372fa16f468f3bf4c5f7033d3cf0b5f5bb0e40cd4616ab4569f2dc99b95776d9ec5c5d43c2e1cc7968ca25f0b938aeadfe20d49a51aab1b90d5b3486f02216d620cafaccc96598043bbb519360f8bcbbcb35954602fa676ead7782d0fce897206c9c71bc906cffed737a1eb940744cf9e4c654a00b472c0196d04d0217c86f4fe5ffbc9bf6f504424fc245dfe1dcb581fddf51afd1376e48a6d131c21edf27d248a3e36afd34cbb02b0a11d0429aaa13ee2622d2706b4a322916934fea928adaed651e5e382729992b7b40e0d50e91fbda6152605c215a1d1063dfcbf559ca3906f90909eb3b781d07f528047fc813d3e6e5ec8d426fe1e8883ac37c720798a73a5bf154b22e7bf4774821a3a324f1ab74751c0f596325b864ab145756fcd99308513eaf55ce15897a2ee4dc0b58475408c6ac672ac9fcfced3c21581fee9c0ba516201411c2df73b87e71589ead6415e17ea7c46e68cf920a99fe511cd9a16fd42632fe04719854d439d22fc9568de31de594c91886f9daadb997a41c986710147a54708c861e1af81bb831e286689dcfc913463e8d01c4e4ff4bb3246643db958452a46808d391cfa4c90bdc65169d8f2b1723e0b31e14220655aa7986ec9b3e5d120a1ce48e6828743122d9e4b9ce20ff537bcac0896d931f644dbd", 0x836}], 0x5}, 0x0) 18:48:37 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100), 0x0) 18:48:37 executing program 0: mknod(&(0x7f0000000300)='./file0/file0\x00', 0x0, 0x0) 18:48:37 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000900)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) setsockopt$sock_linger(r1, 0xffff, 0x80, 0x0, 0x0) 18:48:37 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:37 executing program 2: pipe2(&(0x7f0000000b00), 0x1400004) 18:48:37 executing program 0: shmctl$SHM_UNLOCK(0xffffffffffffffff, 0x4) [ 523.622749][ T1745] usb 4-1: new high-speed USB device number 81 using dummy_hcd 18:48:37 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, 0x0, 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 523.983186][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 523.992938][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 524.058660][ T1745] usb 4-1: config 0 descriptor?? [ 524.110615][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 525.412323][ T1745] gspca_topro: reg_w err -71 [ 525.452381][ T1745] gspca_topro: Sensor soi763a [ 525.489124][ T1745] usb 4-1: USB disconnect, device number 81 18:48:40 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:40 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x1, 0x84) r2 = dup2(r0, r1) setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x3, &(0x7f0000000340)={0x0, 0x400, 0xb55, 0x7}, 0x8) 18:48:40 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x1, 0x84) r2 = dup2(r0, r1) setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x3, &(0x7f0000000340)={0x1f, 0x400, 0xb55}, 0x8) 18:48:40 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0x101, &(0x7f0000000600), &(0x7f00000006c0)=0x98) 18:48:40 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100), 0x0) 18:48:40 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, 0x0, 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:40 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) fcntl$dupfd(r0, 0x0, r0) 18:48:40 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, 0x0, 0x4, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:40 executing program 2: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f00000001c0), &(0x7f0000000280)=0x98) 18:48:40 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = dup(r0) sendmsg$inet_sctp(r1, &(0x7f00000000c0)={&(0x7f0000000000)=@in={0x10, 0x2}, 0x10, 0x0}, 0x20081) [ 526.434315][ T1745] usb 4-1: new high-speed USB device number 82 using dummy_hcd 18:48:40 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:40 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000380)={&(0x7f0000000000)=@in={0x10, 0x2}, 0x10, 0x0}, 0x0) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x14) [ 526.803274][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 526.812751][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 526.889851][ T1745] usb 4-1: config 0 descriptor?? [ 526.959054][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 528.242440][ T1745] gspca_topro: reg_w err -71 [ 528.282361][ T1745] gspca_topro: Sensor soi763a [ 528.304051][ T1745] usb 4-1: USB disconnect, device number 82 18:48:42 executing program 4: select(0x0, 0x0, 0x0, &(0x7f0000000340), &(0x7f0000000380)={0x0, 0x6}) 18:48:42 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup(r0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x22, &(0x7f0000000740), &(0x7f0000000780)=0xc) 18:48:42 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{0x0}], 0x1) 18:48:42 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@rights], 0x28}, 0x0) 18:48:42 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:42 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) 18:48:43 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 18:48:43 executing program 4: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup(r0) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x901, &(0x7f0000000480), 0x8) 18:48:43 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:43 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_mreq(r0, 0x0, 0x22, 0x0, &(0x7f00000000c0)) [ 529.282382][ T3614] usb 4-1: new high-speed USB device number 83 using dummy_hcd 18:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000080)="03d6046990ee8eabaadaa1941906b413872e1ec1d3752e4a6c85affd64ce81c44caabcf6baa266ad8d", 0x29) 18:48:43 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 529.654082][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 529.663664][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:48:43 executing program 0: r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) add_key$fscrypt_v1(&(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0)={0x0, "119fc806ab212051e2f883e5dc76d61ae793b5a1c7272c0b3b094f817305789cd7dedd173907a011cbf5abaa162e498ce5c7477188727a3b74809b157cd29c5f"}, 0x48, r0) [ 529.727210][ T3614] usb 4-1: config 0 descriptor?? 18:48:43 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0) fsetxattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00', &(0x7f0000000040)='^\x00', 0x2, 0x0) [ 529.786975][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 18:48:43 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{0x0}], 0x1) 18:48:44 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x6, 0x13, &(0x7f0000000280)=ANY=[], 0x90) 18:48:44 executing program 4: socket$inet(0x2, 0xa, 0x81) [ 531.092737][ T3614] gspca_topro: reg_w err -71 [ 531.132247][ T3614] gspca_topro: Sensor soi763a [ 531.156553][ T3614] usb 4-1: USB disconnect, device number 83 18:48:45 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:45 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) recvfrom$inet(r0, 0x0, 0x0, 0x12003, 0x0, 0x0) 18:48:45 executing program 2: r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x9, r0, r1) 18:48:45 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x8, 0x0, 0x0, 0x2}}, &(0x7f0000000080)=""/201, 0x1a, 0xc9, 0x1}, 0x20) 18:48:45 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{0x0}], 0x1) 18:48:45 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) 18:48:45 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000100)={{0x2, 0x0, @remote}, {0x0, @local}, 0x0, {0x2, 0x0, @empty}, 'team_slave_1\x00'}) 18:48:45 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x15, &(0x7f0000000280)={0x0, {{0x2, 0x0, @multicast2}}}, 0x90) 18:48:45 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000180)={'IDLETIMER\x00'}, &(0x7f00000001c0)=0x1e) 18:48:46 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:48:46 executing program 2: r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000000)={0x0, 0x49c7, 0x4, {0x1, @sliced={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81]}}}) [ 532.212766][ T1745] usb 4-1: new high-speed USB device number 84 using dummy_hcd 18:48:46 executing program 0: socketpair(0x2, 0xa, 0x100, &(0x7f0000000140)) 18:48:46 executing program 4: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000300)={0x0, 0x3, 0x4, {0x2, @raw_data="6911a7edb041a43f31573cd808d6bc50b5ef986e2c1176b8d4778b7414e087ec30260c9b22af1e5fbdd15272cf0a5784cb2ba2405ff8d4492103ef96a8cea78238b2ae6a2639f6fefa1066633cdcaecd06dac0b4147338dda8361ec353e89ba310c1e65f225f120b5b01b4392baa5086046a43cd6c855681359a5054a681720796d0eecb2037f9c91f59eded1a748c46f85bc20a142808bfc8d1e37eeeccea058e8b8ffe54435a423092fde225f692ed848abeeffb4918b545d43b7d0590cce7289812b706bfe231"}}) [ 532.595095][ T1745] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 532.604617][ T1745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 18:48:46 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f00000000c0)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, r1}}, 0x38) [ 532.676164][ T1745] usb 4-1: config 0 descriptor?? 18:48:46 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)}], 0x1) [ 532.743533][ T1745] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 18:48:46 executing program 2: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000040)={'nat\x00'}, &(0x7f00000000c0)=0x54) 18:48:46 executing program 0: r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_GET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, r0, 0x1}, 0x14}}, 0x0) [ 534.023684][ T1745] gspca_topro: reg_w err -71 [ 534.062307][ T1745] gspca_topro: Sensor soi763a [ 534.073128][ T1745] usb 4-1: USB disconnect, device number 84 18:48:48 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) 18:48:48 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) recvfrom$l2tp6(r0, 0x0, 0x0, 0x40, 0x0, 0x0) 18:48:48 executing program 0: unshare(0x400) syz_init_net_socket$x25(0x9, 0x5, 0x0) r0 = socket$inet6(0xa, 0x3, 0x28) ioctl$sock_x25_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@null, 0x5, 'batadv0\x00'}) 18:48:48 executing program 1: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x0, 0x2, 0x0, "4cc13b08980dd354aa7fdcb02ccfba9a50c9276a1521dbac1ce0a3091f8f6e10"}) 18:48:48 executing program 2: r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0xc6, 0x2) ioctl$vim2m_VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000140)) 18:48:48 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)}], 0x1) 18:48:48 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, r1, 0x1}, 0x14}}, 0x0) 18:48:48 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@gettclass={0x24, 0x2a, 0x8fee52a74e86270f}, 0x24}}, 0x0) 18:48:48 executing program 1: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x541b, 0x0) 18:48:48 executing program 0: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) mount$cgroup(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={[{@subsystem='hugetlb'}]}) [ 535.133141][ T3614] usb 4-1: new high-speed USB device number 85 using dummy_hcd 18:48:49 executing program 2: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000800)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x810}}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0x8}}}}}}}]}}, &(0x7f0000000980)={0xa, &(0x7f0000000500)={0xa, 0x6, 0x0, 0x0, 0x0, 0x2}, 0x3f, &(0x7f0000000880)={0x5, 0xf, 0x3f, 0x6, [@ss_cap={0xa}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "89cf677db7c154b3e95405bbd499c168"}, @wireless={0xb}, @generic={0x7, 0x10, 0x2, "bd12dcfa"}, @ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x7}]}}) 18:48:49 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x127e, &(0x7f00000000c0)) [ 535.513541][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 535.523128][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 535.588989][ T3614] usb 4-1: config 0 descriptor?? [ 535.640425][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 535.753043][ T1745] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 536.002472][ T1745] usb 3-1: Using ep0 maxpacket: 32 [ 536.242530][ T1745] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 536.253814][ T1745] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 536.266338][ T1745] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 2064, setting to 1024 [ 536.278132][ T1745] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 536.288407][ T1745] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 536.298280][ T1745] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 536.482701][ T1745] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 536.492349][ T1745] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 536.500503][ T1745] usb 3-1: Product: syz [ 536.504967][ T1745] usb 3-1: Manufacturer: syz [ 536.509703][ T1745] usb 3-1: SerialNumber: syz [ 536.792505][ T1745] cdc_ncm 3-1:1.0: bind() failure [ 536.806411][ T1745] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 536.813883][ T1745] cdc_ncm 3-1:1.1: bind() failure [ 536.828235][ T1745] usb 3-1: USB disconnect, device number 4 [ 536.847093][ T6553] udevd[6553]: setting owner of /dev/bus/usb/003/004 to uid=0, gid=0 failed: No such file or directory [ 536.942314][ T3614] gspca_topro: reg_w err -71 [ 536.984511][ T3614] gspca_topro: Sensor soi763a [ 536.994431][ T3614] usb 4-1: USB disconnect, device number 85 18:48:51 executing program 2: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f0000000900)={[{@umask}, {@errors_continue}, {@fmask}, {@dmask}, {@disable_sparse_yes}, {@show_sys_files_yes}, {@disable_sparse_yes}, {}, {@uid={'uid', 0x3d, 0xee01}}, {@errors_remount}]}) 18:48:51 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80004507, 0x0) 18:48:51 executing program 0: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a9, 0x0) 18:48:51 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)}], 0x1) 18:48:51 executing program 4: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd', @ANYBLOB=',wfdno=', @ANYRESHEX]) 18:48:51 executing program 3: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="120100005a1e5940a2060300de05000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) [ 537.584739][ T7302] ntfs: (device loop2): parse_options(): Invalid errors option argument: remount- [ 537.588789][ T7303] 9pnet_fd: Insufficient options for proto=fd 18:48:51 executing program 0: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) setxattr$security_ima(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540), &(0x7f0000000580)=@v2={0x0, 0x0, 0x0, 0x0, 0x20, "d89a38547767e1cac0be7d2aded05a44fa10b2109492870560b49161f77630d2"}, 0x29, 0x0) 18:48:51 executing program 1: mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x103) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000100), 0x24, 0x0) 18:48:51 executing program 2: mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x103) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000100)={{}, {}, [], {}, [], {}, {0x8}}, 0x24, 0x0) 18:48:51 executing program 4: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd', @ANYBLOB=',wfdno=', @ANYRESHEX]) [ 538.043095][ T3614] usb 4-1: new high-speed USB device number 86 using dummy_hcd 18:48:52 executing program 1: mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x103) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='name=security.']) 18:48:52 executing program 0: syz_mount_image$ntfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[]) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000180)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x30]}}}}]}) [ 538.128200][ T7314] 9pnet_fd: Insufficient options for proto=fd 18:48:52 executing program 4: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd', @ANYBLOB=',wfdno=', @ANYRESHEX]) 18:48:52 executing program 2: mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x103) setxattr$system_posix_acl(&(0x7f0000000200)='./file0\x00', &(0x7f0000000340)='system.posix_acl_default\x00', &(0x7f0000000380), 0x24, 0x0) [ 538.414504][ T3614] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice= 5.de [ 538.424255][ T3614] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.476556][ T7318] cgroup: No subsys list or none specified [ 538.500091][ T3614] usb 4-1: config 0 descriptor?? 18:48:52 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c0094000589", 0x2c}], 0x1) [ 538.550317][ T3614] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 538.590202][ T7322] 9pnet_fd: Insufficient options for proto=fd 18:48:52 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0xc0481273, 0x0) 18:48:52 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x8000451b, 0x0) [ 539.852317][ T3614] gspca_topro: reg_w err -71 [ 539.892428][ T3614] gspca_topro: Sensor soi763a [ 539.904771][ T3614] usb 4-1: USB disconnect, device number 86 18:48:54 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c0094000589", 0x2c}], 0x1) 18:48:54 executing program 2: execve(&(0x7f0000000000)='.\x00', 0x0, 0x0) 18:48:54 executing program 4: mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd', @ANYBLOB=',wfdno=', @ANYRESHEX]) 18:48:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)={0x24, r1, 0x1, 0x0, 0x0, {}, [@GTPA_VERSION={0x8}, @GTPA_LINK={0x8}]}, 0x24}}, 0x0) 18:48:54 executing program 1: r0 = socket$inet6(0x18, 0x1, 0x0) sendmsg(r0, &(0x7f0000002c80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002a80)=[{0xe8, 0x0, 0x0, "9eca9b07aa40c3a03a212db0e4937b9ab72bee724df1826c7ffd38d98057979b8c560ff741d6f4c54a0c0515402fc3daadbef9a33ae9a792649d5a0438a754797b8ab0602e833ffc394def5691b1651bec651fa67a83da6296f3dcfc3df21b0478431d0a48cee601706c937bc3864f5704538ecb7961e1574fc1828447b107c01c73bdc17f8d260fc28f38054dd75cc41409aa386c2b30307516b5de34246bc27c1133d74de797e198e2907e6d79912e6801da36363cdefe3ba5b1f3667171948eb51c5084404b3b63003f53e37d518e87"}], 0xe8}, 0x0) [ 540.468293][ T7335] 9pnet_fd: Insufficient options for proto=fd 18:48:54 executing program 1: r0 = socket(0x18, 0x0, 0x2) syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r0) 18:48:54 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x401070cd, 0x0) 18:48:54 executing program 3: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7cb, 0x0) 18:48:54 executing program 2: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000800)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x810}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x8}}}}}}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x3f, &(0x7f0000000880)={0x5, 0xf, 0x3f, 0x6, [@ss_cap={0xa}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "89cf677db7c154b3e95405bbd499c168"}, @wireless={0xb}, @generic={0x7, 0x10, 0x2, "bd12dcfa"}, @ptm_cap={0x3}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x0, 0xf}]}}) 18:48:54 executing program 4: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x10, 0x0) 18:48:55 executing program 3: bpf$MAP_CREATE(0x16, &(0x7f0000000180), 0x48) 18:48:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) [ 541.282778][ T3546] usb 3-1: new high-speed USB device number 5 using dummy_hcd 18:48:55 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c0094000589", 0x2c}], 0x1) 18:48:55 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x125e, &(0x7f00000000c0)) 18:48:55 executing program 0: r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) ioctl$NBD_SET_SIZE(r0, 0x2, 0x20001100) 18:48:55 executing program 3: syz_mount_image$ntfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000780)={[{@umask}, {@errors_continue}, {@gid}, {@case_sensitive_no}, {@disable_sparse_yes}, {@show_sys_files_yes}, {@disable_sparse_yes}, {}, {@uid={'uid', 0x3d, 0xee01}}, {@mft_zone_multiplier={'mft_zone_multiplier', 0x3d, 0x3}}]}) 18:48:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) [ 541.522295][ T3546] usb 3-1: Using ep0 maxpacket: 32 18:48:55 executing program 4: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000200)={'wlan0\x00', 0xdace}) 18:48:55 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x1) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000000c0)) [ 541.669053][ T7362] ntfs: (device loop3): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 541.680433][ T7362] ntfs: (device loop3): ntfs_fill_super(): Unable to determine device size. [ 541.723175][ T3546] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 541.734373][ T3546] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 541.744464][ T3546] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 2064, setting to 1024 [ 541.755790][ T3546] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 541.766065][ T3546] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024 18:48:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) [ 541.969123][ T7370] wlan0: mtu greater than device maximum [ 542.110862][ T3546] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 542.120369][ T3546] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 542.129108][ T3546] usb 3-1: Product: syz [ 542.133605][ T3546] usb 3-1: Manufacturer: syz [ 542.138338][ T3546] usb 3-1: SerialNumber: syz [ 542.562823][ T3546] cdc_ncm 3-1:1.0: bind() failure [ 542.577404][ T3546] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 542.584605][ T3546] cdc_ncm 3-1:1.1: bind() failure [ 542.630751][ T3546] usb 3-1: USB disconnect, device number 5 18:48:57 executing program 2: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000800)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x3ff}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x810}}}}}}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x3f, &(0x7f0000000880)={0x5, 0xf, 0x3f, 0x6, [@ss_cap={0xa}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "89cf677db7c154b3e95405bbd499c168"}, @wireless={0xb, 0x10, 0x1, 0x4}, @generic={0x7, 0x10, 0x2, "bd12dcfa"}, @ptm_cap={0x3}, @ext_cap={0x7}]}}) 18:48:57 executing program 0: bpf$MAP_CREATE(0x1d, &(0x7f0000000180), 0x48) 18:48:57 executing program 3: syz_usb_connect$hid(0x3, 0x3f, &(0x7f0000002180)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x5ac, 0x218, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x3, {0x9}, {{}, [{}]}}}]}}]}}, &(0x7f0000002700)={0x0, 0x0, 0x45, &(0x7f0000002200)={0x5, 0xf, 0x45, 0x4, [@ss_container_id={0x14, 0x10, 0x4, 0x0, "c3f4c4d7dea93f0ce1df9c647e1f318a"}, @generic={0x18, 0x10, 0xa, "75625b57a6c09b6d2b3fa11bc52b4f7c74da8eea05"}, @ss_cap={0xa}, @generic={0xa, 0x10, 0x3, "23b7f233629956"}]}}) pipe2$watch_queue(0x0, 0x80) 18:48:57 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x80081280, &(0x7f00000000c0)) 18:48:57 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) 18:48:57 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080", 0x42}], 0x1) 18:48:57 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1275, 0x0) 18:48:57 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000003800), 0x2, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, 0x0) 18:48:57 executing program 1: ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) [ 543.403524][ T1745] usb 4-1: new high-speed USB device number 87 using dummy_hcd [ 543.582663][ T3546] usb 3-1: new high-speed USB device number 6 using dummy_hcd 18:48:57 executing program 4: ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) pipe2$watch_queue(0x0, 0x80) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000003800), 0x2, 0x0) 18:48:57 executing program 0: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) [ 543.654660][ T1745] usb 4-1: Using ep0 maxpacket: 32 18:48:57 executing program 1: ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) [ 543.822780][ T3546] usb 3-1: Using ep0 maxpacket: 32 [ 543.856415][ T1745] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 544.023334][ T3546] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 544.034869][ T3546] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 2064, setting to 1024 [ 544.046356][ T3546] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 544.049758][ T1745] usb 4-1: New USB device found, idVendor=05ac, idProduct=0218, bcdDevice= 0.40 [ 544.056616][ T3546] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 544.056748][ T3546] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0 [ 544.066313][ T1745] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.094392][ T1745] usb 4-1: Product: syz [ 544.098687][ T1745] usb 4-1: Manufacturer: syz [ 544.103542][ T1745] usb 4-1: SerialNumber: syz [ 544.422625][ T3546] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 544.431960][ T3546] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.440428][ T3546] usb 3-1: Product: syz [ 544.444847][ T3546] usb 3-1: Manufacturer: syz [ 544.449590][ T3546] usb 3-1: SerialNumber: syz [ 544.609703][ T1745] usbhid 4-1:1.0: couldn't find an input interrupt endpoint [ 544.620372][ T1745] usb 4-1: USB disconnect, device number 87 [ 544.742648][ T3546] cdc_ncm 3-1:1.0: bind() failure [ 544.756960][ T3546] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 544.766210][ T3546] cdc_ncm 3-1:1.1: bind() failure [ 544.784054][ T3546] usb 3-1: USB disconnect, device number 6 18:48:59 executing program 1: ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) 18:48:59 executing program 4: unshare(0x400) syz_init_net_socket$x25(0x9, 0x5, 0x0) unshare(0x40000000) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4044}, 0x20000000) 18:48:59 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000140)={'vxcan1\x00', 0x0}) sendmmsg$inet6(r0, &(0x7f0000002000)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=[@pktinfo={{0x24, 0x29, 0x32, {@remote, r1}}}], 0x28}}], 0x1, 0x0) 18:48:59 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080", 0x42}], 0x1) 18:48:59 executing program 0: pipe2$watch_queue(&(0x7f00000024c0), 0x80) 18:48:59 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000006bc0), 0x0, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, 0x0) 18:48:59 executing program 0: openat$rtc(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x101001, 0x0) 18:48:59 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) 18:48:59 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000024c0)={0xffffffffffffffff}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) 18:48:59 executing program 4: pipe2$watch_queue(&(0x7f00000024c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, 0x0) 18:48:59 executing program 2: statx(0xffffffffffffffff, &(0x7f0000001000)='./file0\x00', 0x1000, 0x0, 0x0) 18:48:59 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) 18:49:00 executing program 0: timer_create(0x0, &(0x7f0000001c00)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000001c40)) 18:49:00 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x0, 0x1, &(0x7f00000005c0)=@raw=[@generic], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:49:00 executing program 4: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f00000009c0)=[{&(0x7f00000008c0)='2', 0x1}, {&(0x7f0000000900)="84", 0x1}], 0x0, 0x0) 18:49:00 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080", 0x42}], 0x1) 18:49:00 executing program 2: mq_open(&(0x7f0000007040)=',\x00', 0x0, 0x0, &(0x7f0000007080)) 18:49:00 executing program 1: r0 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, &(0x7f00000000c0)) 18:49:00 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:00 executing program 3: syz_mount_image$gfs2(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000001680), 0x0, &(0x7f0000001780)={[{@locktable={'locktable', 0x3d, '@\x9f&&)#T.'}}, {@lockproto_dlm}, {@acl}]}) 18:49:00 executing program 4: syz_usb_connect$uac1(0x0, 0x9f, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902930003010000000904000000010100000a24010000000201020d240700000000202d87fcacb40724080000000008240800000000b9090401000001020000090401010101020000090501090000000000072501000000000904020000010200000904020101010200000b2402010900000166f651072401000003000905820910"], 0x0) 18:49:00 executing program 2: r0 = io_uring_setup(0x2393, &(0x7f00000003c0)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000880)=""/255, 0xff}], 0x1) 18:49:00 executing program 1: syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) [ 546.868379][ T7442] gfs2: can't find protocol dlm 18:49:01 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:01 executing program 3: syz_mount_image$gfs2(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000001680), 0x0, &(0x7f0000001780)={[{@locktable={'locktable', 0x3d, '@\x9f&&)#T.'}}, {@lockproto_dlm}, {@acl}]}) [ 547.162519][ T3546] usb 5-1: new high-speed USB device number 10 using dummy_hcd 18:49:01 executing program 2: syz_emit_ethernet(0x1393, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd65e2c46b135d748000000000000b000000000000000000000000ff"], 0x0) 18:49:01 executing program 1: syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) [ 547.402436][ T3546] usb 5-1: Using ep0 maxpacket: 16 [ 547.473191][ T7452] gfs2: can't find protocol dlm [ 547.523107][ T3546] usb 5-1: config index 0 descriptor too short (expected 147, got 141) [ 547.531591][ T3546] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 547.542076][ T3546] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 547.553160][ T3546] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 547.563164][ T3546] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 547.574333][ T3546] usb 5-1: config 1 interface 1 has no altsetting 0 18:49:01 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd0000001000010000", 0x4d}], 0x1) 18:49:01 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:01 executing program 2: r0 = io_uring_setup(0x2393, &(0x7f00000003c0)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000880)=""/255, 0xff}, {&(0x7f0000000980)=""/114, 0x72}], 0x2) 18:49:01 executing program 1: syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(0xffffffffffffffff, 0x1265, &(0x7f00000000c0)) 18:49:01 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00989837f082138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f00000d000000140012800a00010076786c616e0000000400028008000a0080547a"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x900) [ 547.963684][ T3546] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 547.973135][ T3546] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 547.981292][ T3546] usb 5-1: Product: syz [ 547.985918][ T3546] usb 5-1: Manufacturer: syz [ 547.990682][ T3546] usb 5-1: SerialNumber: syz [ 548.287452][ T7466] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 548.296528][ T7466] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 548.305735][ T7466] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 548.314758][ T7466] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 548.403036][ T3546] usb 5-1: 2:1 : no or invalid class specific endpoint descriptor [ 548.583264][ T3546] usb 5-1: USB disconnect, device number 10 [ 548.658935][ T7466] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 548.668465][ T7466] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 548.677889][ T7466] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 548.687382][ T7466] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 548.737400][ T7468] udevd[7468]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory 18:49:03 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x28) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x37, &(0x7f0000000080)={{{@in6=@private2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, {{@in6=@mcast1}, 0x0, @in=@broadcast}}, 0xe8) 18:49:03 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, 0x0) 18:49:03 executing program 2: syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="040100027516b7108c0d0e008fb60102430109021b00010000000009040000010300000009058427"], 0x0) 18:49:03 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd0000001000010000", 0x4d}], 0x1) 18:49:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, 0x0) 18:49:03 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:03 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00989837f082138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f00000d000000140012800a00010076786c616e0000000400028008000a0080547a"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x900) [ 549.332342][ T120] usb 3-1: new high-speed USB device number 7 using dummy_hcd 18:49:03 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000280)={&(0x7f0000000100)=@deltaction={0x18, 0x31, 0x1, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x4}]}, 0x18}}, 0x0) [ 549.572701][ T120] usb 3-1: Using ep0 maxpacket: 16 [ 549.632505][ T7486] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 549.641455][ T7486] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 549.650787][ T7486] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 549.659920][ T7486] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 549.723169][ T120] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 549.734965][ T120] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 18:49:03 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$BLKDISCARD(r0, 0x1265, 0x0) 18:49:03 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 549.904971][ T120] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=b6.8f [ 549.914699][ T120] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=67 [ 549.923054][ T120] usb 3-1: Product: syz [ 549.927341][ T120] usb 3-1: Manufacturer: syz [ 549.932123][ T120] usb 3-1: SerialNumber: syz [ 549.968165][ T7486] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 549.977642][ T7486] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 549.990018][ T7486] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 549.999682][ T7486] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 550.072555][ T120] usb 3-1: config 0 descriptor?? [ 550.124154][ T120] cm109 3-1:0.0: invalid payload size 0, expected 4 [ 550.133412][ T120] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input15 18:49:04 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000240)=[@in={0x2, 0x0, @private=0xa010101}, @in6={0xa, 0x4e20, 0x0, @remote, 0xffff}], 0x2c) [ 550.323964][ T19] usb 3-1: USB disconnect, device number 7 [ 550.332679][ C1] cm109 3-1:0.0: cm109_urb_ctl_callback: urb status -71 [ 550.339860][ C1] cm109 3-1:0.0: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 18:49:04 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd0000001000010000", 0x4d}], 0x1) [ 550.432852][ T19] cm109 3-1:0.0: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 18:49:04 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:04 executing program 4: sched_setscheduler(0x0, 0x0, &(0x7f0000000400)) r0 = syz_clone(0x40080, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="fdeb00524065f3cde082f8279402da517b10c4307b7fe8241378ab97f2b668980a2fe959220a63986b1246bec3f5c6a3d86836ad2b8b4c52838715bcc4faf273e075a72da8aa065487da6d2a007ced6f8642d7ad1d5040b8cef77ae20b607cd77f6313f58d20c41f3f3f14057201d69b17cc7d6f938ea1e532463de6d1c3e34de0845f965714f5a074e5aff479016081930c0ab532bfd12d2e135c0bab5b70d6fde956ddb297baa342eb969ac3abfb86de") prctl$PR_SET_PTRACER(0x59616d61, r0) syz_clone(0x40000000, &(0x7f0000000180)="ea8169f2e70a70098ef2cac3cf27ef3a1149234f664e8deb5028230cd5394f897a2035bfeade887d843427d4c25e2053de359d57bcb828c412edd2db927839e0ea10d40829a23373af88e819ce1366b0b5cb7aa26a3ef3d15e6d09ce32b8d32eb4da83b293c4ef24cda8b3852ff86834b68ddfc359", 0x75, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="430f0591295be22b82c2e17175e90108e09e22ec0596c0fdb43ceb42fcc6445ee7bb69b2068366a432365c1d7a2914ecf1a251525620ed7b972850193d89b6a4ab817796b9486acdf2c5bf1e0e8293d95a42c552d5109913be8e0f41f7d5881944194b4cc3f19fd5b53533ed43e1767c") gettid() syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x1000, &(0x7f00000002c0)="543f5dbd7d508c49f0e1861502f03ee87ecbd73eb3dd6256bda2c350c8970413abf026e4ca32a6a6afe84fb28c55ea35868719e2ffee1512dbd90847a3b3d9ef68d8c5cedc673e7ab45d70ded99d50b07d800d5ebe31d75239d6e1fcc22fc7c9acde9d2c9e8e317a99911398f331d4ab", 0x70, &(0x7f0000000340), &(0x7f0000000380), &(0x7f0000000440)="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") 18:49:05 executing program 2: symlinkat(&(0x7f0000001fc0)='./file0/file0\x00', 0xffffffffffffffff, 0x0) 18:49:05 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00989837f082138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f00000d000000140012800a00010076786c616e0000000400028008000a0080547a"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x900) 18:49:05 executing program 1: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000780)={0x0, 0x0, 0x18}, 0xc) 18:49:05 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:05 executing program 1: syz_mount_image$fuse(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 551.352522][ T7508] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 551.361480][ T7508] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 551.370666][ T7508] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 551.379820][ T7508] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 18:49:05 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_int(r0, 0x29, 0x17, &(0x7f0000000000), 0x4) [ 551.615458][ T7508] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 551.627928][ T7508] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 551.637588][ T7508] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 551.646782][ T7508] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 18:49:05 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:05 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff00", 0x53}], 0x1) 18:49:05 executing program 1: r0 = socket(0x26, 0x5, 0x0) accept4$vsock_stream(r0, 0x0, 0x0, 0x0) 18:49:06 executing program 2: bpf$MAP_CREATE(0x10, &(0x7f0000000180), 0x48) 18:49:06 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:06 executing program 4: sched_setscheduler(0x0, 0x0, &(0x7f0000000400)) r0 = syz_clone(0x40080, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)="fdeb00524065f3cde082f8279402da517b10c4307b7fe8241378ab97f2b668980a2fe959220a63986b1246bec3f5c6a3d86836ad2b8b4c52838715bcc4faf273e075a72da8aa065487da6d2a007ced6f8642d7ad1d5040b8cef77ae20b607cd77f6313f58d20c41f3f3f14057201d69b17cc7d6f938ea1e532463de6d1c3e34de0845f965714f5a074e5aff479016081930c0ab532bfd12d2e135c0bab5b70d6fde956ddb297baa342eb969ac3abfb86de") prctl$PR_SET_PTRACER(0x59616d61, r0) syz_clone(0x40000000, &(0x7f0000000180)="ea8169f2e70a70098ef2cac3cf27ef3a1149234f664e8deb5028230cd5394f897a2035bfeade887d843427d4c25e2053de359d57bcb828c412edd2db927839e0ea10d40829a23373af88e819ce1366b0b5cb7aa26a3ef3d15e6d09ce32b8d32eb4da83b293c4ef24cda8b3852ff86834b68ddfc359", 0x75, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="430f0591295be22b82c2e17175e90108e09e22ec0596c0fdb43ceb42fcc6445ee7bb69b2068366a432365c1d7a2914ecf1a251525620ed7b972850193d89b6a4ab817796b9486acdf2c5bf1e0e8293d95a42c552d5109913be8e0f41f7d5881944194b4cc3f19fd5b53533ed43e1767c") gettid() syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x1000, &(0x7f00000002c0)="543f5dbd7d508c49f0e1861502f03ee87ecbd73eb3dd6256bda2c350c8970413abf026e4ca32a6a6afe84fb28c55ea35868719e2ffee1512dbd90847a3b3d9ef68d8c5cedc673e7ab45d70ded99d50b07d800d5ebe31d75239d6e1fcc22fc7c9acde9d2c9e8e317a99911398f331d4ab", 0x70, &(0x7f0000000340), &(0x7f0000000380), &(0x7f0000000440)="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") 18:49:06 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c00000010001fff00989837f082138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f00000d000000140012800a00010076786c616e0000000400028008000a0080547a"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x10}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x900) 18:49:06 executing program 2: r0 = socket(0xa, 0x5, 0x0) bind$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x0}, 0x10) 18:49:06 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r1) sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r2, 0x1, 0x0, 0x0, {0x13}}, 0x14}}, 0x0) 18:49:06 executing program 0: write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r0}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r0}}, 0x48) [ 552.725038][ T7537] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 552.734210][ T7537] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 552.743413][ T7537] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 552.755545][ T7537] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 18:49:07 executing program 1: r0 = socket$inet6(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x4d, 0x0, &(0x7f0000000040)) 18:49:07 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r1) sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, r2, 0x1, 0x0, 0x0, {0x21}}, 0x14}}, 0x0) [ 552.916304][ T7537] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 552.926336][ T7537] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 552.935791][ T7537] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 552.945162][ T7537] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 18:49:07 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff00", 0x53}], 0x1) 18:49:07 executing program 0: write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r0}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r0}}, 0x48) 18:49:07 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @local}, r1}}, 0x48) 18:49:07 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4a, 0x0, 0x0) 18:49:07 executing program 0: write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r0}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r0}}, 0x48) 18:49:08 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) setsockopt$inet6_int(r0, 0x10d, 0x2, &(0x7f0000000000), 0x4) 18:49:08 executing program 1: r0 = socket(0xa, 0x5, 0x0) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, 0x0, 0x0) 18:49:08 executing program 4: openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200), 0x4003, 0x0) 18:49:08 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:08 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff00", 0x53}], 0x1) 18:49:08 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x35, 0x0, &(0x7f0000000040)) 18:49:08 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="c4000000000701010000000000000000030000080c00024000000000000000010900010073797a30000000000800054000000001080005400000000344000780080002400000ffff0800024000010000080002400000040108000140000000040800"], 0xc4}, 0x1, 0x0, 0x0, 0x4000}, 0x20048040) 18:49:08 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:08 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:08 executing program 2: getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0x10) r0 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) r2 = socket(0x2, 0x80805, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000300)={r1}, 0x8) 18:49:09 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x4) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000540)={@private1, @empty, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x0, 0x2, 0x1, 0x0, 0xffffffffffff9254, 0x200}) [ 555.089997][ T7577] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.3'. 18:49:09 executing program 3: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOGETCMAP(r0, 0x4604, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=[0x0], 0x0, 0x0, 0x0}) 18:49:09 executing program 2: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) write$tcp_congestion(r0, &(0x7f0000000200)='reno\x00', 0x5) 18:49:09 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:09 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f00000003c0)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}, {{&(0x7f0000000080)={0x2, 0x4e23, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="140000000000000001000000240000000918550000000000c800000000000000290000003700000032160000000000005456fe8000000000000000000000000000aa0768000000021804ffff09000000000000000900000000000000020000000000000007000000000000000600000000000000400001000000000002000000000000000100000000000000ff0300000000000006000000000000000400000000000000ff7f000000000000072000000001063f0001b974ffffffffffff06000000000000000800000000000000c910fe80000000000000000000000000003614"], 0xf8}}], 0x2, 0x0) [ 555.492868][ T19] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 555.762269][ T19] usb 2-1: Using ep0 maxpacket: 32 18:49:09 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e", 0x56}], 0x1) 18:49:09 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000022c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0) 18:49:09 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)={0x578}) 18:49:09 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:10 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@setneightbl={0x24, 0x43, 0x1, 0x0, 0x0, {}, [@NDTA_NAME={0x10, 0x1, '@@$/}+&{{&\xc9\x00'}]}, 0x24}}, 0x0) [ 556.072604][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 556.081860][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 556.090428][ T19] usb 2-1: Product: syz [ 556.094883][ T19] usb 2-1: Manufacturer: syz [ 556.099633][ T19] usb 2-1: SerialNumber: syz [ 556.234604][ T19] usb 2-1: config 0 descriptor?? [ 556.952811][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 556.963428][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 556.982700][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 557.161914][ T19] usb 2-1: USB disconnect, device number 4 18:49:11 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:11 executing program 3: r0 = eventfd2(0x0, 0x0) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000000)) 18:49:11 executing program 2: syz_emit_ethernet(0x4e, &(0x7f0000000140)={@link_local, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '3\rN', 0x18, 0x11, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[], {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}}, 0x0) 18:49:11 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:11 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000000000000000000c04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='lock_acquire\x00', r0}, 0x10) shmctl$IPC_SET(0x0, 0x3, &(0x7f0000000240)={{0x0, 0xee01}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}) 18:49:11 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e", 0x56}], 0x1) 18:49:11 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg$unix(r0, &(0x7f0000002040)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000280)=[{0x0}, {0x0}], 0x2}}], 0x1, 0x0, 0x0) 18:49:12 executing program 2: r0 = syz_open_dev$rtc(&(0x7f0000000100), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}) 18:49:12 executing program 4: r0 = syz_open_dev$rtc(&(0x7f0000000100), 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x31}) 18:49:12 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 558.262424][ T19] usb 2-1: new high-speed USB device number 5 using dummy_hcd 18:49:12 executing program 4: r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x1800007, 0x11, r0, 0x0) mmap(&(0x7f0000009000/0x2000)=nil, 0x2000, 0x4000000, 0x100010, r0, 0x81ce1000) r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@bloom_filter={0x1e, 0x81, 0x400004, 0x200003, 0x1200, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2, 0x5}, 0x48) r2 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r1, &(0x7f0000000000), &(0x7f0000000080)=@udp6=r2}, 0x20) ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000580)={0x0, 0x8000000000000001, 0x0, [0x8, 0x7, 0x81, 0x7, 0x20], [0x4, 0x4, 0x3, 0x7, 0x4, 0x13d7, 0x1, 0x7, 0x2, 0x928, 0x800, 0x9, 0x0, 0x7ff, 0x1ff, 0x7, 0x5, 0x98, 0x2, 0x6, 0x81, 0x6, 0x1000, 0x7, 0x9, 0x4a4, 0x2, 0x0, 0x51, 0x4, 0x3b9a553c, 0x5, 0x1ff, 0x9, 0x7fffffff, 0x7, 0x2, 0x7fff, 0x0, 0x0, 0x9, 0x3, 0x7, 0x96, 0xff, 0x7ff, 0x84b0, 0x7, 0x7f, 0x1000, 0xffffffffffffd8c1, 0x800, 0xfffffffffffffffe, 0x8, 0x2, 0x3, 0x8000000000000001, 0x6, 0x1, 0x401, 0x1000, 0x10000, 0xe90, 0x4, 0x2, 0x87, 0xea0, 0x9, 0x0, 0xf, 0x3, 0xd08f, 0x4, 0xfff, 0x5b, 0x0, 0x2, 0x58, 0x1c5b, 0x3, 0xffffffffffffffff, 0x401, 0x3f, 0x80, 0xffffffffffffffc1, 0x3, 0x20, 0x10000, 0xfffffffffffffff7, 0x6838, 0x3f38, 0x9, 0x5, 0x8000000000000000, 0x61c, 0x1f, 0x8, 0x6, 0x0, 0x9, 0x3ff, 0xffffffffffffffff, 0x6, 0x702594ae, 0x7fff, 0x89, 0xffff, 0x1, 0x7, 0x1, 0x1, 0x2, 0xafb, 0x5c, 0xffff, 0x0, 0x3f, 0x8, 0x0, 0x6, 0x7ff]}) ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f00000018c0)={r3, "1a5a18a6637edceb32b0a5e7e0131b36"}) r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r4, 0x4, 0x6000) io_setup(0x202, &(0x7f0000000200)=0x0) ftruncate(r4, 0x81fd) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x1299}) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) socket$inet_icmp(0x2, 0x2, 0x1) openat$urandom(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) io_submit(r5, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r4, &(0x7f0000000000), 0x16000}]) 18:49:12 executing program 2: syz_io_uring_setup(0x26b1, &(0x7f0000000000), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000080), 0x0) syz_io_uring_setup(0x4465, &(0x7f0000000180), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)) [ 558.503347][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 558.824078][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 558.833513][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 558.841660][ T19] usb 2-1: Product: syz [ 558.846113][ T19] usb 2-1: Manufacturer: syz [ 558.850837][ T19] usb 2-1: SerialNumber: syz [ 558.960318][ T19] usb 2-1: config 0 descriptor?? [ 559.652754][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 559.663229][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 559.682914][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 559.861212][ T19] usb 2-1: USB disconnect, device number 5 18:49:14 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:14 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e", 0x56}], 0x1) 18:49:14 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:14 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x18, r1, 0x64e597d18da25363, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x4}]}, 0x18}}, 0x0) 18:49:14 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000240)) 18:49:14 executing program 3: syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000002"], 0x24}}, 0x0) 18:49:14 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:14 executing program 4: semctl$IPC_INFO(0x0, 0x0, 0x3, &(0x7f00000002c0)=""/221) 18:49:14 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) [ 560.972818][ T3546] usb 2-1: new high-speed USB device number 6 using dummy_hcd 18:49:15 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0) 18:49:15 executing program 4: r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) [ 561.223174][ T3546] usb 2-1: Using ep0 maxpacket: 32 [ 561.503076][ T3546] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 561.512569][ T3546] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 561.520703][ T3546] usb 2-1: Product: syz [ 561.525188][ T3546] usb 2-1: Manufacturer: syz [ 561.529941][ T3546] usb 2-1: SerialNumber: syz [ 561.599650][ T3546] usb 2-1: config 0 descriptor?? [ 562.312599][ T3546] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 562.322890][ T3546] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 562.333080][ T3546] vub300: probe of 2-1:0.0 failed with error -22 [ 562.520849][ T19] usb 2-1: USB disconnect, device number 6 18:49:17 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:17 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:17 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:17 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17", 0x57}], 0x1) 18:49:17 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000200)) 18:49:17 executing program 4: r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x4) 18:49:17 executing program 4: openat$dsp1(0xffffffffffffff9c, &(0x7f0000000c80), 0x4480, 0x0) 18:49:17 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:17 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:17 executing program 3: r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_DSP_GETCAPS(r0, 0x8004500f, &(0x7f0000000040)) [ 563.613138][ T19] usb 2-1: new high-speed USB device number 7 using dummy_hcd 18:49:17 executing program 2: ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) 18:49:17 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) [ 563.852589][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 564.133140][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 564.142548][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 564.150783][ T19] usb 2-1: Product: syz [ 564.155282][ T19] usb 2-1: Manufacturer: syz [ 564.160031][ T19] usb 2-1: SerialNumber: syz [ 564.238617][ T19] usb 2-1: config 0 descriptor?? [ 564.942526][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 564.952765][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 564.962986][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 565.150250][ T3546] usb 2-1: USB disconnect, device number 7 18:49:19 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) 18:49:19 executing program 4: openat$dsp1(0xffffffffffffff9c, &(0x7f0000000c80), 0x4480, 0x0) 18:49:19 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17", 0x57}], 0x1) 18:49:19 executing program 3: socketpair(0xf, 0x803, 0x0, &(0x7f0000000280)) 18:49:19 executing program 2: ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) 18:49:19 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:19 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:19 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80000088}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x14}, 0x14}}, 0x0) 18:49:20 executing program 2: ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) 18:49:20 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000001680)='syzkaller\x00', 0x2, 0xe7, &(0x7f00000016c0)=""/231, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x46, &(0x7f0000000080)=r0, 0x4) 18:49:20 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 566.232859][ T19] usb 2-1: new high-speed USB device number 8 using dummy_hcd 18:49:20 executing program 3: syz_io_uring_setup(0x5fd4, &(0x7f0000000080)={0x0, 0x0, 0x4}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) [ 566.482657][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 566.763746][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 566.773464][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 566.784045][ T19] usb 2-1: Product: syz [ 566.788336][ T19] usb 2-1: Manufacturer: syz [ 566.793762][ T19] usb 2-1: SerialNumber: syz [ 566.830685][ T19] usb 2-1: config 0 descriptor?? [ 567.552639][ T19] usb 2-1: probing VID:PID(0424:012C) [ 567.560165][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 567.570604][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 567.600660][ T19] usb 2-1: USB disconnect, device number 8 18:49:22 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) 18:49:22 executing program 4: keyctl$set_timeout(0x14, 0x0, 0x0) 18:49:22 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:22 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:22 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x1, 0x9, 0x301}, 0x14}}, 0x0) 18:49:22 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='illinois\x00', 0x9) sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4000000000000004) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000200)="580000001400192340834b80040d8c5602067fffffff81000000000000dca8f76d8ea513dfb08c00940005891550f4a8000000006700008000f00002000009000080fff5dd00000010000100000c0900fcff0000040e17", 0x57}], 0x1) 18:49:22 executing program 3: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_128={{}, "caf562fb5276d58a", "737b9de61b5ad0b039be8a365424ca97", "da9daafa", "e22900c3ad29d0fb"}, 0x28) 18:49:22 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:22 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:22 executing program 4: openat2$dir(0xffffff9c, 0x0, &(0x7f0000000480)={0x0, 0x0, 0x1}, 0x18) openat2$dir(0xffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0xffffffffffffff7a) 18:49:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, r1, 0x1, 0x0, 0x0, {{}, {}, {0xc, 0x14, 'syz0\x00'}}}, 0x28}}, 0x0) 18:49:22 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 568.652525][ T3546] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 568.912581][ T3546] usb 2-1: Using ep0 maxpacket: 32 [ 569.213186][ T3546] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 569.222664][ T3546] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 569.230804][ T3546] usb 2-1: Product: syz [ 569.236742][ T3546] usb 2-1: Manufacturer: syz [ 569.241482][ T3546] usb 2-1: SerialNumber: syz [ 569.250925][ T3546] usb 2-1: config 0 descriptor?? [ 570.002402][ T3546] usb 2-1: probing VID:PID(0424:012C) [ 570.009725][ T3546] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 570.040422][ T3546] vub300: probe of 2-1:0.0 failed with error -22 [ 570.050088][ T3546] usb 2-1: USB disconnect, device number 9 18:49:24 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) 18:49:24 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, &(0x7f0000000180)) 18:49:24 executing program 4: openat$drirender128(0xffffff9c, &(0x7f0000000200), 0x20041, 0x0) 18:49:24 executing program 5: syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000240)={[], [{@defcontext={'defcontext', 0x3d, 'system_u'}}]}) 18:49:24 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:24 executing program 3: r0 = openat$procfs(0xffffff9c, &(0x7f0000000440)='/proc/crypto\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 18:49:24 executing program 2: openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) 18:49:24 executing program 3: r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000740)) 18:49:24 executing program 4: io_setup(0x8, &(0x7f0000000000)=0x0) io_submit(r0, 0x300, &(0x7f0000000600)=[&(0x7f00000000c0)]) [ 570.734865][ T7743] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device loop5. 18:49:24 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:25 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$netlink(r0, 0x10e, 0x0, 0x0, &(0x7f0000000280)) 18:49:25 executing program 2: openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) [ 571.052279][ T19] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 571.292703][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 571.572814][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 571.582256][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 571.590592][ T19] usb 2-1: Product: syz [ 571.595082][ T19] usb 2-1: Manufacturer: syz [ 571.599907][ T19] usb 2-1: SerialNumber: syz [ 571.613728][ T19] usb 2-1: config 0 descriptor?? [ 572.322587][ T19] usb 2-1: probing VID:PID(0424:012C) [ 572.330264][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 572.342650][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 572.364020][ T19] usb 2-1: USB disconnect, device number 10 18:49:26 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:26 executing program 3: socket(0x15, 0x5, 0x2) 18:49:26 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:26 executing program 4: r0 = openat$audio1(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_BITS(r0, 0x800c5012, 0x0) 18:49:26 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f0000000040)=0x9, 0x4) 18:49:26 executing program 2: openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, &(0x7f0000000180)) 18:49:27 executing program 3: r0 = socket(0x22, 0x2, 0x1) getsockname$l2tp(r0, 0x0, 0x0) 18:49:27 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:27 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x5, 0x2, 0x8, 0x2, 0x0, 0x1}, 0x48) 18:49:27 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0) 18:49:27 executing program 4: r0 = eventfd2(0x0, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000000)) [ 573.342431][ T19] usb 2-1: new high-speed USB device number 11 using dummy_hcd 18:49:27 executing program 3: io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x1d9ae5e180f91755}) [ 573.582479][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 573.863180][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 573.872532][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 573.880675][ T19] usb 2-1: Product: syz [ 573.885139][ T19] usb 2-1: Manufacturer: syz [ 573.889866][ T19] usb 2-1: SerialNumber: syz [ 573.905410][ T19] usb 2-1: config 0 descriptor?? [ 574.612515][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 574.622835][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 574.632943][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 574.643607][ T19] usb 2-1: USB disconnect, device number 11 18:49:29 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:29 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f00000000c0)=0x2, 0x4) 18:49:29 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:29 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0) 18:49:29 executing program 4: r0 = syz_open_dev$media(&(0x7f0000000140), 0x0, 0x0) ioctl$MEDIA_IOC_ENUM_LINKS(r0, 0xc01c7c02, &(0x7f0000000680)={0x80000000, 0x0, &(0x7f0000000600)=[{{0x80000000}}]}) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000700)={{r1}}) 18:49:29 executing program 3: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000d80)='./cgroup.net/syz0\x00', 0x200002, 0x0) 18:49:29 executing program 4: socket(0xf, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0) syz_mount_image$fuse(&(0x7f0000002340), &(0x7f0000002380)='./file0\x00', 0x0, 0x0, 0x0, 0x406, &(0x7f0000004400)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{}]}}) 18:49:29 executing program 3: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000004800)=@bpf_tracing={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:49:29 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0) 18:49:29 executing program 5: mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0) 18:49:29 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 575.613507][ T7799] fuse: Bad value for 'fd' 18:49:29 executing program 3: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff2000/0xb000)=nil, &(0x7f0000ff3000/0x4000)=nil, 0x0, 0x0) syz_genetlink_get_family_id$l2tp(&(0x7f0000000700), 0xffffffffffffffff) [ 575.692337][ T19] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 575.932289][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 576.212525][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 576.221838][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 576.230279][ T19] usb 2-1: Product: syz [ 576.234683][ T19] usb 2-1: Manufacturer: syz [ 576.239385][ T19] usb 2-1: SerialNumber: syz [ 576.252705][ T19] usb 2-1: config 0 descriptor?? [ 576.417658][ T1197] ieee802154 phy0 wpan0: encryption failed: -22 [ 576.424360][ T1197] ieee802154 phy1 wpan1: encryption failed: -22 [ 576.972539][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 576.982902][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 576.993023][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 577.021474][ T19] usb 2-1: USB disconnect, device number 12 18:49:31 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:31 executing program 5: openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000046c0), 0x0, 0x0) 18:49:31 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:31 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) syz_mount_image$squashfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x83, &(0x7f0000000040)={r2}, &(0x7f0000000080)=0x8) 18:49:31 executing program 2: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@cgroup=r0}, 0x10) 18:49:31 executing program 3: msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x1008, 0x0) 18:49:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x541b, 0x0) 18:49:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x891d, &(0x7f0000000280)) 18:49:31 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x14}, 0x14}}, 0x0) 18:49:31 executing program 4: socketpair(0x0, 0x0, 0x3, 0x0) 18:49:31 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:32 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001400)=@bpf_lsm={0x3, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 578.044753][ T19] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 578.292522][ T19] usb 2-1: Using ep0 maxpacket: 32 [ 578.572666][ T19] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 578.581924][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 578.590312][ T19] usb 2-1: Product: syz [ 578.594683][ T19] usb 2-1: Manufacturer: syz [ 578.599346][ T19] usb 2-1: SerialNumber: syz [ 578.611573][ T19] usb 2-1: config 0 descriptor?? [ 579.322699][ T19] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 579.333094][ T19] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 579.345608][ T19] vub300: probe of 2-1:0.0 failed with error -22 [ 579.355359][ T19] usb 2-1: USB disconnect, device number 13 18:49:33 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:33 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:33 executing program 4: open$dir(&(0x7f0000000080)='./file0\x00', 0x20210, 0x0) 18:49:33 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000000)=@framed={{0x21}}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0x9c, &(0x7f0000000240)=""/156, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:49:33 executing program 3: open$dir(&(0x7f0000000080)='./file0\x00', 0x20210, 0x0) rename(&(0x7f0000000000)='./file0\x00', 0x0) 18:49:33 executing program 2: pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) getpeername(r0, 0x0, 0x0) 18:49:34 executing program 3: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001400)=@bpf_lsm={0x3, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x21020000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:49:34 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000340)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r1, 0x0, 0x0) 18:49:34 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const={0x0, 0x0, 0x0, 0x2, 0x1}]}}, &(0x7f0000000100)=""/195, 0x26, 0xc3, 0x5}, 0x20) 18:49:34 executing program 2: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x0, 0x0}, 0x8) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001400)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000000)='GPL\x00', 0x6, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r0}, 0x80) 18:49:34 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 580.382554][ T3546] usb 2-1: new high-speed USB device number 14 using dummy_hcd 18:49:34 executing program 5: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001400)=@bpf_lsm={0x1d, 0x4, &(0x7f0000000240)=@framed={{}, [@kfunc={0x85, 0x0, 0x2, 0x300}]}, &(0x7f0000000000)='GPL\x00', 0x6, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) [ 580.622654][ T3546] usb 2-1: Using ep0 maxpacket: 32 [ 580.932520][ T3546] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 580.941763][ T3546] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 580.950059][ T3546] usb 2-1: Product: syz [ 580.954519][ T3546] usb 2-1: Manufacturer: syz [ 580.959233][ T3546] usb 2-1: SerialNumber: syz [ 580.969718][ T3546] usb 2-1: config 0 descriptor?? [ 581.672590][ T3546] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 581.683323][ T3546] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 581.695454][ T3546] vub300: probe of 2-1:0.0 failed with error -22 [ 581.708330][ T3546] usb 2-1: USB disconnect, device number 14 18:49:36 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:36 executing program 3: r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a6, 0x0) 18:49:36 executing program 4: bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001400)=@bpf_lsm={0x1d, 0xc003, &(0x7f0000000240)=@framed={{}, [@kfunc]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x1000, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) 18:49:36 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:36 executing program 2: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_pressure(r0, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0) write$cgroup_pressure(r1, &(0x7f0000001340)={'full', 0x20, 0x5, 0x20, 0xfffff}, 0x2f) 18:49:36 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000100)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x0, 0x3, 0x3f, 0x6, 0x2, @empty, @local, 0x8000, 0x8000, 0x2, 0x40000000}}) 18:49:36 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) 18:49:36 executing program 2: r0 = socket$l2tp6(0xa, 0x2, 0x73) connect$l2tp6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @mcast2}, 0x20) 18:49:36 executing program 4: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000000c0)={@dev, 0x0, r1}) 18:49:36 executing program 3: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="120100000900000825020000000350fbfcb40902"], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) 18:49:36 executing program 5: semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000000)=""/155) [ 582.702964][ T3546] usb 2-1: new high-speed USB device number 15 using dummy_hcd 18:49:36 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}, r1}}, 0x48) [ 582.963154][ T3546] usb 2-1: Using ep0 maxpacket: 32 [ 583.042808][ T19] usb 4-1: new high-speed USB device number 88 using dummy_hcd [ 583.272540][ T3546] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 583.281779][ T3546] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 583.282289][ T19] usb 4-1: Using ep0 maxpacket: 8 [ 583.290178][ T3546] usb 2-1: Product: syz [ 583.299538][ T3546] usb 2-1: Manufacturer: syz [ 583.304633][ T3546] usb 2-1: SerialNumber: syz [ 583.312957][ T3546] usb 2-1: config 0 descriptor?? [ 583.332927][ T19] usb 4-1: too many configurations: 180, using maximum allowed: 8 [ 583.412848][ T19] usb 4-1: config 0 has no interfaces? [ 583.492905][ T19] usb 4-1: config 0 has no interfaces? [ 583.576792][ T19] usb 4-1: config 0 has no interfaces? [ 583.662540][ T19] usb 4-1: config 0 has no interfaces? [ 583.742603][ T19] usb 4-1: config 0 has no interfaces? [ 583.822529][ T19] usb 4-1: config 0 has no interfaces? [ 583.902686][ T19] usb 4-1: config 0 has no interfaces? [ 583.983008][ T19] usb 4-1: config 0 has no interfaces? [ 584.022918][ T3546] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 584.033713][ T3546] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 584.044056][ T3546] vub300: probe of 2-1:0.0 failed with error -22 [ 584.058704][ T3546] usb 2-1: USB disconnect, device number 15 [ 584.142711][ T19] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 3.00 [ 584.152163][ T19] usb 4-1: New USB device strings: Mfr=80, Product=251, SerialNumber=252 [ 584.160702][ T19] usb 4-1: Product: syz [ 584.165119][ T19] usb 4-1: Manufacturer: syz [ 584.169858][ T19] usb 4-1: SerialNumber: syz [ 584.198685][ T19] usb 4-1: config 0 descriptor?? [ 584.456663][ T19] usb 4-1: USB disconnect, device number 88 18:49:38 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x52, 0x13, 0x58, 0x20, 0x424, 0x12c, 0x94dc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xdf, 0x81, 0xde}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:38 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000240)={'ip6_vti0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @mcast2, @mcast1}}) 18:49:38 executing program 5: r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) recvfrom$ax25(r0, 0x0, 0x0, 0x10040, 0x0, 0x0) 18:49:38 executing program 4: openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) select(0x40, &(0x7f0000000040), 0x0, &(0x7f00000000c0)={0x9}, &(0x7f0000000100)={0x0, 0xea60}) 18:49:38 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0) 18:49:38 executing program 4: openat$vfio(0xffffffffffffff9c, &(0x7f0000000040), 0x4040, 0x0) 18:49:38 executing program 2: socket$inet6(0xa, 0x1, 0x84) 18:49:38 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0) 18:49:38 executing program 5: socket(0x30, 0x0, 0x0) 18:49:39 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_clone3(&(0x7f00000007c0)={0x240000, &(0x7f0000000600), 0x0, 0x0, {}, 0x0, 0x0, &(0x7f0000000740)=""/49, 0x0, 0x0, {r0}}, 0x58) ioctl$sock_ax25_SIOCDELRT(0xffffffffffffffff, 0x890c, 0x0) 18:49:39 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0) [ 585.092268][ T3614] usb 2-1: new high-speed USB device number 16 using dummy_hcd 18:49:39 executing program 2: r0 = socket(0x25, 0x5, 0x0) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0) [ 585.344947][ T3614] usb 2-1: Using ep0 maxpacket: 32 [ 585.622757][ T3614] usb 2-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=94.dc [ 585.632187][ T3614] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 585.640347][ T3614] usb 2-1: Product: syz [ 585.645112][ T3614] usb 2-1: Manufacturer: syz [ 585.649838][ T3614] usb 2-1: SerialNumber: syz [ 585.722706][ T3614] usb 2-1: config 0 descriptor?? [ 586.432568][ T3614] usb 2-1: probing VID:PID(0424:012C) ﱇ苺㸶ꐥ稔效ᢶ몏涱 [ 586.444889][ T3614] usb 2-1: Could not find two sets of bulk-in/out endpoint pairs [ 586.458308][ T3614] vub300: probe of 2-1:0.0 failed with error -22 [ 586.467795][ T3614] usb 2-1: USB disconnect, device number 16 18:49:40 executing program 1: syz_usb_control_io(0xffffffffffffffff, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x38, r1, 0x1, 0x0, 0x0, {}, [@L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_LNS_MODE={0x5}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @ipv4={'\x00', '\xff\xff', @local}}]}, 0x38}}, 0x0) 18:49:40 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x89a1, 0x0) 18:49:40 executing program 2: connect$ax25(0xffffffffffffffff, 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x5, 0x0) 18:49:40 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:40 executing program 3: r0 = socket(0x25, 0x5, 0x0) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000540)={&(0x7f0000000000), 0xc, &(0x7f0000000500)={0x0}}, 0x0) 18:49:41 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:41 executing program 2: pipe(&(0x7f00000004c0)={0xffffffffffffffff}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) 18:49:41 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00'}) 18:49:41 executing program 3: r0 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x6}, 0x20) 18:49:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x891f, &(0x7f0000000280)) 18:49:41 executing program 5: socketpair(0x2, 0x0, 0xe9e7, &(0x7f0000000000)) 18:49:41 executing program 1: syz_usb_control_io(0xffffffffffffffff, &(0x7f00000002c0)={0x2c, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000400)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000240)={0x24, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x6e, @string={0x6e, 0x3, "47fcfa8288ee363e25a4147a4865b618d1d98fbab16df0dfa0d0fdbac86905792e437fe6d3fccf6d4a44d9cf5179e9b331e8eb2a5a3d6142eee8e9bbf9f1c993cd57c4c4196a5575b146b0fa95ad4284647ae0451743225b0ee979508d7b0ec52502cd245669bfaf7c47f2db"}}, 0x0, 0x0}, 0x0) 18:49:41 executing program 3: ioctl$sock_ax25_SIOCDELRT(0xffffffffffffffff, 0x890c, 0x0) 18:49:41 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @remote, 0x6}, r1}}, 0x30) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000340)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @empty}, {0xa, 0x0, 0x0, @private0}}}, 0x48) 18:49:41 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x801c581f, 0x0) 18:49:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8941, 0x0) 18:49:42 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0) 18:49:42 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x8918, 0x0) 18:49:42 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000300)='\'', 0x1}, {&(0x7f0000000580)="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", 0xec0}], 0x2}, 0x0) 18:49:42 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207660902"], 0x10}}, 0x0) 18:49:42 executing program 3: socket$inet6(0xa, 0x3, 0x6e) 18:49:42 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='stack\x00') preadv(r0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/103, 0x67}], 0x1, 0x0, 0x0) 18:49:42 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000440)='cmdline\x00') preadv(r0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/103, 0x67}], 0x1, 0x36, 0x0) [ 588.756053][ T7952] ===================================================== [ 588.763188][ T7952] BUG: KMSAN: uninit-value in kallsyms_lookup_buildid+0x1ee/0xb10 [ 588.771070][ T7952] kallsyms_lookup_buildid+0x1ee/0xb10 [ 588.776592][ T7952] __sprint_symbol+0x166/0x650 [ 588.781400][ T7952] sprint_backtrace+0x7f/0x90 [ 588.786101][ T7952] symbol_string+0x421/0x6e0 [ 588.790744][ T7952] pointer+0x136e/0x2060 [ 588.795014][ T7952] vsnprintf+0x1a9b/0x3650 [ 588.799458][ T7952] seq_printf+0x314/0x4f0 [ 588.803856][ T7952] proc_pid_stack+0x3b7/0x4d0 [ 588.808613][ T7952] proc_single_show+0x1cc/0x370 [ 588.813505][ T7952] seq_read_iter+0xaac/0x2150 [ 588.818219][ T7952] seq_read+0x7a6/0x990 [ 588.822407][ T7952] do_iter_read+0xb28/0x14c0 [ 588.827131][ T7952] do_preadv+0x45e/0x6c0 [ 588.831395][ T7952] __ia32_compat_sys_preadv+0x166/0x1c0 [ 588.836987][ T7952] __do_fast_syscall_32+0x96/0xf0 [ 588.842064][ T7952] do_fast_syscall_32+0x34/0x70 [ 588.846961][ T7952] do_SYSENTER_32+0x1b/0x20 [ 588.851509][ T7952] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.857886][ T7952] [ 588.860210][ T7952] Uninit was created at: [ 588.864508][ T7952] kmem_cache_alloc_trace+0xaa1/0x1120 [ 588.869998][ T7952] proc_pid_stack+0x103/0x4d0 [ 588.874710][ T7952] proc_single_show+0x1cc/0x370 [ 588.879597][ T7952] seq_read_iter+0xaac/0x2150 [ 588.884302][ T7952] seq_read+0x7a6/0x990 [ 588.888483][ T7952] do_iter_read+0xb28/0x14c0 [ 588.893114][ T7952] do_preadv+0x45e/0x6c0 [ 588.897378][ T7952] __ia32_compat_sys_preadv+0x166/0x1c0 [ 588.902971][ T7952] __do_fast_syscall_32+0x96/0xf0 [ 588.908049][ T7952] do_fast_syscall_32+0x34/0x70 [ 588.912957][ T7952] do_SYSENTER_32+0x1b/0x20 [ 588.917525][ T7952] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 588.923913][ T7952] [ 588.926266][ T7952] CPU: 0 PID: 7952 Comm: syz-executor.0 Not tainted 5.17.0-syzkaller #0 [ 588.934638][ T7952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 588.944725][ T7952] ===================================================== [ 588.951687][ T7952] Disabling lock debugging due to kernel taint [ 588.960935][ T7952] Kernel panic - not syncing: kmsan.panic set ... [ 588.967379][ T7952] CPU: 0 PID: 7952 Comm: syz-executor.0 Tainted: G B 5.17.0-syzkaller #0 [ 588.977152][ T7952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 588.987246][ T7952] Call Trace: [ 588.990546][ T7952] [ 588.993495][ T7952] dump_stack_lvl+0x1ff/0x28e [ 588.998258][ T7952] dump_stack+0x25/0x28 [ 589.002472][ T7952] panic+0x487/0xe1f [ 589.006428][ T7952] ? add_taint+0x181/0x210 [ 589.010928][ T7952] ? _raw_spin_unlock_irqrestore+0x78/0xb0 [ 589.016802][ T7952] kmsan_report+0x2e6/0x2f0 [ 589.021376][ T7952] ? __msan_warning+0xb8/0x130 [ 589.026196][ T7952] ? kallsyms_lookup_buildid+0x1ee/0xb10 [ 589.031899][ T7952] ? __sprint_symbol+0x166/0x650 [ 589.036899][ T7952] ? sprint_backtrace+0x7f/0x90 [ 589.041794][ T7952] ? symbol_string+0x421/0x6e0 [ 589.046606][ T7952] ? pointer+0x136e/0x2060 [ 589.051066][ T7952] ? vsnprintf+0x1a9b/0x3650 [ 589.055698][ T7952] ? seq_printf+0x314/0x4f0 [ 589.060255][ T7952] ? proc_pid_stack+0x3b7/0x4d0 [ 589.065164][ T7952] ? proc_single_show+0x1cc/0x370 [ 589.070254][ T7952] ? seq_read_iter+0xaac/0x2150 [ 589.075154][ T7952] ? seq_read+0x7a6/0x990 [ 589.079522][ T7952] ? do_iter_read+0xb28/0x14c0 [ 589.084329][ T7952] ? do_preadv+0x45e/0x6c0 [ 589.088773][ T7952] ? __ia32_compat_sys_preadv+0x166/0x1c0 [ 589.094542][ T7952] ? __do_fast_syscall_32+0x96/0xf0 [ 589.099793][ T7952] ? do_fast_syscall_32+0x34/0x70 [ 589.104866][ T7952] ? do_SYSENTER_32+0x1b/0x20 [ 589.109587][ T7952] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.116148][ T7952] ? preempt_count_sub+0xf8/0x330 [ 589.121212][ T7952] ? is_module_text_address+0x275/0x300 [ 589.126822][ T7952] ? kernel_text_address+0x1f1/0x2b0 [ 589.132213][ T7952] ? __stack_depot_save+0x1b1/0x4d0 [ 589.137484][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.142646][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.148509][ T7952] ? futex_wait_queue+0x24b/0x420 [ 589.153573][ T7952] __msan_warning+0xb8/0x130 [ 589.158217][ T7952] kallsyms_lookup_buildid+0x1ee/0xb10 [ 589.163743][ T7952] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 589.170043][ T7952] ? futex_wait_queue+0x24b/0x420 [ 589.175110][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.180263][ T7952] __sprint_symbol+0x166/0x650 [ 589.185086][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.190152][ T7952] sprint_backtrace+0x7f/0x90 [ 589.194857][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.199918][ T7952] symbol_string+0x421/0x6e0 [ 589.204544][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.209620][ T7952] ? __kernel_text_address+0x32/0xf0 [ 589.214949][ T7952] ? __stack_depot_save+0x1b1/0x4d0 [ 589.220197][ T7952] ? __stack_depot_save+0x21/0x4d0 [ 589.225363][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.230524][ T7952] ? kmsan_internal_set_shadow_origin+0x5e/0xc0 [ 589.236815][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.242057][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.247916][ T7952] pointer+0x136e/0x2060 [ 589.252189][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.257258][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.262416][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.268268][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.273328][ T7952] vsnprintf+0x1a9b/0x3650 [ 589.277792][ T7952] seq_printf+0x314/0x4f0 [ 589.282175][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.287234][ T7952] ? proc_pid_stack+0x305/0x4d0 [ 589.292130][ T7952] ? futex_wait_queue+0x24c/0x420 [ 589.297188][ T7952] proc_pid_stack+0x3b7/0x4d0 [ 589.301915][ T7952] proc_single_show+0x1cc/0x370 [ 589.306812][ T7952] ? proc_pid_wchan+0x260/0x260 [ 589.311702][ T7952] ? proc_single_open+0x90/0x90 [ 589.316593][ T7952] seq_read_iter+0xaac/0x2150 [ 589.321316][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.327201][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.333087][ T7952] seq_read+0x7a6/0x990 [ 589.337305][ T7952] ? seq_open+0x320/0x320 [ 589.341686][ T7952] do_iter_read+0xb28/0x14c0 [ 589.346349][ T7952] do_preadv+0x45e/0x6c0 [ 589.350636][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.355794][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.361655][ T7952] ? kmsan_get_metadata+0x33/0x220 [ 589.366824][ T7952] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0 [ 589.372703][ T7952] __ia32_compat_sys_preadv+0x166/0x1c0 [ 589.378318][ T7952] __do_fast_syscall_32+0x96/0xf0 [ 589.383405][ T7952] ? irqentry_exit_to_user_mode+0x15/0x30 [ 589.389167][ T7952] do_fast_syscall_32+0x34/0x70 [ 589.394072][ T7952] do_SYSENTER_32+0x1b/0x20 [ 589.398621][ T7952] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 589.405006][ T7952] RIP: 0023:0xf6edb549 [ 589.409089][ T7952] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 [ 589.428737][ T7952] RSP: 002b:00000000f58d55cc EFLAGS: 00000296 ORIG_RAX: 000000000000014d [ 589.437183][ T7952] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200004c0 [ 589.445177][ T7952] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 589.453172][ T7952] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 589.461163][ T7952] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 589.469177][ T7952] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 589.477185][ T7952] [ 589.480289][ T7952] Kernel Offset: disabled [ 589.484643][ T7952] Rebooting in 86400 seconds..