0x0}) 16:21:21 executing program 1: socketpair(0x1e, 0x0, 0x0, &(0x7f0000000240)) [ 962.387197][T19754] netlink: 212 bytes leftover after parsing attributes in process `syz-executor.3'. 16:21:21 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x115e0}], 0x1}, 0x0) 16:21:22 executing program 3: r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, 0x0, 0x0) 16:21:22 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001100)={0x18, 0x8, &(0x7f0000001400)=ANY=[@ANYBLOB="5a0affff080000001829000090488481f9f41f032b23da3483cd17c0344300000000434fd37508b5c6"], &(0x7f0000000040)='GPL\x00', 0x5, 0x1000, &(0x7f0000000080)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:21:22 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000001b80)=[{&(0x7f0000000000)=@in={0x2, 0x0, @remote}, 0x10, &(0x7f0000000440)=[{&(0x7f0000001c00)="f3", 0x1}], 0x1, &(0x7f0000001c80)=ANY=[@ANYBLOB=' '], 0x20}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x801}], 0x2, 0x0) 16:21:22 executing program 5: socketpair$unix(0x1, 0x4000000000002, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ppoll(&(0x7f00000000c0)=[{r1, 0x8124, 0xf303}], 0x1, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000240)={0x7}, 0x8) 16:21:22 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x2c, &(0x7f0000000140)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}]}, &(0x7f00000001c0)=0x10) 16:21:22 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11704}], 0x1}, 0x0) 16:21:23 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000000b00)=[{&(0x7f0000000000)=@in={0x2, 0x0, @remote}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000040)="a3", 0x1}], 0x1}, {&(0x7f0000000bc0)=@in6={0xa, 0x0, 0x0, @private0}, 0x1c, &(0x7f0000000740)}], 0x2, 0x0) 16:21:23 executing program 2: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0xc, &(0x7f0000000040)=0xd7, 0x4) 16:21:23 executing program 4: r0 = socket$inet_smc(0x2b, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast2}, 0x10) 16:21:23 executing program 1: getpeername$tipc(0xffffffffffffffff, 0x0, 0x0) 16:21:23 executing program 2: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) 16:21:23 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x117dc}], 0x1}, 0x0) 16:21:23 executing program 3: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000300)={&(0x7f00000002c0)='./file0\x00'}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) 16:21:23 executing program 4: r0 = socket$tipc(0x1e, 0x2, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={0x0}}, 0x0) [ 964.524465][T19780] not chained 60000 origins [ 964.529031][T19780] CPU: 1 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 964.537711][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 964.547751][T19780] Call Trace: [ 964.551039][T19780] dump_stack+0x21c/0x280 [ 964.555380][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 964.561090][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 964.566711][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.571902][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 964.577528][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 964.583583][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.588770][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 964.594562][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.599749][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 964.605370][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 964.611434][T19780] ? _copy_from_user+0x201/0x310 [ 964.616472][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.621665][T19780] __msan_chain_origin+0x57/0xa0 [ 964.626594][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 964.631704][T19780] get_compat_msghdr+0x108/0x2b0 [ 964.636644][T19780] do_recvmmsg+0xdc7/0x22e0 [ 964.641144][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.646337][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.651526][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 964.657268][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 964.662552][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 964.667308][T19780] __sys_recvmmsg+0x340/0x5f0 [ 964.671976][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 964.677773][T19780] ? kmsan_get_metadata+0x116/0x180 [ 964.682961][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 964.689018][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 964.695172][T19780] __do_fast_syscall_32+0x129/0x180 [ 964.700359][T19780] do_fast_syscall_32+0x6a/0xc0 [ 964.705197][T19780] do_SYSENTER_32+0x73/0x90 [ 964.709688][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 964.715999][T19780] RIP: 0023:0xf7f79549 [ 964.720053][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 964.739658][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 964.748073][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 964.756041][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 964.764007][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 964.771987][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 964.779947][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 964.787913][T19780] Uninit was stored to memory at: [ 964.792942][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 964.798658][T19780] __msan_chain_origin+0x57/0xa0 [ 964.803588][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 964.808703][T19780] get_compat_msghdr+0x108/0x2b0 [ 964.813635][T19780] do_recvmmsg+0xdc7/0x22e0 [ 964.818126][T19780] __sys_recvmmsg+0x340/0x5f0 [ 964.822805][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 964.828862][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 964.835008][T19780] __do_fast_syscall_32+0x129/0x180 [ 964.840198][T19780] do_fast_syscall_32+0x6a/0xc0 [ 964.845039][T19780] do_SYSENTER_32+0x73/0x90 [ 964.849531][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 964.855833][T19780] [ 964.858152][T19780] Uninit was stored to memory at: [ 964.863168][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 964.868873][T19780] __msan_chain_origin+0x57/0xa0 [ 964.873796][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 964.878892][T19780] get_compat_msghdr+0x108/0x2b0 [ 964.883816][T19780] do_recvmmsg+0xdc7/0x22e0 [ 964.888306][T19780] __sys_recvmmsg+0x340/0x5f0 [ 964.892968][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 964.899020][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 964.905159][T19780] __do_fast_syscall_32+0x129/0x180 [ 964.910356][T19780] do_fast_syscall_32+0x6a/0xc0 [ 964.915196][T19780] do_SYSENTER_32+0x73/0x90 [ 964.919685][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 964.925983][T19780] [ 964.928293][T19780] Uninit was stored to memory at: [ 964.933305][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 964.939012][T19780] __msan_chain_origin+0x57/0xa0 [ 964.943933][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 964.949027][T19780] get_compat_msghdr+0x108/0x2b0 [ 964.953951][T19780] do_recvmmsg+0xdc7/0x22e0 [ 964.958445][T19780] __sys_recvmmsg+0x340/0x5f0 [ 964.963108][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 964.969165][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 964.975305][T19780] __do_fast_syscall_32+0x129/0x180 [ 964.980489][T19780] do_fast_syscall_32+0x6a/0xc0 [ 964.985339][T19780] do_SYSENTER_32+0x73/0x90 [ 964.989830][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 964.996127][T19780] [ 964.998433][T19780] Uninit was stored to memory at: [ 965.003465][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 965.009171][T19780] __msan_chain_origin+0x57/0xa0 [ 965.014091][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 965.019187][T19780] get_compat_msghdr+0x108/0x2b0 [ 965.024109][T19780] do_recvmmsg+0xdc7/0x22e0 [ 965.028598][T19780] __sys_recvmmsg+0x340/0x5f0 [ 965.033262][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 965.039315][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 965.045456][T19780] __do_fast_syscall_32+0x129/0x180 [ 965.050640][T19780] do_fast_syscall_32+0x6a/0xc0 [ 965.055476][T19780] do_SYSENTER_32+0x73/0x90 [ 965.059964][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 965.066262][T19780] [ 965.068566][T19780] Uninit was stored to memory at: [ 965.073580][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 965.079286][T19780] __msan_chain_origin+0x57/0xa0 [ 965.084208][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 965.089303][T19780] get_compat_msghdr+0x108/0x2b0 [ 965.094225][T19780] do_recvmmsg+0xdc7/0x22e0 [ 965.098714][T19780] __sys_recvmmsg+0x340/0x5f0 [ 965.103378][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 965.109430][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 965.115574][T19780] __do_fast_syscall_32+0x129/0x180 [ 965.120761][T19780] do_fast_syscall_32+0x6a/0xc0 [ 965.125596][T19780] do_SYSENTER_32+0x73/0x90 [ 965.130085][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 965.136385][T19780] [ 965.138692][T19780] Uninit was stored to memory at: [ 965.143705][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 965.149412][T19780] __msan_chain_origin+0x57/0xa0 [ 965.154376][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 965.159480][T19780] get_compat_msghdr+0x108/0x2b0 [ 965.164445][T19780] do_recvmmsg+0xdc7/0x22e0 [ 965.168939][T19780] __sys_recvmmsg+0x340/0x5f0 [ 965.173606][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 965.179660][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 965.185802][T19780] __do_fast_syscall_32+0x129/0x180 [ 965.190987][T19780] do_fast_syscall_32+0x6a/0xc0 [ 965.195826][T19780] do_SYSENTER_32+0x73/0x90 [ 965.200320][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 965.206622][T19780] [ 965.208950][T19780] Uninit was stored to memory at: [ 965.213968][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 965.219679][T19780] __msan_chain_origin+0x57/0xa0 [ 965.224605][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 965.229700][T19780] get_compat_msghdr+0x108/0x2b0 [ 965.234626][T19780] do_recvmmsg+0xdc7/0x22e0 [ 965.239119][T19780] __sys_recvmmsg+0x340/0x5f0 [ 965.243784][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 965.249839][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 965.255983][T19780] __do_fast_syscall_32+0x129/0x180 [ 965.261172][T19780] do_fast_syscall_32+0x6a/0xc0 [ 965.266012][T19780] do_SYSENTER_32+0x73/0x90 [ 965.270503][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 965.276804][T19780] [ 965.279116][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 965.285780][T19780] do_recvmmsg+0xc2/0x22e0 [ 965.290185][T19780] do_recvmmsg+0xc2/0x22e0 16:21:24 executing program 1: syz_genetlink_get_family_id$smc(&(0x7f00000006c0)='SMC_PNETID\x00') r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_x25_SIOCADDRT(r0, 0x890b, &(0x7f0000000700)={@null=' \x00', 0x9, 'vlan1\x00'}) [ 966.566820][T19780] not chained 70000 origins [ 966.571365][T19780] CPU: 0 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 966.580054][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 966.590108][T19780] Call Trace: [ 966.593406][T19780] dump_stack+0x21c/0x280 [ 966.597744][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 966.603469][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 966.609109][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.614316][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 966.619958][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 966.626030][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.631233][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 966.637040][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.642245][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 966.647884][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 966.653960][T19780] ? _copy_from_user+0x201/0x310 [ 966.658903][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.664112][T19780] __msan_chain_origin+0x57/0xa0 [ 966.669052][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 966.674170][T19780] get_compat_msghdr+0x108/0x2b0 [ 966.679115][T19780] do_recvmmsg+0xdc7/0x22e0 [ 966.683627][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.688832][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.694036][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 966.699676][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 966.704971][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 966.709744][T19780] __sys_recvmmsg+0x340/0x5f0 [ 966.714430][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 966.720239][T19780] ? kmsan_get_metadata+0x116/0x180 [ 966.725445][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 966.731533][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 966.737695][T19780] __do_fast_syscall_32+0x129/0x180 [ 966.742899][T19780] do_fast_syscall_32+0x6a/0xc0 [ 966.747753][T19780] do_SYSENTER_32+0x73/0x90 [ 966.752262][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 966.758585][T19780] RIP: 0023:0xf7f79549 [ 966.762655][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 966.782288][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 966.790703][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 966.798697][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 966.806666][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 966.814634][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 966.822604][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 966.830575][T19780] Uninit was stored to memory at: [ 966.835613][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 966.841338][T19780] __msan_chain_origin+0x57/0xa0 [ 966.846280][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 966.851392][T19780] get_compat_msghdr+0x108/0x2b0 [ 966.856340][T19780] do_recvmmsg+0xdc7/0x22e0 [ 966.860848][T19780] __sys_recvmmsg+0x340/0x5f0 [ 966.865544][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 966.871612][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 966.877771][T19780] __do_fast_syscall_32+0x129/0x180 [ 966.882979][T19780] do_fast_syscall_32+0x6a/0xc0 [ 966.887831][T19780] do_SYSENTER_32+0x73/0x90 [ 966.892346][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 966.898657][T19780] [ 966.900976][T19780] Uninit was stored to memory at: [ 966.906015][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 966.911736][T19780] __msan_chain_origin+0x57/0xa0 [ 966.916681][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 966.921794][T19780] get_compat_msghdr+0x108/0x2b0 [ 966.926742][T19780] do_recvmmsg+0xdc7/0x22e0 [ 966.931253][T19780] __sys_recvmmsg+0x340/0x5f0 [ 966.935985][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 966.942059][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 966.948221][T19780] __do_fast_syscall_32+0x129/0x180 [ 966.953424][T19780] do_fast_syscall_32+0x6a/0xc0 [ 966.958277][T19780] do_SYSENTER_32+0x73/0x90 [ 966.962782][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 966.969096][T19780] [ 966.971418][T19780] Uninit was stored to memory at: [ 966.976454][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 966.982177][T19780] __msan_chain_origin+0x57/0xa0 [ 966.987115][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 966.992231][T19780] get_compat_msghdr+0x108/0x2b0 [ 966.997183][T19780] do_recvmmsg+0xdc7/0x22e0 [ 967.001694][T19780] __sys_recvmmsg+0x340/0x5f0 [ 967.006376][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 967.012446][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 967.018605][T19780] __do_fast_syscall_32+0x129/0x180 [ 967.023808][T19780] do_fast_syscall_32+0x6a/0xc0 [ 967.028660][T19780] do_SYSENTER_32+0x73/0x90 [ 967.033168][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 967.039482][T19780] [ 967.041803][T19780] Uninit was stored to memory at: [ 967.046836][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 967.052568][T19780] __msan_chain_origin+0x57/0xa0 [ 967.057509][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 967.062619][T19780] get_compat_msghdr+0x108/0x2b0 [ 967.067559][T19780] do_recvmmsg+0xdc7/0x22e0 [ 967.072064][T19780] __sys_recvmmsg+0x340/0x5f0 [ 967.076744][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 967.082810][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 967.088972][T19780] __do_fast_syscall_32+0x129/0x180 [ 967.094175][T19780] do_fast_syscall_32+0x6a/0xc0 [ 967.099028][T19780] do_SYSENTER_32+0x73/0x90 [ 967.103535][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 967.109852][T19780] [ 967.112177][T19780] Uninit was stored to memory at: [ 967.117243][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 967.122977][T19780] __msan_chain_origin+0x57/0xa0 [ 967.127918][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 967.133032][T19780] get_compat_msghdr+0x108/0x2b0 [ 967.137977][T19780] do_recvmmsg+0xdc7/0x22e0 [ 967.142483][T19780] __sys_recvmmsg+0x340/0x5f0 [ 967.147161][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 967.153232][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 967.159388][T19780] __do_fast_syscall_32+0x129/0x180 [ 967.164587][T19780] do_fast_syscall_32+0x6a/0xc0 [ 967.169439][T19780] do_SYSENTER_32+0x73/0x90 [ 967.173955][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 967.180269][T19780] [ 967.182591][T19780] Uninit was stored to memory at: [ 967.187633][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 967.193373][T19780] __msan_chain_origin+0x57/0xa0 [ 967.198321][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 967.203441][T19780] get_compat_msghdr+0x108/0x2b0 [ 967.208382][T19780] do_recvmmsg+0xdc7/0x22e0 [ 967.212896][T19780] __sys_recvmmsg+0x340/0x5f0 [ 967.217576][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 967.223652][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 967.229814][T19780] __do_fast_syscall_32+0x129/0x180 [ 967.235022][T19780] do_fast_syscall_32+0x6a/0xc0 [ 967.239883][T19780] do_SYSENTER_32+0x73/0x90 [ 967.244391][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 967.250711][T19780] [ 967.253033][T19780] Uninit was stored to memory at: [ 967.258068][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 967.263796][T19780] __msan_chain_origin+0x57/0xa0 [ 967.268737][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 967.273848][T19780] get_compat_msghdr+0x108/0x2b0 [ 967.278789][T19780] do_recvmmsg+0xdc7/0x22e0 [ 967.283297][T19780] __sys_recvmmsg+0x340/0x5f0 [ 967.288069][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 967.294138][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 967.300297][T19780] __do_fast_syscall_32+0x129/0x180 [ 967.305500][T19780] do_fast_syscall_32+0x6a/0xc0 [ 967.310348][T19780] do_SYSENTER_32+0x73/0x90 [ 967.314855][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 967.321165][T19780] [ 967.323488][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 967.330165][T19780] do_recvmmsg+0xc2/0x22e0 [ 967.334595][T19780] do_recvmmsg+0xc2/0x22e0 [ 967.885654][T19780] not chained 80000 origins [ 967.890193][T19780] CPU: 0 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 967.898859][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 967.908908][T19780] Call Trace: [ 967.912556][T19780] dump_stack+0x21c/0x280 [ 967.916897][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 967.922622][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 967.928257][T19780] ? kmsan_get_metadata+0x116/0x180 [ 967.933461][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 967.939098][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 967.945168][T19780] ? kmsan_get_metadata+0x116/0x180 [ 967.950398][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 967.956296][T19780] ? kmsan_get_metadata+0x116/0x180 [ 967.961499][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 967.967138][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 967.973211][T19780] ? _copy_from_user+0x201/0x310 [ 967.978171][T19780] ? kmsan_get_metadata+0x116/0x180 [ 967.983373][T19780] __msan_chain_origin+0x57/0xa0 [ 967.988315][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 967.993432][T19780] get_compat_msghdr+0x108/0x2b0 [ 967.998375][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.002885][T19780] ? kmsan_get_metadata+0x116/0x180 [ 968.008092][T19780] ? kmsan_get_metadata+0x116/0x180 [ 968.013298][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 968.018938][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 968.024228][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 968.028995][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.033680][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 968.039486][T19780] ? kmsan_get_metadata+0x116/0x180 [ 968.044690][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.050765][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.056926][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.062128][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.066982][T19780] do_SYSENTER_32+0x73/0x90 [ 968.071495][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.077818][T19780] RIP: 0023:0xf7f79549 [ 968.081897][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 968.101508][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 968.109929][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 968.117932][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 968.125899][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 968.133880][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 968.141875][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 968.149843][T19780] Uninit was stored to memory at: [ 968.154878][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.160604][T19780] __msan_chain_origin+0x57/0xa0 [ 968.165548][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.170660][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.175602][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.180219][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.184899][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.190967][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.197123][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.202322][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.207173][T19780] do_SYSENTER_32+0x73/0x90 [ 968.211680][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.217992][T19780] [ 968.220311][T19780] Uninit was stored to memory at: [ 968.225344][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.231067][T19780] __msan_chain_origin+0x57/0xa0 [ 968.236005][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.241115][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.246057][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.250565][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.255246][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.261322][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.267482][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.272680][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.277532][T19780] do_SYSENTER_32+0x73/0x90 [ 968.282043][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.288361][T19780] [ 968.290679][T19780] Uninit was stored to memory at: [ 968.295708][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.301429][T19780] __msan_chain_origin+0x57/0xa0 [ 968.306368][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.311478][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.316418][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.320925][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.325603][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.331676][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.337833][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.343036][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.347888][T19780] do_SYSENTER_32+0x73/0x90 [ 968.352397][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.358709][T19780] [ 968.361030][T19780] Uninit was stored to memory at: [ 968.366060][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.371784][T19780] __msan_chain_origin+0x57/0xa0 [ 968.376723][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.381831][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.386772][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.391275][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.395954][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.402023][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.408181][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.413420][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.418273][T19780] do_SYSENTER_32+0x73/0x90 [ 968.422776][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.429090][T19780] [ 968.431411][T19780] Uninit was stored to memory at: [ 968.436442][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.442267][T19780] __msan_chain_origin+0x57/0xa0 [ 968.447209][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.452320][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.457263][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.461769][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.466453][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.472524][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.478687][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.483922][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.488778][T19780] do_SYSENTER_32+0x73/0x90 [ 968.493288][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.499599][T19780] [ 968.501927][T19780] Uninit was stored to memory at: [ 968.506962][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.512712][T19780] __msan_chain_origin+0x57/0xa0 [ 968.517653][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.522772][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.527710][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.532212][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.536894][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.542962][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.549120][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.554329][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.559184][T19780] do_SYSENTER_32+0x73/0x90 [ 968.563689][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.570000][T19780] [ 968.572319][T19780] Uninit was stored to memory at: [ 968.577350][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 968.583072][T19780] __msan_chain_origin+0x57/0xa0 [ 968.588016][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 968.593125][T19780] get_compat_msghdr+0x108/0x2b0 [ 968.598067][T19780] do_recvmmsg+0xdc7/0x22e0 [ 968.602570][T19780] __sys_recvmmsg+0x340/0x5f0 [ 968.607248][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 968.613316][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 968.619473][T19780] __do_fast_syscall_32+0x129/0x180 [ 968.624673][T19780] do_fast_syscall_32+0x6a/0xc0 [ 968.629525][T19780] do_SYSENTER_32+0x73/0x90 [ 968.634029][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 968.640343][T19780] [ 968.642666][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 968.649367][T19780] do_recvmmsg+0xc2/0x22e0 [ 968.653796][T19780] do_recvmmsg+0xc2/0x22e0 [ 969.249567][T19780] not chained 90000 origins [ 969.254113][T19780] CPU: 0 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 969.262782][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 969.272836][T19780] Call Trace: [ 969.276133][T19780] dump_stack+0x21c/0x280 [ 969.280475][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 969.286202][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 969.291839][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.297044][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 969.302690][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 969.308759][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.313962][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 969.319856][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.325057][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 969.330695][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 969.336766][T19780] ? _copy_from_user+0x201/0x310 [ 969.341704][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.346903][T19780] __msan_chain_origin+0x57/0xa0 [ 969.351932][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.357051][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.361997][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.366506][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.371713][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.376914][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 969.382550][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 969.387842][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 969.392611][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.397293][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 969.403100][T19780] ? kmsan_get_metadata+0x116/0x180 [ 969.408303][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.414416][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.420573][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.425780][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.430635][T19780] do_SYSENTER_32+0x73/0x90 [ 969.435144][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.441468][T19780] RIP: 0023:0xf7f79549 [ 969.445540][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 969.465450][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 969.473894][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 969.481983][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 969.489964][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 969.497971][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 969.505975][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 969.513979][T19780] Uninit was stored to memory at: [ 969.519020][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.524751][T19780] __msan_chain_origin+0x57/0xa0 [ 969.529698][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.534812][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.539754][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.544272][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.548950][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.555022][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.561179][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.566384][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.571240][T19780] do_SYSENTER_32+0x73/0x90 [ 969.575747][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.582175][T19780] [ 969.584494][T19780] Uninit was stored to memory at: [ 969.589533][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.595267][T19780] __msan_chain_origin+0x57/0xa0 [ 969.600213][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.605329][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.610290][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.614798][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.619480][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.625554][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.631713][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.636914][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.641770][T19780] do_SYSENTER_32+0x73/0x90 [ 969.646277][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.652591][T19780] [ 969.654911][T19780] Uninit was stored to memory at: [ 969.659944][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.665699][T19780] __msan_chain_origin+0x57/0xa0 [ 969.670635][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.675750][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.680692][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.685286][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.689963][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.696036][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.702194][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.707399][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.712250][T19780] do_SYSENTER_32+0x73/0x90 [ 969.716771][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.723085][T19780] [ 969.725407][T19780] Uninit was stored to memory at: [ 969.730441][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.736166][T19780] __msan_chain_origin+0x57/0xa0 [ 969.741106][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.746237][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.751186][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.755695][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.760374][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.766445][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.772604][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.777810][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.782668][T19780] do_SYSENTER_32+0x73/0x90 [ 969.787187][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.793591][T19780] [ 969.795914][T19780] Uninit was stored to memory at: [ 969.800948][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.806673][T19780] __msan_chain_origin+0x57/0xa0 [ 969.811612][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.816748][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.821692][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.826205][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.830886][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.836961][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.843124][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.848329][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.853184][T19780] do_SYSENTER_32+0x73/0x90 [ 969.857691][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.864014][T19780] [ 969.866336][T19780] Uninit was stored to memory at: [ 969.871370][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.877099][T19780] __msan_chain_origin+0x57/0xa0 [ 969.882040][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.887156][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.892098][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.896610][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.901329][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.907403][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.913561][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.918767][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.923625][T19780] do_SYSENTER_32+0x73/0x90 [ 969.928132][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 969.934446][T19780] [ 969.936768][T19780] Uninit was stored to memory at: [ 969.941799][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 969.947526][T19780] __msan_chain_origin+0x57/0xa0 [ 969.952473][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 969.957584][T19780] get_compat_msghdr+0x108/0x2b0 [ 969.962524][T19780] do_recvmmsg+0xdc7/0x22e0 [ 969.967029][T19780] __sys_recvmmsg+0x340/0x5f0 [ 969.971708][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 969.977781][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 969.983942][T19780] __do_fast_syscall_32+0x129/0x180 [ 969.989147][T19780] do_fast_syscall_32+0x6a/0xc0 [ 969.994009][T19780] do_SYSENTER_32+0x73/0x90 [ 969.998515][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.004828][T19780] [ 970.007162][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 970.013866][T19780] do_recvmmsg+0xc2/0x22e0 [ 970.018284][T19780] do_recvmmsg+0xc2/0x22e0 [ 970.356621][T19780] not chained 100000 origins [ 970.361255][T19780] CPU: 1 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 970.369927][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 970.379983][T19780] Call Trace: [ 970.383289][T19780] dump_stack+0x21c/0x280 [ 970.387653][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 970.393379][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 970.399032][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.404239][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 970.409881][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 970.415968][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.421171][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 970.427246][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.432448][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 970.438086][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 970.444163][T19780] ? _copy_from_user+0x201/0x310 [ 970.449107][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.454311][T19780] __msan_chain_origin+0x57/0xa0 [ 970.459250][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.464371][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.469316][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.473825][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.479030][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.484248][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 970.489899][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 970.495201][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 970.499975][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.504668][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 970.510828][T19780] ? kmsan_get_metadata+0x116/0x180 [ 970.516039][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.522117][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.528318][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.533529][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.538384][T19780] do_SYSENTER_32+0x73/0x90 [ 970.542927][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.549254][T19780] RIP: 0023:0xf7f79549 [ 970.553339][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 970.572950][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 970.581376][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 970.589354][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 970.597444][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 970.605433][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 970.613411][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 970.621388][T19780] Uninit was stored to memory at: [ 970.626429][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.632155][T19780] __msan_chain_origin+0x57/0xa0 [ 970.637120][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.642235][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.647197][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.651708][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.656396][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.662495][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.668658][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.673898][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.678753][T19780] do_SYSENTER_32+0x73/0x90 [ 970.683265][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.689579][T19780] [ 970.691904][T19780] Uninit was stored to memory at: [ 970.696940][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.702666][T19780] __msan_chain_origin+0x57/0xa0 [ 970.707607][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.712720][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.717665][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.722171][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.726856][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.733024][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.739185][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.744387][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.749270][T19780] do_SYSENTER_32+0x73/0x90 [ 970.753783][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.760091][T19780] [ 970.762412][T19780] Uninit was stored to memory at: [ 970.767444][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.773163][T19780] __msan_chain_origin+0x57/0xa0 [ 970.778099][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.783220][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.788160][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.792664][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.797346][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.803416][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.809571][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.814803][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.819657][T19780] do_SYSENTER_32+0x73/0x90 [ 970.824162][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.830476][T19780] [ 970.832798][T19780] Uninit was stored to memory at: [ 970.837831][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.843554][T19780] __msan_chain_origin+0x57/0xa0 [ 970.848496][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.853611][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.858550][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.863054][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.867761][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.873830][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.879984][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.885189][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.890038][T19780] do_SYSENTER_32+0x73/0x90 [ 970.894541][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.900853][T19780] [ 970.903173][T19780] Uninit was stored to memory at: [ 970.908209][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.913933][T19780] __msan_chain_origin+0x57/0xa0 [ 970.918873][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.923990][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.928932][T19780] do_recvmmsg+0xdc7/0x22e0 [ 970.933438][T19780] __sys_recvmmsg+0x340/0x5f0 [ 970.938124][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 970.944208][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 970.950378][T19780] __do_fast_syscall_32+0x129/0x180 [ 970.955585][T19780] do_fast_syscall_32+0x6a/0xc0 [ 970.960449][T19780] do_SYSENTER_32+0x73/0x90 [ 970.964965][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 970.971279][T19780] [ 970.973602][T19780] Uninit was stored to memory at: [ 970.978640][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 970.984369][T19780] __msan_chain_origin+0x57/0xa0 [ 970.989313][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 970.994427][T19780] get_compat_msghdr+0x108/0x2b0 [ 970.999370][T19780] do_recvmmsg+0xdc7/0x22e0 [ 971.003878][T19780] __sys_recvmmsg+0x340/0x5f0 [ 971.008560][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 971.014629][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 971.020788][T19780] __do_fast_syscall_32+0x129/0x180 [ 971.025992][T19780] do_fast_syscall_32+0x6a/0xc0 [ 971.030843][T19780] do_SYSENTER_32+0x73/0x90 [ 971.035351][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 971.041662][T19780] [ 971.043982][T19780] Uninit was stored to memory at: [ 971.049015][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 971.054743][T19780] __msan_chain_origin+0x57/0xa0 [ 971.059685][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 971.064820][T19780] get_compat_msghdr+0x108/0x2b0 [ 971.069764][T19780] do_recvmmsg+0xdc7/0x22e0 [ 971.074270][T19780] __sys_recvmmsg+0x340/0x5f0 [ 971.078951][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 971.085023][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 971.091181][T19780] __do_fast_syscall_32+0x129/0x180 [ 971.096386][T19780] do_fast_syscall_32+0x6a/0xc0 [ 971.101241][T19780] do_SYSENTER_32+0x73/0x90 [ 971.105750][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 971.112063][T19780] [ 971.114382][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 971.121084][T19780] do_recvmmsg+0xc2/0x22e0 [ 971.125507][T19780] do_recvmmsg+0xc2/0x22e0 [ 971.592017][T19780] not chained 110000 origins [ 971.596650][T19780] CPU: 1 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 971.605321][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 971.615379][T19780] Call Trace: [ 971.618682][T19780] dump_stack+0x21c/0x280 [ 971.623028][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 971.628880][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 971.634551][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.639767][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 971.645422][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 971.651490][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.656693][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 971.662505][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.667711][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 971.673353][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 971.679430][T19780] ? _copy_from_user+0x201/0x310 [ 971.684374][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.689576][T19780] __msan_chain_origin+0x57/0xa0 [ 971.694520][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 971.699636][T19780] get_compat_msghdr+0x108/0x2b0 [ 971.704585][T19780] do_recvmmsg+0xdc7/0x22e0 [ 971.709097][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.714308][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.719515][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 971.725160][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 971.730453][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 971.735224][T19780] __sys_recvmmsg+0x340/0x5f0 [ 971.739905][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 971.745714][T19780] ? kmsan_get_metadata+0x116/0x180 [ 971.750919][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 971.757083][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 971.763248][T19780] __do_fast_syscall_32+0x129/0x180 [ 971.768451][T19780] do_fast_syscall_32+0x6a/0xc0 [ 971.773306][T19780] do_SYSENTER_32+0x73/0x90 [ 971.777812][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 971.784142][T19780] RIP: 0023:0xf7f79549 [ 971.788396][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 971.808004][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 971.816422][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 971.824396][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 971.832370][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 971.840347][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 971.848323][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 971.856295][T19780] Uninit was stored to memory at: [ 971.861335][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 971.867060][T19780] __msan_chain_origin+0x57/0xa0 [ 971.871999][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 971.877109][T19780] get_compat_msghdr+0x108/0x2b0 [ 971.882053][T19780] do_recvmmsg+0xdc7/0x22e0 [ 971.886557][T19780] __sys_recvmmsg+0x340/0x5f0 [ 971.891233][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 971.897305][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 971.903460][T19780] __do_fast_syscall_32+0x129/0x180 [ 971.908659][T19780] do_fast_syscall_32+0x6a/0xc0 [ 971.913511][T19780] do_SYSENTER_32+0x73/0x90 [ 971.918015][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 971.924326][T19780] [ 971.926643][T19780] Uninit was stored to memory at: [ 971.931701][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 971.937424][T19780] __msan_chain_origin+0x57/0xa0 [ 971.942377][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 971.947492][T19780] get_compat_msghdr+0x108/0x2b0 [ 971.952435][T19780] do_recvmmsg+0xdc7/0x22e0 [ 971.956946][T19780] __sys_recvmmsg+0x340/0x5f0 [ 971.961628][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 971.967699][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 971.973889][T19780] __do_fast_syscall_32+0x129/0x180 [ 971.979095][T19780] do_fast_syscall_32+0x6a/0xc0 [ 971.983953][T19780] do_SYSENTER_32+0x73/0x90 [ 971.988458][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 971.994771][T19780] [ 971.997089][T19780] Uninit was stored to memory at: [ 972.003255][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.008980][T19780] __msan_chain_origin+0x57/0xa0 [ 972.013919][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.019029][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.023973][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.028476][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.033161][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.039232][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.045390][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.050592][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.055442][T19780] do_SYSENTER_32+0x73/0x90 [ 972.059948][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.066266][T19780] [ 972.068594][T19780] Uninit was stored to memory at: [ 972.073629][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.079353][T19780] __msan_chain_origin+0x57/0xa0 [ 972.084325][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.089437][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.094381][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.098894][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.103573][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.109645][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.115803][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.121004][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.125859][T19780] do_SYSENTER_32+0x73/0x90 [ 972.130363][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.136677][T19780] [ 972.138996][T19780] Uninit was stored to memory at: [ 972.144030][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.149757][T19780] __msan_chain_origin+0x57/0xa0 [ 972.154698][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.159811][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.164754][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.169266][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.173949][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.180020][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.186181][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.191383][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.196240][T19780] do_SYSENTER_32+0x73/0x90 [ 972.200755][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.207072][T19780] [ 972.209395][T19780] Uninit was stored to memory at: [ 972.214433][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.220167][T19780] __msan_chain_origin+0x57/0xa0 [ 972.225134][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.230249][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.235193][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.239701][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.244382][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.250457][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.256643][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.261846][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.266699][T19780] do_SYSENTER_32+0x73/0x90 [ 972.271205][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.277513][T19780] [ 972.279830][T19780] Uninit was stored to memory at: [ 972.284862][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.290586][T19780] __msan_chain_origin+0x57/0xa0 [ 972.295525][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.300637][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.305576][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.310079][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.314757][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.320827][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.326983][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.332187][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.337041][T19780] do_SYSENTER_32+0x73/0x90 [ 972.341550][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.347861][T19780] [ 972.350189][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 972.356871][T19780] do_recvmmsg+0xc2/0x22e0 [ 972.361292][T19780] do_recvmmsg+0xc2/0x22e0 [ 972.683801][T19780] not chained 120000 origins [ 972.688458][T19780] CPU: 1 PID: 19780 Comm: syz-executor.5 Not tainted 5.9.0-rc8-syzkaller #0 [ 972.697152][T19780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 972.707209][T19780] Call Trace: [ 972.710516][T19780] dump_stack+0x21c/0x280 [ 972.714860][T19780] kmsan_internal_chain_origin+0x6f/0x130 [ 972.720586][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 972.726221][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.731424][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 972.737069][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 972.743137][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.748340][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 972.754147][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.759352][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 972.765016][T19780] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 972.771089][T19780] ? _copy_from_user+0x201/0x310 [ 972.776030][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.781240][T19780] __msan_chain_origin+0x57/0xa0 [ 972.786185][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.791328][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.796275][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.800785][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.805993][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.811198][T19780] ? kmsan_internal_set_origin+0x85/0xc0 [ 972.816839][T19780] ? __msan_poison_alloca+0xe9/0x110 [ 972.822126][T19780] ? __sys_recvmmsg+0xb5/0x5f0 [ 972.826896][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.831578][T19780] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 972.837388][T19780] ? kmsan_get_metadata+0x116/0x180 [ 972.842594][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.848669][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.854831][T19780] __do_fast_syscall_32+0x129/0x180 [ 972.860033][T19780] do_fast_syscall_32+0x6a/0xc0 [ 972.864889][T19780] do_SYSENTER_32+0x73/0x90 [ 972.869397][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 972.875726][T19780] RIP: 0023:0xf7f79549 [ 972.879796][T19780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 972.899402][T19780] RSP: 002b:00000000f55520cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 972.907819][T19780] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 972.915791][T19780] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000 [ 972.923762][T19780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 972.931735][T19780] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 972.939707][T19780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 972.947680][T19780] Uninit was stored to memory at: [ 972.952715][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 972.958446][T19780] __msan_chain_origin+0x57/0xa0 [ 972.963388][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 972.968540][T19780] get_compat_msghdr+0x108/0x2b0 [ 972.973485][T19780] do_recvmmsg+0xdc7/0x22e0 [ 972.978076][T19780] __sys_recvmmsg+0x340/0x5f0 [ 972.982753][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 972.988820][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 972.994981][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.000182][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.005034][T19780] do_SYSENTER_32+0x73/0x90 [ 973.009539][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.015850][T19780] [ 973.018171][T19780] Uninit was stored to memory at: [ 973.023201][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.028927][T19780] __msan_chain_origin+0x57/0xa0 [ 973.033865][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.038977][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.043937][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.048447][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.053128][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.059240][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.065398][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.070600][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.075457][T19780] do_SYSENTER_32+0x73/0x90 [ 973.079963][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.086308][T19780] [ 973.088627][T19780] Uninit was stored to memory at: [ 973.093658][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.099401][T19780] __msan_chain_origin+0x57/0xa0 [ 973.104344][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.109458][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.114399][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.118907][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.123584][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.129650][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.135808][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.141004][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.145857][T19780] do_SYSENTER_32+0x73/0x90 [ 973.150362][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.156678][T19780] [ 973.158998][T19780] Uninit was stored to memory at: [ 973.164031][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.169752][T19780] __msan_chain_origin+0x57/0xa0 [ 973.174693][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.179897][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.184838][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.189344][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.194023][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.200114][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.206274][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.211479][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.216330][T19780] do_SYSENTER_32+0x73/0x90 [ 973.220835][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.227145][T19780] [ 973.229461][T19780] Uninit was stored to memory at: [ 973.234492][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.240220][T19780] __msan_chain_origin+0x57/0xa0 [ 973.245161][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.250273][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.255212][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.259715][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.264396][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.270468][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.276649][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.281851][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.286708][T19780] do_SYSENTER_32+0x73/0x90 [ 973.292777][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.299089][T19780] [ 973.301409][T19780] Uninit was stored to memory at: [ 973.306450][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.312178][T19780] __msan_chain_origin+0x57/0xa0 [ 973.317116][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.322224][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.327168][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.331672][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.336355][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.342428][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.348589][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.353789][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.358642][T19780] do_SYSENTER_32+0x73/0x90 [ 973.363148][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.369461][T19780] [ 973.371782][T19780] Uninit was stored to memory at: [ 973.376818][T19780] kmsan_internal_chain_origin+0xad/0x130 [ 973.382657][T19780] __msan_chain_origin+0x57/0xa0 [ 973.387600][T19780] __get_compat_msghdr+0x6db/0x9d0 [ 973.392712][T19780] get_compat_msghdr+0x108/0x2b0 [ 973.397653][T19780] do_recvmmsg+0xdc7/0x22e0 [ 973.402159][T19780] __sys_recvmmsg+0x340/0x5f0 [ 973.406874][T19780] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 973.412943][T19780] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 973.419209][T19780] __do_fast_syscall_32+0x129/0x180 [ 973.424412][T19780] do_fast_syscall_32+0x6a/0xc0 [ 973.429271][T19780] do_SYSENTER_32+0x73/0x90 [ 973.433780][T19780] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 973.440093][T19780] [ 973.442416][T19780] Local variable ----msg_sys@do_recvmmsg created at: [ 973.449097][T19780] do_recvmmsg+0xc2/0x22e0 [ 973.453516][T19780] do_recvmmsg+0xc2/0x22e0 16:21:33 executing program 5: socketpair(0x2b, 0x0, 0x0, &(0x7f0000000300)) 16:21:33 executing program 2: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, @isdn, @rc, @xdp}) 16:21:33 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11900}], 0x1}, 0x0) 16:21:33 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000002e40)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@sndinfo={0x20, 0x84, 0xa}], 0x20}], 0x1, 0x0) 16:21:33 executing program 1: socket$inet(0x2, 0x3, 0x5) 16:21:33 executing program 4: socketpair(0x22, 0x0, 0xffffffff, &(0x7f0000000000)) 16:21:33 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$tipc(r0, 0x0, 0x0) 16:21:33 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000001b80)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000440)=[{&(0x7f0000001c00)="f3", 0x1}], 0x1, &(0x7f0000001c80)=ANY=[@ANYBLOB=' '], 0x20}], 0x1, 0x2400c0d0) 16:21:33 executing program 1: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000040)) 16:21:33 executing program 2: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x10) 16:21:33 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000002e40)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@sndinfo={0x20, 0x84, 0x5}], 0x20}], 0x1, 0x0) 16:21:33 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x119d8}], 0x1}, 0x0) 16:21:34 executing program 4: 16:21:34 executing program 1: 16:21:34 executing program 3: 16:21:34 executing program 2: 16:21:34 executing program 5: 16:21:34 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11afc}], 0x1}, 0x0) 16:21:34 executing program 4: 16:21:35 executing program 2: 16:21:35 executing program 1: 16:21:35 executing program 3: 16:21:35 executing program 5: 16:21:35 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11bd4}], 0x1}, 0x0) 16:21:35 executing program 4: 16:21:35 executing program 1: 16:21:35 executing program 2: 16:21:35 executing program 3: 16:21:36 executing program 5: 16:21:36 executing program 4: 16:21:36 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11cf8}], 0x1}, 0x0) 16:21:36 executing program 1: 16:21:36 executing program 2: 16:21:36 executing program 3: 16:21:36 executing program 5: 16:21:36 executing program 1: 16:21:36 executing program 4: 16:21:36 executing program 2: 16:21:37 executing program 3: 16:21:37 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11dd0}], 0x1}, 0x0) 16:21:37 executing program 5: 16:21:37 executing program 1: 16:21:37 executing program 4: 16:21:37 executing program 2: 16:21:37 executing program 3: 16:21:37 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11ef4}], 0x1}, 0x0) 16:21:38 executing program 5: 16:21:38 executing program 1: 16:21:38 executing program 4: 16:21:38 executing program 3: 16:21:38 executing program 2: 16:21:38 executing program 5: 16:21:38 executing program 1: 16:21:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x11fcc}], 0x1}, 0x0) 16:21:38 executing program 3: 16:21:38 executing program 4: 16:21:38 executing program 2: 16:21:39 executing program 1: 16:21:39 executing program 5: 16:21:39 executing program 2: 16:21:39 executing program 3: 16:21:39 executing program 4: 16:21:39 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x120f0}], 0x1}, 0x0) 16:21:39 executing program 1: 16:21:39 executing program 5: 16:21:40 executing program 3: 16:21:40 executing program 2: 16:21:40 executing program 4: 16:21:40 executing program 1: 16:21:40 executing program 5: 16:21:40 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x121c8}], 0x1}, 0x0) 16:21:40 executing program 3: 16:21:40 executing program 2: 16:21:40 executing program 4: 16:21:41 executing program 1: 16:21:41 executing program 5: 16:21:41 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x122ec}], 0x1}, 0x0) 16:21:41 executing program 3: 16:21:41 executing program 2: 16:21:41 executing program 4: 16:21:41 executing program 1: 16:21:41 executing program 5: 16:21:42 executing program 3: 16:21:42 executing program 2: 16:21:42 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x123c4}], 0x1}, 0x0) 16:21:42 executing program 4: 16:21:42 executing program 5: 16:21:42 executing program 1: 16:21:42 executing program 3: 16:21:42 executing program 2: 16:21:42 executing program 1: 16:21:42 executing program 4: 16:21:43 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x124e8}], 0x1}, 0x0) 16:21:43 executing program 5: 16:21:43 executing program 3: 16:21:43 executing program 2: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000840)='/dev/vhost-net\x00', 0x2, 0x0) write$vhost_msg_v2(r0, &(0x7f0000000c80)={0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}}, 0x48) 16:21:43 executing program 1: io_setup(0x5, &(0x7f0000000280)=0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x1) io_submit(r0, 0x1, &(0x7f00000015c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x2, 0x0, r1, 0x0, 0x2}]) 16:21:43 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xdb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:43 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0) timerfd_gettime(r0, 0x0) 16:21:43 executing program 3: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8981, 0x0) 16:21:43 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x125c0}], 0x1}, 0x0) 16:21:44 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x80200003, 0x2) write$vhost_msg_v2(r0, &(0x7f0000000340)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) 16:21:44 executing program 1: r0 = socket(0x2, 0xa, 0x0) recvmmsg(r0, &(0x7f0000001680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 16:21:44 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x2, 0x0) 16:21:44 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b69, &(0x7f0000000000)) 16:21:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000000)={0x0, 0xffe2, &(0x7f0000000080)={0x0, 0x2a}}, 0x0) 16:21:44 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x126e4}], 0x1}, 0x0) 16:21:44 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:44 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:45 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x540b, &(0x7f0000000000)) 16:21:45 executing program 3: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x4, r1, 0x0) 16:21:45 executing program 2: io_setup(0x5, &(0x7f0000000280)) io_setup(0x3ff, &(0x7f0000000000)) io_setup(0x5, &(0x7f0000003300)) 16:21:45 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x127bc}], 0x1}, 0x0) 16:21:45 executing program 5: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:45 executing program 1: io_setup(0x40, &(0x7f0000000040)=0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) io_submit(r0, 0x1, &(0x7f0000000400)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x0, r1, &(0x7f0000000080)}]) 16:21:45 executing program 4: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x5411, 0x0) 16:21:45 executing program 3: shmget$private(0x0, 0x2000, 0x0, &(0x7f0000f50000/0x2000)=nil) 16:21:46 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:46 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x16, 0x14, 0x0, &(0x7f0000000080)="aa99c5168950e0d319060096af8cc3c7e43e23a40274e899cad7e8010a8720636b2747c645790d5ca9a4e48295c7d0061c53543c2e5a26b407e448a4b64221fb72133cfe38a1fa9998a455325b41eb5d613b3ef2074b95f40861a7e8d9f70d4ecc05e4fdd04a821755ebd1494e680797a12a271793c8b23f9b2407865a8ce77bbdb969660d0750c184be6dc313e307d17db1065a1e7d715193b1d040ba1df20a4c27df0545ebdc72067b66986d624df6136ced203577ba271a6eef73a1288f5d3adf260ef2569eaa508a70a63b6ddb4f866b856442bd7105735c5fecef7d7555467679981f19c0158c387af3c4427aa138a6db044f0d5b4a058175f65e9d32a7bc076b1cc626f34a1c3785a6e8d0fdf302e67a6eb21897e612b6df5b304da1b0a7f1e301da40eb56c94783461e81b242ef40418624b70e50eed0a0185cfde7bb275c9d1c457cd2971fe77f034a26e31569bc3f30b4fc51512e000c03f3eaf4cecde91904f3c4f47566dccc2901e2dc9cfbe3a5581569c3a147b516fa1ace705fee31e9bc6f8e554218279615ceb2e9e140267d2eb3e38286fcdc3fbd6837c1e508329b5156d34f376fc1044a53be9a1d566e46c37335825f75f9db6a2d0da0225d01e10db60c39515a87b6ff88ea0cd6e195719c07218f79713bbab0a7bfc7ab2dd0cb058c761e901925cdd952e4318d4680aa3912be0059be70670e957bbb9ff9f5acbd15ace294a258ab45210f120aaf2f1989f42ab2a58887e89c6d0b1c62d5e9c30b38f5f1a902b32588485460836a122e77976c405e55530898e4e286b8d8926bd5e8502aeb4826e2952e0fc20ae09152ec1e0d94600de5ec504c5d498daf2ed2c88094cf6b572e97bc8fb6b1d90df08d1c79db5ebe4c4eded6b0224648c343a9ebd123c56c452b38acc1ebd58cb2426d171695435d2661cc4d57efae5cf47d25b5cfad7c1b2b520f9aff539522204724a39debc8589816aade41610d66223a6c170ef64dd74b47422ad235a5414c851875d5684cd575610d118b6f65c98f4afc7ea358e21438defece94af90455c342be983fdc7b242e96587f644ee7db42586ef24ee3006d42509d471e372ce0be715e134d0d3fc0292cb4c6db16c4ce9d63e0bdf93d5022ff82d230a495aa3cd5b4e05c8aafb650561a01506bda9a7fae3aa4e915782cc97d046cddb5f83bf5fb396bbe3449a306dbd1d403260b77e124bae18121157b198938bd5204a504c74299d85e1177ae221378ac809316759caf1f1685c64322805cf95fc586364358804c9cea2e074b33ce64495a9a9a7fde9505fb393e82d6244a56416733b05171833add9b120ffaa1c38550285f322620c3a4c176791602e356440acc01efd0949c8938180d197948d61425df842959372354288032baa65fd0b77dbc47551a6f00c78af6226dfdff1789b6706559499"}) 16:21:46 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x128e0}], 0x1}, 0x0) 16:21:46 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x40) 16:21:46 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f00000000c0)) 16:21:46 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) recvmmsg(r0, &(0x7f0000008340)=[{{0x0, 0x0, 0x0, 0x4}}], 0x1, 0x0, 0x0) 16:21:46 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:47 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:21:47 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) r1 = dup(r0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000000)={0x0, 0x0, {0x0, 0x0, 0x0, 0x18, 0x0, 0x38c}}) 16:21:47 executing program 1: shmat(0x0, &(0x7f0000d51000/0x4000)=nil, 0xc000) 16:21:47 executing program 3: bpf$MAP_CREATE(0xb, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:21:47 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x129b8}], 0x1}, 0x0) 16:21:47 executing program 4: r0 = syz_open_dev$rtc(&(0x7f0000000040)='/dev/rtc#\x00', 0x0, 0x200000) fcntl$F_SET_RW_HINT(r0, 0x40c, 0x0) 16:21:47 executing program 5: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x1274, 0x0) 16:21:47 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x5, r0, 0x0) 16:21:47 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:47 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0xc020660b, 0x0) 16:21:48 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12adc}], 0x1}, 0x0) 16:21:48 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000180)=0x85d, 0x8) 16:21:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x20}, 0x1, 0x0, 0xb839}, 0x0) 16:21:48 executing program 2: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8903, 0x0) 16:21:48 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000017c0)={@in={{0x2, 0x0, @multicast1}}, 0x0, 0x0, 0x0, 0x0, "311f2620b053e7f277bb92406fe90a669719313218f1ec8a46c835d25a080c20caf7f88c6150e10ddcc764e66918334b4b34e6d44895136e5aaea1414f7182fbfad3f45d660922edb1aad94cf232dc7a"}, 0xd8) 16:21:48 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000180), 0x4) 16:21:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12bb4}], 0x1}, 0x0) 16:21:49 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private1}}) 16:21:49 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x0, "1ad668c99b7a5ce0aff568e61be005671b6ce07bc74bc8d45c88752ce5a4774fffa9420e7b7c6d761788b0e5f96da8af12c8750c9306a23d6a04af22101b3a93", "331515d659567330a7bf957faf88fe836cf415ca6b7d88617875181b1f03c78c"}) 16:21:49 executing program 4: bpf$MAP_CREATE(0x3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:21:49 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x4020940d, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:21:49 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b46, &(0x7f0000000000)) 16:21:49 executing program 5: socket$nl_audit(0x10, 0x3, 0x9) eventfd(0x3) syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0x3, 0x0) syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0x3, 0x0) syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0x3, 0x0) pselect6(0x40, &(0x7f0000000100)={0xff}, 0x0, 0x0, 0x0, 0x0) 16:21:49 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="64000000020101010000000000000000010000062c"], 0x64}}, 0x0) 16:21:49 executing program 4: shmat(0x0, &(0x7f0000fa7000/0x4000)=nil, 0x4800) shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) 16:21:49 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8927, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:21:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12cd8}], 0x1}, 0x0) 16:21:49 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000040)={0x3, 0x7ff}) [ 990.696689][T20139] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.2'. 16:21:50 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000740)='/dev/vcs#\x00', 0x0, 0x1) write$vhost_msg_v2(r0, &(0x7f00000017c0)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) 16:21:50 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4b, &(0x7f0000000000)={0x2d10}) 16:21:50 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x5429, 0x0) 16:21:50 executing program 3: openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x9cc2ac08c394e86b, 0x0) 16:21:50 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12db0}], 0x1}, 0x0) 16:21:51 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0x1a, 0x0, &(0x7f0000000180)) 16:21:51 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:51 executing program 4: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0xe, r1, 0x0) 16:21:51 executing program 1: prctl$PR_MCE_KILL(0x2, 0xb05400, 0x0) 16:21:51 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x20}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r1, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={0x0}}, 0x0) 16:21:51 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_udp_int(r0, 0x11, 0xa, 0x0, &(0x7f0000000040)) 16:21:51 executing program 4: r0 = syz_open_dev$vcsu(&(0x7f0000000180)='/dev/vcsu#\x00', 0x5fc, 0x0) poll(&(0x7f0000000340)=[{r0}], 0x1, 0x4) 16:21:51 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:52 executing program 3: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x3, r0, 0x0) keyctl$clear(0x7, r0) 16:21:52 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12ed4}], 0x1}, 0x0) 16:21:52 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000000)={0x0, 0xffe2, &(0x7f0000000080)={0x0, 0x7ffff000}}, 0x0) 16:21:52 executing program 4: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x890d, 0x0) 16:21:52 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:52 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x9, r0, 0xfffffffffffffffc) 16:21:52 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x890b, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:21:53 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x12fac}], 0x1}, 0x0) 16:21:53 executing program 5: r0 = socket(0x2, 0xa, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x300}, 0x0) 16:21:53 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8912, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:21:53 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x40000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:53 executing program 2: keyctl$unlink(0xf, 0x0, 0x0) 16:21:53 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x4, 0x0, 0x4, 0x0, 0x0, 0x1}, 0x40) 16:21:53 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8916, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:21:53 executing program 4: r0 = socket(0x2, 0xa, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x10}, 0x0) 16:21:53 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4a, &(0x7f0000000000)) 16:21:53 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000007e40)={0x2020}, 0x2020) 16:21:53 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x130d0}], 0x1}, 0x0) 16:21:53 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x204}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:21:54 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4bfb, &(0x7f0000000000)) 16:21:54 executing program 4: io_setup(0x5, &(0x7f0000000280)=0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x1) io_submit(r0, 0x1, &(0x7f00000015c0)=[&(0x7f0000000380)={0x0, 0x0, 0x2, 0x5, 0x0, r1, 0x0}]) 16:21:54 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'syz', 0x3}, &(0x7f00000001c0)='\x00', r0) 16:21:54 executing program 2: perf_event_open(&(0x7f0000000000)={0x6, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:54 executing program 3: keyctl$unlink(0xe, 0x0, 0x0) 16:21:54 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x131a8}], 0x1}, 0x0) 16:21:55 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b52, &(0x7f0000000000)) 16:21:55 executing program 2: openat$tun(0xffffffffffffff9c, &(0x7f0000008380)='/dev/net/tun\x00', 0x6000, 0x0) 16:21:55 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:55 executing program 4: perf_event_open(&(0x7f0000000000)={0x5, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:55 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x560d, &(0x7f0000000000)) 16:21:55 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x132cc}], 0x1}, 0x0) 16:21:55 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x1260, 0x0) 16:21:55 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f00000001c0)) 16:21:55 executing program 4: keyctl$unlink(0x11, 0x0, 0x0) 16:21:55 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x401870cc, 0x0) 16:21:55 executing program 5: keyctl$unlink(0x18, 0x0, 0x0) 16:21:56 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x133a4}], 0x1}, 0x0) 16:21:56 executing program 1: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x5460, &(0x7f0000000140)) 16:21:56 executing program 4: syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x4000) 16:21:56 executing program 2: openat$nvram(0xffffffffffffff9c, &(0x7f0000000540)='/dev/nvram\x00', 0x281, 0x0) 16:21:56 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0xd603, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:56 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f0000000140)={'sit0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @rand_addr=' \x01\x00'}}) 16:21:57 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x134c8}], 0x1}, 0x0) 16:21:57 executing program 1: socket$nl_netfilter(0x10, 0x3, 0xc) pselect6(0x40, &(0x7f0000000040), 0x0, &(0x7f00000000c0)={0x8}, &(0x7f0000000140), 0x0) 16:21:57 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:57 executing program 4: r0 = socket(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x541b, 0x0) 16:21:57 executing program 5: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40e, 0x0) 16:21:57 executing program 2: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x10, &(0x7f0000000180)) 16:21:57 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b6a, &(0x7f0000000000)) 16:21:57 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c03, 0x0) 16:21:57 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0xfffffdef}}, 0x0) 16:21:57 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) getsockopt(r0, 0x0, 0x0, 0x0, 0x0) 16:21:57 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x135a0}], 0x1}, 0x0) 16:21:58 executing program 2: add_key$keyring(&(0x7f00000000c0)='keyring\x00', 0x0, 0x0, 0x4000, 0x0) 16:21:58 executing program 3: socket(0x0, 0x4f92e5af07371db, 0x0) 16:21:58 executing program 5: io_setup(0x5, &(0x7f0000000280)=0x0) io_submit(r0, 0x1, &(0x7f00000015c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}]) 16:21:58 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x7004, 0x0) 16:21:58 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8916, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}) 16:21:58 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x136c4}], 0x1}, 0x0) 16:21:58 executing program 2: bpf$MAP_CREATE(0x7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:21:58 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b3a, &(0x7f0000000000)) 16:21:59 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}) 16:21:59 executing program 4: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x4, r1, r0) 16:21:59 executing program 5: prctl$PR_MCE_KILL(0x1d, 0x0, 0x0) 16:21:59 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, 0x0) 16:21:59 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1379c}], 0x1}, 0x0) 16:21:59 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:21:59 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000000)={0x0, 0xff02}) 16:21:59 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4a, 0x0) 16:21:59 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x20}, 0x1, 0x0, 0xf00}, 0x0) 16:22:00 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b65, &(0x7f0000000000)) 16:22:00 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b6b, &(0x7f0000000000)) 16:22:00 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private1, 0x0, 0x7}}) 16:22:00 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 16:22:00 executing program 4: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)='\xb4\x00', r0) 16:22:00 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x138c0}], 0x1}, 0x0) 16:22:00 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0xc0189436, 0x0) 16:22:00 executing program 3: add_key$keyring(&(0x7f0000000000)='keyring\x00', 0xfffffffffffffffe, 0x0, 0x0, 0x0) 16:22:01 executing program 5: bpf$MAP_CREATE(0xe, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:22:01 executing program 4: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:01 executing program 1: syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080)='NLBL_UNLBL\x00') r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x0, 0x2) write$vhost_msg_v2(r0, &(0x7f0000000340)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x20000388) 16:22:01 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001800)={'ip6tnl0\x00', &(0x7f0000001780)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private1}}) 16:22:01 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13998}], 0x1}, 0x0) 16:22:01 executing program 5: openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0x24080, 0x0) 16:22:01 executing program 3: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0xc0189436, &(0x7f0000000140)) 16:22:01 executing program 4: socketpair(0x10, 0x3, 0x1, &(0x7f0000000200)) 16:22:01 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000140)) 16:22:02 executing program 2: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x5, 0x0) 16:22:02 executing program 5: prctl$PR_MCE_KILL(0x27, 0x0, 0x3) 16:22:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13abc}], 0x1}, 0x0) 16:22:02 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b47, &(0x7f0000000000)={0x2d10}) 16:22:02 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000840)='/dev/vhost-net\x00', 0x2, 0x0) write$vhost_msg_v2(r0, &(0x7f0000000c80)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) 16:22:02 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ifreq(r0, 0x8920, &(0x7f0000000000)={'rose0\x00', @ifru_addrs=@isdn}) 16:22:02 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}) 16:22:02 executing program 5: bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:22:03 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13b94}], 0x1}, 0x0) 16:22:03 executing program 1: prctl$PR_MCE_KILL(0x2, 0x400000, 0x0) 16:22:03 executing program 3: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x86200, 0x0) 16:22:03 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40) 16:22:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:03 executing program 5: r0 = gettid() rt_sigqueueinfo(r0, 0x7, &(0x7f00000000c0)={0x0, 0x0, 0x8}) 16:22:03 executing program 1: openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self\x00', 0x111168, 0x0) 16:22:03 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000140)={'sit0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}) 16:22:03 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13cb8}], 0x1}, 0x0) 16:22:03 executing program 4: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000004740)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@cred], 0xffffffa1}, 0x0) 16:22:04 executing program 2: syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffffffffffffc873, 0x3c1100) 16:22:04 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x13, r0, 0x0) 16:22:04 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b33, &(0x7f0000000000)) 16:22:04 executing program 3: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, 0x0, r0) r2 = add_key$keyring(&(0x7f00000003c0)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, r1) keyctl$unlink(0x9, r2, 0xfffffffffffffffd) 16:22:04 executing program 4: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCETHTOOL(r0, 0x8910, &(0x7f0000000080)={'bridge0\x00', 0x0}) 16:22:04 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13d90}], 0x1}, 0x0) 16:22:04 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$unlink(0x9, r0, 0xfffffffffffffffd) keyctl$clear(0x7, r0) 16:22:04 executing program 5: syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0xffffffffffffff7d, 0x8040) 16:22:04 executing program 1: add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000180)='&#\x00', 0xfffffffffffffffd) 16:22:05 executing program 3: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x406, &(0x7f0000000180)) 16:22:05 executing program 4: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x6, r1, 0x0) 16:22:05 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13eb4}], 0x1}, 0x0) 16:22:05 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000980)={'veth1\x00', &(0x7f0000000940)=@ethtool_channels={0x3d}}) 16:22:05 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x9, r1, r0) 16:22:05 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b68, 0x0) [ 1006.135921][T20467] not chained 130000 origins [ 1006.140551][T20467] CPU: 0 PID: 20467 Comm: syz-executor.0 Not tainted 5.9.0-rc8-syzkaller #0 [ 1006.149265][T20467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1006.159324][T20467] Call Trace: [ 1006.162631][T20467] dump_stack+0x21c/0x280 [ 1006.166974][T20467] kmsan_internal_chain_origin+0x6f/0x130 [ 1006.172707][T20467] ? kmsan_internal_chain_origin+0xad/0x130 [ 1006.178607][T20467] ? __msan_chain_origin+0x57/0xa0 16:22:05 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x5450, 0x0) [ 1006.183745][T20467] ? sctp_chunk_fail+0x119/0x150 [ 1006.188699][T20467] ? __sctp_outq_teardown+0x112d/0x1600 [ 1006.194247][T20467] ? sctp_outq_free+0x37/0x40 [ 1006.198930][T20467] ? sctp_association_free+0x3f2/0x11a0 [ 1006.204480][T20467] ? sctp_do_sm+0x9185/0xa250 [ 1006.209182][T20467] ? sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.214350][T20467] ? sctp_inq_push+0x31c/0x440 [ 1006.219123][T20467] ? sctp_backlog_rcv+0x346/0x16c0 [ 1006.224240][T20467] ? __release_sock+0x26b/0x660 [ 1006.229094][T20467] ? release_sock+0x98/0x2d0 [ 1006.233689][T20467] ? sctp_wait_for_connect+0x4ad/0x970 [ 1006.239154][T20467] ? sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.244758][T20467] ? sctp_sendmsg+0x35b0/0x5c30 [ 1006.244791][T20467] ? inet_sendmsg+0x15b/0x1d0 [ 1006.244812][T20467] ? ____sys_sendmsg+0xc7a/0x1240 [ 1006.244833][T20467] ? __sys_sendmsg+0x6d5/0x830 [ 1006.244852][T20467] ? __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.244869][T20467] ? __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.244889][T20467] ? __do_fast_syscall_32+0x129/0x180 [ 1006.244904][T20467] ? do_fast_syscall_32+0x6a/0xc0 [ 1006.244920][T20467] ? do_SYSENTER_32+0x73/0x90 [ 1006.244938][T20467] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.244954][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.244969][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.244989][T20467] ? kmsan_internal_set_origin+0x85/0xc0 [ 1006.245004][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245019][T20467] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1006.245040][T20467] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1006.245057][T20467] ? __genradix_ptr+0x86f/0xbb0 [ 1006.245073][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245086][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245104][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.245123][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.245147][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.245162][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245180][T20467] sctp_outq_free+0x37/0x40 [ 1006.245198][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.245218][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.245245][T20467] ? kmsan_internal_set_origin+0x85/0xc0 [ 1006.245259][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245276][T20467] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1006.245295][T20467] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 1006.245309][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245325][T20467] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1006.245345][T20467] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1006.245369][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.245395][T20467] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0 [ 1006.245410][T20467] sctp_inq_push+0x31c/0x440 [ 1006.245431][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.245452][T20467] ? __msan_instrument_asm_store+0x25/0x130 [ 1006.245473][T20467] ? sctp_rcv+0x5f90/0x5f90 [ 1006.245490][T20467] __release_sock+0x26b/0x660 [ 1006.245509][T20467] release_sock+0x98/0x2d0 [ 1006.245525][T20467] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1006.245542][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.245565][T20467] ? init_wait_entry+0x190/0x190 [ 1006.245583][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.245607][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.245638][T20467] ? kmsan_get_metadata+0x116/0x180 [ 1006.245657][T20467] ? sctp_getsockopt+0x1e720/0x1e720 [ 1006.245674][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.245696][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.245718][T20467] ? inet_send_prepare+0x6b0/0x6b0 [ 1006.245737][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.245757][T20467] ? kmsan_copy_to_user+0x9c/0xb0 [ 1006.245784][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.245802][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.245821][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.245841][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.245860][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.245879][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.245892][T20467] RIP: 0023:0xf7fc7549 [ 1006.245911][T20467] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1006.245921][T20467] RSP: 002b:00000000f55c10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1006.245939][T20467] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000002001afc8 [ 1006.245950][T20467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1006.245960][T20467] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1006.245969][T20467] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1006.245980][T20467] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1006.245990][T20467] Uninit was stored to memory at: [ 1006.246011][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.246029][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.246046][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.246060][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.246074][T20467] sctp_outq_free+0x37/0x40 [ 1006.246091][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.246105][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.246121][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.246134][T20467] sctp_inq_push+0x31c/0x440 [ 1006.246150][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.246165][T20467] __release_sock+0x26b/0x660 [ 1006.246178][T20467] release_sock+0x98/0x2d0 [ 1006.246194][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.246210][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.246225][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.246241][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.246257][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.246273][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.246288][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.246303][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.246320][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.246336][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.246352][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.246369][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.246372][T20467] [ 1006.246376][T20467] Uninit was stored to memory at: [ 1006.246395][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.246413][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.246429][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.246444][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.246458][T20467] sctp_outq_free+0x37/0x40 [ 1006.246475][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.246489][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.246506][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.246520][T20467] sctp_inq_push+0x31c/0x440 [ 1006.246537][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.246551][T20467] __release_sock+0x26b/0x660 [ 1006.246565][T20467] release_sock+0x98/0x2d0 [ 1006.246582][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.246599][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.246615][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.246637][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.246656][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.246674][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.246689][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.246705][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.246722][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.246739][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.246755][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.246774][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.246777][T20467] [ 1006.246781][T20467] Uninit was stored to memory at: [ 1006.246801][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.246819][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.246837][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.246852][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.246866][T20467] sctp_outq_free+0x37/0x40 [ 1006.246883][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.246898][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.246915][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.246929][T20467] sctp_inq_push+0x31c/0x440 [ 1006.246946][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.246960][T20467] __release_sock+0x26b/0x660 [ 1006.246974][T20467] release_sock+0x98/0x2d0 [ 1006.246992][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.247009][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.247025][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.247040][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.247057][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.247075][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.247090][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.247106][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.247123][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.247139][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.247156][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.247174][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.247177][T20467] [ 1006.247181][T20467] Uninit was stored to memory at: [ 1006.247200][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.247218][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.247241][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.247257][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.247271][T20467] sctp_outq_free+0x37/0x40 [ 1006.247289][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.247303][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.247320][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.247335][T20467] sctp_inq_push+0x31c/0x440 [ 1006.247352][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.247367][T20467] __release_sock+0x26b/0x660 [ 1006.247380][T20467] release_sock+0x98/0x2d0 [ 1006.247397][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.247414][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.247430][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.247446][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.247464][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.247482][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.247497][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.247514][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.247531][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.247547][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.247564][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.247582][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.247585][T20467] [ 1006.247590][T20467] Uninit was stored to memory at: [ 1006.247610][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.247632][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.247649][T20467] sctp_chunk_fail+0x119/0x150 [ 1006.247665][T20467] __sctp_outq_teardown+0x112d/0x1600 [ 1006.247679][T20467] sctp_outq_free+0x37/0x40 [ 1006.247696][T20467] sctp_association_free+0x3f2/0x11a0 [ 1006.247711][T20467] sctp_do_sm+0x9185/0xa250 [ 1006.247728][T20467] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1006.247742][T20467] sctp_inq_push+0x31c/0x440 [ 1006.247759][T20467] sctp_backlog_rcv+0x346/0x16c0 [ 1006.247774][T20467] __release_sock+0x26b/0x660 [ 1006.247788][T20467] release_sock+0x98/0x2d0 [ 1006.247805][T20467] sctp_wait_for_connect+0x4ad/0x970 [ 1006.247822][T20467] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1006.247838][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.247854][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.247871][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.247888][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.247904][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.247919][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.247937][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.247952][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.247968][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.247986][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.247989][T20467] [ 1006.247994][T20467] Uninit was stored to memory at: [ 1006.248013][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.248030][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.248049][T20467] sctp_datamsg_from_user+0x1c89/0x23c0 [ 1006.248066][T20467] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1006.248082][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.248098][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.248115][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.248132][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.248147][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.248163][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1006.248180][T20467] __do_fast_syscall_32+0x129/0x180 [ 1006.248196][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1006.248212][T20467] do_SYSENTER_32+0x73/0x90 [ 1006.248230][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1006.248233][T20467] [ 1006.248237][T20467] Uninit was stored to memory at: [ 1006.248257][T20467] kmsan_internal_chain_origin+0xad/0x130 [ 1006.248275][T20467] __msan_chain_origin+0x57/0xa0 [ 1006.248293][T20467] sctp_datamsg_from_user+0x661/0x23c0 [ 1006.248311][T20467] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1006.248326][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1006.248343][T20467] inet_sendmsg+0x15b/0x1d0 [ 1006.248361][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1006.248376][T20467] __sys_sendmsg+0x6d5/0x830 [ 1006.248390][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1006.248438][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1007.392417][T20467] __do_fast_syscall_32+0x129/0x180 [ 1007.397606][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1007.402445][T20467] do_SYSENTER_32+0x73/0x90 [ 1007.406939][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1007.413240][T20467] [ 1007.415548][T20467] Uninit was created at: [ 1007.419780][T20467] kmsan_internal_poison_shadow+0x5c/0xf0 [ 1007.425487][T20467] kmsan_slab_alloc+0x8d/0xe0 [ 1007.430149][T20467] kmem_cache_alloc_trace+0x61e/0xc90 [ 1007.435511][T20467] sctp_datamsg_from_user+0xf5/0x23c0 [ 1007.440871][T20467] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1007.446230][T20467] sctp_sendmsg+0x35b0/0x5c30 [ 1007.450891][T20467] inet_sendmsg+0x15b/0x1d0 [ 1007.455400][T20467] ____sys_sendmsg+0xc7a/0x1240 [ 1007.460240][T20467] __sys_sendmsg+0x6d5/0x830 [ 1007.464820][T20467] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1007.470121][T20467] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1007.475588][T20467] __do_fast_syscall_32+0x129/0x180 [ 1007.480780][T20467] do_fast_syscall_32+0x6a/0xc0 [ 1007.485641][T20467] do_SYSENTER_32+0x73/0x90 [ 1007.490225][T20467] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 16:22:07 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80287010, &(0x7f0000000140)) 16:22:07 executing program 2: syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/uts\x00') 16:22:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2={0xfc, 0x2, [], 0x1}}}) 16:22:07 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x8, r1, r0) 16:22:07 executing program 2: r0 = socket(0x2, 0xa, 0x0) recvmmsg(r0, &(0x7f0000001680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x1, 0x0) 16:22:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8982, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:08 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b60, &(0x7f0000000000)) 16:22:08 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x13f8c}], 0x1}, 0x0) 16:22:08 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x80247009, &(0x7f0000000140)) 16:22:08 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8923, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x1}}) 16:22:08 executing program 1: prctl$PR_MCE_KILL(0x2a, 0x0, 0x0) 16:22:08 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x5411, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:08 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b37, 0x0) 16:22:08 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000000)={'ip6gre0\x00', 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @dev, @mcast1}}) 16:22:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) recvmmsg(r0, &(0x7f0000008ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10002, 0x0) 16:22:09 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz', 0x1}, 0x0, r0) 16:22:09 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x125d, 0x0) 16:22:09 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x140b0}], 0x1}, 0x0) 16:22:09 executing program 3: set_mempolicy(0x2, &(0x7f0000000000)=0x80000001, 0x3) perf_event_open(&(0x7f0000000000)={0x2, 0x6f, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:09 executing program 4: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000000080)={0x1d8, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x1c5, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2248}, @generic="e46128b86fa91fb6f3654b497d2111f060cd70678a1766f7b0780783e11924e171990cd8f5555f5915f368cfed45bab50a2f1b4b09260534fdbea83eba575d7d45f749fe33ae4a726a814ab17675573e1c910db61d42f86f4ec3a76d8abd2b1a2227ece07f9ec0bcfb2ffa6937f021a1d87998a509599f1ff3f345ee77c442d2745aca206dfef3047ca28349e2ce88935d314c28fa46775088fbb6d4348e038955e4c8135cbdaf67b14ee583b71c1067ed36f7e0f729cf5516f16a55b63ddc669cd9a3849c3c82b048866b8d00", @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="5e0a480d277734c2dbc6e65bb69bf16574f29b43193b2ecf6bed851cd67e4205d79d4aa561e0ecafb35106e1522de59a26ec4808a70b932ef8985889a86d4aa01ae5a69bd0beb66b1a6f2d6fdf3b907fb6da2c605f3c2d80e7c8580e1010a8221f4bb54a8fa53c4b4e03c2dcd20ed3796bc873ca9a8a5fc1b1", @typed={0x10, 0x0, 0x0, 0x0, @str='}^\\\xec#*[.\x8c:\\\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev}, @generic="da4d5d5ae2ce1f40d86d35f50c3fb37db98dc63836d8d71fdb66ecec1dfb99336c6c8e14efc0791d1efc7644fc6e6f9a610c4c895888d6ff698e7c92fa1e15993f264be502624ac2f9414023ae2908"]}]}, 0x1d8}, {&(0x7f0000000280)={0x354, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x281, 0x0, 0x0, 0x1, [@generic="e10f79e899260618e1753b2dd80ffaaf48dbfd1e40b1310926d55bc80effd11725dffcd176cfdd09575e008ded90988f1d92adea74c53ed397405bbbe6da3ebc536ef6db4bff3943ddcc0286e90f7b99644506b4f5da70307cbb151b1c4818761804e756d2df7fb05dc982cf242aefcb6745cb6e1d809dbfdb46dd7de9d03ba208a4d3d05f7d98525376154bc4187ca6f233b1323c747f9a9740242a853c4ec6b79895cc797dfdf11ac5189a53e8b01406dd3d245d0b6784335a3ac2623186d497137c84d50c4a69c19f1d6bae9b9bca565c4f4c18c889795d4d9874bc", @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, [], 0x0, 0x0}}, @generic="d346542f21cc4de20aafc64306be6fff660ae4a7777f8febf537492eccc7f78b00a152834283310da6371942bd6f5331e01b771865dc714d2e83f26c5b3e1a2ba1e2bc62262edc4292c52ee2347f729a9a281745b4ea6e41550dc687c5fa79890a449891cc86394d2703f521343503bc1f0f499ea05bf7a69ad22345d7774015d6baa8d8bf6dda2af14475a415f7eb07ba6b835f9cae55b0f65598af6ca22e329110dcc7604f36a97478e9de5cd7e7bffa9a4f81d07b2dfea39b6346239eee7356d205ae7fa7e79edb76334773a57ce4f701f0d892457d25eaf829aae3b39fa7409dd8ac1411796bc9097e69ea9634bd", @typed={0x4}, @generic="11bf9ed2e177b4e61cb3f1ba2d1db5661742c29fbb2e5a2e94084f1a0627fd7cf90403bd11bfb636da3aac788ec038cb244f7b8cf7b3140ec21befde51f364f8de46080a0687e0b8a98aaf6b55a612e6c599784fed7792f2806f7da97a52548cd57db0303c1009dc85eba7963fe213b0105c790608b3125d21b33efd3153436d50197074", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x4}]}, @nested={0x31, 0x0, 0x0, 0x1, [@typed={0x4}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="6fc267f5269a314eb784fe24d8f02b222a5c3e8345af719c9cc9713201"]}, @generic="bbb54a690f4d308302d964ea7ccb9d9631b9cef8517ac0cd9c761cd97e918bb468a063968afd0ac662c6a2da7d6d52d1a59008c8dad901559eadc9246c6fdbe8be3ee72beb17069b17f412525e8fa4e9ea99ae24467a593af5ba459dcf8242b9c3753b197ab95e717df530c027054125b4b76e8ecae3b502939ffc37155a49766470ae5163335fe569"]}, 0x354}, {&(0x7f0000000600)={0x5d4, 0x0, 0x0, 0x0, 0x0, "", [@typed={0xc1, 0x0, 0x0, 0x0, @binary="d8e697ec88beca5c2040cdb0fd23af114783271eabede3096b28338c311c6a01eaf28c21cc7bfbad42d0532c67503f7056927846ce04e9f55c7a7420b9bc8ed507d37ce9160e009f507b59d4d1b76d240b49845cc30b818279e8374fa828c6d0df5439dc6520363281814c895741d0dda45f4add497bb0a62ebc9aff698ab55f4c54023dca9be27377d81c464677d13b90273d855ce7d61ecb88d14ba664d99a9180bcdf7128c639e9d58a0644ac57dba5c6cbd9ac929cfc957674f8fe"}, @nested={0x1d5, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @generic="1c646642c1a1b55b12a6ed7384d4c601fc1247449b2e51e5b0331a66d7a5a5f40dfc6615", @generic="e95106956e301618154434f85417c9ab9d981a446228f4df0d1ed6ed0f79d66b8cfc06547d674c39329e07b326bf3c4306803efbe401cb1ae7f124d3a71a74d813c743059554e3b1abeecf7af36a51f61ce162bb32b3517a8ec1c9bb486ed561f62ed74dbf5f7f8196653b411bea49fa2f3ba398aa82f7595223836c6ae373e342de3c7cc59e7e02f48f24e6ae03d80061a38b0e96a2355aca8b2642d82df0aeb75e8f43291d8e5eaf30208fe5fa900910f52b9f9ed45156a3dbdd10a99d1846997a2e13196ff50584b27feb6b73066022bc15291715835dc82f850bdaf52008c9eba6b24744021f270cdba34e6eadb8bcf6299a00c5e2646aebe6acf6", @generic="aa1fa6ee6003a627e8aed171a22ffd1e5c5bcffcc52e571b593bf8ec67e2e1ad609f2cba409a3e4f288482469c60dc0acb716584a263b09fc2ca774d3a64be26dda8962829f80258a7d05d2de65177ef61f805370ba58da2fafcaca7608b56d9b4e73d83fbff634e9d3ed3103e708d814eda374276f2ecb09e01662534a70b15752be9e569fdaf5faa9293dafee22941e82bd398f73abe37bf82652cba2aedee0e6242dc8af07606"]}, @typed={0x39, 0x0, 0x0, 0x0, @binary="867500ffe31ed7f5294627ac20ea5da99774b9826ff47a61c249205dcfb46e5e8f3912cb3f6eb1d1fb052f8d01335ccad4996b1532"}, @nested={0xa1, 0x0, 0x0, 0x1, [@generic="1ee1823013708bcc2711c1c68b72c1418e3b461c3b65d4fca43d32b7aeed0546f3d0bfcf0a02b4a4b5fad50e253197aa77b4651e4c50f0e6626c8deac5083d16371c725fd9087729b29cd511bbe9", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@remote}, @generic="f372cf2ba0acf0df716d742be28914dc197d542eb5aac22c1e4ea5b48ce471eb1295b426cde634189650cf653bf472bb3c082c3069ecda", @typed={0x7, 0x0, 0x0, 0x0, @str='$%\x00'}]}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@private}]}, @nested={0x9d, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="22cee7c2e17003eed270298b", @generic="6a5935aa5ada8057", @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@multicast1}, @generic="e580e0e81b52a073625b18669153100e6f47313834b5f6d22e460c609feadb939d82810723ca1260c47dff2400a6f686a53715d9a2ad69abbc106452a2bf3c17dfe01b5ce3a0d797939f896c3bea3f08f5f0bac843661fa78be3d8d1185a62eee8c6f2eff1a398c8bb2cdc50c5"]}, @generic="4b8c6b621d350d633c0e7a7de665d2355de5ece6d6f00cf41a75f32a07439beb30682de20d5a18d4fc92545b800503e7ecc3f6428e321ab248cfde77ee4260f4df078e24c1e81397bd20ba8575e552e0dbebbd067c76b7649db5a63e9f5d062d68a0ccd6806abb880f94fb01fdb5daa474ab3faa3ea43bb943b9456b78e5bd704264a4ecca2428c829e918b86aba69885d91d4c5616edf73ea1a7c50e6075095130095cf90136ccc547f22fd940f17b4554282d4d7545e597deb6b12ed55640ef4c965594ea6e0b964f9fd4b34b95ce603dfe9a1396a8c1a6707467437eced054df38d188cfdb1ecda5d214dab96dfb6c305599d3c1aebbde1", @nested={0x9d, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}, @generic="c281cb5dcc1e64155ad3f4871ce058a51cada00a5464987b6f7e75454547606289ce7fbfbe72aa25b990cc5eae08d84258e8987de875c8bda79ce952c3cb2ced197d84980c23ab03e2ac76e70cc6d5ee942cf47920ab067a4ffecec95f4cb712f15bf1b977ff9dbf6df68ea1c546db0b840de85bfef53993c6e1d5253d612cc9ea0fc4769f"]}]}, 0x5d4}, {&(0x7f0000000c00)={0x3c4, 0x0, 0x0, 0x0, 0x0, "", [@generic="1d0a57e1e8e3772d413fccdc15db27d4387fd13f61b9001663bed37da2f1d77f09f74552501f53733aed19b45ab7cdd6209f93007ae716187d2d6d30bcf3c718eb79fb2bcb82264b5ccc24d6aa824501a5a66b070cedd9a22a8316ea852a7a78c45bff8789b4ea15238a99e3fd4431b6b6945fb473f82f88e88b495c5a893637c1db64edd3433b5ae7d922ad5b7018a98170f677c3051fa8ae810aa8dc77baf22854b4e0", @typed={0x8, 0x0, 0x0, 0x0, @u32}, @nested={0xfd, 0x0, 0x0, 0x1, [@generic="67fcab6ca7d0e7edee4615f704a1a759ba84e35379f6bdccdcc7d3ed379988a5e86449fe4a3f61a82f7efc1561f8ffb614157b7c5df24d205b485f47ffad0f4c34a50d473267990534561ff317b2dd14505cb49586239cbae786ab44c2d24c6a39dd6b9c648a8129ff7c773d370c7a3410ddbda7c130923e8db73dffbcab4de1", @generic="2413e7b36a97a02a0240d3a81c5b6d4dd3802adca436c7de112b0f9039cb0affbaadeca63e9b27ce4aa3e2107d57adfc39f115cf511c6affd0d0eb4a7eaa43adebb225e409e50ad8f5f2393ffa3c1a79a107be001ca329e6217155f2f40228b86651422ffcc81262fd0d7a9867", @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, @generic="3ca35d20dbc5ad440bce309f66adacb8bf1dbe3174b7688dbc96d1de554ac53d9cabdf3671f8ac2f75ec64bde5403ca2a81843a4769d21dc516af11e42997bf366c14facde1593f2c55a23c28a", @generic="bdb384a96cb515a390a00a308516e57ce4d888b4228f763e98664e9945a09ff81d5c1236d3aa10c4f79043d535603559e4e1a03f26189d7d1b340a880e888d02023be078c526b24f35b6f7571de302a4f4ed53e3c9b8", @nested={0xe9, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}, @generic="361f59889dc26b1e3e4428d2c83e6237533a95e8ba522a73384645232d0a5de8c7ff91a3b656979a6e2fc4532ae5597fdefce72887f25cc2888baa0d51d8", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @generic="fda8bfecfa9c8bb40466f026bf661b2c5279e80a0c1bc248e8e12b6800a6aac875d6838f97e4dc1b66f795bc7edf00333048094275efcfe0ad0ef5afb99482c0bac4d90a62685b784a31219c217b03860990e3ef911345cb4b03badf1c9072aa80427145d4b243c53ce15a0b1f4021d40bb9bf5b361cd854bbea8eb89ec5f78242b544", @typed={0x8, 0x0, 0x0, 0x0, @pid}]}, @generic="33753eaf4a607acbed1a0c781acb1206c7a3e6c628b5c038dc5398ce2fe644bfbf4e41a36611ed10a5b5fece61aef0e04d64e2db1a9d183f87acf9678de2f6b8676420cc6dfeabad747116320c52fdc5b396165738c5b1fb3a4c844faa57d058cdb9eb183881730b0309a6ba89f6c4459653e2f0dd93"]}, 0x3c4}], 0x4}, 0x0) 16:22:09 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private1, @ipv4={[], [], @private}, 0x7800, 0x1, 0xffffffff, 0x6}}) 16:22:09 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:09 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) r1 = dup(r0) ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000380)) 16:22:10 executing program 3: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x0, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 16:22:10 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14188}], 0x1}, 0x0) 16:22:10 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x5452, &(0x7f0000000140)={0x17}) 16:22:10 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x20}, 0x1, 0x0, 0xf0}, 0x0) 16:22:10 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:22:10 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) shmat(0x0, &(0x7f0000c00000/0x400000)=nil, 0x6800) mmap$IORING_OFF_SQ_RING(&(0x7f0000c35000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) 16:22:10 executing program 3: prctl$PR_MCE_KILL(0x34, 0x0, 0x3) 16:22:10 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000740)='/dev/vcs#\x00', 0x4, 0x1) write$vhost_msg_v2(r0, &(0x7f00000017c0)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) 16:22:11 executing program 1: bpf$MAP_CREATE(0x8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:22:11 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x142ac}], 0x1}, 0x0) 16:22:11 executing program 2: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0xa, 0x0) 16:22:11 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x2, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:11 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b48, 0x0) 16:22:11 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000e76000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r0, 0x0) 16:22:11 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:11 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14384}], 0x1}, 0x0) 16:22:11 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f00000001c0)='cpuacct.usage\x00', 0x2, 0x0) 16:22:11 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) recvmmsg(r0, &(0x7f0000008340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20163, 0x0) 16:22:12 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:12 executing program 4: socketpair(0x26, 0x5, 0xffffffff, &(0x7f00000002c0)) 16:22:12 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x560e, &(0x7f0000000000)) 16:22:12 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x144a8}], 0x1}, 0x0) 16:22:12 executing program 5: r0 = socket(0x2, 0x3, 0x2) recvmmsg(r0, &(0x7f0000001400)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10101, 0x0) 16:22:12 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x541d, 0x0) 16:22:12 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:12 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private1, 0xf}}) 16:22:13 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14580}], 0x1}, 0x0) 16:22:13 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)=[{&(0x7f0000000080)={0x1d8, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x1c5, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="e46128b86fa91fb6f3654b497d2111f060cd70678a1766f7b0780783e11924e171990cd8f5555f5915f368cfed45bab50a2f1b4b09260534fdbea83eba575d7d45f749fe33ae4a726a814ab17675573e1c910db61d42f86f4ec3a76d8abd2b1a2227ece07f9ec0bcfb2ffa6937f021a1d87998a509599f1ff3f345ee77c442d2745aca206dfef3047ca28349e2ce88935d314c28fa46775088fbb6d4348e038955e4c8135cbdaf67b14ee583b71c1067ed36f7e0f729cf5516f16a55b63ddc669cd9a3849c3c82b048866b8d00", @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="5e0a480d277734c2dbc6e65bb69bf16574f29b43193b2ecf6bed851cd67e4205d79d4aa561e0ecafb35106e1522de59a26ec4808a70b932ef8985889a86d4aa01ae5a69bd0beb66b1a6f2d6fdf3b907fb6da2c605f3c2d80e7c8580e1010a8221f4bb54a8fa53c4b4e03c2dcd20ed3796bc873ca9a8a5fc1b1", @typed={0x10, 0x0, 0x0, 0x0, @str='}^\\\xec#*[.\x8c:\\\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev}, @generic="da4d5d5ae2ce1f40d86d35f50c3fb37db98dc63836d8d71fdb66ecec1dfb99336c6c8e14efc0791d1efc7644fc6e6f9a610c4c895888d6ff698e7c92fa1e15993f264be502624ac2f9414023ae2908"]}]}, 0x1d8}, {&(0x7f0000000280)={0x354, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x281, 0x0, 0x0, 0x1, [@generic="e10f79e899260618e1753b2dd80ffaaf48dbfd1e40b1310926d55bc80effd11725dffcd176cfdd09575e008ded90988f1d92adea74c53ed397405bbbe6da3ebc536ef6db4bff3943ddcc0286e90f7b99644506b4f5da70307cbb151b1c4818761804e756d2df7fb05dc982cf242aefcb6745cb6e1d809dbfdb46dd7de9d03ba208a4d3d05f7d98525376154bc4187ca6f233b1323c747f9a9740242a853c4ec6b79895cc797dfdf11ac5189a53e8b01406dd3d245d0b6784335a3ac2623186d497137c84d50c4a69c19f1d6bae9b9bca565c4f4c18c889795d4d9874bc", @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, [], 0x0, 0x0}}, @generic="d346542f21cc4de20aafc64306be6fff660ae4a7777f8febf537492eccc7f78b00a152834283310da6371942bd6f5331e01b771865dc714d2e83f26c5b3e1a2ba1e2bc62262edc4292c52ee2347f729a9a281745b4ea6e41550dc687c5fa79890a449891cc86394d2703f521343503bc1f0f499ea05bf7a69ad22345d7774015d6baa8d8bf6dda2af14475a415f7eb07ba6b835f9cae55b0f65598af6ca22e329110dcc7604f36a97478e9de5cd7e7bffa9a4f81d07b2dfea39b6346239eee7356d205ae7fa7e79edb76334773a57ce4f701f0d892457d25eaf829aae3b39fa7409dd8ac1411796bc9097e69ea9634bd", @typed={0x4}, @generic="11bf9ed2e177b4e61cb3f1ba2d1db5661742c29fbb2e5a2e94084f1a0627fd7cf90403bd11bfb636da3aac788ec038cb244f7b8cf7b3140ec21befde51f364f8de46080a0687e0b8a98aaf6b55a612e6c599784fed7792f2806f7da97a52548cd57db0303c1009dc85eba7963fe213b0105c790608b3125d21b33efd3153436d50197074", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x4}]}, @nested={0x31, 0x0, 0x0, 0x1, [@typed={0x4}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="6fc267f5269a314eb784fe24d8f02b222a5c3e8345af719c9cc9713201"]}, @generic="bbb54a690f4d308302d964ea7ccb9d9631b9cef8517ac0cd9c761cd97e918bb468a063968afd0ac662c6a2da7d6d52d1a59008c8dad901559eadc9246c6fdbe8be3ee72beb17069b17f412525e8fa4e9ea99ae24467a593af5ba459dcf8242b9c3753b197ab95e717df530c027054125b4b76e8ecae3b502939ffc37155a49766470ae5163335fe569"]}, 0x354}, {&(0x7f0000000600)={0x5d4, 0x0, 0x0, 0x0, 0x0, "", [@typed={0xc1, 0x0, 0x0, 0x0, @binary="d8e697ec88beca5c2040cdb0fd23af114783271eabede3096b28338c311c6a01eaf28c21cc7bfbad42d0532c67503f7056927846ce04e9f55c7a7420b9bc8ed507d37ce9160e009f507b59d4d1b76d240b49845cc30b818279e8374fa828c6d0df5439dc6520363281814c895741d0dda45f4add497bb0a62ebc9aff698ab55f4c54023dca9be27377d81c464677d13b90273d855ce7d61ecb88d14ba664d99a9180bcdf7128c639e9d58a0644ac57dba5c6cbd9ac929cfc957674f8fe"}, @nested={0x1d5, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@empty}, @generic="1c646642c1a1b55b12a6ed7384d4c601fc1247449b2e51e5b0331a66d7a5a5f40dfc6615", @generic="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", @generic="aa1fa6ee6003a627e8aed171a22ffd1e5c5bcffcc52e571b593bf8ec67e2e1ad609f2cba409a3e4f288482469c60dc0acb716584a263b09fc2ca774d3a64be26dda8962829f80258a7d05d2de65177ef61f805370ba58da2fafcaca7608b56d9b4e73d83fbff634e9d3ed3103e708d814eda374276f2ecb09e01662534a70b15752be9e569fdaf5faa9293dafee22941e82bd398f73abe37bf82652cba2aedee0e6242dc8af07606"]}, @typed={0x39, 0x0, 0x0, 0x0, @binary="867500ffe31ed7f5294627ac20ea5da99774b9826ff47a61c249205dcfb46e5e8f3912cb3f6eb1d1fb052f8d01335ccad4996b1532"}, @nested={0xa1, 0x0, 0x0, 0x1, [@generic="1ee1823013708bcc2711c1c68b72c1418e3b461c3b65d4fca43d32b7aeed0546f3d0bfcf0a02b4a4b5fad50e253197aa77b4651e4c50f0e6626c8deac5083d16371c725fd9087729b29cd511bbe9", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@remote}, @generic="f372cf2ba0acf0df716d742be28914dc197d542eb5aac22c1e4ea5b48ce471eb1295b426cde634189650cf653bf472bb3c082c3069ecda", @typed={0x7, 0x0, 0x0, 0x0, @str='$%\x00'}]}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@private}]}, @nested={0x9d, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="22cee7c2e17003eed270298b", @generic="6a5935aa5ada8057", @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@multicast1}, @generic="e580e0e81b52a073625b18669153100e6f47313834b5f6d22e460c609feadb939d82810723ca1260c47dff2400a6f686a53715d9a2ad69abbc106452a2bf3c17dfe01b5ce3a0d797939f896c3bea3f08f5f0bac843661fa78be3d8d1185a62eee8c6f2eff1a398c8bb2cdc50c5"]}, @generic="4b8c6b621d350d633c0e7a7de665d2355de5ece6d6f00cf41a75f32a07439beb30682de20d5a18d4fc92545b800503e7ecc3f6428e321ab248cfde77ee4260f4df078e24c1e81397bd20ba8575e552e0dbebbd067c76b7649db5a63e9f5d062d68a0ccd6806abb880f94fb01fdb5daa474ab3faa3ea43bb943b9456b78e5bd704264a4ecca2428c829e918b86aba69885d91d4c5616edf73ea1a7c50e6075095130095cf90136ccc547f22fd940f17b4554282d4d7545e597deb6b12ed55640ef4c965594ea6e0b964f9fd4b34b95ce603dfe9a1396a8c1a6707467437eced054df38d188cfdb1ecda5d214dab96dfb6c305599d3c1aebbde1", @nested={0x9d, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}, @generic="c281cb5dcc1e64155ad3f4871ce058a51cada00a5464987b6f7e75454547606289ce7fbfbe72aa25b990cc5eae08d84258e8987de875c8bda79ce952c3cb2ced197d84980c23ab03e2ac76e70cc6d5ee942cf47920ab067a4ffecec95f4cb712f15bf1b977ff9dbf6df68ea1c546db0b840de85bfef53993c6e1d5253d612cc9ea0fc4769f"]}]}, 0x5d4}, {&(0x7f0000000c00)={0x3c4, 0x0, 0x0, 0x0, 0x0, "", [@generic="1d0a57e1e8e3772d413fccdc15db27d4387fd13f61b9001663bed37da2f1d77f09f74552501f53733aed19b45ab7cdd6209f93007ae716187d2d6d30bcf3c718eb79fb2bcb82264b5ccc24d6aa824501a5a66b070cedd9a22a8316ea852a7a78c45bff8789b4ea15238a99e3fd4431b6b6945fb473f82f88e88b495c5a893637c1db64edd3433b5ae7d922ad5b7018a98170f677c3051fa8ae810aa8dc77baf22854b4e0", @typed={0x8, 0x0, 0x0, 0x0, @u32}, @nested={0xfd, 0x0, 0x0, 0x1, [@generic="67fcab6ca7d0e7edee4615f704a1a759ba84e35379f6bdccdcc7d3ed379988a5e86449fe4a3f61a82f7efc1561f8ffb614157b7c5df24d205b485f47ffad0f4c34a50d473267990534561ff317b2dd14505cb49586239cbae786ab44c2d24c6a39dd6b9c648a8129ff7c773d370c7a3410ddbda7c130923e8db73dffbcab4de1", @generic="2413e7b36a97a02a0240d3a81c5b6d4dd3802adca436c7de112b0f9039cb0affbaadeca63e9b27ce4aa3e2107d57adfc39f115cf511c6affd0d0eb4a7eaa43adebb225e409e50ad8f5f2393ffa3c1a79a107be001ca329e6217155f2f40228b86651422ffcc81262fd0d7a9867", @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, @generic="3ca35d20dbc5ad440bce309f66adacb8bf1dbe3174b7688dbc96d1de554ac53d9cabdf3671f8ac2f75ec64bde5403ca2a81843a4769d21dc516af11e42997bf366c14facde1593f2c55a23c28a", @generic="bdb384a96cb515a390a00a308516e57ce4d888b4228f763e98664e9945a09ff81d5c1236d3aa10c4f79043d535603559e4e1a03f26189d7d1b340a880e888d02023be078c526b24f35b6f7571de302a4f4ed53e3c9b8", @nested={0xe9, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}, @generic="361f59889dc26b1e3e4428d2c83e6237533a95e8ba522a73384645232d0a5de8c7ff91a3b656979a6e2fc4532ae5597fdefce72887f25cc2888baa0d51d8", @typed={0x8, 0x0, 0x0, 0x0, @pid}, @generic="fda8bfecfa9c8bb40466f026bf661b2c5279e80a0c1bc248e8e12b6800a6aac875d6838f97e4dc1b66f795bc7edf00333048094275efcfe0ad0ef5afb99482c0bac4d90a62685b784a31219c217b03860990e3ef911345cb4b03badf1c9072aa80427145d4b243c53ce15a0b1f4021d40bb9bf5b361cd854bbea8eb89ec5f78242b544", @typed={0x8, 0x0, 0x0, 0x0, @pid}]}, @generic="33753eaf4a607acbed1a0c781acb1206c7a3e6c628b5c038dc5398ce2fe644bfbf4e41a36611ed10a5b5fece61aef0e04d64e2db1a9d183f87acf9678de2f6b8676420cc6dfeabad747116320c52fdc5b396165738c5b1fb3a4c844faa57d058cdb9eb183881730b0309a6ba89f6c4459653e2f0dd93"]}, 0x3c4}], 0x4}, 0x0) 16:22:13 executing program 3: keyctl$unlink(0x2, 0x0, 0x0) 16:22:13 executing program 4: write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)) 16:22:13 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2}}) 16:22:13 executing program 1: r0 = socket$nl_audit(0x10, 0x3, 0x9) write$vhost_msg_v2(r0, &(0x7f0000000140)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48) 16:22:13 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x146a4}], 0x1}, 0x0) 16:22:13 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x10, r1, 0x0) 16:22:14 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ffb000/0x3000)=nil, 0x7800) shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) 16:22:14 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x3, r1, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, r0) 16:22:14 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4028700f, &(0x7f0000000140)) 16:22:14 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b72, 0x0) 16:22:14 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1477c}], 0x1}, 0x0) 16:22:14 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0xffffffff, 0x0) read$FUSE(r0, &(0x7f00000005c0)={0x2020}, 0x2020) 16:22:14 executing program 5: r0 = socket(0x2, 0x3, 0x2) bind$xdp(r0, &(0x7f0000000000), 0x10) 16:22:14 executing program 3: prctl$PR_MCE_KILL(0x2a, 0x0, 0x3) 16:22:14 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x127b, 0x0) 16:22:15 executing program 2: syz_open_dev$vcsn(&(0x7f0000000580)='/dev/vcs#\x00', 0xfffffffffffffff7, 0x0) 16:22:15 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x148a0}], 0x1}, 0x0) 16:22:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:15 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0x4853, r0, 0x8000000) 16:22:15 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x0, 0x2) write$vhost_msg_v2(r0, &(0x7f0000000340)={0x2, 0x8800000, {0x0, 0x0, 0x0}}, 0x20000388) 16:22:15 executing program 4: openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self\x00', 0x2dcc82, 0x0) 16:22:15 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:16 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14978}], 0x1}, 0x0) 16:22:16 executing program 1: r0 = timerfd_create(0x8, 0x0) timerfd_gettime(r0, &(0x7f0000000000)) 16:22:16 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x0, 0x2) write$vhost_msg_v2(r0, &(0x7f0000000340)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x20000388) 16:22:16 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:22:16 executing program 4: r0 = syz_open_dev$vcsa(&(0x7f00000002c0)='/dev/vcsa#\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000001a00)={0x2020}, 0x2020) read$FUSE(r0, 0x0, 0x0) 16:22:16 executing program 2: bpf$MAP_CREATE(0x15, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x70) 16:22:16 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14a9c}], 0x1}, 0x0) 16:22:16 executing program 1: prctl$PR_MCE_KILL(0x1e, 0x0, 0x0) 16:22:16 executing program 5: add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) request_key(&(0x7f00000001c0)='asymmetric\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000240)=']\x00', 0xfffffffffffffffd) 16:22:16 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x125d, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) 16:22:16 executing program 2: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8901, 0x0) 16:22:17 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc) 16:22:17 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x560c, 0x0) 16:22:17 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14b74}], 0x1}, 0x0) 16:22:17 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b66, &(0x7f0000000000)) 16:22:17 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b45, &(0x7f0000000000)) 16:22:17 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$unlink(0x11, r1, 0x0) 16:22:17 executing program 4: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000004740)={0x0, 0x0, 0x0, 0x0, &(0x7f00000046c0)=[@cred={{0x1c, 0x2, 0x2, {0x0, 0x0, 0xee01}}}], 0x20}, 0x0) 16:22:17 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/stat\x00', 0x0, 0x0) shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x5800) mmap$IORING_OFF_SQ_RING(&(0x7f0000c35000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) 16:22:18 executing program 1: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000004740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="280000000000000001"], 0x28}, 0x0) 16:22:18 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14c98}], 0x1}, 0x0) 16:22:18 executing program 3: bpf$OBJ_GET_PROG(0x7, &(0x7f0000008d80)={&(0x7f0000008d40)='./file0\x00'}, 0x10) open(&(0x7f00000000c0)='./file0\x00', 0x2042, 0x0) 16:22:18 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x10, 0x0, &(0x7f0000000140)) 16:22:18 executing program 4: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x80041284, 0x0) 16:22:18 executing program 5: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x6, &(0x7f0000000180)) 16:22:18 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:18 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14d70}], 0x1}, 0x0) 16:22:19 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x4141) ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0) 16:22:19 executing program 4: r0 = inotify_init() ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0) 16:22:19 executing program 2: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000640)=0x1, 0x4) 16:22:19 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, @in={0x2, 0x0, @loopback}, @can, @qipcrtr, 0xff}) 16:22:19 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x3, r0, 0x0) 16:22:19 executing program 3: add_key$keyring(0x0, 0xfffffffffffffffe, 0x0, 0xffff0f00, 0x0) 16:22:19 executing program 4: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000180)=0x279d42808da496a2) 16:22:19 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14e94}], 0x1}, 0x0) 16:22:19 executing program 2: r0 = syz_open_dev$vcsu(&(0x7f0000000180)='/dev/vcsu#\x00', 0x5fc, 0x0) poll(&(0x7f0000000340)=[{r0}], 0x1, 0x800) 16:22:20 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000380)={'ip6tnl0\x00', 0x0}) 16:22:20 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_DISALLOCATE(r0, 0x5608) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) 16:22:20 executing program 4: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x2010, r0, 0x8000000) 16:22:20 executing program 3: io_setup(0x5, &(0x7f0000000280)=0x0) r1 = syz_open_dev$ttys(0xc, 0x2, 0x1) io_submit(r0, 0x1, &(0x7f00000015c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x7, 0x0, r1, 0x0}]) 16:22:20 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x14f6c}], 0x1}, 0x0) 16:22:20 executing program 1: r0 = socket(0x2, 0xa, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 16:22:20 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_DISALLOCATE(r0, 0x5608) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) 16:22:21 executing program 4: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/117, 0x1314000, 0x1000, 0x0, 0x1}, 0x20) 16:22:21 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @ipv4={[], [], @private}}}) 16:22:21 executing program 2: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000004740)={0x0, 0x0, 0x0, 0x1ee, &(0x7f00000046c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x20}, 0x0) 16:22:21 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8918, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:21 executing program 1: r0 = syz_open_dev$vcsu(&(0x7f0000000180)='/dev/vcsu#\x00', 0x0, 0x2c0242) poll(&(0x7f0000000340)=[{r0}], 0x1, 0x0) 16:22:21 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15090}], 0x1}, 0x0) 16:22:21 executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b48, &(0x7f0000000000)={0x2d10}) 16:22:21 executing program 2: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001f80)=[{0x0}, {&(0x7f0000000280)={0x10}, 0x10}], 0x2}, 0x0) 16:22:22 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0xc0189436, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:22 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b47, 0x0) 16:22:22 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15168}], 0x1}, 0x0) 16:22:22 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x1269, 0x0) 16:22:23 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x80ffff00000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:23 executing program 2: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x0, 0x0) poll(&(0x7f0000000040)=[{r0}], 0x1, 0x4) 16:22:23 executing program 1: prctl$PR_MCE_KILL(0x21, 0x5fa50dca909c8c83, 0x0) 16:22:23 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$netlink(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000046c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee01}}}], 0x20}, 0x0) 16:22:23 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1528c}], 0x1}, 0x0) 16:22:23 executing program 3: prctl$PR_MCE_KILL(0x35, 0x400000, 0x0) 16:22:23 executing program 5: r0 = syz_open_dev$rtc(&(0x7f0000000000)='/dev/rtc#\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0xf, &(0x7f0000000180)) 16:22:23 executing program 2: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:23 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x10000, 0x4) 16:22:23 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8914, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) 16:22:23 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15364}], 0x1}, 0x0) 16:22:23 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private1, @ipv4={[], [], @private}}}) 16:22:24 executing program 5: openat$nvram(0xffffffffffffff9c, &(0x7f0000005fc0)='/dev/nvram\x00', 0x480, 0x0) 16:22:24 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETKEYCODE(r0, 0x5609, &(0x7f0000000000)={0x2d10}) 16:22:24 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private1}}) 16:22:24 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15488}], 0x1}, 0x0) 16:22:25 executing program 4: pselect6(0x40, &(0x7f0000000200), 0x0, &(0x7f0000000280)={0x4}, &(0x7f00000002c0), 0x0) 16:22:25 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0xb, 0x0, 0x0, 0x6}, 0x40) 16:22:25 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f00000008c0)=""/154, &(0x7f0000000980)=0x9a) 16:22:25 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x8903, &(0x7f0000000380)={'ip6gre0\x00', 0x0}) 16:22:25 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0xcf, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:25 executing program 4: clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x14b}, 0x20) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102389, 0x18ff5}], 0x3, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 16:22:25 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15560}], 0x1}, 0x0) 16:22:25 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0xf, 0xffffffe0, 0x0, &(0x7f0000000000)="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"}) 16:22:25 executing program 2: perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000c00000/0x400000)=nil, 0x6800) shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) 16:22:25 executing program 3: shmat(0x0, &(0x7f0000c00000/0x400000)=nil, 0x6800) r0 = shmat(0x0, &(0x7f0000fa6000/0x4000)=nil, 0x4000) shmdt(r0) 16:22:25 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4) [ 1026.634152][T20868] ptrace attach of "/root/syz-executor.4"[20867] was attempted by "/root/syz-executor.4"[20868] 16:22:26 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xae, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:22:26 executing program 3: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000000)=0xfffffffffffff4b5, 0x8) 16:22:26 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:22:26 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15684}], 0x1}, 0x0) 16:22:26 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x80440, 0x0) ioctl$RTC_SET_TIME(r0, 0x5450, 0x0) 16:22:26 executing program 5: 16:22:26 executing program 4: 16:22:27 executing program 3: 16:22:27 executing program 2: 16:22:27 executing program 1: 16:22:27 executing program 5: 16:22:27 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1575c}], 0x1}, 0x0) 16:22:27 executing program 4: 16:22:27 executing program 3: 16:22:28 executing program 2: 16:22:28 executing program 5: 16:22:28 executing program 1: 16:22:28 executing program 4: 16:22:28 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15880}], 0x1}, 0x0) 16:22:28 executing program 3: 16:22:28 executing program 5: 16:22:28 executing program 2: 16:22:28 executing program 1: 16:22:29 executing program 4: 16:22:29 executing program 3: 16:22:29 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x3, &(0x7f00000005c0)=@framed, &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:22:29 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15958}], 0x1}, 0x0) 16:22:29 executing program 1: 16:22:29 executing program 2: 16:22:30 executing program 4: 16:22:30 executing program 3: 16:22:30 executing program 1: 16:22:30 executing program 2: 16:22:30 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15a7c}], 0x1}, 0x0) 16:22:30 executing program 4: 16:22:30 executing program 3: 16:22:31 executing program 1: 16:22:31 executing program 5: 16:22:31 executing program 2: 16:22:31 executing program 4: 16:22:31 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15b54}], 0x1}, 0x0) 16:22:31 executing program 3: 16:22:31 executing program 1: 16:22:31 executing program 2: 16:22:32 executing program 4: 16:22:32 executing program 5: 16:22:32 executing program 3: 16:22:32 executing program 1: 16:22:32 executing program 2: 16:22:32 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15c78}], 0x1}, 0x0) 16:22:32 executing program 4: 16:22:32 executing program 3: 16:22:32 executing program 5: 16:22:32 executing program 2: 16:22:33 executing program 1: 16:22:33 executing program 4: 16:22:33 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15d50}], 0x1}, 0x0) 16:22:33 executing program 2: 16:22:33 executing program 3: 16:22:33 executing program 5: 16:22:33 executing program 1: 16:22:33 executing program 4: 16:22:34 executing program 5: 16:22:34 executing program 3: 16:22:34 executing program 2: 16:22:34 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15e74}], 0x1}, 0x0) 16:22:34 executing program 1: 16:22:34 executing program 4: 16:22:34 executing program 5: 16:22:34 executing program 3: 16:22:34 executing program 2: 16:22:34 executing program 1: 16:22:35 executing program 4: 16:22:35 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x15f4c}], 0x1}, 0x0) 16:22:35 executing program 5: 16:22:35 executing program 3: 16:22:35 executing program 2: 16:22:35 executing program 1: 16:22:35 executing program 4: 16:22:36 executing program 5: 16:22:36 executing program 3: 16:22:36 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16070}], 0x1}, 0x0) 16:22:36 executing program 1: 16:22:36 executing program 2: 16:22:36 executing program 4: 16:22:36 executing program 5: 16:22:36 executing program 1: 16:22:36 executing program 3: 16:22:36 executing program 2: 16:22:37 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16148}], 0x1}, 0x0) 16:22:37 executing program 4: 16:22:37 executing program 5: 16:22:37 executing program 1: 16:22:37 executing program 3: 16:22:37 executing program 2: 16:22:37 executing program 5: 16:22:37 executing program 4: 16:22:38 executing program 1: 16:22:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1626c}], 0x1}, 0x0) 16:22:38 executing program 3: 16:22:38 executing program 2: 16:22:38 executing program 5: 16:22:38 executing program 4: 16:22:38 executing program 1: 16:22:38 executing program 3: 16:22:38 executing program 2: 16:22:38 executing program 5: 16:22:38 executing program 4: 16:22:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16344}], 0x1}, 0x0) 16:22:39 executing program 1: 16:22:39 executing program 3: 16:22:39 executing program 5: 16:22:39 executing program 2: 16:22:39 executing program 4: 16:22:39 executing program 1: 16:22:39 executing program 3: 16:22:39 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16468}], 0x1}, 0x0) 16:22:40 executing program 4: 16:22:40 executing program 2: 16:22:40 executing program 5: 16:22:40 executing program 1: 16:22:40 executing program 3: 16:22:40 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16540}], 0x1}, 0x0) 16:22:40 executing program 5: 16:22:40 executing program 2: 16:22:40 executing program 4: 16:22:40 executing program 1: 16:22:41 executing program 3: 16:22:41 executing program 5: 16:22:41 executing program 4: 16:22:41 executing program 1: 16:22:41 executing program 2: 16:22:41 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16664}], 0x1}, 0x0) 16:22:41 executing program 3: 16:22:42 executing program 5: 16:22:42 executing program 4: 16:22:42 executing program 2: 16:22:42 executing program 1: 16:22:42 executing program 3: 16:22:42 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1673c}], 0x1}, 0x0) 16:22:42 executing program 2: 16:22:42 executing program 5: 16:22:42 executing program 4: 16:22:42 executing program 1: 16:22:42 executing program 3: 16:22:43 executing program 2: 16:22:43 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16860}], 0x1}, 0x0) 16:22:43 executing program 1: 16:22:43 executing program 5: 16:22:43 executing program 4: 16:22:43 executing program 3: 16:22:43 executing program 2: 16:22:44 executing program 1: 16:22:44 executing program 5: 16:22:44 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16938}], 0x1}, 0x0) 16:22:44 executing program 4: 16:22:44 executing program 3: 16:22:44 executing program 2: 16:22:44 executing program 1: 16:22:44 executing program 4: 16:22:44 executing program 5: 16:22:44 executing program 3: 16:22:45 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16a5c}], 0x1}, 0x0) 16:22:45 executing program 2: 16:22:45 executing program 1: 16:22:45 executing program 4: 16:22:45 executing program 5: 16:22:45 executing program 3: 16:22:45 executing program 2: 16:22:45 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16b34}], 0x1}, 0x0) 16:22:45 executing program 5: 16:22:45 executing program 1: 16:22:46 executing program 3: 16:22:46 executing program 4: 16:22:46 executing program 2: 16:22:46 executing program 1: 16:22:46 executing program 5: 16:22:46 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16c58}], 0x1}, 0x0) 16:22:46 executing program 3: 16:22:46 executing program 4: 16:22:46 executing program 2: 16:22:47 executing program 1: 16:22:47 executing program 5: 16:22:47 executing program 3: 16:22:47 executing program 4: 16:22:47 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16d30}], 0x1}, 0x0) 16:22:47 executing program 2: 16:22:47 executing program 1: 16:22:47 executing program 5: 16:22:47 executing program 3: 16:22:48 executing program 4: 16:22:48 executing program 2: 16:22:48 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16e54}], 0x1}, 0x0) 16:22:48 executing program 1: 16:22:48 executing program 5: 16:22:48 executing program 3: 16:22:48 executing program 4: 16:22:48 executing program 2: 16:22:49 executing program 5: 16:22:49 executing program 1: 16:22:49 executing program 4: 16:22:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x16f2c}], 0x1}, 0x0) 16:22:49 executing program 3: 16:22:49 executing program 2: 16:22:49 executing program 3: 16:22:49 executing program 4: 16:22:49 executing program 1: 16:22:49 executing program 5: 16:22:50 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17050}], 0x1}, 0x0) 16:22:50 executing program 2: 16:22:50 executing program 1: 16:22:50 executing program 3: 16:22:50 executing program 4: 16:22:50 executing program 5: 16:22:50 executing program 2: 16:22:50 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17128}], 0x1}, 0x0) 16:22:51 executing program 5: 16:22:51 executing program 1: 16:22:51 executing program 2: 16:22:51 executing program 4: 16:22:51 executing program 3: 16:22:51 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1724c}], 0x1}, 0x0) 16:22:52 executing program 2: 16:22:52 executing program 5: 16:22:52 executing program 1: 16:22:52 executing program 3: 16:22:52 executing program 4: 16:22:52 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17324}], 0x1}, 0x0) 16:22:52 executing program 2: 16:22:52 executing program 5: 16:22:52 executing program 1: 16:22:53 executing program 3: 16:22:53 executing program 4: 16:22:53 executing program 2: 16:22:53 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17448}], 0x1}, 0x0) 16:22:53 executing program 1: 16:22:53 executing program 5: 16:22:53 executing program 3: 16:22:53 executing program 4: 16:22:53 executing program 2: 16:22:54 executing program 1: 16:22:54 executing program 5: 16:22:54 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17520}], 0x1}, 0x0) 16:22:54 executing program 3: 16:22:54 executing program 4: 16:22:54 executing program 2: 16:22:54 executing program 1: 16:22:54 executing program 5: 16:22:54 executing program 3: 16:22:55 executing program 4: 16:22:55 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17644}], 0x1}, 0x0) 16:22:55 executing program 2: 16:22:55 executing program 1: 16:22:55 executing program 3: 16:22:55 executing program 5: 16:22:55 executing program 4: 16:22:55 executing program 2: 16:22:56 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1771c}], 0x1}, 0x0) 16:22:56 executing program 3: 16:22:56 executing program 1: 16:22:56 executing program 5: 16:22:56 executing program 4: 16:22:56 executing program 2: 16:22:56 executing program 1: 16:22:56 executing program 3: 16:22:56 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17840}], 0x1}, 0x0) 16:22:57 executing program 4: 16:22:57 executing program 5: 16:22:57 executing program 2: [ 1057.792173][T21267] not chained 140000 origins [ 1057.796802][T21267] CPU: 0 PID: 21267 Comm: syz-executor.0 Not tainted 5.9.0-rc8-syzkaller #0 [ 1057.805465][T21267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1057.815504][T21267] Call Trace: [ 1057.818786][T21267] dump_stack+0x21c/0x280 [ 1057.823110][T21267] kmsan_internal_chain_origin+0x6f/0x130 [ 1057.828821][T21267] ? kmsan_internal_chain_origin+0xad/0x130 [ 1057.834704][T21267] ? __msan_chain_origin+0x57/0xa0 [ 1057.839806][T21267] ? sctp_chunk_fail+0x119/0x150 [ 1057.844732][T21267] ? __sctp_outq_teardown+0x112d/0x1600 [ 1057.850262][T21267] ? sctp_outq_free+0x37/0x40 [ 1057.854927][T21267] ? sctp_association_free+0x3f2/0x11a0 [ 1057.860461][T21267] ? sctp_do_sm+0x9185/0xa250 [ 1057.865132][T21267] ? sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1057.870229][T21267] ? sctp_inq_push+0x31c/0x440 [ 1057.874980][T21267] ? sctp_backlog_rcv+0x346/0x16c0 [ 1057.880082][T21267] ? __release_sock+0x26b/0x660 [ 1057.884917][T21267] ? release_sock+0x98/0x2d0 [ 1057.889495][T21267] ? sctp_wait_for_connect+0x4ad/0x970 [ 1057.894943][T21267] ? sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1057.900474][T21267] ? sctp_sendmsg+0x35b0/0x5c30 [ 1057.905314][T21267] ? inet_sendmsg+0x15b/0x1d0 [ 1057.909980][T21267] ? ____sys_sendmsg+0xc7a/0x1240 [ 1057.915000][T21267] ? __sys_sendmsg+0x6d5/0x830 [ 1057.919750][T21267] ? __se_compat_sys_sendmsg+0xa7/0xc0 [ 1057.925194][T21267] ? __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1057.930813][T21267] ? __do_fast_syscall_32+0x129/0x180 [ 1057.936173][T21267] ? do_fast_syscall_32+0x6a/0xc0 [ 1057.941182][T21267] ? do_SYSENTER_32+0x73/0x90 [ 1057.945848][T21267] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1057.952335][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1057.957518][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1057.962705][T21267] ? kmsan_internal_set_origin+0x85/0xc0 [ 1057.968323][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1057.973507][T21267] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1057.979306][T21267] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1057.985358][T21267] ? __genradix_ptr+0x86f/0xbb0 [ 1057.990194][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1057.995375][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1058.000560][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.005487][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.010238][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.015595][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1058.020779][T21267] sctp_outq_free+0x37/0x40 [ 1058.025271][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.030636][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.035130][T21267] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1058.041189][T21267] ? kmsan_internal_set_origin+0x85/0xc0 [ 1058.046806][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1058.051993][T21267] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1058.057876][T21267] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 1058.064012][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1058.069197][T21267] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1058.074994][T21267] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1058.081053][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.085989][T21267] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0 [ 1058.092039][T21267] sctp_inq_push+0x31c/0x440 [ 1058.096621][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.101551][T21267] ? __msan_instrument_asm_store+0x25/0x130 [ 1058.107432][T21267] ? sctp_rcv+0x5f90/0x5f90 [ 1058.111923][T21267] __release_sock+0x26b/0x660 [ 1058.116590][T21267] release_sock+0x98/0x2d0 [ 1058.120996][T21267] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1058.126789][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.132064][T21267] ? init_wait_entry+0x190/0x190 [ 1058.136993][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.142357][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.147024][T21267] ? kmsan_get_metadata+0x116/0x180 [ 1058.152208][T21267] ? sctp_getsockopt+0x1e720/0x1e720 [ 1058.157481][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.161975][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.166821][T21267] ? inet_send_prepare+0x6b0/0x6b0 [ 1058.171924][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.176503][T21267] ? kmsan_copy_to_user+0x9c/0xb0 [ 1058.181532][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.186805][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.192253][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.197438][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.202275][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.206771][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.213083][T21267] RIP: 0023:0xf7fc7549 [ 1058.217140][T21267] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1058.236743][T21267] RSP: 002b:00000000f55c10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1058.245140][T21267] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000002001afc8 [ 1058.253097][T21267] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1058.261052][T21267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1058.269008][T21267] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1058.276966][T21267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1058.284926][T21267] Uninit was stored to memory at: [ 1058.289943][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.295648][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.300571][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.305319][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.310674][T21267] sctp_outq_free+0x37/0x40 [ 1058.315164][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.320519][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.325010][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.329930][T21267] sctp_inq_push+0x31c/0x440 [ 1058.334516][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.339440][T21267] __release_sock+0x26b/0x660 [ 1058.344100][T21267] release_sock+0x98/0x2d0 [ 1058.348501][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.353795][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.359151][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.363814][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.368305][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.373140][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.377715][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.382990][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.388436][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.393619][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.398454][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.402954][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.409254][T21267] [ 1058.411559][T21267] Uninit was stored to memory at: [ 1058.416573][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.422278][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.427203][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.431953][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.437311][T21267] sctp_outq_free+0x37/0x40 [ 1058.441799][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.447154][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.451644][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.456563][T21267] sctp_inq_push+0x31c/0x440 [ 1058.461140][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.466062][T21267] __release_sock+0x26b/0x660 [ 1058.470720][T21267] release_sock+0x98/0x2d0 [ 1058.475124][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.480416][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.485793][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.490459][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.494954][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.500404][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.504985][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.510264][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.515719][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.520902][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.525739][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.530232][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.536531][T21267] [ 1058.538839][T21267] Uninit was stored to memory at: [ 1058.543853][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.549559][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.554493][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.559242][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.564596][T21267] sctp_outq_free+0x37/0x40 [ 1058.569084][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.574440][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.578929][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.583852][T21267] sctp_inq_push+0x31c/0x440 [ 1058.588431][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.593352][T21267] __release_sock+0x26b/0x660 [ 1058.598029][T21267] release_sock+0x98/0x2d0 [ 1058.602438][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.607710][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.613083][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.617746][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.622250][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.627099][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.631675][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.636944][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.642401][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.647590][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.652432][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.656931][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.663244][T21267] [ 1058.665558][T21267] Uninit was stored to memory at: [ 1058.670580][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.676285][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.681211][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.685965][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.691322][T21267] sctp_outq_free+0x37/0x40 [ 1058.695813][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.701173][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.705667][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.710589][T21267] sctp_inq_push+0x31c/0x440 [ 1058.715167][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.720110][T21267] __release_sock+0x26b/0x660 [ 1058.724769][T21267] release_sock+0x98/0x2d0 [ 1058.729171][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.734456][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.739812][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.744489][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.748981][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.753817][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.758393][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.763663][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.769109][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.774293][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.779126][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.783615][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.789914][T21267] [ 1058.792219][T21267] Uninit was stored to memory at: [ 1058.797231][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.802947][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.807874][T21267] sctp_chunk_fail+0x119/0x150 [ 1058.812624][T21267] __sctp_outq_teardown+0x112d/0x1600 [ 1058.818090][T21267] sctp_outq_free+0x37/0x40 [ 1058.822580][T21267] sctp_association_free+0x3f2/0x11a0 [ 1058.827955][T21267] sctp_do_sm+0x9185/0xa250 [ 1058.832448][T21267] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1058.837495][T21267] sctp_inq_push+0x31c/0x440 [ 1058.842082][T21267] sctp_backlog_rcv+0x346/0x16c0 [ 1058.847012][T21267] __release_sock+0x26b/0x660 [ 1058.851680][T21267] release_sock+0x98/0x2d0 [ 1058.856090][T21267] sctp_wait_for_connect+0x4ad/0x970 [ 1058.861371][T21267] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1058.866731][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.871395][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.875887][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.880726][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.885304][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.890577][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.896026][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.901212][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.906052][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.910546][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.916850][T21267] [ 1058.919162][T21267] Uninit was stored to memory at: [ 1058.924179][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1058.929885][T21267] __msan_chain_origin+0x57/0xa0 [ 1058.934812][T21267] sctp_datamsg_from_user+0x1c89/0x23c0 [ 1058.940343][T21267] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1058.945700][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1058.950365][T21267] inet_sendmsg+0x15b/0x1d0 [ 1058.954857][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1058.959696][T21267] __sys_sendmsg+0x6d5/0x830 [ 1058.964274][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1058.969543][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1058.974991][T21267] __do_fast_syscall_32+0x129/0x180 [ 1058.980176][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1058.985014][T21267] do_SYSENTER_32+0x73/0x90 [ 1058.989505][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1058.995805][T21267] [ 1058.998114][T21267] Uninit was stored to memory at: [ 1059.003129][T21267] kmsan_internal_chain_origin+0xad/0x130 [ 1059.008838][T21267] __msan_chain_origin+0x57/0xa0 [ 1059.013762][T21267] sctp_datamsg_from_user+0x661/0x23c0 [ 1059.019223][T21267] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1059.024583][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1059.032721][T21267] inet_sendmsg+0x15b/0x1d0 [ 1059.037214][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1059.042051][T21267] __sys_sendmsg+0x6d5/0x830 [ 1059.046642][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1059.051913][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1059.057367][T21267] __do_fast_syscall_32+0x129/0x180 [ 1059.062557][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1059.067394][T21267] do_SYSENTER_32+0x73/0x90 [ 1059.071885][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1059.078185][T21267] [ 1059.080527][T21267] Uninit was created at: [ 1059.084759][T21267] kmsan_internal_poison_shadow+0x5c/0xf0 [ 1059.090465][T21267] kmsan_slab_alloc+0x8d/0xe0 [ 1059.095130][T21267] kmem_cache_alloc_trace+0x61e/0xc90 [ 1059.100490][T21267] sctp_datamsg_from_user+0xf5/0x23c0 [ 1059.105938][T21267] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1059.111486][T21267] sctp_sendmsg+0x35b0/0x5c30 [ 1059.116151][T21267] inet_sendmsg+0x15b/0x1d0 [ 1059.120641][T21267] ____sys_sendmsg+0xc7a/0x1240 [ 1059.125479][T21267] __sys_sendmsg+0x6d5/0x830 [ 1059.130053][T21267] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1059.135324][T21267] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1059.140772][T21267] __do_fast_syscall_32+0x129/0x180 [ 1059.145960][T21267] do_fast_syscall_32+0x6a/0xc0 [ 1059.150796][T21267] do_SYSENTER_32+0x73/0x90 [ 1059.155287][T21267] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 16:22:58 executing program 1: 16:22:58 executing program 3: 16:22:59 executing program 4: 16:22:59 executing program 5: 16:22:59 executing program 1: 16:22:59 executing program 2: 16:22:59 executing program 3: 16:22:59 executing program 5: 16:23:00 executing program 1: 16:23:00 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17918}], 0x1}, 0x0) 16:23:00 executing program 4: 16:23:00 executing program 3: 16:23:00 executing program 2: 16:23:00 executing program 5: 16:23:00 executing program 3: 16:23:00 executing program 4: 16:23:00 executing program 1: 16:23:01 executing program 5: 16:23:01 executing program 2: 16:23:01 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17a3c}], 0x1}, 0x0) 16:23:01 executing program 3: 16:23:01 executing program 4: 16:23:01 executing program 1: 16:23:01 executing program 5: 16:23:01 executing program 2: 16:23:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17b14}], 0x1}, 0x0) 16:23:02 executing program 3: 16:23:02 executing program 1: 16:23:02 executing program 4: 16:23:02 executing program 2: 16:23:02 executing program 5: 16:23:02 executing program 3: 16:23:02 executing program 1: 16:23:03 executing program 4: 16:23:03 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17c38}], 0x1}, 0x0) 16:23:03 executing program 2: 16:23:03 executing program 5: 16:23:03 executing program 3: 16:23:03 executing program 4: bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000000)={@cgroup, 0xffffffffffffffff, 0x0, 0xb}, 0x14) 16:23:03 executing program 1: sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080), 0xc, 0x0}, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind(r0, &(0x7f0000000000)=@hci, 0x80) ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000180)) 16:23:03 executing program 2: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x3, 0x3, &(0x7f0000000340)=@framed, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [0x71], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:23:03 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup/syz1\x00', 0x200002, 0x0) 16:23:03 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17d10}], 0x1}, 0x0) 16:23:04 executing program 3: r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$inet_mreq(r0, 0x0, 0x20, 0x0, 0x0) 16:23:04 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000004800)={0xffffffffffffffff}) socket$l2tp(0x2, 0x2, 0x73) sendmmsg$unix(r0, &(0x7f0000002680)=[{0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f00000000c0)="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", 0xfc0}, {&(0x7f00000010c0)="a1a1ebb907aa493dc126183d1c000c7f18e448b6f37ac1f901d977bc0a4e4c60a0063fad6aac8be539933adcf8ef04d2b3758a9cd87c7d5715f714f3a5fdcc151ed90d8cc109044e2b3dbfb5dfb19bbb40bb40b94ed7bd1cee37d67de4d414d58c2676ebb4dd3f41c638ac3519c42b225316e97b495100c2732a8948b3ef7d8195f8afe51df2ae6f207546", 0x8b}, {&(0x7f0000001180)="d3cef1fc6966c64e660888a9cfa8e444e152993b235d13c44b06ec4784e49612e4e8f7b0a1be48c907ac575c62a223a3eee89a161bc8610c9ae63587cdb226b1a6d61b613c3f574493507bb503a59f04d39193f07ae104206b5c2dedea1490c8ccc1210f5230e3e0453b51a16cdf78bb4a6db0c8cb3fab5c32ac660b0bba8a4a662e58a41db59d626830f1fb23f713f40e85d751f9ffdb6bc5ca29ce57c97d71ca2c2a50edb15718f9aeb3f1f3c37b888e417dc268290484d56f556ca7a54a6f9d19d57765a3f190f1a9d61a6f6005b17fbcd0306563502c6a", 0xd9}, {&(0x7f0000002740)="6d614410ab747d1df044024411dc55cd187e1832cd9fbf54a792314b195b7220d8503a3372c2caabe3f28ca40a947367b1f122169f88505a4431b6f996f99896d9dde84388f22d5f78c8c6c6e6cb6b731c200acb9f25d0ec690f932d3fda9a7826ade0f93ec6df4d97a4c4b95b8431025eda03bddfe26bf0ba2751bc0bc67f084547264a36cb825ad7a5c5bb9dd219782989fe481f3f0837", 0x98}, {&(0x7f0000001340)="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", 0xff}, {&(0x7f0000002800)="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", 0xc06}], 0x6}], 0x1, 0x0) 16:23:04 executing program 5: r0 = socket$inet_dccp(0x2, 0x6, 0x0) write$binfmt_elf32(r0, &(0x7f0000000e00)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}], "88bea3b8b2ff91d0f31f6b40e98766d05ee7c847839713f199f09d77f9e2ffdfc8a52fffa8e6ed85b2480fab2b8f58474d9cc5c76a4ddc56bf30bc6adaaf98172a27898605f84843a576eb38644065d288f957b190497c563a50c0d136413dbe35fe5b8bb67bcf75287d50391a7493b9066ec6fc912374190ae242df51cd009a426880024b946c1e184936a0c87334bb2125a3d38ea1e90d38fcdefe0b77d0bf807017630a178802d5c835db9210ec8e04bec89aa1f0f4b84b9f5b0686a3d5014b", [[]]}, 0x219) 16:23:04 executing program 1: r0 = socket$inet6(0x2, 0x3, 0x3f) sendmmsg$inet(r0, &(0x7f0000000180)=[{{&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)="db", 0x1}, {&(0x7f00000000c0)="ba", 0x1}], 0x2}}], 0x1, 0x0) 16:23:04 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17e34}], 0x1}, 0x0) 16:23:04 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x54, r1, 0x41d, 0x0, 0x0, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0, 0x2}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0) 16:23:04 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup/syz1\x00', 0x200002, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 16:23:04 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x78) 16:23:04 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000006c0)={0xffffffffffffffff}) getsockname$unix(r0, &(0x7f0000000700)=@abs, &(0x7f0000000780)=0x6e) 16:23:05 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x16, 0x0, 0x3, 0x220, 0x0, 0x1, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x40) 16:23:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x54, r1, 0x41d, 0x0, 0x0, {0x25}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0) 16:23:05 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x17f0c}], 0x1}, 0x0) 16:23:05 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r0, &(0x7f0000000800)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000140)={0x2, 0x0, @remote}, 0x10, 0x0}}], 0x2, 0x0) 16:23:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x54, r1, 0x41d, 0x0, 0x0, {0x39}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0) 16:23:05 executing program 4: r0 = epoll_create(0x3ff) epoll_wait(r0, &(0x7f0000000800)=[{}], 0x1, 0x0) 16:23:05 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000001140)) 16:23:06 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18030}], 0x1}, 0x0) 16:23:06 executing program 2: r0 = socket$inet6(0x2, 0x3, 0x3f) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x9, 0x0, &(0x7f0000000080)) 16:23:06 executing program 4: r0 = socket$inet6(0x2, 0x3, 0x3f) sendmsg$inet(r0, &(0x7f0000007880)={&(0x7f0000000180), 0x10, 0x0}, 0x0) 16:23:06 executing program 1: r0 = socket$inet6(0x2, 0x3, 0x3f) sendmmsg$inet(r0, &(0x7f0000000180)=[{{&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{0x0}, {&(0x7f00000000c0)="ba", 0x1}], 0x2}}], 0x1, 0x0) [ 1067.318308][T21367] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 16:23:06 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x54, r1, 0x41d, 0x0, 0x0, {0x1d}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0) 16:23:07 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18108}], 0x1}, 0x0) [ 1067.826254][T21367] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1068.266206][T21367] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1068.616695][T21367] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1068.779369][T21367] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1068.797716][T21367] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1068.828232][T21367] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1068.851017][T21367] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1068.881961][T21381] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1068.981265][T21381] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1069.064382][T21381] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1069.172523][T21381] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1069.330361][T21381] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1069.413507][T21381] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1069.436325][T21381] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1069.454775][T21381] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 16:23:09 executing program 3: r0 = socket$inet6(0x2, 0x3, 0x3f) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x29, &(0x7f0000000040), &(0x7f0000000080)=0x30) 16:23:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x54, r1, 0x41d, 0x0, 0x0, {0x34}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc}}]}, 0x54}}, 0x0) 16:23:09 executing program 1: pipe(&(0x7f0000001700)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000001440)) 16:23:09 executing program 5: r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000000)={'raw\x00', 0x2, [{}, {}]}, 0x48) 16:23:09 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1822c}], 0x1}, 0x0) 16:23:09 executing program 2: r0 = socket$inet6(0x2, 0x3, 0x3f) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x18, 0x0, &(0x7f0000000080)) 16:23:09 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x16, 0x0, 0x3, 0x220, 0x1c2a, 0x1}, 0x40) 16:23:09 executing program 4: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000600)={0x18, 0x140c, 0xb42aa6371e4c03a1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x18}}, 0x0) 16:23:09 executing program 3: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x3, 0x3, &(0x7f0000000340)=@framed={{0x65}}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:23:09 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18304}], 0x1}, 0x0) 16:23:09 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001400)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}}, 0x0) 16:23:09 executing program 2: r0 = socket$can_raw(0x1d, 0x3, 0x1) sendmsg$can_raw(r0, &(0x7f0000000740)={&(0x7f0000000680), 0x10, &(0x7f0000000700)={0x0}}, 0x0) 16:23:10 executing program 4: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x3, 0x3, &(0x7f0000000340)=@framed={{0x18, 0xf}}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:23:10 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000004800)={0xffffffffffffffff}) socket$l2tp(0x2, 0x2, 0x73) sendmmsg$unix(r0, &(0x7f0000002680)=[{0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f00000000c0)="658e17af1e575df4a8f330f96aa5dff3494e257266f45eede873c6d78e996b33add35f20b0360c676c0482f347e5fcfdaeaeda649c5d47b2eb83fee18685c7b66a7b2203ea42a93b6f81d7d7f423bdc2f177fb0f7e1753f119a0bf1d85b9a6c93dee0e31819ec564e619c73168cdb7bac32b92a08a40da0bb7fe860e58d0f285f81c3febadd53d67d0aec21e5ef9006dd76e005d76e94df7715cfecfcfc26110d8386894c68a003ab2a440e7c861320e4cfe8ef54e582d1b8ae0c98d0ae9b0f443646b2bbdb15d3556fe3b5bde3c2632a058a6e57e8eb0dcae14476e2e0b083305eb7b6f53e2011a094c724f85ff92bba94636248a3ff3b47cba0a3f2a007a8d9e4b5ae267446897050b1531c0aba0378e91359840bd1977703179e7845cf34d8fa63e141df62e7058601087da0b85f7f480f5da343dcd19efb079bf5436828b720cc4c46739e44e12e8840ddda4b310c65fe396637fe813bca21d3925f0dcf7d6ddd5e35d259bd5b45eb915f3d2e6d7b989f7431e89a86a9e009092ec7475fe2589eedb74867e0af3426d183a78867173af53b2de1b5e305e532a454fdca51f57e762155fcc250855facd2835d24c16e0b663bcacad1f11f6c05b3b2ea6952d96a56987369a7f25357c0e3af36dbb67d74e89e30cee7285c22a7475a416d5ae2f6fe57d8e2d87de3fa05a24f74cbcc1242eba535193460db3dd2e2a5c296f7f1f8f77e25cf2cedb53d0fcabc1890e41986f10851394e1b018509d50998a84b3815b2b3b4b4dbfeeb322496aabbc7b1615c196dc180d49d01ba14331c2d11c539415724f589016a48f0750c9e7a61d19db018ad3c2f25e13709dc4c29f9bd4199fdd0e01eec0739106ec9c88de04e42646fb4f3bd8bb1383497b3648ae5f0594aa18a9a7792bf0146e20f3d778e97123acffee8b38bc396a8ef123f39e012ef0ec95b23ef58856ceb1362b1e690c9f969753f6e12cb2be3fa8141753e1db9b8a05efe8e55b7111062bbef1c308e56059582846f4c810a63724bb8a670ae6f2b384173936b94a5543348449d36fa584ad1d2fcd5b67db24f83a3e702ae7585d95fa8dc281de51cdf8b1f4c4f78b8f37bb7eae84c53b8a0d58bb1c5d0795717d51a6039ace3670ca37af54ab7b8dc0bc250c2840aac9fb296d02fb907775b3ef80029031eabe1927521c8ef1c831548dc699cb3afd8f4b45925f9a477ac96134bb6535e3f2172a8a641e86ce856e40d262abd4764fbf0738e3c27fd421e4d25173cd85106d31062c6ce3590310543456fa149ff3dee44744e0c5e8df480efa74e33071c455c41d0a4b5212ff01985211f54fcf2c15bddd9b1271cf6f500f450475746d375407c787729d622a0b25c8b35513fc33066e04dbaf06bb50de387ee385e24703bb7a461b997991d3c5df91586563d7ca1851177ab4975eca98b014c4dc947f442d288de37af20866a6fc346e3e4b5e496e2ffd63c4b90c2ff29d21bdcd61e735ba60bab043d5ca57517450d9559f2fe7a7bca9f68c6223ca5092636eec94f1a5cfd750da690e5d2088c4317514aebce4827e0426db304bb94ef1a0d4ad5610ad97ef5d2798625b460803d8a3cc2b76baf786f9dba3b4bcd6670ff2f453bed70fc19c7ef6ec060ce97fde5fe967346461287a7bd6480e268bc5e27087ea1087ef4c6efbecd4e815b1c6ee2b1450e5bb44864823317ae817d59f9c6c6cb1d25ed11ad6316fa1ff0e574d54f46c4b71c3a90f0f1a4bd0eed4aad96a2b5c5d6ebda3ac325e194ad0fa93c8c7a9a29085d0d23c77b3b0a98b9d8572c60e8245fb1516bfa0a8e62beac27d33a54fab5c308b6171dfe6cc8c8e0a5b488198be732d3343a5e041048e82abd037d8fe7a16f5a8dbfecb06f2d4fe6031623867045d6cd966a0f111ed2b11abf739f517108c1b624c0daafc4814a77e8707e022c670a1703ec2d44bfdd8cff54245de285c525bdad6e821fdb5e3b5c063db7a812949d0c544f16851308af860386427cc17007cff81d9bdc6ebf9e897845e33cddfebf7654f1f42a2cef2d7ffefbc1a703721b54a847e97b38d4b6f2f8f7b2823e77986c9ad5cb0d2875001b69c43df6fcf178548ad91220f153221d32f3c20a66739d08131db163c862e2af1e4fe0dc02670fd619b88f4763fde32b042a1c33c8dd2024a25975a81fe03bc8b9e1dc4d804d114282bd49d3bbb57fb59128d79aac51fc968df683967596aeeb915811034edd270603ab2a9bbf00a4ad38908b6bc845c5ef9635645e6a06c66d12511f490cd673536f1b8b86bc58489db43a74ebaf4a50b608f759a8e763b1d0e24833b4f6011ceebde6dc03710b6e5fee8e0669bf6bd3a919536a3d1408bad0d11d72b54d6c979b86d009b5edd92adc2b1cac796b8acf221ce59299730f956081f4890a8e28da8dce8cd24697dff3e904ee05def1e8d3163e174dbbf4cf0a6b5379353cbef12ef41c034558c763c0cd81eac36d4c38def950a4a0f19fb1b3e0a530d9c090d9c9d31aaab57ec859455b6b6c76f95ab36f8edad0a84e04b27f3e47631cdd88c738d47d06dba8bfce71a922a3a8a3089d630e64302050cddba6553a76781e5f536e37378ef828438483e999280ad6c925b8f140d6c11c206c105dd9c51b2584c0a2d3036db0af5902c09eb43ec2076d5c97d4bf691609e97b047070fe8f7f91724306dd26f5c671a05457856a61cf9c38d451290bfaec4c69261b536c1dfe0b2ec661690603d96a53eecdf70493f30b243a2df595e118989ef3da5fca6e2d822d40f3f2f785572acd778dd10ff6b561983fee69ebd1921414df580d52c09b9417a68084c037291a202b10990b2147d15c0d83333288586166e9c443c46794ed53f8d706ec711fb12e4b2c26986db7cf40402ec51ec4e25df5c944472d137a7b661817d6b45be122bba56835f9f54b451133c3aa3814041dbfe9db7d50aaa59480f1fde7766111b3ffe8e958fc80de91fc5b7144e8e2b09b362392298a041d3dd90bd2b9c01e350a03971477f608e402a4e5453c7905d09f94db7a70908c52448eaf1a81f93cd1cf692095a948892bc18e18d0fd50bd7b6d109be5bf966da09cc33ed7fc4397a9fcf1066ebbeec7d643d10e5c96dd547de020c1012f164da0c98e779949811c9d70d13cb814c4a61d67d2e359eb4c907ccaec9e69d614b4fcb68e76fdc545ff529d7264bdd613bc800777c0bfe3fefd4b31d5010c2e1bc07eb478e784533ce866318c4314d0f04dc31fac7615bc9985e41f568ecd20bf92fbe0a9de0ebba7555cb251dede225d0c05534e8c563f247040b02d26f8e16b36a43c74154fc6ff90eb67ee8d6bb630bde6de737a42928877f0c367d08e1a22cd21a86bdf762c0a57ab09d0818f0ea0735ec0ad57d6a3621e22e77931de8784d381bb3b79525c0821b59f013dfe2e293394efb78d135aa25a0aad75be5b1c1166e88f2fc5405fe57900ffe10a351dba7d36d655b47faecd6fc8160d4ee023d7144ca6e6b401ba478cbd70b0bf854fe12dbafd615337026f9b06187551bda69444478fbad9b070e103121d2f4413c447d451258aefaff9b0223bbbc39dc829e411c7aecde929b5e7c867af20930800c21ecb92eea6ed1a34557105256692df4f2dcff06090690d41f0b0a196e46fcd27650484208837fa8d39697181a9dc20e2e8a02cf9df1116664d9a70db3dcff402b3080039f758724f47f24251b2d1201dc59b4ac75a813f13a8291f0e94072677ea8c71f88a9484e0ecb590d314c8bc221aeec4e8c53e9aff4330ee8cd177d87cc018a2eeff239a701c4f6578ecbb4ec8ced825e1a56489bbc40dfa865f0757aceff8d4daa10a3932960437237333bf11c7ab0fd2287e4fccf269cbad21c6e63cbb16f18c3be08ab0181c424c2b3015dc437239ac7be5303f315a6f391afaf63fc005d5a88bc7013e5c6022b914f3ba31f871145462dbf3916a2f3cc22249a6e1ca55a8ad1a70070a65b8886031c21e5e62e85a1a87e06e36d1c65241dd7b67856c8592d3ba8bb59dbecbad3ff0ba8482141b930b1e5d8de9dfc6dbe64f8fffed62f027edb9b30013b18f7f71d76bebc4816770e7ce5a856ab5798e856693d16de0e547b0dd072ac4f7b77faddbb4c6c963cb264007464bda4d9f076fa14715c8277e3d513ef4531b4ff36e0575b2d30f210c9cb82eb6133b5b842df2e4a2fc0cbfad5ba03447fcf1ac8775db14693a24ce9854a450cd0480ddafe4c8b281d43270984867a8dbd05dffe9d30d8ba95bc9ce66427aee97f8bc75b72d803a595959612329c6bfd6979a49eec01d94370c6d284f359ae8dbac8a3f4c512cfe22be2768ced6d8d411a95369803c8bb25610cb3e614c5cbed4c783b7e66937e571b34c096049ad518a4ff93cea4ba3ff841fabdcfc407c943b6cc8afdbeae153c50258d339a672ab180db0259b8a69ae697401b511be01177faad87b50a00289e83dfa90144617d4d88eeaebcaaee52835d2ff3de155e829da591b85a95e541da8dc2bcde7ebae8801c37533cf20a14bd23a0e6844780c62556aa0a5b0de9bd579c586172146840091056b2dadd5d0c404b0c1a7fa64a621635b952acb9609e23ae114a13080ef48d5bde1467e8309916ea3ef2135710d9633db238ede66b48564161bd26145319e891804fbeb301a3b891228218704df2b49825b9844751f24fbd3fc55fd29d6a5121e429e766fd450ad3475d278910f4713ee9bbd353d5e42a882dbd22ffd883d3994efa00a329467fb5df6be431cc58281b97153ac2356aef5c3dfb1a294dc33a569b938d294ffe51df6fad9f79e095eaeb977df626dbcb3555b3e675dbed8811e8a0080f3b0d1c4a846a0e2ea3ece08330f60b13e0c8c508fbb4f84d0c50063ef7817e722e94f1e922ae04760e309fc05fba33c1fa560214bbf9cfe803221cf62691c201532b607b14e46fd880914de95fbcad4ac233c649572a1b6efbb41bd4c38535caa6971cea8f444efd770982584affb804dee2440b736db6d5e96b001f95f1b26ece3ec77586337286f1973f7b1b4738929de14bd2785d1c57d274917183b3ee30e1f89885f109284baa17a93b9a2fbf2734f225624dfa51e2ad049db1771de859042c8f79e62414214aadc2025f60aa6cd8a6cedc154bf19e809cc9c2a1c036013c9c78dab52ec2ee74d7da7e02fa9058a0f832293456fb9a0c0622af7f213080bee1002d410899fa3aa6dad58a241f6ea3b965377e440112c979048483c4c4afce20c10603b883bc54d593bc0a827f3c2144d1410fb0e29fde39e1209b6113ec68953d9954d64bebc9159a16a3ae46cc027bcae45bbde6b33afdded6d80d78573814b624784b0830cc7e51c0667bdfcaafe771a9ad4c23cdb85f899f909e3cab0ff39f67ab59f2fd56b09156c99f4dbf588b9664cee8a587ef32a050d1ce2115efa92297de92ddc3a1358ac72bd65fa891801c46973c1c30599fa40419ae96a757cd0910a1400ea8f38668da63b00bcec54c82d0dba44b287563965382ae1e5e6e7b5f60ff976462eb735061e75b447d532eeb35197a8e948bde29fc632be2f656e6030571917d85ab017860993bf48356a30b895bfe2b98d2be7a73238424c298ea391a17ea2932de21a2201c98fe87e5390f1d44fed3ac09180fea589e10a88c1f95b0b0bc505b807323cdb819583ac733ca924d3b4c26d8512782b7acbe82da1fc54e4e69ec8aa01a810fcce3215920fe1db2d970981581d3bd4942e5ee0e5fa1d19458b2c332fe571fe859c45f360212075b617b42f52073a6", 0x1000}, {&(0x7f00000010c0)="a1a1ebb907aa493dc126183d1c000c7f18e448b6f37ac1f901d977bc0a4e4c60a0063fad6aac8be539933adcf8ef04d2b3758a9cd87c7d5715f714f3a5fdcc151ed90d8cc109044e2b3dbfb5dfb19bbb40bb40b94ed7bd1cee37d67de4d414d58c2676ebb4dd3f41c6", 0x69}, {&(0x7f0000001180)="d3cef1fc6966c64e660888a9cfa8e444e152993b235d13c44b06ec4784e49612e4e8f7b0a1be48c907ac575c62a223a3eee89a161bc8610c9ae63587cdb226b1a6d61b613c3f574493507bb503a59f04d39193f07ae104206b5c2dedea1490c8ccc1210f5230e3e0453b51a16cdf78bb4a6db0c8cb3fab5c32ac660b0bba8a4a662e58a41db59d626830f1fb23f713f40e85d751f9ffdb6bc5ca29ce57c97d71ca2c2a50edb15718f9aeb3f1f3c37b888e417dc268290484d56f556ca7a54a6f9d19d57765a3f190f1a9d61a6f6005b17fbcd0306563502c6a", 0xd9}, {&(0x7f0000002740)="6d614410ab747d1df044024411dc55cd187e1832cd9fbf54a792314b195b7220d8503a3372c2caabe3f28ca40a947367b1f122169f88505a4431b6f996f99896d9dde84388f22d5f78c8c6c6e6cb6b731c200acb9f25d0ec690f932d3fda9a7826ade0f93ec6df4d97a4c4b95b8431025eda03bddfe26bf0ba2751bc0bc67f084547264a36cb825ad7a5c5bb9dd219782989fe481f3f0837", 0x98}, {&(0x7f0000001340)="e866dc6aad2ee8e0949d9597d21490ac31d4a2a778fc96d1f9977ed33e5c323d41f724b132c4e304eccc54ba9216a506e0d830dff74f16b1b4dc5edfaaa11513c056b83a89f1bf46b0cabce0b14913abd54cee777fd46f8566ff186576df4e5d33fa3fbac1316d4e3aceb2cfee588c60123098a119e658dd12266c74574d77b091704b7abdcb113fbc3152efadfcd0403f0626375448bb6e0943a6067f5b57eeef2cbe625de7063aba47c136584bb88f83ffc9ad6e19c6a084e2d50342f101f51fa12c4c46d81decd26f051346ad40710c1c92dcc8c8e0f5c47ccfafba4b11c9813f74db1bd6d81a002b2b3bc69d0621fa1928c7021912c4c077b7665203bb", 0xff}, {&(0x7f0000002800)="360e3cd63d4e4a4f0b868c1c9c0de3d15d8d0b6c77b2e840f5f2f97438339b196eb9c3405da26ce0cd06a0f183e4e4181285ed711b27973c4709be37b5aada726b2159d854371d100a4bcabf32dddf8178c88db9d59f8beb1c5d4d91c2cef643fcb643be80ccb712662371316999c36253e3d777cfcfb66ac0aef3e56b806f9807ea9a18c2c3a3dd503acc21cae87abd9b9b686e232a386be444e3707859ce8084e89f7e4c3f44799813ae25a5c78c080236c801d8972c641edca6b851690f40d0f912d169f20b1ec16570a43611a0931f4af3d80969062ee226eb97e773e4cee63dc0ba55cc86d3e73661ac6e28690a90cf204d8cd1b0f9c3c114a3864aaaec46873fcae0d8ab8ce32a82720d8689ccde23784b696a8e24ea83ad3afc954baab0aa24af30310d6d72f850d478f6127e855e73eb9119ad325fd54be818cd1aafb1c6d163cb8a5654bfa2e064fd7147ad8be44ae3d79d565c194150c5be1a43bbec26f6759a693d2182ef72dd3ef3a398ea75b2da90796336e6a580a36eab90e71385a7ba7bbb9c0b2552c499ec4c589f77ff3ab1c976a001bcfbdce1348a3f33f8258d27b5d3f5f44c968df61c4ea5bcf803bd0f03b23f5cdf0ef2fd82d9c2cbc3c467354f1265de340c343219639aa7e1e9e06aaf7b19779319b3e754c782eb0ddc150518c69a581d8f22bcd8267a0b063b867b285f0f2dda6791b99a5d55276cedb62688471972301b0dcd320949739ab4a0056a64bb808f261c84682c28b51924fb96383cda93373131edac09b2de86787305a5f4addc1c2d43629ef9358759a0354b059245d96d2673520a12e74276b3dfe4288c010dba11a59b4ea4807dbbc8ba883222ec62e2a65decd2a2eba148f7926e2782aa32147c64ab11d90c1252aeb50f7cfc59303c8696048852c4a36d00f7c3e213f8e414e48a7a43c6bfc4c0d1d78ee8e687ab4c87bb0ebe130cb7fb85df62c741bf125299274fc51291a2733bc23edcbbc5a67f503f5c96463b15ae9a3b3605067d258c28f2a0b388fba1927b01a22e525869b15f3a7dd0cf841e87754b393050317f9d00ff9b15a6a7fef4a6b9d2bb6cd8a740888c37802765575d34ef8fbdb4ab374ed7d45e37414a196cac860af875837ce6ffca529608c047ff0dfd05ff3e6abcb923c8196191d7991b4633c8d12bc894137ed9b18a0703c55679edc11db58b089b82caf99cb4fe2dcab67ec0bdd318e5383c84b322d8715ea1331424f3c046d6e690e05a821d4c9c4b6da7c29f35ef1c2a6550dca123579171c69947292a2eb906886fafd1a20276693f63c34d3867b786f54887ec8a744aa80bb5af2c3f43a0ec9d4c792901cff8ddf2fb79cb04634201c476664268ab7c17251653b73ff2ab4b00f4ae07272e4e9b5655b6f2a111a27851c1deed0b2873a0cc2dcb19cf5315648e406f080f027d43149d000c25457d152af71ce9bb639f01b1b5bd85fbc9b8b633860f1043f2281bc46a3ea22392e044830aedc1d1e92b034c17358611ec169699e61f1918f4cd24151315cb9997884bdcdfa140db9cded4a2c25b27e059a2fba438740fdf2f70b30da075083627bc24a84ffc03e62798e26bbbe8247854a8672ac1ecdf4b8d8a839dc94c60cd547e08177d8d6334fcd314bf734db74d110c496ec7eed5d7abb132a6129ed96e039cdf79da7ac1b9e5792a49238b504f4521c92c91972b6c082f126293e7d119a126474a8a1e1c15a218f0706123fc763777be656f873f4f7bfd2acd35934f11702e32e2047c01cbca9c4e921a37c9ea85268602cb05a5accfe945785b16b2a17aa09d1f9cfe8315c7fe0322776441cc3797163d79bd2f7a5dd6dbc4ef91784aa14908f68f1d554b58a1c357fb6f441f491f083624bd76bd737ba704ef4587df7a9e75d117b7ee9e377c436f4e4366fd1934894a77f448e7d990848d747ec80088992a88dbb99b75378ca4a29c5e29b46e7693f806873e4dff94456875b45ea8f53aa7d5a757f49f928d9881a2c88bcb890ea1d031df1e3bce1719488745797fe1258b232052f5d89c022b20672f5465779f1eaa72762ec0e7b02fa809e05e69347d5e4ddfb46f9dcaaa63268687a718ef88b627a50c3c68b1ee8698330058ec9262dd0e4111ab97e1ecc4c4145ebd7ecb76b6a291d61f034133dbb256677031a20b1bcf8ab78f1af678f4fb288755f542673ee999c600530ea4f1fe9c4369a40e395c8da3bc26daf775fcf117a7d16bf6ed49fda59644849af3f8190eed1056c1c171ca1511c99e311448d5d00915dbf4df2cb54020c6f01c7a90e16f5b69ac7a2e5f816761afab87db42394bfa7991b83fccb097ecfc8d9e52510ee13e81bc94b2fa9de6c858287902e15c9efbc54bbe8bd48ef4c070e96db6a2ab976e622353d4ea817271baba19a2badca4af25d221ddc9c3972f312549500fcb9570667c219b476ea6765d5659c91beb912e58b3113fd21f39bffffd284e472d73e754fc96f8a034b50941383bc6adf9e6ea4e6af9dcd0a5fd17e857481392d662edcdc11aabf0911c538f047c6b7dff3da6b6b6526b38ad66b624984a09da88e2f9a0f71b89b2c808b5dca36bff14522198b9a11ccc9ecb15e30ba1d82142318467b9419929cf4e79a6620f20e8861251d8d7957c48c43ccfbbbd9987778ca3eb82aa8f7c92fec9b4c4358def1f9c0846b127a043916cd93e96db0d8262a032cbc4451bdac1365cceed38552f61aa4d7e265ecadc9de91e5b5c86cba32107d1a226da40ea345ceb45e25fa765b125f1eefd6b7c58dd1f6276ba59944a9d302e5b6cb0ae6c4c65a57d33a468b2edf3ac29bf25d4f3b5944df5e5c35ceb9e32919ff0d64eedb81479772e5f918ac0cfeaf6feb2dd0a38c9d113d3450f50550e353e5f6a2f8f8400f1f7f3f085597333fa05b7524460395563074b1376b4ac1486df9c0fea34b0b91861d653ef42ad2f610f8a119080d2b157d4441e8d91f19748537a854c03fadbe0dcc07aec8d9ce6569042e584b850cb612498aaa443fc9adc79c1097aa198174ef45ed5b4117c72b52b4178ecf6ba7b9890b4174332e01d384baf5636daa01e0f956471d2837e53b7d99d2f3b0924bedbf21271d248277bb83a8e7c1f8c4d67fe2f24fbb7dfecf6d7dab702cf1f17ea9d0b0bd37c22f692954d57aae6abb75e86c32666e06f8dd77b28d4fe69ee39fdfd9279c143bb04fcd4ebab7cba86ed527a164e0d3d5fccfbd18d653b95d9c246093ae817cc482d6c6658592206b1f4ba3b43ce8d5fb20a32b2e564318c0d59489721291839d5683fc96a6b3374e0a8a7fcd965a16c40d097a5b5384f202906d0f2d761d37b3d89daa2486386a88820066660167d59543feb7d32a1e47f28d49fd8f8c517c3001f7248445d030030a9e1e8b4b49c2610c0fbd88230775be5d9457e0419f61fbdec0555aecb399475a883834d6c57824247323fd104507202796b33f3a10549f4c5b0d81f93dfc865d972385f552292bbcf39cc901223f868508a36baedbd822e6c8fe15a84477e621ee19e614199c39bbefed84774f8ed7717909c1c9f33e8420fbfa33f6df0d92b2595cbeacacef0a465517afa497559576f0baed69c19b15e679d9ef767a525ca36ae8bec9a907c7e6e1f5a64c4d57ae3d15730f59c62d8fce2398d1f96139ed973fec6cac691ca27c8156888903f262974f69de19dc28d0b736137958b863dd93e80472136f25e3c0d74d0a1fb4190e151f11a39a526cdaf63752add9dd1740428c597cbe84a71373319780097a26439850ce933c82b51d32446db74921aab0c9ef1a755580838cded4d14dfc05cb966270058c86bfae974da8f85ba5750546dde5a48f46d8e92e6da1c401a05189719303a97d02cf9658e55abb38d998cc591809e7f9590a1ceffa022ba23d3713e39ddb671537884cba3b9f749889dabd38d962726008d72b76796c798406fa9f9fee90088de5c9c17171f1e8c09766902a7bf6e3bd2d153f99d543f7856f937c53db4d3ba97bf16b27211036cb20eaa803141581b565b7dd165d45d62621eff02d7d670913f8c094cce249d0013054ac6137cee0cebefda22590744ee9cd12160ff2047ba3038033b8ca874cd2ac301f2859b8d35e8c704d8d8e1155b8e0e29decd4cc0e7c0e4211fda77fd84e4330b820ce181e54ed5346b226acafc13c3b344b2dc91c90829d345c2a89096786669e5d96d8d616e45c54e296058c2269ed679290db6520d0c318eb25923609e1e064841fa18ef4b6d530a25892e2ee304f5729fd6fea3988cb05fba04f5d0865c67e7e7bc", 0xbe8}], 0x6}], 0x1, 0x0) 16:23:10 executing program 3: sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(0xffffffffffffffff, 0x0, 0x7140434df61814d5) 16:23:10 executing program 5: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_lsm={0x8, 0x3, &(0x7f0000000340)=@framed, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 16:23:10 executing program 2: 16:23:10 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18428}], 0x1}, 0x0) 16:23:10 executing program 1: 16:23:10 executing program 4: 16:23:10 executing program 3: 16:23:11 executing program 2: 16:23:11 executing program 5: 16:23:11 executing program 1: 16:23:11 executing program 3: 16:23:11 executing program 4: 16:23:11 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18500}], 0x1}, 0x0) 16:23:11 executing program 2: 16:23:11 executing program 5: 16:23:12 executing program 3: 16:23:12 executing program 1: 16:23:12 executing program 4: 16:23:12 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18624}], 0x1}, 0x0) 16:23:12 executing program 5: 16:23:12 executing program 2: 16:23:12 executing program 3: 16:23:12 executing program 1: 16:23:12 executing program 4: 16:23:12 executing program 5: 16:23:13 executing program 2: 16:23:13 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x186fc}], 0x1}, 0x0) 16:23:13 executing program 1: 16:23:13 executing program 3: 16:23:13 executing program 4: 16:23:13 executing program 5: 16:23:13 executing program 2: 16:23:13 executing program 1: 16:23:14 executing program 3: 16:23:14 executing program 4: 16:23:14 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18820}], 0x1}, 0x0) 16:23:14 executing program 5: 16:23:14 executing program 2: 16:23:14 executing program 1: 16:23:14 executing program 4: 16:23:14 executing program 5: 16:23:14 executing program 3: 16:23:14 executing program 2: 16:23:14 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x188f8}], 0x1}, 0x0) 16:23:14 executing program 1: 16:23:15 executing program 4: 16:23:15 executing program 3: 16:23:15 executing program 5: 16:23:15 executing program 1: 16:23:15 executing program 2: 16:23:15 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18a1c}], 0x1}, 0x0) 16:23:15 executing program 3: 16:23:15 executing program 4: 16:23:16 executing program 5: 16:23:16 executing program 1: 16:23:16 executing program 2: 16:23:16 executing program 3: 16:23:16 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000280)={0x28, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_AF={0x6}]}]}, 0x28}}, 0x0) 16:23:16 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18af4}], 0x1}, 0x0) 16:23:16 executing program 5: syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x7, 0x0) 16:23:16 executing program 1: r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) clone(0x86a01780, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa4, 0xa4, 0x4, [@union={0x0, 0x3, 0x0, 0x5, 0x0, 0x0, [{}, {}, {}]}, @struct={0x0, 0x7, 0x0, 0x4, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}]}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{}]}]}, {0x0, [0x0, 0x0]}}, 0x0, 0xc0, 0x0, 0x20000000}, 0x20) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b90cb6974f527cc14538d1efb1ffe03284f6d33265be9c604c893f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x33) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) 16:23:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x18, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x9}]}, 0x18}}, 0x0) 16:23:16 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1e, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4) 16:23:17 executing program 4: r0 = socket(0x29, 0x2, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14}, 0x14}}, 0x4000041) [ 1077.746554][T21568] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 16:23:17 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18c18}], 0x1}, 0x0) 16:23:17 executing program 1: setresuid(0x0, 0xee00, 0xee01) getresuid(&(0x7f0000000000), &(0x7f0000000040)=0x0, &(0x7f0000000080)) keyctl$get_persistent(0x7, r0, 0x0) 16:23:17 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x402c542d, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) [ 1077.879245][T21573] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 16:23:17 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xf0ff7f00000000}}, 0x0) 16:23:17 executing program 4: setresuid(0x0, 0xee00, 0xee01) socket(0x23, 0x0, 0x0) 16:23:17 executing program 2: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x80045439, 0x0) 16:23:17 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 16:23:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x18, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x4, 0x6}]}, 0x18}}, 0x0) 16:23:18 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18cf0}], 0x1}, 0x0) 16:23:18 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x12, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:18 executing program 2: r0 = socket(0x2, 0xa, 0x0) sendmsg$netlink(r0, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0) 16:23:18 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x21000000, 0x218}, 0x0) [ 1079.073181][T21593] netlink: 'syz-executor.5': attribute type 6 has an invalid length. 16:23:18 executing program 1: syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x0, 0x208101) [ 1079.128380][T21594] netlink: 'syz-executor.5': attribute type 6 has an invalid length. 16:23:18 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5457, 0x0) 16:23:19 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0xa, 0x4) 16:23:19 executing program 3: setresuid(0x0, 0xee00, 0xee01) syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x202000) 16:23:19 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18e14}], 0x1}, 0x0) 16:23:19 executing program 4: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8970, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:19 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x11, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:19 executing program 2: pipe(&(0x7f0000001180)={0xffffffffffffffff}) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) 16:23:19 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5412, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) 16:23:19 executing program 3: r0 = socket(0x2b, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0x9, &(0x7f0000000000)='yeah\x00', 0x5) 16:23:19 executing program 4: setresuid(0x0, 0xee00, 0xee01) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) 16:23:19 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x18eec}], 0x1}, 0x0) 16:23:20 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000280)={0x14, r1, 0x1, 0x0, 0x0, {0xc}}, 0x14}}, 0x0) 16:23:20 executing program 2: setresuid(0x0, 0xee00, 0xee01) r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8943, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:20 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5412, 0x0) 16:23:20 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r1, 0x1}, 0x14}}, 0x0) 16:23:20 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x9, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:20 executing program 1: r0 = socket(0xf, 0x3, 0x2) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) 16:23:20 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19010}], 0x1}, 0x0) 16:23:21 executing program 5: setresuid(0x0, 0xee00, 0xee01) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000001740)={0x14, r1, 0x1}, 0x14}}, 0x0) 16:23:21 executing program 2: r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ocfs2_control\x00', 0x2601, 0x0) write$sndseq(r0, 0x0, 0x0) 16:23:21 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x19, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4) 16:23:21 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x9) sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x20}}, 0x0) 16:23:21 executing program 1: r0 = socket(0x2b, 0x1, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="da599aee08d70a2880e323222e97f715", 0x10) 16:23:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x7fffffffefff, 0x218}, 0x0) 16:23:21 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x190e8}], 0x1}, 0x0) 16:23:21 executing program 5: r0 = socket(0xf, 0x3, 0x2) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x7}}, 0x0) 16:23:21 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5433, 0x0) 16:23:21 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x22, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:22 executing program 3: socket(0x2b, 0x1, 0x11) 16:23:22 executing program 2: pipe(&(0x7f0000001180)) shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0xc9a00b92892afd07) 16:23:22 executing program 5: r0 = socket(0x2b, 0x1, 0x0) openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000023c0)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000080)) 16:23:22 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x540d, 0x0) 16:23:22 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x3) 16:23:22 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1920c}], 0x1}, 0x0) 16:23:22 executing program 1: setresuid(0x0, 0xee00, 0x0) getresuid(&(0x7f0000002280), &(0x7f00000022c0)=0x0, &(0x7f0000002300)) setresuid(r0, 0x0, 0x0) setresuid(0x0, 0x0, 0x0) 16:23:23 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='oom_score\x00') ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, 0x0) 16:23:23 executing program 4: setresuid(0x0, 0xee00, 0xee01) getresuid(&(0x7f0000000000), &(0x7f0000000040)=0x0, &(0x7f0000000080)) keyctl$get_persistent(0x15, r0, 0x0) 16:23:23 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = getpgid(0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee00, 0xee00}}}], 0x20}, 0x0) 16:23:23 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x3) 16:23:23 executing program 1: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x48, 0x0, 0x0, 0xffff00000}, {0x80000006}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000380)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x19}}, 0x10) setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10) sendmmsg(r1, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) 16:23:23 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x192e4}], 0x1}, 0x0) 16:23:23 executing program 2: r0 = socket(0x18, 0x0, 0x0) getsockname(r0, 0x0, &(0x7f0000000140)) 16:23:23 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5409, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) 16:23:23 executing program 5: sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, 0x0, 0xe356920ad460bea8) 16:23:24 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x3) 16:23:24 executing program 2: socket(0x18, 0x0, 0xfffffffd) 16:23:24 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x18, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}}, 0x0) 16:23:24 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000100)=@buf={0x0, &(0x7f0000002200)}) 16:23:24 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19408}], 0x1}, 0x0) 16:23:24 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x3) 16:23:25 executing program 2: syz_open_procfs(0x0, &(0x7f0000000000)='net/sockstat6\x00') 16:23:26 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5419, 0x0) 16:23:26 executing program 4: r0 = socket(0x2b, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='yeah\x00', 0x5) 16:23:26 executing program 5: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8929, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:26 executing program 3: ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:26 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x194e0}], 0x1}, 0x0) 16:23:26 executing program 2: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5421, 0x0) 16:23:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@cred={{0xfffffd7c, 0x1, 0x2, {0x0, 0xee00, 0xee00}}}], 0x20}, 0x0) 16:23:26 executing program 3: ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:26 executing program 5: r0 = socket(0xa, 0x3, 0x9) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000280)={0x0}}, 0x0) 16:23:26 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19604}], 0x1}, 0x0) 16:23:26 executing program 1: r0 = socket(0x29, 0x2, 0x0) sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x40) 16:23:26 executing program 2: r0 = socket(0x25, 0x1, 0x0) sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x20000005) 16:23:27 executing program 3: ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:27 executing program 4: setresuid(0xee00, 0xee00, 0xee01) 16:23:27 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)={0xb, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x40) 16:23:27 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5411, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) 16:23:27 executing program 3: syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:27 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000280)={0x18, r1, 0x1, 0x0, 0x0, {0x10}, [@IPVS_CMD_ATTR_SERVICE={0x4}]}, 0x18}}, 0x0) 16:23:28 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280)='cgroup2\x00', 0x0, 0x0) r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) r3 = openat$cgroup_procs(r2, &(0x7f00000006c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r3, &(0x7f00000000c0), 0x12) r4 = socket$inet_udplite(0x2, 0x2, 0x88) sendfile(r4, r3, 0x0, 0x9bd) 16:23:28 executing program 1: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8942, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:28 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x196dc}], 0x1}, 0x0) 16:23:28 executing program 3: syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:28 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x6, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:28 executing program 1: r0 = socket(0x2b, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) 16:23:28 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = getpgid(0x0) setresuid(0x0, 0xee00, 0xee01) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee00, 0xee00}}}], 0x20}, 0x0) 16:23:28 executing program 5: r0 = socket(0xf, 0x3, 0x2) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14}, 0x14}}, 0x0) 16:23:28 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19800}], 0x1}, 0x0) 16:23:29 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x1fff}, 0xc) 16:23:29 executing program 3: syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x40045436, 0x3) 16:23:29 executing program 2: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x891d, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:29 executing program 1: r0 = socket(0xa, 0x3, 0x9) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0) 16:23:29 executing program 5: r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0x4240a543) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(camellia-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000240)="4966b44468d99801ffb0dca0d2bd3e9e284900000b10cc9de1d8602d212066da", 0x20) ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612) 16:23:29 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x5452, 0x0) 16:23:29 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x198d8}], 0x1}, 0x0) 16:23:29 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x540f, 0x0) 16:23:30 executing program 2: r0 = socket(0x10, 0x2, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0) 16:23:30 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x0) 16:23:30 executing program 4: r0 = socket(0x2b, 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000001c0)) 16:23:30 executing program 2: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f0000004100)={0x2020}, 0xffffff7e) read$FUSE(r1, &(0x7f0000000100)={0x2020}, 0x2020) 16:23:30 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x9) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc) 16:23:30 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x199fc}], 0x1}, 0x0) 16:23:30 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x0) 16:23:31 executing program 5: r0 = socket(0xf, 0x3, 0x2) getpeername$netlink(r0, 0x0, 0x0) 16:23:31 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f00000000c0)=0xe, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[], 0x188}}, 0x0) 16:23:31 executing program 2: setresuid(0x0, 0xee00, 0xee01) r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8980, 0x0) 16:23:31 executing program 1: r0 = socket(0x29, 0x2, 0x0) sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 16:23:31 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCXONC(r0, 0x40045436, 0x0) 16:23:31 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x80045432, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) 16:23:31 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19ad4}], 0x1}, 0x0) 16:23:31 executing program 4: shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0xc9a00b92892afd07) 16:23:32 executing program 1: r0 = socket(0x2b, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0x3, &(0x7f0000000000)='yeah\x00', 0x5) 16:23:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1b, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) getpgid(0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0) connect$netlink(r0, &(0x7f0000000000), 0xc) 16:23:32 executing program 5: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8940, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:32 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x8, &(0x7f00000000c0)="8ffc7e7b", 0x4) 16:23:32 executing program 4: r0 = socket(0x2b, 0x1, 0x0) recvmsg$can_bcm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 16:23:32 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19bf8}], 0x1}, 0x0) 16:23:32 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000000040)) 16:23:32 executing program 5: syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0xffffffffff7ffffe, 0x751b01) 16:23:32 executing program 3: syz_open_procfs(0x0, &(0x7f0000000140)='oom_score\x00') 16:23:33 executing program 1: syz_open_procfs(0x0, &(0x7f0000000000)='net/rpc\x00') 16:23:33 executing program 4: r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x5421, &(0x7f00000007c0)={'vcan0\x00'}) 16:23:33 executing program 2: r0 = socket(0x18, 0x0, 0x0) connect$pppl2tp(r0, 0x0, 0x0) 16:23:33 executing program 3: mmap$snddsp_status(&(0x7f0000ffa000/0x3000)=nil, 0x1000, 0x0, 0x8022072, 0xffffffffffffffff, 0x82000000) 16:23:33 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19cd0}], 0x1}, 0x0) 16:23:33 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14}, 0x33fe0}}, 0x0) 16:23:33 executing program 4: r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) clone(0x86a01780, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x98, 0x98, 0x5, [@union={0x0, 0x3, 0x0, 0x5, 0x0, 0x0, [{}, {}, {}]}, @struct={0x0, 0x6, 0x0, 0x4, 0x0, 0x0, [{}, {}, {}, {}, {}, {}]}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{}]}]}, {0x0, [0x0, 0x0, 0x0]}}, 0x0, 0xb5}, 0x20) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b90cb6974f527cc14538d1efb1ffe03284f6d33265be9c604c893f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x33) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) 16:23:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x11, r1, 0x1}, 0x14}}, 0x0) 16:23:34 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x19, &(0x7f0000000000)="8fc5dcec", 0x4) 16:23:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1b, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4) 16:23:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x18, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x4}]}, 0x18}}, 0x0) 16:23:34 executing program 4: pipe(&(0x7f0000000080)={0xffffffffffffffff}) read$midi(r0, &(0x7f00000000c0)=""/15, 0xf) 16:23:34 executing program 1: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/syz1\x00', 0x200002, 0x0) 16:23:34 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19df4}], 0x1}, 0x0) 16:23:34 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x0, 0x204, 0x1}, 0x40) 16:23:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x3, &(0x7f0000000040)='\x00\x00\x00\x00', 0x4) 16:23:35 executing program 5: r0 = socket(0x1e, 0x4, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) 16:23:35 executing program 1: r0 = socket(0x25, 0x1, 0x0) recvmsg$can_bcm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 16:23:35 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x40045431, 0x0) 16:23:35 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19ecc}], 0x1}, 0x0) 16:23:35 executing program 2: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TCSETAW(r0, 0x540f, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, "353af441b64f1cf4"}) 16:23:35 executing program 5: select(0x40, &(0x7f0000000140), 0x0, &(0x7f00000001c0)={0x9}, 0x0) 16:23:35 executing program 1: pipe(&(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x7, 0x0) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1) 16:23:35 executing program 4: syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xffffffffffffffe1, 0x0) 16:23:36 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x2) sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={0x0}}, 0x0) 16:23:36 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001700)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={&(0x7f0000000280)={0x14, r1, 0x1, 0x0, 0x0, {0x10}}, 0x14}}, 0x0) 16:23:36 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x19ff0}], 0x1}, 0x0) 16:23:36 executing program 5: r0 = gettid() sched_getaffinity(r0, 0x8, &(0x7f00000000c0)) 16:23:36 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x7}, 0x0) 16:23:36 executing program 4: 16:23:36 executing program 2: 16:23:36 executing program 3: 16:23:37 executing program 5: 16:23:37 executing program 2: 16:23:37 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a002}], 0x1}, 0x0) 16:23:37 executing program 1: 16:23:37 executing program 4: 16:23:37 executing program 3: 16:23:37 executing program 5: 16:23:37 executing program 2: 16:23:37 executing program 4: 16:23:38 executing program 1: 16:23:38 executing program 3: 16:23:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a003}], 0x1}, 0x0) 16:23:38 executing program 5: 16:23:38 executing program 2: 16:23:38 executing program 3: 16:23:38 executing program 1: 16:23:38 executing program 4: 16:23:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a004}], 0x1}, 0x0) 16:23:38 executing program 5: 16:23:39 executing program 2: 16:23:39 executing program 3: 16:23:39 executing program 1: 16:23:39 executing program 4: 16:23:39 executing program 5: 16:23:39 executing program 2: 16:23:39 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a006}], 0x1}, 0x0) 16:23:39 executing program 3: 16:23:39 executing program 1: 16:23:39 executing program 4: 16:23:39 executing program 5: 16:23:40 executing program 2: 16:23:40 executing program 3: 16:23:40 executing program 4: 16:23:40 executing program 1: 16:23:40 executing program 5: 16:23:40 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a007}], 0x1}, 0x0) 16:23:40 executing program 3: 16:23:40 executing program 2: 16:23:41 executing program 4: 16:23:41 executing program 1: 16:23:41 executing program 5: 16:23:41 executing program 3: 16:23:41 executing program 2: 16:23:41 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a008}], 0x1}, 0x0) 16:23:41 executing program 4: 16:23:41 executing program 1: [ 1102.263921][T22033] not chained 150000 origins [ 1102.268539][T22033] CPU: 1 PID: 22033 Comm: syz-executor.0 Not tainted 5.9.0-rc8-syzkaller #0 [ 1102.277190][T22033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.287225][T22033] Call Trace: [ 1102.290505][T22033] dump_stack+0x21c/0x280 [ 1102.294830][T22033] kmsan_internal_chain_origin+0x6f/0x130 [ 1102.300541][T22033] ? sched_clock_cpu+0x5e/0x950 [ 1102.305383][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.310565][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.315746][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.320930][T22033] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1102.326724][T22033] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1102.332772][T22033] ? idle_cpu+0x9a/0x1d0 [ 1102.336999][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.342184][T22033] ? kmsan_internal_set_origin+0x85/0xc0 [ 1102.347800][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.352998][T22033] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1102.358793][T22033] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1102.364844][T22033] ? __genradix_ptr+0x86f/0xbb0 [ 1102.369680][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.374861][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.380048][T22033] __msan_chain_origin+0x57/0xa0 [ 1102.384976][T22033] sctp_chunk_fail+0x119/0x150 [ 1102.389725][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1102.395083][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.400268][T22033] sctp_outq_free+0x37/0x40 [ 1102.404761][T22033] sctp_association_free+0x3f2/0x11a0 [ 1102.410122][T22033] sctp_do_sm+0x9185/0xa250 [ 1102.414615][T22033] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1102.420674][T22033] ? kmsan_internal_set_origin+0x85/0xc0 [ 1102.426290][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.431474][T22033] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1102.437270][T22033] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 1102.443420][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.448602][T22033] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1102.454397][T22033] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1102.460456][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1102.465386][T22033] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0 [ 1102.471436][T22033] sctp_inq_push+0x31c/0x440 [ 1102.476035][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1102.480984][T22033] ? __msan_instrument_asm_store+0x25/0x130 [ 1102.486873][T22033] ? sctp_rcv+0x5f90/0x5f90 [ 1102.491382][T22033] __release_sock+0x26b/0x660 [ 1102.496052][T22033] release_sock+0x98/0x2d0 [ 1102.500458][T22033] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1102.506256][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1102.511539][T22033] ? init_wait_entry+0x190/0x190 [ 1102.516467][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1102.521838][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1102.526514][T22033] ? kmsan_get_metadata+0x116/0x180 [ 1102.531700][T22033] ? sctp_getsockopt+0x1e720/0x1e720 [ 1102.537074][T22033] inet_sendmsg+0x15b/0x1d0 [ 1102.541570][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1102.546413][T22033] ? inet_send_prepare+0x6b0/0x6b0 [ 1102.551518][T22033] __sys_sendmsg+0x6d5/0x830 [ 1102.556098][T22033] ? kmsan_copy_to_user+0x9c/0xb0 [ 1102.561116][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1102.566387][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1102.571833][T22033] __do_fast_syscall_32+0x129/0x180 [ 1102.577018][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1102.581856][T22033] do_SYSENTER_32+0x73/0x90 [ 1102.586348][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1102.592654][T22033] RIP: 0023:0xf7fc7549 [ 1102.596708][T22033] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1102.616324][T22033] RSP: 002b:00000000f55c10cc EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1102.624728][T22033] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000002001afc8 [ 1102.632689][T22033] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1102.640657][T22033] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1102.648641][T22033] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1102.656607][T22033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1102.664570][T22033] Uninit was stored to memory at: [ 1102.669592][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1102.675299][T22033] __msan_chain_origin+0x57/0xa0 [ 1102.680228][T22033] sctp_chunk_fail+0x119/0x150 [ 1102.684983][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1102.690341][T22033] sctp_outq_free+0x37/0x40 [ 1102.694847][T22033] sctp_association_free+0x3f2/0x11a0 [ 1102.700202][T22033] sctp_do_sm+0x9185/0xa250 [ 1102.704692][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1102.709614][T22033] sctp_inq_push+0x31c/0x440 [ 1102.714191][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1102.719112][T22033] __release_sock+0x26b/0x660 [ 1102.723773][T22033] release_sock+0x98/0x2d0 [ 1102.728175][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1102.733448][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1102.738802][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1102.743464][T22033] inet_sendmsg+0x15b/0x1d0 [ 1102.747953][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1102.752788][T22033] __sys_sendmsg+0x6d5/0x830 [ 1102.757362][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1102.762630][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1102.768078][T22033] __do_fast_syscall_32+0x129/0x180 [ 1102.773264][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1102.778112][T22033] do_SYSENTER_32+0x73/0x90 [ 1102.782608][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1102.788911][T22033] [ 1102.791221][T22033] Uninit was stored to memory at: [ 1102.796242][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1102.801955][T22033] __msan_chain_origin+0x57/0xa0 [ 1102.806890][T22033] sctp_chunk_fail+0x119/0x150 [ 1102.811642][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1102.817003][T22033] sctp_outq_free+0x37/0x40 [ 1102.821499][T22033] sctp_association_free+0x3f2/0x11a0 [ 1102.826860][T22033] sctp_do_sm+0x9185/0xa250 [ 1102.831352][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1102.836276][T22033] sctp_inq_push+0x31c/0x440 [ 1102.840863][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1102.845788][T22033] __release_sock+0x26b/0x660 [ 1102.850449][T22033] release_sock+0x98/0x2d0 [ 1102.854852][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1102.860124][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1102.865481][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1102.870144][T22033] inet_sendmsg+0x15b/0x1d0 [ 1102.874634][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1102.879470][T22033] __sys_sendmsg+0x6d5/0x830 [ 1102.884050][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1102.889320][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1102.894766][T22033] __do_fast_syscall_32+0x129/0x180 [ 1102.899949][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1102.904791][T22033] do_SYSENTER_32+0x73/0x90 [ 1102.909282][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1102.915584][T22033] [ 1102.917892][T22033] Uninit was stored to memory at: [ 1102.922906][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1102.928613][T22033] __msan_chain_origin+0x57/0xa0 [ 1102.933538][T22033] sctp_chunk_fail+0x119/0x150 [ 1102.938386][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1102.943743][T22033] sctp_outq_free+0x37/0x40 [ 1102.948234][T22033] sctp_association_free+0x3f2/0x11a0 [ 1102.953592][T22033] sctp_do_sm+0x9185/0xa250 [ 1102.958081][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1102.963002][T22033] sctp_inq_push+0x31c/0x440 [ 1102.967578][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1102.972501][T22033] __release_sock+0x26b/0x660 [ 1102.977171][T22033] release_sock+0x98/0x2d0 [ 1102.981575][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1102.986849][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1102.992207][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1102.996884][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.001463][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.006305][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.010883][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.016155][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.021601][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.026789][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.031628][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.036120][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1103.042439][T22033] [ 1103.044748][T22033] Uninit was stored to memory at: [ 1103.049766][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1103.055472][T22033] __msan_chain_origin+0x57/0xa0 [ 1103.060397][T22033] sctp_chunk_fail+0x119/0x150 [ 1103.065148][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1103.070504][T22033] sctp_outq_free+0x37/0x40 [ 1103.074996][T22033] sctp_association_free+0x3f2/0x11a0 [ 1103.080355][T22033] sctp_do_sm+0x9185/0xa250 [ 1103.084846][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1103.089767][T22033] sctp_inq_push+0x31c/0x440 [ 1103.094345][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1103.099270][T22033] __release_sock+0x26b/0x660 [ 1103.103931][T22033] release_sock+0x98/0x2d0 [ 1103.108334][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1103.113607][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1103.118963][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1103.123632][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.128124][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.132962][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.137545][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.142818][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.148267][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.153452][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.158289][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.162780][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1103.169082][T22033] [ 1103.171388][T22033] Uninit was stored to memory at: [ 1103.176403][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1103.182111][T22033] __msan_chain_origin+0x57/0xa0 [ 1103.187035][T22033] sctp_chunk_fail+0x119/0x150 [ 1103.191787][T22033] __sctp_outq_teardown+0x112d/0x1600 [ 1103.197143][T22033] sctp_outq_free+0x37/0x40 [ 1103.201635][T22033] sctp_association_free+0x3f2/0x11a0 [ 1103.206994][T22033] sctp_do_sm+0x9185/0xa250 [ 1103.211484][T22033] sctp_assoc_bh_rcv+0xa2f/0xe00 [ 1103.216839][T22033] sctp_inq_push+0x31c/0x440 [ 1103.221417][T22033] sctp_backlog_rcv+0x346/0x16c0 [ 1103.226427][T22033] __release_sock+0x26b/0x660 [ 1103.231088][T22033] release_sock+0x98/0x2d0 [ 1103.235491][T22033] sctp_wait_for_connect+0x4ad/0x970 [ 1103.240765][T22033] sctp_sendmsg_to_asoc+0x21ed/0x24f0 [ 1103.246122][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1103.250787][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.255280][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.260120][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.264698][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.269973][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.275422][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.280606][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.285441][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.289931][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1103.296233][T22033] [ 1103.298540][T22033] Uninit was stored to memory at: [ 1103.303554][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1103.309267][T22033] __msan_chain_origin+0x57/0xa0 [ 1103.314194][T22033] sctp_datamsg_from_user+0x1c89/0x23c0 [ 1103.319735][T22033] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1103.325104][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1103.329769][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.334260][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.339102][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.343682][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.348951][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.354400][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.359846][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.364683][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.369182][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1103.375486][T22033] [ 1103.377793][T22033] Uninit was stored to memory at: [ 1103.382806][T22033] kmsan_internal_chain_origin+0xad/0x130 [ 1103.388512][T22033] __msan_chain_origin+0x57/0xa0 [ 1103.393436][T22033] sctp_datamsg_from_user+0x661/0x23c0 [ 1103.398882][T22033] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1103.404240][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1103.408903][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.413501][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.418339][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.422915][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.428185][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.433637][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.438822][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.443660][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.448153][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1103.454453][T22033] [ 1103.456772][T22033] Uninit was created at: [ 1103.461004][T22033] kmsan_internal_poison_shadow+0x5c/0xf0 [ 1103.466709][T22033] kmsan_slab_alloc+0x8d/0xe0 [ 1103.471374][T22033] kmem_cache_alloc_trace+0x61e/0xc90 [ 1103.476735][T22033] sctp_datamsg_from_user+0xf5/0x23c0 [ 1103.482095][T22033] sctp_sendmsg_to_asoc+0x1180/0x24f0 [ 1103.487468][T22033] sctp_sendmsg+0x35b0/0x5c30 [ 1103.492146][T22033] inet_sendmsg+0x15b/0x1d0 [ 1103.496648][T22033] ____sys_sendmsg+0xc7a/0x1240 [ 1103.501500][T22033] __sys_sendmsg+0x6d5/0x830 [ 1103.506083][T22033] __se_compat_sys_sendmsg+0xa7/0xc0 [ 1103.511355][T22033] __ia32_compat_sys_sendmsg+0x4a/0x70 [ 1103.516803][T22033] __do_fast_syscall_32+0x129/0x180 [ 1103.521999][T22033] do_fast_syscall_32+0x6a/0xc0 [ 1103.526837][T22033] do_SYSENTER_32+0x73/0x90 [ 1103.531327][T22033] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 16:23:43 executing program 5: 16:23:43 executing program 3: 16:23:43 executing program 2: 16:23:43 executing program 4: 16:23:43 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a00a}], 0x1}, 0x0) 16:23:43 executing program 5: 16:23:43 executing program 1: 16:23:43 executing program 3: 16:23:43 executing program 2: 16:23:44 executing program 4: 16:23:44 executing program 5: 16:23:44 executing program 1: 16:23:44 executing program 3: 16:23:44 executing program 2: 16:23:44 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a00e}], 0x1}, 0x0) 16:23:44 executing program 4: 16:23:45 executing program 1: 16:23:45 executing program 5: 16:23:45 executing program 3: 16:23:45 executing program 2: 16:23:45 executing program 4: 16:23:45 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a00f}], 0x1}, 0x0) 16:23:45 executing program 5: 16:23:45 executing program 1: 16:23:45 executing program 3: 16:23:46 executing program 2: 16:23:46 executing program 4: 16:23:46 executing program 5: 16:23:46 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a018}], 0x1}, 0x0) 16:23:46 executing program 3: 16:23:46 executing program 1: 16:23:46 executing program 2: 16:23:46 executing program 4: 16:23:46 executing program 5: 16:23:47 executing program 1: 16:23:47 executing program 2: 16:23:47 executing program 3: 16:23:47 executing program 5: 16:23:47 executing program 4: 16:23:47 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a030}], 0x1}, 0x0) 16:23:47 executing program 1: 16:23:47 executing program 3: 16:23:47 executing program 2: 16:23:48 executing program 4: 16:23:48 executing program 5: 16:23:48 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a0fc}], 0x1}, 0x0) 16:23:48 executing program 1: 16:23:48 executing program 2: 16:23:48 executing program 3: 16:23:49 executing program 3: 16:23:49 executing program 1: 16:23:49 executing program 2: 16:23:49 executing program 5: 16:23:49 executing program 4: 16:23:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1e000}], 0x1}, 0x0) 16:23:49 executing program 3: 16:23:49 executing program 2: 16:23:49 executing program 5: 16:23:49 executing program 1: 16:23:49 executing program 4: 16:23:50 executing program 3: 16:23:50 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x34000}], 0x1}, 0x0) 16:23:50 executing program 5: 16:23:50 executing program 2: 16:23:50 executing program 4: 16:23:50 executing program 1: 16:23:50 executing program 3: 16:23:50 executing program 2: 16:23:51 executing program 5: 16:23:51 executing program 1: 16:23:51 executing program 4: 16:23:51 executing program 3: 16:23:51 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1fffff}], 0x1}, 0x0) 16:23:51 executing program 2: 16:23:51 executing program 1: 16:23:51 executing program 4: 16:23:51 executing program 5: 16:23:51 executing program 3: 16:23:52 executing program 2: 16:23:52 executing program 1: 16:23:52 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x7ffff000}], 0x1}, 0x0) 16:23:52 executing program 4: 16:23:52 executing program 5: 16:23:52 executing program 3: 16:23:52 executing program 2: 16:23:52 executing program 1: 16:23:52 executing program 4: 16:23:52 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0xfffffdef}], 0x1}, 0x0) 16:23:52 executing program 5: 16:23:53 executing program 3: 16:23:53 executing program 1: 16:23:53 executing program 2: 16:23:53 executing program 4: 16:23:53 executing program 5: 16:23:53 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0xffffffe0}], 0x1}, 0x0) 16:23:53 executing program 3: 16:23:54 executing program 1: 16:23:54 executing program 4: 16:23:54 executing program 2: 16:23:54 executing program 5: 16:23:54 executing program 3: 16:23:54 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0xfffffffd}], 0x1}, 0x0) 16:23:54 executing program 4: 16:23:54 executing program 1: 16:23:54 executing program 2: 16:23:54 executing program 5: 16:23:55 executing program 3: 16:23:55 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2}, 0x0) 16:23:55 executing program 1: 16:23:55 executing program 2: 16:23:55 executing program 4: 16:23:55 executing program 5: 16:23:55 executing program 3: 16:23:55 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x3}, 0x0) 16:23:55 executing program 2: 16:23:55 executing program 1: 16:23:55 executing program 4: 16:23:56 executing program 5: 16:23:56 executing program 3: 16:23:56 executing program 4: 16:23:56 executing program 2: 16:23:56 executing program 1: 16:23:56 executing program 5: 16:23:56 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x4}, 0x0) 16:23:57 executing program 3: 16:23:57 executing program 1: 16:23:57 executing program 2: 16:23:57 executing program 4: 16:23:57 executing program 5: 16:23:57 executing program 3: 16:23:58 executing program 1: 16:23:58 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x5}, 0x0) 16:23:58 executing program 2: 16:23:58 executing program 5: 16:23:58 executing program 4: 16:23:58 executing program 3: 16:23:58 executing program 1: 16:23:59 executing program 5: 16:23:59 executing program 4: 16:23:59 executing program 2: 16:23:59 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x6}, 0x0) 16:23:59 executing program 3: 16:23:59 executing program 1: 16:23:59 executing program 4: 16:23:59 executing program 5: 16:23:59 executing program 2: 16:24:00 executing program 3: 16:24:00 executing program 1: 16:24:00 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x7}, 0x0) 16:24:00 executing program 4: 16:24:00 executing program 5: 16:24:00 executing program 2: 16:24:00 executing program 3: 16:24:00 executing program 1: 16:24:00 executing program 4: 16:24:01 executing program 5: 16:24:01 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x8}, 0x0) 16:24:01 executing program 2: 16:24:01 executing program 3: 16:24:01 executing program 1: 16:24:01 executing program 5: 16:24:01 executing program 4: 16:24:01 executing program 2: 16:24:01 executing program 3: socket$netlink(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') recvmmsg(r3, &(0x7f0000004d80)=[{{0x0, 0x800c, 0x0}}], 0x58, 0x1200a, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r4, @ANYBLOB="03070006000800fdff001900000004000180"], 0x18}}, 0x0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) 16:24:02 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{}]}) 16:24:02 executing program 5: r0 = inotify_init() inotify_add_watch(r0, &(0x7f00000002c0)='.\x00', 0x80000000) 16:24:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x9}, 0x0) 16:24:02 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000001c0)="80", 0x1}], 0x1}, 0x0) 16:24:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14}, 0x14}}, 0x0) 16:24:02 executing program 1: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) fcntl$setstatus(r0, 0x4, 0x46800) io_setup(0x7, &(0x7f0000000080)=0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000380)={0x0, 0x0, 0x9d2c, 0x4000000205}) io_submit(r3, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x40000}]) 16:24:02 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) 16:24:02 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[@rights={{0x10}}], 0x10}, 0x0) 16:24:02 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)=[{0x0}, {&(0x7f00000001c0)="80", 0x1}], 0x2}, 0x0) 16:24:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xa}, 0x0) 16:24:02 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x1) syz_emit_ethernet(0x9a, &(0x7f00000000c0)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000086dd6002000000648800fe880000000000000000000000eeff00ff02000000000000000000000000000100000000006490"], 0x0) 16:24:03 executing program 1: mknod$loop(&(0x7f0000000580)='./file0\x00', 0x0, 0x1) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 16:24:03 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x3, &(0x7f0000000380)=@framed, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x78) 16:24:03 executing program 5: open(&(0x7f0000000100)='./bus\x00', 0xde440, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/crypto\x00', 0x0, 0x0) r0 = syz_io_uring_setup(0x504a, &(0x7f0000000080), &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000040)=0x0) socket$xdp(0x2c, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index}, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x450c, 0x0, 0x0, 0x0, 0x0) 16:24:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r2, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r2, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 16:24:03 executing program 2: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) msgget$private(0x0, 0x40) syz_genetlink_get_family_id$mptcp(&(0x7f0000000600)='mptcp_pm\x00') syz_genetlink_get_family_id$nl80211(&(0x7f0000000840)='nl80211\x00') 16:24:03 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xb}, 0x0) 16:24:03 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000100)="f9", 0x1}, {&(0x7f00000001c0)="80", 0x1}, {&(0x7f0000000280)='-', 0x1}], 0x3}, 0x0) 16:24:04 executing program 2: perf_event_open$cgroup(&(0x7f0000006500)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 16:24:04 executing program 5: r0 = creat(&(0x7f0000000280)='./file0\x00', 0x3) close(r0) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 16:24:04 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xc}, 0x0) 16:24:04 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f00000006c0)={&(0x7f00000005c0), 0xc, &(0x7f0000000680)={0x0}}, 0x0) 16:24:04 executing program 1: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) ptrace(0x4207, r1) ptrace$setregset(0x4205, r1, 0x0, 0x0) [ 1125.102006][T22305] not chained 160000 origins [ 1125.106628][T22305] CPU: 1 PID: 22305 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1125.115282][T22305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1125.125320][T22305] Call Trace: [ 1125.128603][T22305] dump_stack+0x21c/0x280 [ 1125.132925][T22305] kmsan_internal_chain_origin+0x6f/0x130 [ 1125.138631][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1125.144424][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.149609][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1125.155406][T22305] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1125.161458][T22305] ? __wake_up+0x1fc/0x250 [ 1125.165860][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.171042][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1125.176833][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.182030][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1125.187652][T22305] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1125.193708][T22305] ? _copy_from_user+0x201/0x310 [ 1125.198637][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.203823][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.208756][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.213859][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.218788][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.223296][T22305] ? __msan_get_context_state+0x9/0x20 [ 1125.228747][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.233934][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1125.239555][T22305] ? __msan_poison_alloca+0xe9/0x110 [ 1125.244846][T22305] ? __sys_recvmmsg+0xb5/0x5f0 [ 1125.249598][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.254266][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1125.260057][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1125.265243][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.271302][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.277445][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.282631][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.287469][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.291961][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.298269][T22305] RIP: 0023:0xf7efe549 [ 1125.302339][T22305] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1125.321927][T22305] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1125.330325][T22305] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1125.338298][T22305] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1125.346257][T22305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1125.354232][T22305] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1125.362190][T22305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1125.370164][T22305] Uninit was stored to memory at: [ 1125.375182][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.380897][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.385822][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.390916][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.395840][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.400342][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.405006][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.411058][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.417204][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.422401][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.427244][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.431739][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.438050][T22305] [ 1125.440367][T22305] Uninit was stored to memory at: [ 1125.445389][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.451184][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.456109][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.461220][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.466158][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.470649][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.475328][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.481382][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.487538][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.492741][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.497586][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.502086][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.508392][T22305] [ 1125.510704][T22305] Uninit was stored to memory at: [ 1125.515741][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.521448][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.526371][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.531469][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.536391][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.540881][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.545543][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.551598][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.557739][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.562926][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.567761][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.572251][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.578550][T22305] [ 1125.580858][T22305] Uninit was stored to memory at: [ 1125.585870][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.591574][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.596510][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.601605][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.606529][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.611021][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.615684][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.621737][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.627879][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.633064][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.637902][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.642390][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.648690][T22305] [ 1125.651008][T22305] Uninit was stored to memory at: [ 1125.656034][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.661744][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.666672][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.671771][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.676700][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.681195][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.685862][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.691933][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.698075][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.704053][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.708890][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.713381][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.719680][T22305] [ 1125.721986][T22305] Uninit was stored to memory at: [ 1125.726996][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.732700][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.737621][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.742717][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.747641][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.752131][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.756792][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.762845][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.768983][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.774164][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.778998][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.783488][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.789789][T22305] [ 1125.792095][T22305] Uninit was stored to memory at: [ 1125.797110][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1125.802819][T22305] __msan_chain_origin+0x57/0xa0 [ 1125.807742][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1125.812840][T22305] get_compat_msghdr+0x108/0x2b0 [ 1125.817762][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1125.822250][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1125.826913][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1125.832964][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1125.839101][T22305] __do_fast_syscall_32+0x129/0x180 [ 1125.844287][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1125.849123][T22305] do_SYSENTER_32+0x73/0x90 [ 1125.853612][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1125.859910][T22305] [ 1125.862218][T22305] Local variable ----msg_sys@do_recvmmsg created at: [ 1125.868876][T22305] do_recvmmsg+0xc2/0x22e0 [ 1125.873286][T22305] do_recvmmsg+0xc2/0x22e0 16:24:05 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x1) syz_emit_ethernet(0x9a, &(0x7f00000000c0)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000086dd6002000000078800fe880000000000000000000000eeff00ff02"], 0x0) 16:24:05 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_io_uring_setup(0x504a, &(0x7f0000000080), &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000140)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index}, 0x0) io_uring_enter(r2, 0x450c, 0x0, 0x0, 0x0, 0x0) [ 1126.377915][T22314] not chained 170000 origins [ 1126.383091][T22314] CPU: 0 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1126.391752][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1126.401802][T22314] Call Trace: [ 1126.405104][T22314] dump_stack+0x21c/0x280 [ 1126.409445][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1126.415170][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1126.420979][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.426181][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1126.431993][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1126.438068][T22314] ? __wake_up+0x1fc/0x250 [ 1126.442484][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.447684][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1126.453489][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.458718][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1126.464362][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1126.470440][T22314] ? _copy_from_user+0x201/0x310 [ 1126.475383][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.480597][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.485544][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.490668][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.495619][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.500136][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.505339][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1126.510973][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1126.516263][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1126.521028][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.525708][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1126.531513][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1126.536715][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.542795][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.548949][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.554147][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.559006][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.563515][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.569837][T22314] RIP: 0023:0xf7efe549 [ 1126.573907][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1126.593513][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1126.601930][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1126.609906][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1126.617879][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1126.625851][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1126.633922][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1126.641894][T22314] Uninit was stored to memory at: [ 1126.646931][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1126.652660][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.657607][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.662718][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.667657][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.672169][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.676849][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.682917][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.689064][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.694305][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.699172][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.703674][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.709983][T22314] [ 1126.712306][T22314] Uninit was stored to memory at: [ 1126.717334][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1126.723059][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.728002][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.733110][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.738051][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.742559][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.747241][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.753308][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.759461][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.764668][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.769523][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.774029][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.780338][T22314] [ 1126.782655][T22314] Uninit was stored to memory at: [ 1126.787682][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1126.793401][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.798338][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.803448][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.808390][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.812888][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.817563][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.823634][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.829786][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.834985][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.839835][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.844339][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.850651][T22314] [ 1126.852969][T22314] Uninit was stored to memory at: [ 1126.858013][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1126.863739][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.868674][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.873781][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.878717][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.883224][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.887899][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.893965][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.900117][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.905315][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.910164][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.914666][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.921000][T22314] [ 1126.923316][T22314] Uninit was stored to memory at: [ 1126.928345][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1126.934068][T22314] __msan_chain_origin+0x57/0xa0 [ 1126.939006][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1126.944117][T22314] get_compat_msghdr+0x108/0x2b0 [ 1126.949053][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1126.953555][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1126.958232][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1126.964312][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1126.970461][T22314] __do_fast_syscall_32+0x129/0x180 [ 1126.975663][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1126.980514][T22314] do_SYSENTER_32+0x73/0x90 [ 1126.985021][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1126.991332][T22314] [ 1126.993649][T22314] Uninit was stored to memory at: [ 1126.998675][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1127.004396][T22314] __msan_chain_origin+0x57/0xa0 [ 1127.009330][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1127.014436][T22314] get_compat_msghdr+0x108/0x2b0 [ 1127.019375][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1127.023880][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1127.028558][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1127.034653][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1127.040811][T22314] __do_fast_syscall_32+0x129/0x180 [ 1127.046010][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1127.050863][T22314] do_SYSENTER_32+0x73/0x90 [ 1127.055368][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1127.061679][T22314] [ 1127.063998][T22314] Uninit was stored to memory at: [ 1127.069028][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1127.074748][T22314] __msan_chain_origin+0x57/0xa0 [ 1127.079682][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1127.084793][T22314] get_compat_msghdr+0x108/0x2b0 [ 1127.089731][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1127.094237][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1127.098911][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1127.104977][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1127.111128][T22314] __do_fast_syscall_32+0x129/0x180 [ 1127.116326][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1127.121175][T22314] do_SYSENTER_32+0x73/0x90 [ 1127.125689][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1127.132084][T22314] [ 1127.134405][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1127.141083][T22314] do_recvmmsg+0xc2/0x22e0 [ 1127.145498][T22314] do_recvmmsg+0xc2/0x22e0 [ 1127.560150][T22305] not chained 180000 origins [ 1127.564801][T22305] CPU: 0 PID: 22305 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1127.573467][T22305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1127.583521][T22305] Call Trace: [ 1127.586818][T22305] dump_stack+0x21c/0x280 [ 1127.591153][T22305] kmsan_internal_chain_origin+0x6f/0x130 [ 1127.596876][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1127.602695][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.607893][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1127.613706][T22305] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1127.619779][T22305] ? __wake_up+0x1fc/0x250 [ 1127.624293][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.629497][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1127.635308][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.640513][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1127.646153][T22305] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1127.652346][T22305] ? _copy_from_user+0x201/0x310 [ 1127.657297][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.662503][T22305] __msan_chain_origin+0x57/0xa0 [ 1127.667444][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1127.672560][T22305] get_compat_msghdr+0x108/0x2b0 [ 1127.677505][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1127.682027][T22305] ? __msan_get_context_state+0x9/0x20 [ 1127.687582][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.692783][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1127.698420][T22305] ? __msan_poison_alloca+0xe9/0x110 [ 1127.703711][T22305] ? __sys_recvmmsg+0xb5/0x5f0 [ 1127.708477][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1127.713155][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1127.718961][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1127.724164][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1127.730244][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1127.736400][T22305] __do_fast_syscall_32+0x129/0x180 [ 1127.741603][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1127.746458][T22305] do_SYSENTER_32+0x73/0x90 [ 1127.750968][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1127.757294][T22305] RIP: 0023:0xf7efe549 [ 1127.761366][T22305] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1127.780975][T22305] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1127.789395][T22305] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1127.797375][T22305] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1127.805350][T22305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1127.813495][T22305] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1127.821466][T22305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1127.829435][T22305] Uninit was stored to memory at: [ 1127.834472][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1127.840194][T22305] __msan_chain_origin+0x57/0xa0 [ 1127.845134][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1127.850241][T22305] get_compat_msghdr+0x108/0x2b0 [ 1127.855181][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1127.859687][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1127.864365][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1127.870433][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1127.876591][T22305] __do_fast_syscall_32+0x129/0x180 [ 1127.881796][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1127.886655][T22305] do_SYSENTER_32+0x73/0x90 [ 1127.891162][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1127.897474][T22305] [ 1127.899792][T22305] Uninit was stored to memory at: [ 1127.904824][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1127.910549][T22305] __msan_chain_origin+0x57/0xa0 [ 1127.915488][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1127.920600][T22305] get_compat_msghdr+0x108/0x2b0 [ 1127.925551][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1127.930142][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1127.934825][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1127.940896][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1127.947053][T22305] __do_fast_syscall_32+0x129/0x180 [ 1127.952259][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1127.957111][T22305] do_SYSENTER_32+0x73/0x90 [ 1127.961613][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1127.967925][T22305] [ 1127.970240][T22305] Uninit was stored to memory at: [ 1127.975267][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1127.980989][T22305] __msan_chain_origin+0x57/0xa0 [ 1127.985933][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1127.991043][T22305] get_compat_msghdr+0x108/0x2b0 [ 1127.995982][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1128.000492][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1128.005168][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.011232][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.017387][T22305] __do_fast_syscall_32+0x129/0x180 [ 1128.022583][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1128.027433][T22305] do_SYSENTER_32+0x73/0x90 [ 1128.031945][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1128.038271][T22305] [ 1128.040587][T22305] Uninit was stored to memory at: [ 1128.045616][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1128.051336][T22305] __msan_chain_origin+0x57/0xa0 [ 1128.056272][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1128.061379][T22305] get_compat_msghdr+0x108/0x2b0 [ 1128.066318][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1128.070820][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1128.075496][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.081563][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.087717][T22305] __do_fast_syscall_32+0x129/0x180 [ 1128.092935][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1128.097784][T22305] do_SYSENTER_32+0x73/0x90 [ 1128.102288][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1128.108596][T22305] [ 1128.110912][T22305] Uninit was stored to memory at: [ 1128.115953][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1128.121674][T22305] __msan_chain_origin+0x57/0xa0 [ 1128.126639][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1128.131751][T22305] get_compat_msghdr+0x108/0x2b0 [ 1128.136689][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1128.141195][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1128.145874][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.151938][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.158102][T22305] __do_fast_syscall_32+0x129/0x180 [ 1128.163299][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1128.168153][T22305] do_SYSENTER_32+0x73/0x90 [ 1128.172654][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1128.178965][T22305] [ 1128.181282][T22305] Uninit was stored to memory at: [ 1128.186311][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1128.192036][T22305] __msan_chain_origin+0x57/0xa0 [ 1128.196973][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1128.202083][T22305] get_compat_msghdr+0x108/0x2b0 [ 1128.207026][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1128.211537][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1128.216219][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.222291][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.228447][T22305] __do_fast_syscall_32+0x129/0x180 [ 1128.233648][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1128.238498][T22305] do_SYSENTER_32+0x73/0x90 [ 1128.243177][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1128.249484][T22305] [ 1128.251800][T22305] Uninit was stored to memory at: [ 1128.256830][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1128.262555][T22305] __msan_chain_origin+0x57/0xa0 [ 1128.267493][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1128.272604][T22305] get_compat_msghdr+0x108/0x2b0 [ 1128.277546][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1128.282051][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1128.286728][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.292792][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.298947][T22305] __do_fast_syscall_32+0x129/0x180 [ 1128.304144][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1128.308996][T22305] do_SYSENTER_32+0x73/0x90 [ 1128.313503][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1128.319813][T22305] [ 1128.322132][T22305] Local variable ----msg_sys@do_recvmmsg created at: [ 1128.329068][T22305] do_recvmmsg+0xc2/0x22e0 [ 1128.333485][T22305] do_recvmmsg+0xc2/0x22e0 [ 1128.807864][T22314] not chained 190000 origins [ 1128.812535][T22314] CPU: 0 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1128.821202][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1128.831253][T22314] Call Trace: [ 1128.834553][T22314] dump_stack+0x21c/0x280 [ 1128.838890][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1128.844616][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1128.850431][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.855632][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1128.861448][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1128.867518][T22314] ? __wake_up+0x1fc/0x250 [ 1128.876105][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.881305][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1128.887110][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.892316][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1128.897957][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1128.904034][T22314] ? _copy_from_user+0x201/0x310 [ 1128.908971][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.914172][T22314] __msan_chain_origin+0x57/0xa0 [ 1128.919114][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1128.924254][T22314] get_compat_msghdr+0x108/0x2b0 [ 1128.929206][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1128.933725][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.938933][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1128.944583][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1128.949875][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1128.954648][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1128.959329][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1128.965136][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1128.970338][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1128.976411][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1128.982571][T22314] __do_fast_syscall_32+0x129/0x180 [ 1128.987773][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1128.992680][T22314] do_SYSENTER_32+0x73/0x90 [ 1128.997188][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.003510][T22314] RIP: 0023:0xf7efe549 [ 1129.007581][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1129.027191][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1129.035612][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1129.043591][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1129.051563][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1129.059537][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1129.067511][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1129.075482][T22314] Uninit was stored to memory at: [ 1129.080515][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.086240][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.091181][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.096818][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.101805][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.106316][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.111001][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.117079][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.123234][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.128459][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.133313][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.137820][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.144130][T22314] [ 1129.146447][T22314] Uninit was stored to memory at: [ 1129.151484][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.157210][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.162149][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.167260][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.172199][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.176704][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.181380][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.187451][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.193608][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.198807][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.203668][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.208175][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.214489][T22314] [ 1129.216804][T22314] Uninit was stored to memory at: [ 1129.221832][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.227555][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.232491][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.237604][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.242557][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.247087][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.251762][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.257830][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.263988][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.269194][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.274052][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.278556][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.284868][T22314] [ 1129.287188][T22314] Uninit was stored to memory at: [ 1129.292222][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.297944][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.302874][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.307989][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.312914][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.317407][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.322068][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.328133][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.334278][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.339468][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.344305][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.348794][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.355095][T22314] [ 1129.357402][T22314] Uninit was stored to memory at: [ 1129.362417][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.368125][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.373052][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.378149][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.383074][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.387566][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.392244][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.398297][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.404437][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.409623][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.414458][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.418949][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.425248][T22314] [ 1129.427557][T22314] Uninit was stored to memory at: [ 1129.432571][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.438279][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.443201][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.448319][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.453244][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.457733][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.462397][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.468450][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.474604][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.479801][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.484648][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.489153][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.495467][T22314] [ 1129.497777][T22314] Uninit was stored to memory at: [ 1129.502793][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1129.508502][T22314] __msan_chain_origin+0x57/0xa0 [ 1129.513427][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1129.518522][T22314] get_compat_msghdr+0x108/0x2b0 [ 1129.523448][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1129.527940][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1129.532604][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1129.538657][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1129.544803][T22314] __do_fast_syscall_32+0x129/0x180 [ 1129.550003][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1129.554840][T22314] do_SYSENTER_32+0x73/0x90 [ 1129.559332][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1129.565630][T22314] [ 1129.567939][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1129.574597][T22314] do_recvmmsg+0xc2/0x22e0 [ 1129.578998][T22314] do_recvmmsg+0xc2/0x22e0 [ 1130.538315][T22345] ptrace attach of "/root/syz-executor.1"[8583] was attempted by "/root/syz-executor.1"[22345] 16:24:10 executing program 2: syz_genetlink_get_family_id$mptcp(&(0x7f0000000600)='mptcp_pm\x00') [ 1131.732659][T22305] not chained 200000 origins [ 1131.737310][T22305] CPU: 0 PID: 22305 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1131.745981][T22305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1131.756034][T22305] Call Trace: [ 1131.759367][T22305] dump_stack+0x21c/0x280 [ 1131.763708][T22305] kmsan_internal_chain_origin+0x6f/0x130 [ 1131.769432][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1131.775238][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.780441][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1131.786262][T22305] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1131.792333][T22305] ? __wake_up+0x1fc/0x250 [ 1131.796753][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.801953][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1131.807761][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.812965][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1131.818607][T22305] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1131.824680][T22305] ? _copy_from_user+0x201/0x310 [ 1131.829620][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.834822][T22305] __msan_chain_origin+0x57/0xa0 [ 1131.839766][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1131.844884][T22305] get_compat_msghdr+0x108/0x2b0 [ 1131.849828][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1131.854339][T22305] ? __msan_get_context_state+0x9/0x20 [ 1131.859808][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.865016][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1131.870742][T22305] ? __msan_poison_alloca+0xe9/0x110 [ 1131.876033][T22305] ? __sys_recvmmsg+0xb5/0x5f0 [ 1131.880803][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1131.885484][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1131.891297][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1131.896500][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1131.902579][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1131.908743][T22305] __do_fast_syscall_32+0x129/0x180 [ 1131.913947][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1131.918804][T22305] do_SYSENTER_32+0x73/0x90 [ 1131.923319][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1131.929639][T22305] RIP: 0023:0xf7efe549 [ 1131.933711][T22305] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1131.953318][T22305] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1131.961763][T22305] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1131.969743][T22305] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1131.977723][T22305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1131.985694][T22305] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1131.993691][T22305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1132.001663][T22305] Uninit was stored to memory at: [ 1132.006701][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.012426][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.017373][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.022485][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.027432][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.031942][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.036621][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.042699][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.048859][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.054067][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.058921][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.063426][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.069764][T22305] [ 1132.072080][T22305] Uninit was stored to memory at: [ 1132.077110][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.082830][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.087768][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.092877][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.097819][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.102331][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.107008][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.113075][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.119926][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.125126][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.129974][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.134479][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.140795][T22305] [ 1132.143118][T22305] Uninit was stored to memory at: [ 1132.148149][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.153874][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.158814][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.163924][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.168863][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.173368][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.178047][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.184117][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.190273][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.195476][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.200331][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.204837][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.211146][T22305] [ 1132.213461][T22305] Uninit was stored to memory at: [ 1132.218497][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.224224][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.229162][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.234273][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.239213][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.243718][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.248395][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.254463][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.260640][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.265839][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.270693][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.275201][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.281524][T22305] [ 1132.283839][T22305] Uninit was stored to memory at: [ 1132.288867][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.294590][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.299526][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.304636][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.309577][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.314171][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.318853][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.324923][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.331081][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.336281][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.341129][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.345628][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.351941][T22305] [ 1132.354257][T22305] Uninit was stored to memory at: [ 1132.359298][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.365387][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.370331][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.375445][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.380388][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.384901][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.389585][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.395743][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.401907][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.407114][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.412058][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.416578][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.422979][T22305] [ 1132.425301][T22305] Uninit was stored to memory at: [ 1132.430336][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1132.436076][T22305] __msan_chain_origin+0x57/0xa0 [ 1132.441015][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1132.446127][T22305] get_compat_msghdr+0x108/0x2b0 [ 1132.451071][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1132.455577][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1132.460258][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1132.466328][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1132.472486][T22305] __do_fast_syscall_32+0x129/0x180 [ 1132.477692][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1132.482540][T22305] do_SYSENTER_32+0x73/0x90 [ 1132.487052][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1132.493369][T22305] [ 1132.495697][T22305] Local variable ----msg_sys@do_recvmmsg created at: [ 1132.502382][T22305] do_recvmmsg+0xc2/0x22e0 [ 1132.506805][T22305] do_recvmmsg+0xc2/0x22e0 [ 1133.001596][T22314] not chained 210000 origins [ 1133.006223][T22314] CPU: 1 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1133.014889][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1133.024942][T22314] Call Trace: [ 1133.028242][T22314] dump_stack+0x21c/0x280 [ 1133.032591][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1133.038316][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1133.044136][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.049339][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1133.055152][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1133.061224][T22314] ? __wake_up+0x1fc/0x250 [ 1133.065646][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.070855][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1133.076665][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.081878][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1133.087522][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1133.093592][T22314] ? _copy_from_user+0x201/0x310 [ 1133.098537][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.103737][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.108683][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.113805][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.118755][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.123275][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.128478][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1133.134117][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1133.139409][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1133.144177][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.148862][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1133.154669][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1133.159878][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.165980][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.172167][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.177370][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.182228][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.186739][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.193069][T22314] RIP: 0023:0xf7efe549 [ 1133.197144][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1133.216757][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1133.225177][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1133.233151][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1133.241123][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1133.249094][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1133.257095][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1133.265068][T22314] Uninit was stored to memory at: [ 1133.270105][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.275926][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.280956][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.286070][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.291010][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.295519][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.300200][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.306358][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.312516][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.317720][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.322577][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.327084][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.333398][T22314] [ 1133.335727][T22314] Uninit was stored to memory at: [ 1133.340785][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.346515][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.351455][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.356575][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.361518][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.366114][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.370795][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.376865][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.383024][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.388226][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.393084][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.397593][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.403906][T22314] [ 1133.406247][T22314] Uninit was stored to memory at: [ 1133.411366][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.417101][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.422042][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.427159][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.432109][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.436620][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.441323][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.447490][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.453745][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.458948][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.463799][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.468308][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.474661][T22314] [ 1133.476988][T22314] Uninit was stored to memory at: [ 1133.482113][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.487851][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.492799][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.498346][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.503290][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.507828][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.512508][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.518601][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.524766][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.529977][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.534832][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.539339][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.545653][T22314] [ 1133.547972][T22314] Uninit was stored to memory at: [ 1133.553001][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.559037][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.564450][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.569868][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.575157][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.580023][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.584703][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.590771][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.596942][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.602141][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.606991][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.611529][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.617850][T22314] [ 1133.620174][T22314] Uninit was stored to memory at: [ 1133.625293][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.631025][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.635964][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.641078][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.646020][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.650534][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.655216][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.661291][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.667475][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.672786][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.677641][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.682148][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.688465][T22314] [ 1133.690787][T22314] Uninit was stored to memory at: [ 1133.696613][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1133.702372][T22314] __msan_chain_origin+0x57/0xa0 [ 1133.707315][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1133.712438][T22314] get_compat_msghdr+0x108/0x2b0 [ 1133.717382][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1133.722842][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1133.727525][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1133.733596][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1133.739753][T22314] __do_fast_syscall_32+0x129/0x180 [ 1133.744950][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1133.749804][T22314] do_SYSENTER_32+0x73/0x90 [ 1133.754309][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1133.760619][T22314] [ 1133.762938][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1133.769787][T22314] do_recvmmsg+0xc2/0x22e0 [ 1133.774202][T22314] do_recvmmsg+0xc2/0x22e0 [ 1135.099030][T22314] not chained 220000 origins [ 1135.103661][T22314] CPU: 1 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1135.112330][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1135.122388][T22314] Call Trace: [ 1135.125693][T22314] dump_stack+0x21c/0x280 [ 1135.130035][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1135.135762][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1135.141603][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.146810][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1135.152630][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1135.158792][T22314] ? __wake_up+0x1fc/0x250 [ 1135.163211][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.168413][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1135.174220][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.179431][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1135.185070][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1135.191144][T22314] ? _copy_from_user+0x201/0x310 [ 1135.196082][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.201289][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.206229][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.211355][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.216304][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.220822][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.226026][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1135.231664][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1135.236956][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1135.241725][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.246406][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1135.252209][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1135.257413][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.263489][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.269647][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.274851][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.279708][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.284217][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.290540][T22314] RIP: 0023:0xf7efe549 [ 1135.294615][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1135.314219][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1135.322638][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1135.330613][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1135.338587][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1135.346562][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1135.354531][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1135.362598][T22314] Uninit was stored to memory at: [ 1135.367669][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.373396][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.378338][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.383451][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.388391][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.392895][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.397574][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.403642][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.409800][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.414998][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.419850][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.424356][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.430675][T22314] [ 1135.432992][T22314] Uninit was stored to memory at: [ 1135.438115][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.443840][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.448780][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.453892][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.458830][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.463341][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.468029][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.474102][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.480268][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.485475][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.490333][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.494846][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.501160][T22314] [ 1135.503478][T22314] Uninit was stored to memory at: [ 1135.508511][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.514234][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.519171][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.524284][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.529225][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.533735][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.538415][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.544484][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.550643][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.555845][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.560698][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.565203][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.571537][T22314] [ 1135.573854][T22314] Uninit was stored to memory at: [ 1135.578886][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.584610][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.589549][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.594660][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.599603][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.604132][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.608812][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.614881][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.621038][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.626253][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.631111][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.635620][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.642166][T22314] [ 1135.644488][T22314] Uninit was stored to memory at: [ 1135.649521][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.655244][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.660191][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.665304][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.670333][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.674839][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.679525][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.685600][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.691759][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.696962][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.701814][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.706320][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.712631][T22314] [ 1135.714950][T22314] Uninit was stored to memory at: [ 1135.719983][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.725711][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.730676][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.735787][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.740726][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.745231][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.749908][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.755975][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.762132][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.767333][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.772185][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.776693][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.783005][T22314] [ 1135.785325][T22314] Uninit was stored to memory at: [ 1135.790358][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1135.796087][T22314] __msan_chain_origin+0x57/0xa0 [ 1135.801027][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1135.806151][T22314] get_compat_msghdr+0x108/0x2b0 [ 1135.811109][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1135.815635][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1135.820327][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1135.826406][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1135.832569][T22314] __do_fast_syscall_32+0x129/0x180 [ 1135.837777][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1135.842633][T22314] do_SYSENTER_32+0x73/0x90 [ 1135.847251][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1135.853667][T22314] [ 1135.855988][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1135.862664][T22314] do_recvmmsg+0xc2/0x22e0 [ 1135.867104][T22314] do_recvmmsg+0xc2/0x22e0 [ 1136.217307][T22305] not chained 230000 origins [ 1136.221927][T22305] CPU: 0 PID: 22305 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1136.230593][T22305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1136.240644][T22305] Call Trace: [ 1136.243940][T22305] dump_stack+0x21c/0x280 [ 1136.248278][T22305] kmsan_internal_chain_origin+0x6f/0x130 [ 1136.254002][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1136.259810][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.265012][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1136.270818][T22305] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1136.276877][T22305] ? __wake_up+0x1fc/0x250 [ 1136.281282][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.286486][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1136.292278][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.297465][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1136.303095][T22305] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1136.309157][T22305] ? _copy_from_user+0x201/0x310 [ 1136.314084][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.319285][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.324213][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.329317][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.334247][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.338743][T22305] ? __msan_get_context_state+0x9/0x20 [ 1136.344195][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.349381][T22305] ? kmsan_internal_set_origin+0x85/0xc0 [ 1136.355006][T22305] ? __msan_poison_alloca+0xe9/0x110 [ 1136.360281][T22305] ? __sys_recvmmsg+0xb5/0x5f0 [ 1136.365034][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.369700][T22305] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1136.375491][T22305] ? kmsan_get_metadata+0x116/0x180 [ 1136.380678][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.386734][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.392881][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.398071][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.402911][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.407402][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.413709][T22305] RIP: 0023:0xf7efe549 [ 1136.417765][T22305] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1136.437365][T22305] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1136.445782][T22305] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1136.453741][T22305] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1136.461698][T22305] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1136.469680][T22305] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1136.477651][T22305] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1136.485625][T22305] Uninit was stored to memory at: [ 1136.490926][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.496635][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.501557][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.506652][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.511575][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.516068][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.520732][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.526785][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.532941][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.538124][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.542961][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.547449][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.553750][T22305] [ 1136.556055][T22305] Uninit was stored to memory at: [ 1136.561074][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.566780][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.571702][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.576815][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.581741][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.586229][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.590892][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.596946][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.603089][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.608274][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.613109][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.617597][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.623897][T22305] [ 1136.626212][T22305] Uninit was stored to memory at: [ 1136.631224][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.636949][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.641875][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.646970][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.651922][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.657020][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.661705][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.667759][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.673903][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.679086][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.683922][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.688410][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.694712][T22305] [ 1136.697022][T22305] Uninit was stored to memory at: [ 1136.702049][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.707756][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.712677][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.717786][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.722710][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.727202][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.731865][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.737918][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.744075][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.749267][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.754102][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.758593][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.764896][T22305] [ 1136.767203][T22305] Uninit was stored to memory at: [ 1136.772213][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.777920][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.782865][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.787963][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.792892][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.797384][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.802046][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.808098][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.814238][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.819423][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.824257][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.828746][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.835046][T22305] [ 1136.837350][T22305] Uninit was stored to memory at: [ 1136.842364][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.848173][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.853096][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.858191][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.863125][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.867622][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.872286][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.878337][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.884478][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.889673][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.894507][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.898997][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.905299][T22305] [ 1136.907606][T22305] Uninit was stored to memory at: [ 1136.912628][T22305] kmsan_internal_chain_origin+0xad/0x130 [ 1136.918334][T22305] __msan_chain_origin+0x57/0xa0 [ 1136.923255][T22305] __get_compat_msghdr+0x6db/0x9d0 [ 1136.928353][T22305] get_compat_msghdr+0x108/0x2b0 [ 1136.933275][T22305] do_recvmmsg+0xdc7/0x22e0 [ 1136.937765][T22305] __sys_recvmmsg+0x340/0x5f0 [ 1136.942427][T22305] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1136.948483][T22305] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1136.954883][T22305] __do_fast_syscall_32+0x129/0x180 [ 1136.960091][T22305] do_fast_syscall_32+0x6a/0xc0 [ 1136.964928][T22305] do_SYSENTER_32+0x73/0x90 [ 1136.969419][T22305] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1136.975718][T22305] [ 1136.978028][T22305] Local variable ----msg_sys@do_recvmmsg created at: [ 1136.984688][T22305] do_recvmmsg+0xc2/0x22e0 [ 1136.989094][T22305] do_recvmmsg+0xc2/0x22e0 [ 1137.486298][T22314] not chained 240000 origins [ 1137.490932][T22314] CPU: 1 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1137.499598][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1137.509657][T22314] Call Trace: [ 1137.512962][T22314] dump_stack+0x21c/0x280 [ 1137.517302][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1137.523032][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1137.529370][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.534606][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1137.540420][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1137.546496][T22314] ? __wake_up+0x1fc/0x250 [ 1137.550919][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.556127][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1137.561933][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.567138][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1137.572780][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1137.578878][T22314] ? _copy_from_user+0x201/0x310 [ 1137.583830][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.589038][T22314] __msan_chain_origin+0x57/0xa0 [ 1137.593979][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1137.599109][T22314] get_compat_msghdr+0x108/0x2b0 [ 1137.604060][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1137.608603][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.613809][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1137.619442][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1137.624730][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1137.629499][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1137.634180][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1137.639988][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1137.645218][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1137.651309][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1137.657478][T22314] __do_fast_syscall_32+0x129/0x180 [ 1137.662687][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1137.667538][T22314] do_SYSENTER_32+0x73/0x90 [ 1137.672825][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1137.679143][T22314] RIP: 0023:0xf7efe549 [ 1137.683212][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1137.702991][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1137.711408][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1137.719405][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1137.727381][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1137.735364][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1137.743364][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1137.751331][T22314] Uninit was stored to memory at: [ 1137.756364][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1137.762093][T22314] __msan_chain_origin+0x57/0xa0 [ 1137.767031][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1137.772140][T22314] get_compat_msghdr+0x108/0x2b0 [ 1137.777083][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1137.781585][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1137.786262][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1137.792329][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1137.798488][T22314] __do_fast_syscall_32+0x129/0x180 [ 1137.803686][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1137.808534][T22314] do_SYSENTER_32+0x73/0x90 [ 1137.813036][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1137.819341][T22314] [ 1137.821657][T22314] Uninit was stored to memory at: [ 1137.826685][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1137.832405][T22314] __msan_chain_origin+0x57/0xa0 [ 1137.837622][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1137.842729][T22314] get_compat_msghdr+0x108/0x2b0 [ 1137.847668][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1137.852171][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1137.856848][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1137.862913][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1137.869069][T22314] __do_fast_syscall_32+0x129/0x180 [ 1137.874270][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1137.879900][T22314] do_SYSENTER_32+0x73/0x90 [ 1137.884402][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1137.890720][T22314] [ 1137.893035][T22314] Uninit was stored to memory at: [ 1137.898067][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1137.903804][T22314] __msan_chain_origin+0x57/0xa0 [ 1137.908737][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1137.913845][T22314] get_compat_msghdr+0x108/0x2b0 [ 1137.918782][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1137.923285][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1137.927962][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1137.934027][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1137.940182][T22314] __do_fast_syscall_32+0x129/0x180 [ 1137.945378][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1137.950233][T22314] do_SYSENTER_32+0x73/0x90 [ 1137.954739][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1137.961394][T22314] [ 1137.963709][T22314] Uninit was stored to memory at: [ 1137.968736][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1137.974459][T22314] __msan_chain_origin+0x57/0xa0 [ 1137.979395][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1137.984590][T22314] get_compat_msghdr+0x108/0x2b0 [ 1137.989529][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1137.994031][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1137.998708][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1138.004788][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1138.010945][T22314] __do_fast_syscall_32+0x129/0x180 [ 1138.016141][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1138.020988][T22314] do_SYSENTER_32+0x73/0x90 [ 1138.025491][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1138.031800][T22314] [ 1138.034118][T22314] Uninit was stored to memory at: [ 1138.039145][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1138.044867][T22314] __msan_chain_origin+0x57/0xa0 [ 1138.049806][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1138.054918][T22314] get_compat_msghdr+0x108/0x2b0 [ 1138.059856][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1138.064362][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1138.069044][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1138.075117][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1138.081271][T22314] __do_fast_syscall_32+0x129/0x180 [ 1138.086469][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1138.091318][T22314] do_SYSENTER_32+0x73/0x90 [ 1138.095823][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1138.102130][T22314] [ 1138.104448][T22314] Uninit was stored to memory at: [ 1138.109477][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1138.115197][T22314] __msan_chain_origin+0x57/0xa0 [ 1138.120131][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1138.125242][T22314] get_compat_msghdr+0x108/0x2b0 [ 1138.130184][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1138.134691][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1138.139366][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1138.145436][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1138.151587][T22314] __do_fast_syscall_32+0x129/0x180 [ 1138.156788][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1138.161636][T22314] do_SYSENTER_32+0x73/0x90 [ 1138.166139][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1138.172449][T22314] [ 1138.174767][T22314] Uninit was stored to memory at: [ 1138.179794][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1138.185517][T22314] __msan_chain_origin+0x57/0xa0 [ 1138.190454][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1138.195564][T22314] get_compat_msghdr+0x108/0x2b0 [ 1138.200504][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1138.205007][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1138.209682][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1138.215749][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1138.221902][T22314] __do_fast_syscall_32+0x129/0x180 [ 1138.227105][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1138.231963][T22314] do_SYSENTER_32+0x73/0x90 [ 1138.236465][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1138.242774][T22314] [ 1138.245093][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1138.251769][T22314] do_recvmmsg+0xc2/0x22e0 [ 1138.256184][T22314] do_recvmmsg+0xc2/0x22e0 [ 1138.810872][T22314] not chained 250000 origins [ 1138.815498][T22314] CPU: 1 PID: 22314 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1138.824161][T22314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1138.834207][T22314] Call Trace: [ 1138.837501][T22314] dump_stack+0x21c/0x280 [ 1138.841842][T22314] kmsan_internal_chain_origin+0x6f/0x130 [ 1138.847564][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1138.853379][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.858579][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1138.864388][T22314] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1138.870454][T22314] ? __wake_up+0x1fc/0x250 [ 1138.874869][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.880064][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1138.885866][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.891069][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1138.896708][T22314] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1138.902775][T22314] ? _copy_from_user+0x201/0x310 [ 1138.907712][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.912948][T22314] __msan_chain_origin+0x57/0xa0 [ 1138.917886][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1138.923002][T22314] get_compat_msghdr+0x108/0x2b0 [ 1138.927946][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1138.932463][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.937662][T22314] ? kmsan_internal_set_origin+0x85/0xc0 [ 1138.943297][T22314] ? __msan_poison_alloca+0xe9/0x110 [ 1138.948586][T22314] ? __sys_recvmmsg+0xb5/0x5f0 [ 1138.953364][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1138.958043][T22314] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1138.963848][T22314] ? kmsan_get_metadata+0x116/0x180 [ 1138.969051][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1138.975132][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1138.981291][T22314] __do_fast_syscall_32+0x129/0x180 [ 1138.986493][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1138.991344][T22314] do_SYSENTER_32+0x73/0x90 [ 1138.995849][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.002179][T22314] RIP: 0023:0xf7efe549 [ 1139.006248][T22314] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1139.025854][T22314] RSP: 002b:00000000f54d70cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1139.034274][T22314] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1139.042254][T22314] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1139.050231][T22314] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1139.058208][T22314] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1139.066199][T22314] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1139.074193][T22314] Uninit was stored to memory at: [ 1139.079232][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.084958][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.089898][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.095013][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.099951][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.104457][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.109144][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.115210][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.121971][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.127171][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.132021][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.136528][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.142834][T22314] [ 1139.145149][T22314] Uninit was stored to memory at: [ 1139.150177][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.155897][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.160833][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.165944][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.171404][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.175909][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.180592][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.186657][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.192812][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.198009][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.202858][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.207361][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.213669][T22314] [ 1139.215983][T22314] Uninit was stored to memory at: [ 1139.221007][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.226724][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.231662][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.236770][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.241710][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.246211][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.250884][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.256952][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.263105][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.268306][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.273157][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.277662][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.283985][T22314] [ 1139.286303][T22314] Uninit was stored to memory at: [ 1139.291334][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.297059][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.301996][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.307106][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.312043][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.316543][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.321221][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.327291][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.333445][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.338666][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.343517][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.348019][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.354327][T22314] [ 1139.356644][T22314] Uninit was stored to memory at: [ 1139.361672][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.367402][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.372337][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.377471][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.382411][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.386919][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.391603][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.397705][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.403862][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.409061][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.414011][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.418521][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.424837][T22314] [ 1139.427152][T22314] Uninit was stored to memory at: [ 1139.432178][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.437898][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.442834][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.447944][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.452880][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.457383][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.462061][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.468135][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.474299][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.479500][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.484383][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.488901][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.495216][T22314] [ 1139.497534][T22314] Uninit was stored to memory at: [ 1139.502568][T22314] kmsan_internal_chain_origin+0xad/0x130 [ 1139.508296][T22314] __msan_chain_origin+0x57/0xa0 [ 1139.513233][T22314] __get_compat_msghdr+0x6db/0x9d0 [ 1139.518346][T22314] get_compat_msghdr+0x108/0x2b0 [ 1139.523286][T22314] do_recvmmsg+0xdc7/0x22e0 [ 1139.527791][T22314] __sys_recvmmsg+0x340/0x5f0 [ 1139.532470][T22314] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1139.538537][T22314] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1139.544691][T22314] __do_fast_syscall_32+0x129/0x180 [ 1139.549889][T22314] do_fast_syscall_32+0x6a/0xc0 [ 1139.554740][T22314] do_SYSENTER_32+0x73/0x90 [ 1139.559246][T22314] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1139.565556][T22314] [ 1139.567872][T22314] Local variable ----msg_sys@do_recvmmsg created at: [ 1139.574549][T22314] do_recvmmsg+0xc2/0x22e0 [ 1139.578969][T22314] do_recvmmsg+0xc2/0x22e0 16:24:19 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r2, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r2, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 16:24:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="38000000240007050000004016a2a30005000000", @ANYRES32=r5, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB='4\x00\x00\x00,\x00\'\r\x00'/20, @ANYRES32=r5, @ANYBLOB="0400000000000000080010000a0001006261736963000000040002"], 0x34}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="240000002d000500000000000000000200000000", @ANYRES32=r5, @ANYBLOB="0400000000000000000010"], 0x24}}, 0x0) 16:24:19 executing program 5: socketpair(0x0, 0x0, 0x0, &(0x7f0000000600)) 16:24:19 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r0, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000002540)={&(0x7f0000000700)={0xec4, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}, [@NL80211_PMSR_ATTR_PEERS={0x1d0, 0x5, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}]}]}, {0xac, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x9c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x94, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x100, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xfc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x1b0, 0x5, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x34, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]}]}, {0x9c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x8c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x88, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}]}]}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_CHANNEL_WIDTH={0x8}]}]}, {0x98, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x4c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0x3c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}]}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x73c, 0x5, 0x0, 0x1, [{0x4}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x5a0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x90, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x84, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1b8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x108, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1f4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x138, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x124, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xfc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}]}]}, {0x128, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x68, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x60, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x5c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x5c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x3e8, 0x5, 0x0, 0x1, [{0x3e4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x19c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xf0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1ec, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xe0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x54, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}]}]}]}]}, 0xec4}}, 0x0) 16:24:19 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xd}, 0x0) 16:24:19 executing program 2: syz_mount_image$fuse(&(0x7f0000000880)='fuse\x00', &(0x7f00000008c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@default_permissions='default_permissions'}, {@max_read={'max_read'}}, {@default_permissions='default_permissions'}], [{@fowner_eq={'fowner'}}, {@audit='audit'}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}]}}) [ 1140.097987][T22372] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1140.141516][T22369] fuse: Bad value for 'fd' [ 1140.206705][T22369] fuse: Bad value for 'fd' [ 1140.290838][T22379] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:24:19 executing program 1: syz_mount_image$afs(0x0, 0x0, 0x0, 0x5, &(0x7f0000001d40)=[{&(0x7f0000000940)='\t', 0x1, 0xa669}, {&(0x7f0000000980)="fa", 0x1}, {&(0x7f0000000a40)="88", 0x1}, {&(0x7f0000000a80)="b3", 0x1}, {&(0x7f0000000cc0)="d332", 0x2, 0x7fffffff}], 0x0, 0x0) 16:24:19 executing program 3: ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, 0x0) syz_genetlink_get_family_id$team(&(0x7f0000000500)='team\x00') keyctl$join(0x1, 0x0) syz_mount_image$afs(0x0, 0x0, 0x0, 0x1, &(0x7f0000001d40)=[{0x0, 0x0, 0xa669}], 0x0, &(0x7f0000001e00)) 16:24:20 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000a00)={'team0\x00'}) 16:24:20 executing program 5: 16:24:20 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xe}, 0x0) [ 1141.227831][T22392] not chained 260000 origins [ 1141.232479][T22392] CPU: 1 PID: 22392 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1141.241147][T22392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1141.251200][T22392] Call Trace: [ 1141.254507][T22392] dump_stack+0x21c/0x280 [ 1141.258852][T22392] kmsan_internal_chain_origin+0x6f/0x130 [ 1141.264577][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1141.270384][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.275592][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1141.281404][T22392] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1141.287460][T22392] ? __wake_up+0x1fc/0x250 [ 1141.291862][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.297047][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1141.302838][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.308029][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1141.313656][T22392] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1141.319728][T22392] ? _copy_from_user+0x201/0x310 [ 1141.324655][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.329843][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.334772][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.339875][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.344803][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.349300][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.354488][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.359701][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1141.365341][T22392] ? __msan_poison_alloca+0xe9/0x110 [ 1141.370631][T22392] ? __sys_recvmmsg+0xb5/0x5f0 [ 1141.375393][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.380078][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1141.386739][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1141.391926][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.397985][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.404144][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.409333][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.414174][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.418672][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.424984][T22392] RIP: 0023:0xf7efe549 [ 1141.429045][T22392] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1141.448638][T22392] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1141.457038][T22392] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1141.464999][T22392] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1141.472957][T22392] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1141.480949][T22392] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1141.488908][T22392] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1141.496972][T22392] Uninit was stored to memory at: [ 1141.502001][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.507713][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.512658][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.517755][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.522695][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.527184][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.531849][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.537902][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.544046][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.549230][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.554095][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.558586][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.564886][T22392] [ 1141.567192][T22392] Uninit was stored to memory at: [ 1141.572205][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.577927][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.582868][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.587980][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.592913][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.597405][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.602070][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.608125][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.614266][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.619452][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.624290][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.628783][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.635084][T22392] [ 1141.637390][T22392] Uninit was stored to memory at: [ 1141.642406][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.648124][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.653063][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.658166][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.663097][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.667591][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.672258][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.678313][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.684461][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.689657][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.694494][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.698986][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.705290][T22392] [ 1141.707597][T22392] Uninit was stored to memory at: [ 1141.712614][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.718321][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.723243][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.728342][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.733266][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.737756][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.742420][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.748474][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.754613][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.759797][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.764652][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.769161][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.775470][T22392] [ 1141.777785][T22392] Uninit was stored to memory at: [ 1141.782801][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.788511][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.793439][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.798540][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.803466][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.807958][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.812619][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.818671][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.824810][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.829992][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.834917][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.839410][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.845710][T22392] [ 1141.848015][T22392] Uninit was stored to memory at: [ 1141.853028][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.858735][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.863658][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.868756][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.873691][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.878179][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.882840][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.888908][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.895048][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.900233][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.905070][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.909562][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.915870][T22392] [ 1141.918182][T22392] Uninit was stored to memory at: [ 1141.923326][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1141.929569][T22392] __msan_chain_origin+0x57/0xa0 [ 1141.934669][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1141.939942][T22392] get_compat_msghdr+0x108/0x2b0 [ 1141.945042][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1141.949554][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1141.954219][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1141.960275][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1141.966418][T22392] __do_fast_syscall_32+0x129/0x180 [ 1141.971604][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1141.976444][T22392] do_SYSENTER_32+0x73/0x90 [ 1141.980964][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1141.987279][T22392] [ 1141.989679][T22392] Local variable ----msg_sys@do_recvmmsg created at: [ 1141.996342][T22392] do_recvmmsg+0xc2/0x22e0 [ 1142.000746][T22392] do_recvmmsg+0xc2/0x22e0 16:24:21 executing program 2: [ 1142.717978][T22392] not chained 270000 origins [ 1142.722613][T22392] CPU: 1 PID: 22392 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1142.731291][T22392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1142.741352][T22392] Call Trace: [ 1142.744657][T22392] dump_stack+0x21c/0x280 [ 1142.749007][T22392] kmsan_internal_chain_origin+0x6f/0x130 [ 1142.754740][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1142.760554][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.765767][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1142.771629][T22392] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1142.777705][T22392] ? __wake_up+0x1fc/0x250 [ 1142.782128][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.787329][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1142.793138][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.798344][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1142.804161][T22392] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1142.810234][T22392] ? _copy_from_user+0x201/0x310 [ 1142.815263][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.820492][T22392] __msan_chain_origin+0x57/0xa0 [ 1142.825439][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1142.830740][T22392] get_compat_msghdr+0x108/0x2b0 [ 1142.836652][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1142.841423][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.846640][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.851846][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1142.857492][T22392] ? __msan_poison_alloca+0xe9/0x110 [ 1142.862786][T22392] ? __sys_recvmmsg+0xb5/0x5f0 [ 1142.867585][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1142.872267][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1142.878075][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1142.883805][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1142.889880][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1142.896039][T22392] __do_fast_syscall_32+0x129/0x180 [ 1142.901242][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1142.906098][T22392] do_SYSENTER_32+0x73/0x90 [ 1142.910714][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1142.917039][T22392] RIP: 0023:0xf7efe549 [ 1142.921115][T22392] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1142.941347][T22392] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1142.952284][T22392] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1142.960374][T22392] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1142.969128][T22392] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1142.977099][T22392] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1142.985112][T22392] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1142.993083][T22392] Uninit was stored to memory at: [ 1142.998121][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.003954][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.008896][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.014123][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.019087][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.023593][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.028271][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.034339][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.040494][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.045699][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.050556][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.055061][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.061373][T22392] [ 1143.063694][T22392] Uninit was stored to memory at: [ 1143.068726][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.074449][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.079392][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.084598][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.089544][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.094075][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.098780][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.104855][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.111273][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.116474][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.121330][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.125844][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.132157][T22392] [ 1143.134503][T22392] Uninit was stored to memory at: [ 1143.139542][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.145268][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.150208][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.155345][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.160288][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.164793][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.169477][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.175573][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.181734][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.187201][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.192149][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.196661][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.202973][T22392] [ 1143.205294][T22392] Uninit was stored to memory at: [ 1143.210414][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.216232][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.221200][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.226315][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.231342][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.235849][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.240555][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.246628][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.252812][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.258013][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.263906][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.268415][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.274828][T22392] [ 1143.277149][T22392] Uninit was stored to memory at: [ 1143.285923][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.291742][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.296810][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.301923][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.306893][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.311405][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.316089][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.322156][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.328312][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.333544][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.338399][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.342903][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.349216][T22392] [ 1143.351542][T22392] Uninit was stored to memory at: [ 1143.356577][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.362304][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.367243][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.372626][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.377772][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.382312][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.387023][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.393205][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.399395][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.404597][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.409446][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.413959][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.420309][T22392] [ 1143.422630][T22392] Uninit was stored to memory at: [ 1143.427661][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1143.433383][T22392] __msan_chain_origin+0x57/0xa0 [ 1143.438320][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1143.443432][T22392] get_compat_msghdr+0x108/0x2b0 [ 1143.448633][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1143.453142][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1143.457954][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1143.464147][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1143.470295][T22392] __do_fast_syscall_32+0x129/0x180 [ 1143.475487][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1143.480349][T22392] do_SYSENTER_32+0x73/0x90 [ 1143.484863][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1143.491182][T22392] [ 1143.493784][T22392] Local variable ----msg_sys@do_recvmmsg created at: [ 1143.500584][T22392] do_recvmmsg+0xc2/0x22e0 [ 1143.505120][T22392] do_recvmmsg+0xc2/0x22e0 [ 1144.221072][T22392] not chained 280000 origins [ 1144.225704][T22392] CPU: 1 PID: 22392 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1144.234382][T22392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1144.244621][T22392] Call Trace: [ 1144.247921][T22392] dump_stack+0x21c/0x280 [ 1144.252261][T22392] kmsan_internal_chain_origin+0x6f/0x130 [ 1144.258010][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1144.263817][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.269018][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1144.274832][T22392] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1144.280902][T22392] ? __wake_up+0x1fc/0x250 [ 1144.285322][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.290524][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1144.296331][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.301532][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1144.307208][T22392] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1144.313306][T22392] ? _copy_from_user+0x201/0x310 [ 1144.318360][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.323564][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.328532][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.333650][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.338599][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.343106][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.348310][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.353511][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1144.359169][T22392] ? __msan_poison_alloca+0xe9/0x110 [ 1144.364477][T22392] ? __sys_recvmmsg+0xb5/0x5f0 [ 1144.370569][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.375257][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1144.381068][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1144.386281][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.392511][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.398675][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.403884][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.408913][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.413437][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.419882][T22392] RIP: 0023:0xf7efe549 [ 1144.423959][T22392] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1144.446610][T22392] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1144.455034][T22392] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1144.464317][T22392] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1144.472297][T22392] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1144.480321][T22392] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1144.488305][T22392] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1144.496294][T22392] Uninit was stored to memory at: [ 1144.501343][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.507084][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.512035][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.517159][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.522129][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.526644][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.531329][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.537404][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.543567][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.548770][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.553647][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.558156][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.564502][T22392] [ 1144.566837][T22392] Uninit was stored to memory at: [ 1144.571871][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.577598][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.582543][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.587658][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.592600][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.597111][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.601792][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.607869][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.614033][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.619245][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.624106][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.628631][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.634947][T22392] [ 1144.637271][T22392] Uninit was stored to memory at: [ 1144.642307][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.648035][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.652983][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.658095][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.663040][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.667549][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.672241][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.678313][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.684646][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.689844][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.694801][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.699335][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.710338][T22392] [ 1144.713181][T22392] Uninit was stored to memory at: [ 1144.719618][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.725344][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.730289][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.735492][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.740437][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.745036][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.749720][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.755790][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.761976][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.767180][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.772034][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.776542][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.782854][T22392] [ 1144.785175][T22392] Uninit was stored to memory at: [ 1144.790211][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.795942][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.800891][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.806009][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.810954][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.815464][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.820146][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.826327][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.832486][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.837686][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.842546][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.847053][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.853368][T22392] [ 1144.855690][T22392] Uninit was stored to memory at: [ 1144.860732][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.866461][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.871406][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.876555][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.881499][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.886017][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.890702][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.896822][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.903185][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.912691][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.918890][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.928188][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1144.934537][T22392] [ 1144.936862][T22392] Uninit was stored to memory at: [ 1144.941898][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1144.947630][T22392] __msan_chain_origin+0x57/0xa0 [ 1144.952580][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1144.957699][T22392] get_compat_msghdr+0x108/0x2b0 [ 1144.962650][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1144.968378][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1144.973071][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1144.979167][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1144.985330][T22392] __do_fast_syscall_32+0x129/0x180 [ 1144.990566][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1144.995428][T22392] do_SYSENTER_32+0x73/0x90 [ 1144.999964][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.006281][T22392] [ 1145.008612][T22392] Local variable ----msg_sys@do_recvmmsg created at: [ 1145.015294][T22392] do_recvmmsg+0xc2/0x22e0 [ 1145.019720][T22392] do_recvmmsg+0xc2/0x22e0 [ 1145.440355][T22392] not chained 290000 origins [ 1145.444990][T22392] CPU: 0 PID: 22392 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1145.453662][T22392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1145.463717][T22392] Call Trace: [ 1145.467018][T22392] dump_stack+0x21c/0x280 [ 1145.471365][T22392] kmsan_internal_chain_origin+0x6f/0x130 [ 1145.477097][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1145.482971][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.488184][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1145.494002][T22392] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1145.500073][T22392] ? __wake_up+0x1fc/0x250 [ 1145.504500][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.509701][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1145.515528][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.520752][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1145.526393][T22392] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1145.532517][T22392] ? _copy_from_user+0x201/0x310 [ 1145.537493][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.542881][T22392] __msan_chain_origin+0x57/0xa0 [ 1145.547829][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1145.552951][T22392] get_compat_msghdr+0x108/0x2b0 [ 1145.557903][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1145.562443][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.567650][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.572860][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1145.578505][T22392] ? __msan_poison_alloca+0xe9/0x110 [ 1145.583887][T22392] ? __sys_recvmmsg+0xb5/0x5f0 [ 1145.588746][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1145.593438][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1145.599350][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1145.604591][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1145.610675][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1145.616842][T22392] __do_fast_syscall_32+0x129/0x180 [ 1145.622060][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1145.626925][T22392] do_SYSENTER_32+0x73/0x90 [ 1145.631479][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.637816][T22392] RIP: 0023:0xf7efe549 [ 1145.642065][T22392] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1145.661678][T22392] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1145.670099][T22392] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1145.678077][T22392] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1145.686057][T22392] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1145.694037][T22392] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1145.702013][T22392] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1145.709992][T22392] Uninit was stored to memory at: [ 1145.715030][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1145.720797][T22392] __msan_chain_origin+0x57/0xa0 [ 1145.725746][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1145.730889][T22392] get_compat_msghdr+0x108/0x2b0 [ 1145.735832][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1145.740342][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1145.745024][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1145.751099][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1145.757258][T22392] __do_fast_syscall_32+0x129/0x180 [ 1145.762461][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1145.767337][T22392] do_SYSENTER_32+0x73/0x90 [ 1145.771842][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.778157][T22392] [ 1145.780478][T22392] Uninit was stored to memory at: [ 1145.785515][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1145.791239][T22392] __msan_chain_origin+0x57/0xa0 [ 1145.796179][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1145.801292][T22392] get_compat_msghdr+0x108/0x2b0 [ 1145.806273][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1145.810779][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1145.815459][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1145.821528][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1145.827686][T22392] __do_fast_syscall_32+0x129/0x180 [ 1145.832886][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1145.837738][T22392] do_SYSENTER_32+0x73/0x90 [ 1145.842274][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.848614][T22392] [ 1145.850935][T22392] Uninit was stored to memory at: [ 1145.855969][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1145.861694][T22392] __msan_chain_origin+0x57/0xa0 [ 1145.866636][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1145.871748][T22392] get_compat_msghdr+0x108/0x2b0 [ 1145.876690][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1145.881197][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1145.885881][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1145.891948][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1145.898108][T22392] __do_fast_syscall_32+0x129/0x180 [ 1145.903348][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1145.908203][T22392] do_SYSENTER_32+0x73/0x90 [ 1145.912880][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.919214][T22392] [ 1145.921534][T22392] Uninit was stored to memory at: [ 1145.926566][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1145.932291][T22392] __msan_chain_origin+0x57/0xa0 [ 1145.937228][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1145.942339][T22392] get_compat_msghdr+0x108/0x2b0 [ 1145.947278][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1145.951780][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1145.956457][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1145.962527][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1145.970340][T22392] __do_fast_syscall_32+0x129/0x180 [ 1145.975543][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1145.980398][T22392] do_SYSENTER_32+0x73/0x90 [ 1145.984904][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1145.991486][T22392] [ 1145.993805][T22392] Uninit was stored to memory at: [ 1145.998842][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.004568][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.009507][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.014640][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.019581][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.024091][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.028773][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.034850][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.041013][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.046251][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.053016][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.057527][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.063840][T22392] [ 1146.066430][T22392] Uninit was stored to memory at: [ 1146.071573][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.077299][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.082241][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.087360][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.092304][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.096809][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.101511][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.107668][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.113824][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.119100][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.123954][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.128462][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.134798][T22392] [ 1146.137116][T22392] Uninit was stored to memory at: [ 1146.142178][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.147899][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.152842][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.157955][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.162896][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.168963][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.173668][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.179739][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.185908][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.192245][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.197100][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.201610][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.207924][T22392] [ 1146.210253][T22392] Local variable ----msg_sys@do_recvmmsg created at: [ 1146.216933][T22392] do_recvmmsg+0xc2/0x22e0 [ 1146.221388][T22392] do_recvmmsg+0xc2/0x22e0 [ 1146.533332][T22392] not chained 300000 origins [ 1146.537962][T22392] CPU: 0 PID: 22392 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1146.546630][T22392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1146.556686][T22392] Call Trace: [ 1146.560005][T22392] dump_stack+0x21c/0x280 [ 1146.564351][T22392] kmsan_internal_chain_origin+0x6f/0x130 [ 1146.570081][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1146.575892][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.581097][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1146.587001][T22392] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1146.593076][T22392] ? __wake_up+0x1fc/0x250 [ 1146.597498][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.602700][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1146.608554][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.613865][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1146.619539][T22392] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1146.625622][T22392] ? _copy_from_user+0x201/0x310 [ 1146.630568][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.635776][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.640726][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.645853][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.650805][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.655324][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.660535][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.665749][T22392] ? kmsan_internal_set_origin+0x85/0xc0 [ 1146.671393][T22392] ? __msan_poison_alloca+0xe9/0x110 [ 1146.676690][T22392] ? __sys_recvmmsg+0xb5/0x5f0 [ 1146.681459][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.686144][T22392] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1146.691956][T22392] ? kmsan_get_metadata+0x116/0x180 [ 1146.697167][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.703257][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.709415][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.714626][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.719481][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.723994][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.730317][T22392] RIP: 0023:0xf7efe549 [ 1146.734388][T22392] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1146.755825][T22392] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1146.764248][T22392] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1146.772318][T22392] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1146.780295][T22392] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1146.788270][T22392] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1146.796265][T22392] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1146.804242][T22392] Uninit was stored to memory at: [ 1146.809280][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.815012][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.819947][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.825064][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.830209][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.834982][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.839701][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.845777][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.851940][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.857145][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.862000][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.866508][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.872818][T22392] [ 1146.875140][T22392] Uninit was stored to memory at: [ 1146.880173][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.885984][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.890924][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.896038][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.901010][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.905693][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.910377][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.916447][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.922609][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.927810][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1146.932666][T22392] do_SYSENTER_32+0x73/0x90 [ 1146.937294][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1146.943607][T22392] [ 1146.945926][T22392] Uninit was stored to memory at: [ 1146.950958][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1146.956679][T22392] __msan_chain_origin+0x57/0xa0 [ 1146.961616][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1146.966727][T22392] get_compat_msghdr+0x108/0x2b0 [ 1146.971666][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1146.976170][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1146.980847][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1146.987178][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1146.993336][T22392] __do_fast_syscall_32+0x129/0x180 [ 1146.998538][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1147.003391][T22392] do_SYSENTER_32+0x73/0x90 [ 1147.007895][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1147.014204][T22392] [ 1147.016519][T22392] Uninit was stored to memory at: [ 1147.021549][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1147.027278][T22392] __msan_chain_origin+0x57/0xa0 [ 1147.032221][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1147.037332][T22392] get_compat_msghdr+0x108/0x2b0 [ 1147.042268][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1147.046774][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1147.051451][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1147.057517][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1147.063674][T22392] __do_fast_syscall_32+0x129/0x180 [ 1147.068874][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1147.073725][T22392] do_SYSENTER_32+0x73/0x90 [ 1147.078230][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1147.084555][T22392] [ 1147.086877][T22392] Uninit was stored to memory at: [ 1147.091904][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1147.097649][T22392] __msan_chain_origin+0x57/0xa0 [ 1147.102587][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1147.107696][T22392] get_compat_msghdr+0x108/0x2b0 [ 1147.112634][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1147.117140][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1147.121819][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1147.127886][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1147.134043][T22392] __do_fast_syscall_32+0x129/0x180 [ 1147.139242][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1147.144092][T22392] do_SYSENTER_32+0x73/0x90 [ 1147.148595][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1147.154903][T22392] [ 1147.157216][T22392] Uninit was stored to memory at: [ 1147.162242][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1147.167962][T22392] __msan_chain_origin+0x57/0xa0 [ 1147.172897][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1147.178005][T22392] get_compat_msghdr+0x108/0x2b0 [ 1147.182944][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1147.187444][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1147.192122][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1147.198193][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1147.204352][T22392] __do_fast_syscall_32+0x129/0x180 [ 1147.209555][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1147.214415][T22392] do_SYSENTER_32+0x73/0x90 [ 1147.218923][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1147.225233][T22392] [ 1147.227552][T22392] Uninit was stored to memory at: [ 1147.232592][T22392] kmsan_internal_chain_origin+0xad/0x130 [ 1147.238314][T22392] __msan_chain_origin+0x57/0xa0 [ 1147.243251][T22392] __get_compat_msghdr+0x6db/0x9d0 [ 1147.248362][T22392] get_compat_msghdr+0x108/0x2b0 [ 1147.253299][T22392] do_recvmmsg+0xdc7/0x22e0 [ 1147.257805][T22392] __sys_recvmmsg+0x340/0x5f0 [ 1147.262484][T22392] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1147.268557][T22392] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1147.274716][T22392] __do_fast_syscall_32+0x129/0x180 [ 1147.279920][T22392] do_fast_syscall_32+0x6a/0xc0 [ 1147.284773][T22392] do_SYSENTER_32+0x73/0x90 [ 1147.289277][T22392] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1147.295592][T22392] [ 1147.297915][T22392] Local variable ----msg_sys@do_recvmmsg created at: [ 1147.304600][T22392] do_recvmmsg+0xc2/0x22e0 [ 1147.309024][T22392] do_recvmmsg+0xc2/0x22e0 16:24:27 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r2, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r2, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 16:24:27 executing program 5: 16:24:27 executing program 3: 16:24:27 executing program 1: 16:24:27 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0xf}, 0x0) 16:24:27 executing program 2: 16:24:27 executing program 3: openat$nvram(0xffffffffffffff9c, &(0x7f0000000680)='/dev/nvram\x00', 0x0, 0x0) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) 16:24:27 executing program 2: syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/mnt\x00') 16:24:27 executing program 5: process_vm_writev(0x0, &(0x7f0000000540)=[{&(0x7f0000000000)=""/255, 0xff}, {&(0x7f0000000100)=""/218, 0xdc}, {&(0x7f0000000200)=""/140, 0xffffffffffffffe8}, {&(0x7f00000005c0)=""/118, 0x76}, {&(0x7f0000000380)=""/222, 0xde}, {&(0x7f0000000480)=""/173, 0xad}], 0x6, &(0x7f00000007c0)=[{&(0x7f00000008c0)=""/234, 0xea}, {&(0x7f0000000740)=""/83, 0xa2}, {&(0x7f0000000800)=""/138, 0x7d}], 0x3, 0x0) 16:24:27 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffffffffffe}, 0x0) 16:24:27 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x10}, 0x0) [ 1148.659302][T22427] not chained 310000 origins [ 1148.663936][T22427] CPU: 0 PID: 22427 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1148.672602][T22427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1148.682657][T22427] Call Trace: [ 1148.685959][T22427] dump_stack+0x21c/0x280 [ 1148.690301][T22427] kmsan_internal_chain_origin+0x6f/0x130 [ 1148.696025][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1148.701830][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.707035][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1148.712849][T22427] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1148.718920][T22427] ? __wake_up+0x1fc/0x250 [ 1148.723346][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.728546][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1148.734352][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.739557][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1148.745199][T22427] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1148.751275][T22427] ? _copy_from_user+0x201/0x310 [ 1148.756219][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.761422][T22427] __msan_chain_origin+0x57/0xa0 [ 1148.766366][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1148.771486][T22427] get_compat_msghdr+0x108/0x2b0 [ 1148.776432][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1148.780941][T22427] ? __msan_get_context_state+0x9/0x20 [ 1148.786408][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.791610][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1148.797249][T22427] ? __msan_poison_alloca+0xe9/0x110 [ 1148.802540][T22427] ? __sys_recvmmsg+0xb5/0x5f0 [ 1148.807307][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1148.811988][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1148.817796][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1148.823003][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1148.829077][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1148.835244][T22427] __do_fast_syscall_32+0x129/0x180 [ 1148.840450][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1148.845305][T22427] do_SYSENTER_32+0x73/0x90 [ 1148.849814][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1148.856139][T22427] RIP: 0023:0xf7efe549 [ 1148.860218][T22427] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1148.879824][T22427] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1148.888232][T22427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1148.896191][T22427] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1148.904153][T22427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1148.912109][T22427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1148.920065][T22427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1148.928024][T22427] Uninit was stored to memory at: [ 1148.933042][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1148.938775][T22427] __msan_chain_origin+0x57/0xa0 [ 1148.943699][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1148.948793][T22427] get_compat_msghdr+0x108/0x2b0 [ 1148.953732][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1148.958224][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1148.962901][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1148.968957][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1148.975100][T22427] __do_fast_syscall_32+0x129/0x180 [ 1148.980289][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1148.985123][T22427] do_SYSENTER_32+0x73/0x90 [ 1148.989613][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1148.995913][T22427] [ 1148.998221][T22427] Uninit was stored to memory at: [ 1149.003259][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.008966][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.013887][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.018984][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.023909][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.028399][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.033063][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.039113][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.045266][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.050450][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.055286][T22427] do_SYSENTER_32+0x73/0x90 [ 1149.059774][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.066074][T22427] [ 1149.068386][T22427] Uninit was stored to memory at: [ 1149.073398][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.079103][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.084024][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.089120][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.094043][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.098531][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.103229][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.109282][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.115422][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.120607][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.125443][T22427] do_SYSENTER_32+0x73/0x90 [ 1149.129933][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.136235][T22427] [ 1149.138542][T22427] Uninit was stored to memory at: [ 1149.143556][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.149260][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.154183][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.159282][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.164204][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.168697][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.173360][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.179414][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.185555][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.190738][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.195575][T22427] do_SYSENTER_32+0x73/0x90 [ 1149.200066][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.206366][T22427] [ 1149.208673][T22427] Uninit was stored to memory at: [ 1149.213687][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.219393][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.224319][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.229416][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.234345][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.238836][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.243505][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.249559][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.255699][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.260883][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.265737][T22427] do_SYSENTER_32+0x73/0x90 [ 1149.270231][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.276530][T22427] [ 1149.278838][T22427] Uninit was stored to memory at: [ 1149.283851][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.289557][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.294482][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.299578][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.304503][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.309007][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.313672][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.319750][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.325891][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.331074][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.335922][T22427] do_SYSENTER_32+0x73/0x90 [ 1149.340413][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.346715][T22427] [ 1149.349022][T22427] Uninit was stored to memory at: [ 1149.354033][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1149.359741][T22427] __msan_chain_origin+0x57/0xa0 [ 1149.364671][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1149.369765][T22427] get_compat_msghdr+0x108/0x2b0 [ 1149.374703][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1149.379193][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1149.383858][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1149.389908][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1149.396045][T22427] __do_fast_syscall_32+0x129/0x180 [ 1149.401231][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1149.406066][T22427] do_SYSENTER_32+0x73/0x90 16:24:28 executing program 2: ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000580)={'ip6gre0\x00', 0x0}) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000)) [ 1149.410557][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1149.416856][T22427] [ 1149.419171][T22427] Local variable ----msg_sys@do_recvmmsg created at: [ 1149.425855][T22427] do_recvmmsg+0xc2/0x22e0 [ 1149.430261][T22427] do_recvmmsg+0xc2/0x22e0 [ 1150.675868][T22427] not chained 320000 origins [ 1150.680497][T22427] CPU: 1 PID: 22427 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1150.689162][T22427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1150.699300][T22427] Call Trace: [ 1150.702596][T22427] dump_stack+0x21c/0x280 [ 1150.706934][T22427] kmsan_internal_chain_origin+0x6f/0x130 [ 1150.712654][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1150.718459][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.723657][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1150.729469][T22427] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1150.735544][T22427] ? __wake_up+0x1fc/0x250 [ 1150.739964][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.745161][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1150.750964][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.756163][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1150.761810][T22427] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1150.767880][T22427] ? _copy_from_user+0x201/0x310 [ 1150.772819][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.778023][T22427] __msan_chain_origin+0x57/0xa0 [ 1150.782985][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1150.788102][T22427] get_compat_msghdr+0x108/0x2b0 [ 1150.793045][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1150.797640][T22427] ? __msan_get_context_state+0x9/0x20 [ 1150.803105][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.808306][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1150.813940][T22427] ? __msan_poison_alloca+0xe9/0x110 [ 1150.819229][T22427] ? __sys_recvmmsg+0xb5/0x5f0 [ 1150.824003][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1150.828682][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1150.834487][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1150.839690][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1150.845760][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1150.851917][T22427] __do_fast_syscall_32+0x129/0x180 [ 1150.857119][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1150.861982][T22427] do_SYSENTER_32+0x73/0x90 [ 1150.866490][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1150.872825][T22427] RIP: 0023:0xf7efe549 [ 1150.876897][T22427] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1150.896503][T22427] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1150.904954][T22427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1150.912925][T22427] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1150.920896][T22427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1150.928872][T22427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1150.936843][T22427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1150.944816][T22427] Uninit was stored to memory at: [ 1150.949881][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1150.955605][T22427] __msan_chain_origin+0x57/0xa0 [ 1150.960550][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1150.965665][T22427] get_compat_msghdr+0x108/0x2b0 [ 1150.970606][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1150.975113][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1150.979792][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1150.985862][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1150.992015][T22427] __do_fast_syscall_32+0x129/0x180 [ 1150.997208][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.002057][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.006567][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.012879][T22427] [ 1151.015193][T22427] Uninit was stored to memory at: [ 1151.020224][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.025950][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.030887][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.035999][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.040937][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.045442][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.050117][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.056186][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.062341][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.067549][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.072398][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.076904][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.083213][T22427] [ 1151.085530][T22427] Uninit was stored to memory at: [ 1151.090565][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.096285][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.101221][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.106331][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.111270][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.115772][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.120448][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.126519][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.132682][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.137884][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.142824][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.147336][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.153661][T22427] [ 1151.155981][T22427] Uninit was stored to memory at: [ 1151.161015][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.166737][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.171675][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.176781][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.181717][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.186248][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.190927][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.196992][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.203579][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.208774][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.213624][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.218123][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.224435][T22427] [ 1151.226750][T22427] Uninit was stored to memory at: [ 1151.231778][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.237498][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.242460][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.247570][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.252511][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.257023][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.261699][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.267762][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.273914][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.279109][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.283958][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.288457][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.294764][T22427] [ 1151.297084][T22427] Uninit was stored to memory at: [ 1151.302114][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.307834][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.312773][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.317885][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.322821][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.327325][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.332042][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.338108][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.344262][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.349458][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.354308][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.358812][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.365120][T22427] [ 1151.367439][T22427] Uninit was stored to memory at: [ 1151.372467][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1151.378176][T22427] __msan_chain_origin+0x57/0xa0 [ 1151.383136][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1151.388237][T22427] get_compat_msghdr+0x108/0x2b0 [ 1151.393156][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1151.397633][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1151.402283][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1151.408367][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1151.414495][T22427] __do_fast_syscall_32+0x129/0x180 [ 1151.419676][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1151.424560][T22427] do_SYSENTER_32+0x73/0x90 [ 1151.429037][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1151.435329][T22427] [ 1151.437640][T22427] Local variable ----msg_sys@do_recvmmsg created at: [ 1151.444315][T22427] do_recvmmsg+0xc2/0x22e0 [ 1151.448706][T22427] do_recvmmsg+0xc2/0x22e0 [ 1151.972116][T22427] not chained 330000 origins [ 1151.976745][T22427] CPU: 1 PID: 22427 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1151.985414][T22427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1151.995462][T22427] Call Trace: [ 1151.998758][T22427] dump_stack+0x21c/0x280 [ 1152.003096][T22427] kmsan_internal_chain_origin+0x6f/0x130 [ 1152.009781][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1152.015621][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.020823][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1152.026642][T22427] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1152.032717][T22427] ? __wake_up+0x1fc/0x250 [ 1152.037138][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.042338][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1152.048150][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.053355][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1152.058990][T22427] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1152.065093][T22427] ? _copy_from_user+0x201/0x310 [ 1152.070034][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.075238][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.080180][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.085299][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.090245][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.094755][T22427] ? __msan_get_context_state+0x9/0x20 [ 1152.100222][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.105433][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1152.111069][T22427] ? __msan_poison_alloca+0xe9/0x110 [ 1152.116357][T22427] ? __sys_recvmmsg+0xb5/0x5f0 [ 1152.121141][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.125829][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1152.131642][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1152.136852][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.142922][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.149084][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.154292][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.159148][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.163657][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.169981][T22427] RIP: 0023:0xf7efe549 [ 1152.174082][T22427] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1152.193707][T22427] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1152.202123][T22427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1152.210096][T22427] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1152.218070][T22427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1152.226043][T22427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1152.234018][T22427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1152.241991][T22427] Uninit was stored to memory at: [ 1152.247076][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.252774][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.257688][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.262771][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.267717][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.272206][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.276876][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.282939][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.289077][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.294260][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.299084][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.303573][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.309866][T22427] [ 1152.312163][T22427] Uninit was stored to memory at: [ 1152.317167][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.322862][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.327862][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.332965][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.337879][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.342369][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.347026][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.353090][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.359229][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.364406][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.369230][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.373709][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.380005][T22427] [ 1152.382308][T22427] Uninit was stored to memory at: [ 1152.387331][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.393027][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.397938][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.403024][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.407936][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.412414][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.417067][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.423111][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.429250][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.434426][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.439251][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.443730][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.450023][T22427] [ 1152.452323][T22427] Uninit was stored to memory at: [ 1152.457338][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.463073][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.467996][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.473088][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.478018][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.482529][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.487793][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.493845][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.499977][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.505149][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.509984][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.514460][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.520765][T22427] [ 1152.523076][T22427] Uninit was stored to memory at: [ 1152.528075][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.533780][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.538690][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.543774][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.548684][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.553186][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.557836][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.563875][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.570001][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.575171][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.580008][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.584503][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.590797][T22427] [ 1152.593097][T22427] Uninit was stored to memory at: [ 1152.598097][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.603804][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.608732][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.613824][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.618736][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.623226][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.627875][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.633961][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.640099][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.645281][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.650107][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.654645][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.660944][T22427] [ 1152.663284][T22427] Uninit was stored to memory at: [ 1152.668290][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1152.673986][T22427] __msan_chain_origin+0x57/0xa0 [ 1152.678897][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1152.683994][T22427] get_compat_msghdr+0x108/0x2b0 [ 1152.688921][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1152.693403][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1152.698078][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1152.704120][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1152.710249][T22427] __do_fast_syscall_32+0x129/0x180 [ 1152.715420][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1152.720254][T22427] do_SYSENTER_32+0x73/0x90 [ 1152.724757][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1152.731058][T22427] [ 1152.733366][T22427] Local variable ----msg_sys@do_recvmmsg created at: [ 1152.740018][T22427] do_recvmmsg+0xc2/0x22e0 [ 1152.744409][T22427] do_recvmmsg+0xc2/0x22e0 [ 1153.030490][T22427] not chained 340000 origins [ 1153.035106][T22427] CPU: 1 PID: 22427 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1153.043751][T22427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1153.053799][T22427] Call Trace: [ 1153.057077][T22427] dump_stack+0x21c/0x280 [ 1153.061396][T22427] kmsan_internal_chain_origin+0x6f/0x130 [ 1153.067088][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1153.072866][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.078387][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1153.084185][T22427] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1153.090244][T22427] ? __wake_up+0x1fc/0x250 [ 1153.094640][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.099823][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1153.105602][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.110774][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1153.116380][T22427] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1153.122422][T22427] ? _copy_from_user+0x201/0x310 [ 1153.127353][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.132525][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.137437][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.142537][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.147453][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.151935][T22427] ? __msan_get_context_state+0x9/0x20 [ 1153.157372][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.162552][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1153.168159][T22427] ? __msan_poison_alloca+0xe9/0x110 [ 1153.173418][T22427] ? __sys_recvmmsg+0xb5/0x5f0 [ 1153.178169][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.182821][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1153.188597][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1153.193795][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.199871][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.206003][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.211175][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.216001][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.220494][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.226793][T22427] RIP: 0023:0xf7efe549 [ 1153.230924][T22427] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1153.250506][T22427] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1153.258893][T22427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1153.266854][T22427] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1153.274814][T22427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1153.282763][T22427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1153.290710][T22427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1153.298669][T22427] Uninit was stored to memory at: [ 1153.303689][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.309398][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.314326][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.319411][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.324323][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.328799][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.333450][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.339492][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.345622][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.350807][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.355630][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.360108][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.366400][T22427] [ 1153.369046][T22427] Uninit was stored to memory at: [ 1153.374047][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.379740][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.384653][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.389735][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.394649][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.399139][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.403818][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.409900][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.416036][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.421264][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.426121][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.430633][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.436952][T22427] [ 1153.439253][T22427] Uninit was stored to memory at: [ 1153.444257][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.449963][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.454877][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.459963][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.464892][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.469369][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.474030][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.480075][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.486214][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.491389][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.496348][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.500842][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.507152][T22427] [ 1153.509457][T22427] Uninit was stored to memory at: [ 1153.514461][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.520167][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.525092][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.530175][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.535089][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.539567][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.544216][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.550253][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.556390][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.561559][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.566385][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.570861][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.577153][T22427] [ 1153.579451][T22427] Uninit was stored to memory at: [ 1153.584450][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.590155][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.595065][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.600150][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.605076][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.609570][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.614225][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.620279][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.626425][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.631596][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.636430][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.640918][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.647257][T22427] [ 1153.649594][T22427] Uninit was stored to memory at: [ 1153.654650][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.660349][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.665319][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.670447][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.675363][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.679845][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.684497][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.690539][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.696670][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.701841][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.706674][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.711166][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.717521][T22427] [ 1153.719826][T22427] Uninit was stored to memory at: [ 1153.724828][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1153.730550][T22427] __msan_chain_origin+0x57/0xa0 [ 1153.735462][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1153.740547][T22427] get_compat_msghdr+0x108/0x2b0 [ 1153.745459][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1153.749936][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1153.754587][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1153.760635][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1153.766761][T22427] __do_fast_syscall_32+0x129/0x180 [ 1153.771929][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1153.776751][T22427] do_SYSENTER_32+0x73/0x90 [ 1153.781226][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1153.787517][T22427] [ 1153.789820][T22427] Local variable ----msg_sys@do_recvmmsg created at: [ 1153.796467][T22427] do_recvmmsg+0xc2/0x22e0 [ 1153.800854][T22427] do_recvmmsg+0xc2/0x22e0 [ 1154.090708][T22427] not chained 350000 origins [ 1154.095330][T22427] CPU: 1 PID: 22427 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1154.103990][T22427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.114037][T22427] Call Trace: [ 1154.117334][T22427] dump_stack+0x21c/0x280 [ 1154.121672][T22427] kmsan_internal_chain_origin+0x6f/0x130 [ 1154.127388][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1154.133188][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.138382][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1154.144192][T22427] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1154.150258][T22427] ? __wake_up+0x1fc/0x250 [ 1154.154678][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.159875][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1154.165682][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.170883][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1154.176516][T22427] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1154.182589][T22427] ? _copy_from_user+0x201/0x310 [ 1154.187553][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.192727][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.197641][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.202727][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.207642][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.212123][T22427] ? __msan_get_context_state+0x9/0x20 [ 1154.217573][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.222779][T22427] ? kmsan_internal_set_origin+0x85/0xc0 [ 1154.228403][T22427] ? __msan_poison_alloca+0xe9/0x110 [ 1154.233671][T22427] ? __sys_recvmmsg+0xb5/0x5f0 [ 1154.238414][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.243066][T22427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1154.248842][T22427] ? kmsan_get_metadata+0x116/0x180 [ 1154.254015][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.260058][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.266187][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.271361][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.276185][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.280661][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.286960][T22427] RIP: 0023:0xf7efe549 [ 1154.291010][T22427] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1154.310595][T22427] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1154.318981][T22427] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1154.326930][T22427] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1154.334894][T22427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1154.342839][T22427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1154.350785][T22427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1154.358740][T22427] Uninit was stored to memory at: [ 1154.363748][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.369442][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.374353][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.379436][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.384347][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.388821][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.393470][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.399509][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.405638][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.410829][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.415652][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.420130][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.426425][T22427] [ 1154.428732][T22427] Uninit was stored to memory at: [ 1154.433738][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.439431][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.444346][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.449431][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.454354][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.458832][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.463484][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.469522][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.475658][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.480847][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.485678][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.490161][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.496457][T22427] [ 1154.498778][T22427] Uninit was stored to memory at: [ 1154.503783][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.509476][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.514389][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.519471][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.524383][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.528874][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.533551][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.539595][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.545728][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.550905][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.555744][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.560225][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.566530][T22427] [ 1154.568831][T22427] Uninit was stored to memory at: [ 1154.573834][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.579529][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.584443][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.589527][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.594451][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.598938][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.603601][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.609643][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.615785][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.620968][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.625800][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.630290][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.636583][T22427] [ 1154.638882][T22427] Uninit was stored to memory at: [ 1154.643917][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.649642][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.654586][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.659690][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.664615][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.669093][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.673767][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.679816][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.685944][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.691116][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.695940][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.700427][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.706719][T22427] [ 1154.709018][T22427] Uninit was stored to memory at: [ 1154.714018][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.719714][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.724637][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.729736][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.734755][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.739239][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.743892][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.749944][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.756093][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.761269][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.766098][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.770580][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.776874][T22427] [ 1154.779186][T22427] Uninit was stored to memory at: [ 1154.784199][T22427] kmsan_internal_chain_origin+0xad/0x130 [ 1154.789894][T22427] __msan_chain_origin+0x57/0xa0 [ 1154.794893][T22427] __get_compat_msghdr+0x6db/0x9d0 [ 1154.799975][T22427] get_compat_msghdr+0x108/0x2b0 [ 1154.804897][T22427] do_recvmmsg+0xdc7/0x22e0 [ 1154.809372][T22427] __sys_recvmmsg+0x340/0x5f0 [ 1154.814022][T22427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1154.820061][T22427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1154.826187][T22427] __do_fast_syscall_32+0x129/0x180 [ 1154.831356][T22427] do_fast_syscall_32+0x6a/0xc0 [ 1154.836186][T22427] do_SYSENTER_32+0x73/0x90 [ 1154.840666][T22427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1154.846964][T22427] [ 1154.849264][T22427] Local variable ----msg_sys@do_recvmmsg created at: [ 1154.855912][T22427] do_recvmmsg+0xc2/0x22e0 [ 1154.860302][T22427] do_recvmmsg+0xc2/0x22e0 16:24:34 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r2, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r2, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 16:24:34 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000ec0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendto$packet(0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0) 16:24:34 executing program 3: select(0x40, &(0x7f0000001440)={0x100000001}, &(0x7f0000001480), &(0x7f00000014c0), &(0x7f0000001540)) 16:24:34 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f00000000c0)=0x401, 0x4) 16:24:34 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x11}, 0x0) 16:24:34 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x2) 16:24:34 executing program 1: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000680)='/dev/nvram\x00', 0x0, 0x0) mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x40010, r0, 0x0) 16:24:35 executing program 5: socketpair(0x1, 0x3, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) openat$autofs(0xffffffffffffff9c, &(0x7f0000000640)='/dev/autofs\x00', 0x0, 0x0) sendmmsg$alg(r0, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000002680)}], 0x492492492492800, 0x0) 16:24:35 executing program 3: bpf$MAP_CREATE(0x0, 0xffffffffffffffff, 0xfffffffffffffe00) r0 = shmget(0x1, 0x1000, 0x200, &(0x7f0000fff000/0x1000)=nil) shmctl$IPC_RMID(r0, 0x0) 16:24:35 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0xfffffffffffffe4d) 16:24:35 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x12}, 0x0) [ 1156.024773][T22463] not chained 360000 origins [ 1156.029402][T22463] CPU: 1 PID: 22463 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1156.038070][T22463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.048123][T22463] Call Trace: [ 1156.051424][T22463] dump_stack+0x21c/0x280 [ 1156.055764][T22463] kmsan_internal_chain_origin+0x6f/0x130 [ 1156.061492][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1156.067299][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.072500][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1156.078314][T22463] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1156.084388][T22463] ? __wake_up+0x1fc/0x250 [ 1156.088807][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.094010][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1156.099817][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.105022][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1156.110664][T22463] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1156.116738][T22463] ? _copy_from_user+0x201/0x310 [ 1156.121677][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.126882][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.131824][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.136943][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.141895][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.146411][T22463] ? __msan_get_context_state+0x9/0x20 [ 1156.151872][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.157080][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.162286][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1156.167930][T22463] ? __msan_poison_alloca+0xe9/0x110 [ 1156.173249][T22463] ? __sys_recvmmsg+0xb5/0x5f0 [ 1156.178020][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.182704][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1156.188510][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1156.193809][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.199883][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.206044][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.211247][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.216103][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.220619][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.226940][T22463] RIP: 0023:0xf7efe549 [ 1156.231011][T22463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1156.250618][T22463] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1156.259023][T22463] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1156.266985][T22463] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1156.274945][T22463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1156.282921][T22463] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1156.290880][T22463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1156.298855][T22463] Uninit was stored to memory at: [ 1156.303878][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.309583][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.314506][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.319600][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.324524][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.329015][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.333680][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.339734][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.345878][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.351063][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.355899][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.360497][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.366800][T22463] [ 1156.369105][T22463] Uninit was stored to memory at: [ 1156.374119][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.379824][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.384744][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.389837][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.394762][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.399251][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.403913][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.410017][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.416159][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.421340][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.426173][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.430673][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.436978][T22463] [ 1156.439284][T22463] Uninit was stored to memory at: [ 1156.444311][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.450019][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.455027][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.460135][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.465059][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.469556][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.474225][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.480299][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.486448][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.491637][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.496475][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.500971][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.507278][T22463] [ 1156.509589][T22463] Uninit was stored to memory at: [ 1156.514604][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.520312][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.525234][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.530331][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.535257][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.539746][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.544407][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.550459][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.556597][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.561794][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.566637][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.571126][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.577425][T22463] [ 1156.579730][T22463] Uninit was stored to memory at: [ 1156.584743][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.590449][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.595372][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.600466][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.605393][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.609882][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.614546][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.620601][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.626744][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.632019][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.636854][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.641360][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.647670][T22463] [ 1156.649986][T22463] Uninit was stored to memory at: [ 1156.655010][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.660717][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.665640][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.670737][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.675661][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.680148][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.684813][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.690865][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.697007][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.702201][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.707039][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.711528][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.717842][T22463] [ 1156.720153][T22463] Uninit was stored to memory at: [ 1156.725183][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1156.730904][T22463] __msan_chain_origin+0x57/0xa0 [ 1156.735841][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1156.740948][T22463] get_compat_msghdr+0x108/0x2b0 [ 1156.745875][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1156.750368][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1156.755032][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1156.761107][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1156.767253][T22463] __do_fast_syscall_32+0x129/0x180 [ 1156.772442][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1156.777282][T22463] do_SYSENTER_32+0x73/0x90 [ 1156.781782][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1156.788106][T22463] [ 1156.790419][T22463] Local variable ----msg_sys@do_recvmmsg created at: [ 1156.797081][T22463] do_recvmmsg+0xc2/0x22e0 [ 1156.801497][T22463] do_recvmmsg+0xc2/0x22e0 16:24:36 executing program 3: pipe2$9p(&(0x7f00000009c0), 0x0) [ 1157.925994][T22463] not chained 370000 origins [ 1157.930625][T22463] CPU: 1 PID: 22463 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1157.939293][T22463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.949346][T22463] Call Trace: [ 1157.952633][T22463] dump_stack+0x21c/0x280 [ 1157.956958][T22463] kmsan_internal_chain_origin+0x6f/0x130 [ 1157.962665][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1157.968541][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1157.973727][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1157.979522][T22463] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1157.985582][T22463] ? __wake_up+0x1fc/0x250 [ 1157.990005][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1157.995203][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1158.001008][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1158.006210][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1158.011837][T22463] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1158.017902][T22463] ? _copy_from_user+0x201/0x310 [ 1158.022840][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1158.028028][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.032958][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.038061][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.042989][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.047483][T22463] ? __msan_get_context_state+0x9/0x20 [ 1158.052932][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1158.058124][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1158.063314][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1158.068935][T22463] ? __msan_poison_alloca+0xe9/0x110 [ 1158.074211][T22463] ? __sys_recvmmsg+0xb5/0x5f0 [ 1158.078964][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.083631][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1158.089424][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1158.094644][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.100702][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.106846][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.112030][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.116869][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.121375][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.127683][T22463] RIP: 0023:0xf7efe549 [ 1158.131738][T22463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1158.151340][T22463] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1158.159739][T22463] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1158.167696][T22463] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1158.175654][T22463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1158.183612][T22463] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1158.191583][T22463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1158.199544][T22463] Uninit was stored to memory at: [ 1158.204563][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.210280][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.215204][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.220300][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.225225][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.229719][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.234400][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.240467][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.246606][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.251789][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.256626][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.261116][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.267420][T22463] [ 1158.269729][T22463] Uninit was stored to memory at: [ 1158.274753][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.280460][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.285384][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.290486][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.295412][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.299915][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.304579][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.310645][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.316788][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.321972][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.326809][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.331301][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.337600][T22463] [ 1158.339911][T22463] Uninit was stored to memory at: [ 1158.344927][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.350632][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.355554][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.360651][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.365589][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.370080][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.374750][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.380804][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.386946][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.392137][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.396973][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.401465][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.407765][T22463] [ 1158.410083][T22463] Uninit was stored to memory at: [ 1158.415114][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.420850][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.425772][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.430869][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.435795][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.440287][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.444949][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.451018][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.457169][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.462367][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.467300][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.471795][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.478114][T22463] [ 1158.480437][T22463] Uninit was stored to memory at: [ 1158.485460][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.491169][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.496113][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.501211][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.506137][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.510629][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.515292][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.521344][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.527486][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.532680][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.537517][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.542010][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.548310][T22463] [ 1158.550617][T22463] Uninit was stored to memory at: [ 1158.555629][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.561335][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.566274][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.571369][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.576296][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.580784][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.585465][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.591518][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.597670][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.602857][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.607692][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.612181][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.618480][T22463] [ 1158.620786][T22463] Uninit was stored to memory at: [ 1158.625802][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1158.631507][T22463] __msan_chain_origin+0x57/0xa0 [ 1158.636447][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1158.641557][T22463] get_compat_msghdr+0x108/0x2b0 [ 1158.646498][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1158.650997][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1158.655663][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1158.661718][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1158.667858][T22463] __do_fast_syscall_32+0x129/0x180 [ 1158.673043][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1158.677878][T22463] do_SYSENTER_32+0x73/0x90 [ 1158.682371][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1158.688674][T22463] [ 1158.690986][T22463] Local variable ----msg_sys@do_recvmmsg created at: [ 1158.697646][T22463] do_recvmmsg+0xc2/0x22e0 [ 1158.702048][T22463] do_recvmmsg+0xc2/0x22e0 [ 1159.328269][T22463] not chained 380000 origins [ 1159.332898][T22463] CPU: 1 PID: 22463 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1159.341566][T22463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1159.351727][T22463] Call Trace: [ 1159.355023][T22463] dump_stack+0x21c/0x280 [ 1159.359359][T22463] kmsan_internal_chain_origin+0x6f/0x130 [ 1159.365079][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1159.370888][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.376086][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1159.381893][T22463] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1159.387970][T22463] ? __wake_up+0x1fc/0x250 [ 1159.392387][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.397585][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1159.403388][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.408593][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1159.414236][T22463] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1159.420316][T22463] ? _copy_from_user+0x201/0x310 [ 1159.425264][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.430468][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.435405][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.440527][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.445558][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.450070][T22463] ? __msan_get_context_state+0x9/0x20 [ 1159.455530][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.460738][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.465940][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1159.471571][T22463] ? __msan_poison_alloca+0xe9/0x110 [ 1159.476863][T22463] ? __sys_recvmmsg+0xb5/0x5f0 [ 1159.481654][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.486352][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1159.492774][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1159.498006][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.504105][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.510266][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.515472][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.520327][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.524833][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.531165][T22463] RIP: 0023:0xf7efe549 [ 1159.535238][T22463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1159.554843][T22463] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1159.563256][T22463] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1159.571227][T22463] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1159.579202][T22463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1159.587174][T22463] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1159.595150][T22463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1159.603126][T22463] Uninit was stored to memory at: [ 1159.608172][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.613898][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.618844][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.623962][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.628904][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.633414][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.638092][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.644219][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.650373][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.655561][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.660389][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.664869][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.671184][T22463] [ 1159.673484][T22463] Uninit was stored to memory at: [ 1159.678510][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.684204][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.689126][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.694208][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.699120][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.703610][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.708260][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.714300][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.720436][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.725618][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.730474][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.734952][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.741243][T22463] [ 1159.743557][T22463] Uninit was stored to memory at: [ 1159.748571][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.754295][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.759219][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.764303][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.769213][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.773702][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.778353][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.784392][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.790519][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.795704][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.800526][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.805004][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.811295][T22463] [ 1159.813594][T22463] Uninit was stored to memory at: [ 1159.818596][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.824292][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.829213][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.834298][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.839208][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.843685][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.848347][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.854393][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.860521][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.865703][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.870536][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.875013][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.881304][T22463] [ 1159.883603][T22463] Uninit was stored to memory at: [ 1159.888603][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.894297][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.899208][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.904294][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.909216][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.913693][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.918356][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.924396][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1159.930522][T22463] __do_fast_syscall_32+0x129/0x180 [ 1159.935706][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1159.940535][T22463] do_SYSENTER_32+0x73/0x90 [ 1159.945014][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1159.951305][T22463] [ 1159.953609][T22463] Uninit was stored to memory at: [ 1159.958624][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1159.964319][T22463] __msan_chain_origin+0x57/0xa0 [ 1159.969231][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1159.974326][T22463] get_compat_msghdr+0x108/0x2b0 [ 1159.979250][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1159.983729][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1159.988465][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1159.994518][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.000648][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.005832][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.010661][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.015140][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.021439][T22463] [ 1160.023736][T22463] Uninit was stored to memory at: [ 1160.028745][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.034448][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.039368][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.044452][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.049366][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.053843][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.058501][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.064542][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.070671][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.075841][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.080667][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.085146][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.091447][T22463] [ 1160.093750][T22463] Local variable ----msg_sys@do_recvmmsg created at: [ 1160.100399][T22463] do_recvmmsg+0xc2/0x22e0 [ 1160.104802][T22463] do_recvmmsg+0xc2/0x22e0 [ 1160.396478][T22463] not chained 390000 origins [ 1160.401080][T22463] CPU: 1 PID: 22463 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1160.409721][T22463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1160.419771][T22463] Call Trace: [ 1160.423038][T22463] dump_stack+0x21c/0x280 [ 1160.427345][T22463] kmsan_internal_chain_origin+0x6f/0x130 [ 1160.433039][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1160.438814][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.443984][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1160.449763][T22463] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1160.455817][T22463] ? __wake_up+0x1fc/0x250 [ 1160.460208][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.465391][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1160.471184][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.476370][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1160.482006][T22463] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1160.488066][T22463] ? _copy_from_user+0x201/0x310 [ 1160.493004][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.498205][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.503123][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.508215][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.513133][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.517615][T22463] ? __msan_get_context_state+0x9/0x20 [ 1160.523047][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.528219][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.533393][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1160.538999][T22463] ? __msan_poison_alloca+0xe9/0x110 [ 1160.544258][T22463] ? __sys_recvmmsg+0xb5/0x5f0 [ 1160.548998][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.553653][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1160.559449][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1160.564621][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.570673][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.576805][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.581978][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.586816][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.591294][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.597593][T22463] RIP: 0023:0xf7efe549 [ 1160.601636][T22463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1160.621224][T22463] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1160.629609][T22463] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1160.637566][T22463] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1160.645513][T22463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1160.653461][T22463] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1160.661407][T22463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1160.669794][T22463] Uninit was stored to memory at: [ 1160.674828][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.680522][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.685448][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.690531][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.695462][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.699938][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.704590][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.710630][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.716758][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.721928][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.726751][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.731227][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.737530][T22463] [ 1160.739827][T22463] Uninit was stored to memory at: [ 1160.744827][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.750520][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.755441][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.760534][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.765446][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.769921][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.774584][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.780626][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.786756][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.792053][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.796978][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.801454][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.807758][T22463] [ 1160.810058][T22463] Uninit was stored to memory at: [ 1160.815059][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.820760][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.825676][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.830759][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.835673][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.840151][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.844802][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.850841][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.856978][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.862939][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.867784][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.872357][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.878650][T22463] [ 1160.880965][T22463] Uninit was stored to memory at: [ 1160.885967][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.891657][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.896569][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.903747][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.908658][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.913136][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.917819][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.923859][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1160.929993][T22463] __do_fast_syscall_32+0x129/0x180 [ 1160.935165][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1160.939997][T22463] do_SYSENTER_32+0x73/0x90 [ 1160.944563][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1160.950855][T22463] [ 1160.953152][T22463] Uninit was stored to memory at: [ 1160.958149][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1160.963936][T22463] __msan_chain_origin+0x57/0xa0 [ 1160.968845][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1160.973928][T22463] get_compat_msghdr+0x108/0x2b0 [ 1160.978855][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1160.983345][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1160.987996][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1160.994035][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.000161][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.005331][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.010153][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.014630][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.020925][T22463] [ 1161.023224][T22463] Uninit was stored to memory at: [ 1161.028224][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.033934][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.038841][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.043922][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.048832][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.053322][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.057973][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.064012][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.070159][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.075328][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.080162][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.084653][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.090947][T22463] [ 1161.093243][T22463] Uninit was stored to memory at: [ 1161.098244][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.103946][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.108858][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.113942][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.118854][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.123331][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.127981][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.134035][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.140160][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.145330][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.150151][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.154629][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.160920][T22463] [ 1161.163219][T22463] Local variable ----msg_sys@do_recvmmsg created at: [ 1161.169866][T22463] do_recvmmsg+0xc2/0x22e0 [ 1161.174260][T22463] do_recvmmsg+0xc2/0x22e0 [ 1161.410535][T22463] not chained 400000 origins [ 1161.415176][T22463] CPU: 1 PID: 22463 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1161.423838][T22463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1161.433883][T22463] Call Trace: [ 1161.437184][T22463] dump_stack+0x21c/0x280 [ 1161.441529][T22463] kmsan_internal_chain_origin+0x6f/0x130 [ 1161.447249][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1161.453054][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.458248][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1161.464069][T22463] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1161.470221][T22463] ? __wake_up+0x1fc/0x250 [ 1161.474634][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.479844][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1161.485654][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.490860][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1161.496498][T22463] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1161.502567][T22463] ? _copy_from_user+0x201/0x310 [ 1161.507504][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.512705][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.517664][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.522805][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.527748][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.532257][T22463] ? __msan_get_context_state+0x9/0x20 [ 1161.537715][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.542917][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.548205][T22463] ? kmsan_internal_set_origin+0x85/0xc0 [ 1161.553842][T22463] ? __msan_poison_alloca+0xe9/0x110 [ 1161.559137][T22463] ? __sys_recvmmsg+0xb5/0x5f0 [ 1161.563926][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.568603][T22463] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1161.574446][T22463] ? kmsan_get_metadata+0x116/0x180 [ 1161.579645][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.585717][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.591882][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.597087][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.601939][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.606448][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.612763][T22463] RIP: 0023:0xf7efe549 [ 1161.616854][T22463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1161.636448][T22463] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1161.644877][T22463] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1161.652871][T22463] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1161.660824][T22463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1161.668777][T22463] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1161.676726][T22463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1161.684674][T22463] Uninit was stored to memory at: [ 1161.689684][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.695402][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.700329][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.705413][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.710338][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.714817][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.719466][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.725508][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.731636][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.736824][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.741646][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.746124][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.752416][T22463] [ 1161.754729][T22463] Uninit was stored to memory at: [ 1161.759728][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.765421][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.770331][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.775414][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.780340][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.784815][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.789463][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.795513][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.801657][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.806832][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.811654][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.816132][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.822424][T22463] [ 1161.824723][T22463] Uninit was stored to memory at: [ 1161.829738][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.835430][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.840340][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.845424][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.850336][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.854811][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.859467][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.865507][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.871633][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.876821][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.881643][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.886156][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.892445][T22463] [ 1161.894744][T22463] Uninit was stored to memory at: [ 1161.899760][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.905466][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.910375][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.915460][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.920381][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.924859][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.929509][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1161.935550][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1161.941691][T22463] __do_fast_syscall_32+0x129/0x180 [ 1161.946876][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1161.951698][T22463] do_SYSENTER_32+0x73/0x90 [ 1161.956176][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1161.962482][T22463] [ 1161.964782][T22463] Uninit was stored to memory at: [ 1161.969780][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1161.975472][T22463] __msan_chain_origin+0x57/0xa0 [ 1161.980382][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1161.985465][T22463] get_compat_msghdr+0x108/0x2b0 [ 1161.990390][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1161.994881][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1161.999587][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1162.005642][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1162.011785][T22463] __do_fast_syscall_32+0x129/0x180 [ 1162.016958][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1162.021804][T22463] do_SYSENTER_32+0x73/0x90 [ 1162.026284][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1162.032581][T22463] [ 1162.034882][T22463] Uninit was stored to memory at: [ 1162.039887][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1162.045584][T22463] __msan_chain_origin+0x57/0xa0 [ 1162.050494][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1162.055586][T22463] get_compat_msghdr+0x108/0x2b0 [ 1162.060497][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1162.064985][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1162.069636][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1162.075676][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1162.081822][T22463] __do_fast_syscall_32+0x129/0x180 [ 1162.086993][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1162.091815][T22463] do_SYSENTER_32+0x73/0x90 [ 1162.096293][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1162.102597][T22463] [ 1162.104912][T22463] Uninit was stored to memory at: [ 1162.109928][T22463] kmsan_internal_chain_origin+0xad/0x130 [ 1162.115623][T22463] __msan_chain_origin+0x57/0xa0 [ 1162.120533][T22463] __get_compat_msghdr+0x6db/0x9d0 [ 1162.125617][T22463] get_compat_msghdr+0x108/0x2b0 [ 1162.130527][T22463] do_recvmmsg+0xdc7/0x22e0 [ 1162.135004][T22463] __sys_recvmmsg+0x340/0x5f0 [ 1162.139666][T22463] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1162.145705][T22463] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1162.151843][T22463] __do_fast_syscall_32+0x129/0x180 [ 1162.157026][T22463] do_fast_syscall_32+0x6a/0xc0 [ 1162.161859][T22463] do_SYSENTER_32+0x73/0x90 [ 1162.166348][T22463] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1162.172637][T22463] [ 1162.174937][T22463] Local variable ----msg_sys@do_recvmmsg created at: [ 1162.181588][T22463] do_recvmmsg+0xc2/0x22e0 [ 1162.185980][T22463] do_recvmmsg+0xc2/0x22e0 16:24:41 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r1, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:24:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:24:41 executing program 5: socketpair(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) read$alg(r0, &(0x7f0000000000)=""/246, 0xf6) 16:24:41 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x80000001, 0x1d) 16:24:41 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x13}, 0x0) 16:24:41 executing program 3: seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f0000000140)) 16:24:42 executing program 1: openat$nvram(0xffffffffffffff9c, &(0x7f0000000680)='/dev/nvram\x00', 0x0, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f0000000440)='/dev/nvram\x00', 0x40780, 0x0) 16:24:42 executing program 3: r0 = gettid() process_vm_writev(r0, &(0x7f0000000380)=[{&(0x7f0000000000)=""/122, 0x7a}, {&(0x7f0000000080)=""/225, 0xe1}, {&(0x7f0000000280)=""/242, 0xf2}, {&(0x7f00000001c0)=""/60, 0x3c}], 0x4, &(0x7f0000001740)=[{&(0x7f0000000740)=""/4096, 0x1000}], 0x1, 0x0) 16:24:42 executing program 2: pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) pipe2$9p(&(0x7f0000000000), 0x0) [ 1162.999910][T22505] not chained 410000 origins [ 1163.004534][T22505] CPU: 0 PID: 22505 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1163.013188][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1163.023312][T22505] Call Trace: [ 1163.026592][T22505] dump_stack+0x21c/0x280 [ 1163.030915][T22505] kmsan_internal_chain_origin+0x6f/0x130 [ 1163.036622][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1163.042427][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.047613][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1163.053409][T22505] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1163.059462][T22505] ? __wake_up+0x1fc/0x250 [ 1163.063867][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.069051][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1163.074843][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.080143][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1163.085768][T22505] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1163.091823][T22505] ? _copy_from_user+0x201/0x310 [ 1163.096757][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.101952][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.106880][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.111981][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.116912][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.121430][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.126633][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.131821][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1163.137441][T22505] ? __msan_poison_alloca+0xe9/0x110 [ 1163.142717][T22505] ? __sys_recvmmsg+0xb5/0x5f0 [ 1163.147472][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.152140][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1163.157934][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1163.163137][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.169201][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.175345][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.180549][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.185387][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.189894][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.196205][T22505] RIP: 0023:0xf7efe549 [ 1163.200262][T22505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1163.219960][T22505] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1163.228372][T22505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1163.236332][T22505] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1163.244291][T22505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1163.252262][T22505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1163.260225][T22505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1163.268187][T22505] Uninit was stored to memory at: [ 1163.273210][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.278932][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.283859][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.288954][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.293880][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.298369][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.303034][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.309084][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.315225][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.320408][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.325244][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.329735][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.336033][T22505] [ 1163.338339][T22505] Uninit was stored to memory at: [ 1163.343353][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.349059][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.353981][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.359077][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.363999][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.368488][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.373152][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.379219][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.385375][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.390557][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.395397][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.399886][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.406186][T22505] [ 1163.408494][T22505] Uninit was stored to memory at: [ 1163.413506][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.419215][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.424145][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.429242][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.434171][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.438686][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.443365][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.449419][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.455562][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.460749][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.465595][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.470095][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.476398][T22505] [ 1163.478709][T22505] Uninit was stored to memory at: [ 1163.483743][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.489452][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.494386][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.499486][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.504414][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.508905][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.513574][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.519634][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.525774][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.530958][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.535794][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.540285][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.546592][T22505] [ 1163.548924][T22505] Uninit was stored to memory at: [ 1163.553937][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.559644][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.564565][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.569672][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.574604][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.579094][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.583759][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.589836][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.595977][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.601163][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.605998][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.610490][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.616788][T22505] [ 1163.619095][T22505] Uninit was stored to memory at: [ 1163.624109][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.629832][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.634774][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.639882][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.644814][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.649305][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.653969][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.660123][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.666270][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.671462][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.676306][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.680802][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.687104][T22505] [ 1163.689412][T22505] Uninit was stored to memory at: [ 1163.694430][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1163.700137][T22505] __msan_chain_origin+0x57/0xa0 [ 1163.705061][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1163.710158][T22505] get_compat_msghdr+0x108/0x2b0 [ 1163.715086][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1163.719578][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1163.724245][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1163.730296][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1163.736436][T22505] __do_fast_syscall_32+0x129/0x180 [ 1163.741620][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1163.746456][T22505] do_SYSENTER_32+0x73/0x90 [ 1163.750946][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1163.757246][T22505] [ 1163.759555][T22505] Local variable ----msg_sys@do_recvmmsg created at: [ 1163.766213][T22505] do_recvmmsg+0xc2/0x22e0 [ 1163.770613][T22505] do_recvmmsg+0xc2/0x22e0 16:24:43 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x14}, 0x0) 16:24:43 executing program 5: r0 = gettid() perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0x0, 0xffffffffffffffff, 0x0) 16:24:43 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, @in={0x2, 0x0, @local}, @nl, @nl=@proc}) [ 1165.262499][T22505] not chained 420000 origins [ 1165.267115][T22505] CPU: 1 PID: 22505 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1165.275782][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1165.285836][T22505] Call Trace: [ 1165.289139][T22505] dump_stack+0x21c/0x280 [ 1165.293475][T22505] kmsan_internal_chain_origin+0x6f/0x130 [ 1165.299182][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1165.304973][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.310170][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1165.315986][T22505] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1165.322051][T22505] ? __wake_up+0x1fc/0x250 [ 1165.326464][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.331650][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1165.337440][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.342627][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1165.348249][T22505] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1165.354305][T22505] ? _copy_from_user+0x201/0x310 [ 1165.359228][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.364417][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.369356][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.374457][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.379393][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.383889][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.389081][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.394287][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1165.399907][T22505] ? __msan_poison_alloca+0xe9/0x110 [ 1165.405180][T22505] ? __sys_recvmmsg+0xb5/0x5f0 [ 1165.409931][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.414594][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1165.420385][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1165.425573][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.431629][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.437784][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.442976][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.447816][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.452394][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.458707][T22505] RIP: 0023:0xf7efe549 [ 1165.462851][T22505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1165.482457][T22505] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1165.490862][T22505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1165.498822][T22505] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1165.506783][T22505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1165.514741][T22505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1165.522701][T22505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1165.530658][T22505] Uninit was stored to memory at: [ 1165.535680][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.541389][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.546312][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.551406][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.556338][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.560829][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.565493][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.571545][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.577695][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.582877][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.587718][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.592207][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.598517][T22505] [ 1165.600848][T22505] Uninit was stored to memory at: [ 1165.605881][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.611596][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.616523][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.621623][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.626551][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.631040][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.635703][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.641756][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.647896][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.653095][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.657935][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.662430][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.668737][T22505] [ 1165.671051][T22505] Uninit was stored to memory at: [ 1165.676071][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.681779][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.686703][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.691810][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.696734][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.701223][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.705884][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.711935][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.718076][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.723259][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.728096][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.732597][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.738897][T22505] [ 1165.741207][T22505] Uninit was stored to memory at: [ 1165.746220][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.751927][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.756855][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.761950][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.766874][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.771362][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.776027][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.782082][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.788221][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.793407][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.798241][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.802738][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.809037][T22505] [ 1165.811344][T22505] Uninit was stored to memory at: [ 1165.816356][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.822063][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.826983][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.832165][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.837087][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.841580][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.846242][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.852295][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.858436][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.863621][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.868457][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.872949][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.879251][T22505] [ 1165.881560][T22505] Uninit was stored to memory at: [ 1165.886577][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.892282][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.897203][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.902298][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.907251][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.911740][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.916402][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.922468][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.928606][T22505] __do_fast_syscall_32+0x129/0x180 [ 1165.934048][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1165.938884][T22505] do_SYSENTER_32+0x73/0x90 [ 1165.943374][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1165.949760][T22505] [ 1165.952068][T22505] Uninit was stored to memory at: [ 1165.957083][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1165.962805][T22505] __msan_chain_origin+0x57/0xa0 [ 1165.967725][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1165.972826][T22505] get_compat_msghdr+0x108/0x2b0 [ 1165.977748][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1165.982237][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1165.986899][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1165.992954][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1165.999095][T22505] __do_fast_syscall_32+0x129/0x180 [ 1166.004292][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1166.009129][T22505] do_SYSENTER_32+0x73/0x90 [ 1166.013618][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1166.019917][T22505] [ 1166.022227][T22505] Local variable ----msg_sys@do_recvmmsg created at: [ 1166.028888][T22505] do_recvmmsg+0xc2/0x22e0 [ 1166.033292][T22505] do_recvmmsg+0xc2/0x22e0 [ 1166.470407][T22505] not chained 430000 origins [ 1166.475032][T22505] CPU: 0 PID: 22505 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1166.483714][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1166.493775][T22505] Call Trace: [ 1166.497086][T22505] dump_stack+0x21c/0x280 [ 1166.501423][T22505] kmsan_internal_chain_origin+0x6f/0x130 [ 1166.507151][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1166.512957][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.518156][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1166.523968][T22505] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1166.530041][T22505] ? __wake_up+0x1fc/0x250 [ 1166.534463][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.539664][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1166.545472][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.550673][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1166.556309][T22505] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1166.562382][T22505] ? _copy_from_user+0x201/0x310 [ 1166.567324][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.572525][T22505] __msan_chain_origin+0x57/0xa0 [ 1166.577468][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1166.582582][T22505] get_compat_msghdr+0x108/0x2b0 [ 1166.587527][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1166.592033][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.597240][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.602465][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1166.608103][T22505] ? __msan_poison_alloca+0xe9/0x110 [ 1166.613483][T22505] ? __sys_recvmmsg+0xb5/0x5f0 [ 1166.618252][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1166.622952][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1166.628759][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1166.633962][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1166.640185][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1166.646353][T22505] __do_fast_syscall_32+0x129/0x180 [ 1166.651562][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1166.656419][T22505] do_SYSENTER_32+0x73/0x90 [ 1166.660927][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1166.667256][T22505] RIP: 0023:0xf7efe549 [ 1166.671324][T22505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1166.690927][T22505] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1166.699343][T22505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1166.707317][T22505] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1166.715299][T22505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1166.723267][T22505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1166.731242][T22505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1166.739213][T22505] Uninit was stored to memory at: [ 1166.744247][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1166.749970][T22505] __msan_chain_origin+0x57/0xa0 [ 1166.754908][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1166.760021][T22505] get_compat_msghdr+0x108/0x2b0 [ 1166.764960][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1166.769463][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1166.774146][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1166.780212][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1166.786366][T22505] __do_fast_syscall_32+0x129/0x180 [ 1166.791571][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1166.796420][T22505] do_SYSENTER_32+0x73/0x90 [ 1166.800925][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1166.807236][T22505] [ 1166.809551][T22505] Uninit was stored to memory at: [ 1166.814580][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1166.820302][T22505] __msan_chain_origin+0x57/0xa0 [ 1166.825239][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1166.830347][T22505] get_compat_msghdr+0x108/0x2b0 [ 1166.835285][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1166.839787][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1166.844502][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1166.850569][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1166.857154][T22505] __do_fast_syscall_32+0x129/0x180 [ 1166.862355][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1166.867206][T22505] do_SYSENTER_32+0x73/0x90 [ 1166.871710][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1166.878020][T22505] [ 1166.880336][T22505] Uninit was stored to memory at: [ 1166.885364][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1166.891082][T22505] __msan_chain_origin+0x57/0xa0 [ 1166.896053][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1166.901163][T22505] get_compat_msghdr+0x108/0x2b0 [ 1166.906102][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1166.910639][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1166.915317][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1166.921382][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1166.927536][T22505] __do_fast_syscall_32+0x129/0x180 [ 1166.932730][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1166.937581][T22505] do_SYSENTER_32+0x73/0x90 [ 1166.942082][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1166.948395][T22505] [ 1166.950711][T22505] Uninit was stored to memory at: [ 1166.955740][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1166.961459][T22505] __msan_chain_origin+0x57/0xa0 [ 1166.966395][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1166.971505][T22505] get_compat_msghdr+0x108/0x2b0 [ 1166.976445][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1166.980982][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1166.985660][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1166.991725][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1166.997880][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.003076][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.007931][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.012437][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.018745][T22505] [ 1167.021063][T22505] Uninit was stored to memory at: [ 1167.026093][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1167.031818][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.036756][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.041862][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.046801][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.051309][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.055985][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.062081][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.068240][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.073437][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.078301][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.082808][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.089125][T22505] [ 1167.091440][T22505] Uninit was stored to memory at: [ 1167.096466][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1167.102189][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.107130][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.112237][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.117174][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.121697][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.126634][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.132699][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.138854][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.144051][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.148902][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.153403][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.159716][T22505] [ 1167.162033][T22505] Uninit was stored to memory at: [ 1167.167149][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1167.172869][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.177807][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.182911][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.187848][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.192352][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.197029][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.203095][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.209256][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.214455][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.219308][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.223812][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.230127][T22505] [ 1167.232445][T22505] Local variable ----msg_sys@do_recvmmsg created at: [ 1167.239123][T22505] do_recvmmsg+0xc2/0x22e0 [ 1167.243536][T22505] do_recvmmsg+0xc2/0x22e0 [ 1167.593648][T22505] not chained 440000 origins [ 1167.598275][T22505] CPU: 0 PID: 22505 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1167.606977][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1167.617045][T22505] Call Trace: [ 1167.620316][T22505] dump_stack+0x21c/0x280 [ 1167.624642][T22505] kmsan_internal_chain_origin+0x6f/0x130 [ 1167.630362][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1167.636165][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.641358][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1167.647146][T22505] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1167.653219][T22505] ? __wake_up+0x1fc/0x250 [ 1167.657651][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.662825][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1167.668643][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.673858][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1167.679482][T22505] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1167.685543][T22505] ? _copy_from_user+0x201/0x310 [ 1167.690467][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.695643][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.700558][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.705664][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.710582][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.715062][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.720251][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.725457][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1167.731079][T22505] ? __msan_poison_alloca+0xe9/0x110 [ 1167.736358][T22505] ? __sys_recvmmsg+0xb5/0x5f0 [ 1167.741108][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.745774][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1167.751565][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1167.756754][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.762799][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.768952][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.774132][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.778972][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.783462][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.789774][T22505] RIP: 0023:0xf7efe549 [ 1167.793839][T22505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1167.813448][T22505] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1167.821849][T22505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1167.829800][T22505] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1167.837756][T22505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1167.845717][T22505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1167.853675][T22505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1167.861642][T22505] Uninit was stored to memory at: [ 1167.866666][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1167.872374][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.877286][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.882371][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.887287][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.891783][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.896434][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.902474][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.908605][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.913779][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.918604][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.923143][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1167.929447][T22505] [ 1167.931747][T22505] Uninit was stored to memory at: [ 1167.936770][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1167.942469][T22505] __msan_chain_origin+0x57/0xa0 [ 1167.947385][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1167.952472][T22505] get_compat_msghdr+0x108/0x2b0 [ 1167.957387][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1167.961864][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1167.966535][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1167.973557][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1167.979697][T22505] __do_fast_syscall_32+0x129/0x180 [ 1167.984884][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1167.989720][T22505] do_SYSENTER_32+0x73/0x90 [ 1167.994202][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.000498][T22505] [ 1168.002810][T22505] Uninit was stored to memory at: [ 1168.007833][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.013541][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.018462][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.023555][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.028478][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.033025][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.037688][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.043745][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.049891][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.055067][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.059891][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.064382][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.070686][T22505] [ 1168.072992][T22505] Uninit was stored to memory at: [ 1168.078004][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.083710][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.088637][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.093733][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.098664][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.103157][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.107823][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.113868][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.119995][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.125187][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.130028][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.134506][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.140812][T22505] [ 1168.143117][T22505] Uninit was stored to memory at: [ 1168.148145][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.153866][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.158805][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.163900][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.168824][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.173319][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.177999][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.184053][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.190195][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.195374][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.200217][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.204708][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.211011][T22505] [ 1168.213316][T22505] Uninit was stored to memory at: [ 1168.218331][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.224039][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.228965][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.234052][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.238977][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.243466][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.248139][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.254236][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.260367][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.265551][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.270495][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.274987][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.281297][T22505] [ 1168.283602][T22505] Uninit was stored to memory at: [ 1168.288617][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.294325][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.299247][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.304343][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.309283][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.313763][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.318414][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.324468][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.330626][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.335819][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.340643][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.345136][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.351452][T22505] [ 1168.353773][T22505] Local variable ----msg_sys@do_recvmmsg created at: [ 1168.360438][T22505] do_recvmmsg+0xc2/0x22e0 [ 1168.364831][T22505] do_recvmmsg+0xc2/0x22e0 [ 1168.665987][T22505] not chained 450000 origins [ 1168.670623][T22505] CPU: 0 PID: 22505 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1168.679291][T22505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1168.689341][T22505] Call Trace: [ 1168.692639][T22505] dump_stack+0x21c/0x280 [ 1168.696983][T22505] kmsan_internal_chain_origin+0x6f/0x130 [ 1168.702706][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1168.708597][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.713887][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1168.719698][T22505] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1168.725772][T22505] ? __wake_up+0x1fc/0x250 [ 1168.730227][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.735420][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1168.741215][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.746393][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1168.752030][T22505] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1168.758080][T22505] ? _copy_from_user+0x201/0x310 [ 1168.763006][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.768194][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.773120][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.778226][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.783156][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.787657][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.792848][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.798026][T22505] ? kmsan_internal_set_origin+0x85/0xc0 [ 1168.803644][T22505] ? __msan_poison_alloca+0xe9/0x110 [ 1168.808904][T22505] ? __sys_recvmmsg+0xb5/0x5f0 [ 1168.813657][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.818322][T22505] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1168.824103][T22505] ? kmsan_get_metadata+0x116/0x180 [ 1168.829287][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.835345][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.841488][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.846678][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.851523][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.856028][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1168.862335][T22505] RIP: 0023:0xf7efe549 [ 1168.866392][T22505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1168.885980][T22505] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1168.894395][T22505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1168.902367][T22505] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1168.910318][T22505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1168.918282][T22505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1168.926320][T22505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1168.934276][T22505] Uninit was stored to memory at: [ 1168.939297][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1168.944994][T22505] __msan_chain_origin+0x57/0xa0 [ 1168.949904][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1168.955003][T22505] get_compat_msghdr+0x108/0x2b0 [ 1168.959928][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1168.964416][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1168.969081][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1168.975135][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1168.981279][T22505] __do_fast_syscall_32+0x129/0x180 [ 1168.986475][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1168.991300][T22505] do_SYSENTER_32+0x73/0x90 [ 1168.995810][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.002113][T22505] [ 1169.004413][T22505] Uninit was stored to memory at: [ 1169.009428][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.015136][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.020067][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.025153][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.030064][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.034561][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.039222][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.045263][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.051389][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.056564][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.061410][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.065900][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.072207][T22505] [ 1169.074525][T22505] Uninit was stored to memory at: [ 1169.079550][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.085246][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.090155][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.095249][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.100185][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.104676][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.109324][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.115376][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.121516][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.126693][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.131535][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.136028][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.142319][T22505] [ 1169.144619][T22505] Uninit was stored to memory at: [ 1169.149641][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.155346][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.160270][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.165354][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.170281][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.174792][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.179466][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.185519][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.191652][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.196843][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.201667][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.206147][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.212549][T22505] [ 1169.214869][T22505] Uninit was stored to memory at: [ 1169.219899][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.225595][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.230507][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.235601][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.240525][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.245021][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.249684][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.255734][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.261893][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.267070][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.271903][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.276398][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.282690][T22505] [ 1169.284993][T22505] Uninit was stored to memory at: [ 1169.290027][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.295737][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.300660][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.305745][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.310656][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.315320][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.319984][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.326048][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.332175][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.337348][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.342173][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.346651][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.352944][T22505] [ 1169.355257][T22505] Uninit was stored to memory at: [ 1169.360272][T22505] kmsan_internal_chain_origin+0xad/0x130 [ 1169.365968][T22505] __msan_chain_origin+0x57/0xa0 [ 1169.370893][T22505] __get_compat_msghdr+0x6db/0x9d0 [ 1169.375999][T22505] get_compat_msghdr+0x108/0x2b0 [ 1169.380924][T22505] do_recvmmsg+0xdc7/0x22e0 [ 1169.385415][T22505] __sys_recvmmsg+0x340/0x5f0 [ 1169.390078][T22505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1169.396132][T22505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1169.402273][T22505] __do_fast_syscall_32+0x129/0x180 [ 1169.407447][T22505] do_fast_syscall_32+0x6a/0xc0 [ 1169.412269][T22505] do_SYSENTER_32+0x73/0x90 [ 1169.416765][T22505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1169.423062][T22505] [ 1169.425374][T22505] Local variable ----msg_sys@do_recvmmsg created at: [ 1169.432022][T22505] do_recvmmsg+0xc2/0x22e0 [ 1169.436414][T22505] do_recvmmsg+0xc2/0x22e0 16:24:49 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:24:49 executing program 2: socketpair(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000006c0)={&(0x7f0000000500), 0xc, &(0x7f0000000680)={&(0x7f0000000700)=ANY=[], 0xd8}}, 0x0) 16:24:49 executing program 5: setitimer(0x2, &(0x7f0000000000)={{}, {0x0, 0x2710}}, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) setitimer(0x1, &(0x7f0000000080)={{0x0, 0xea60}, {0x0, r0/1000+60000}}, 0x0) 16:24:49 executing program 3: perf_event_open(&(0x7f0000002180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:24:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x15}, 0x0) 16:24:49 executing program 1: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) wait4(r1, 0x0, 0x0, 0x0) 16:24:49 executing program 3: shmget(0x3, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil) 16:24:49 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) getpeername(r0, &(0x7f00000014c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f0000000240)=0x80) ioctl$sock_inet6_udp_SIOCOUTQ(r1, 0x5411, 0x0) 16:24:49 executing program 5: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x82801) write$FUSE_INIT(r0, &(0x7f0000000000)={0x50}, 0x50) 16:24:49 executing program 2: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 16:24:49 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x16}, 0x0) 16:24:50 executing program 3: bpf$MAP_CREATE(0x0, 0xffffffffffffffff, 0x24) 16:24:50 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:24:50 executing program 1: setitimer(0x1, 0x0, &(0x7f0000006680)) 16:24:50 executing program 5: openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x888c1, 0x0) open$dir(&(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0) 16:24:50 executing program 2: openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x4cd06fcc4c2963ea, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0) 16:24:50 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x17}, 0x0) [ 1171.273895][T22570] syz-executor.1 calls setitimer() with new_value NULL pointer. Misfeature support will be removed 16:24:50 executing program 3: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) 16:24:51 executing program 2: clock_adjtime(0x0, &(0x7f0000000400)) 16:24:51 executing program 5: r0 = gettid() sched_rr_get_interval(r0, &(0x7f0000000140)) 16:24:51 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080), 0x4) 16:24:51 executing program 3: perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1e) 16:24:51 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x18}, 0x0) 16:24:51 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x607) 16:24:52 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:24:52 executing program 5: perf_event_open(&(0x7f0000000080)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x4, 0xffffffffffffffff, 0x4) 16:24:52 executing program 1: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:24:52 executing program 3: openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/partitions\x00', 0x0, 0x0) 16:24:52 executing program 2: syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x9, 0x40) 16:24:52 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x19}, 0x0) 16:24:52 executing program 5: mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000000000), 0x7ff, 0x0) 16:24:52 executing program 1: clock_nanosleep(0x7, 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0) 16:24:52 executing program 3: perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:24:52 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f13000)={0xa, 0x4e22}, 0x1c) r1 = dup(r0) setsockopt$inet6_udp_encap(r1, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4) syz_emit_ethernet(0x2a, &(0x7f00000001c0)={@broadcast, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e22, 0x8}}}}}, 0x0) 16:24:52 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x94, 0x0, 0x0, 0xb2}]}) 16:24:53 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:24:53 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:24:53 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1a}, 0x0) 16:24:53 executing program 3: timer_create(0x0, &(0x7f0000000000), 0x0) clone(0x13102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0x0) r0 = memfd_create(&(0x7f0000000540)='\x97&\x89\\\xd0\xe7\xca\x16ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86Xe\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\xe5j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x80dX\xcc\xab\x84\xd1\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2L\xf0\xaf\xe1jd\xda\x1f\x8bVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU\".\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf\x00\x00', 0x0) fcntl$setlease(r0, 0x400, 0x1) fcntl$setown(r0, 0x8, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(r1, r2, 0x0, 0xd8c4) 16:24:53 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000004c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x0, 0x7, 0x0, "98d3340600c7aa11897ecaab876eab79576839c5656be8410f2802e944af80373be2666b665770173fbd1883303b6ac4749393ad08f139a68f00"}, 0xd8) bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[@ANYRESHEX], 0xc63b9e35) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) 16:24:53 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000003740)=ANY=[@ANYBLOB="1c010000160001000000000000000000e0000001000000e34f00000000000000ffffffff00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000e82c86ed0000006c"], 0x11c}}, 0x0) [ 1174.027110][T22627] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1174.119434][T22628] ERROR: Domain ' /sbin/init /usr/sbin/sshd /usr/sbin/sshd /bin/bash /root/syz-fuzzer /root/syz-executor.3 proc:/self/fd/3' not defined. [ 1174.409700][T22641] not chained 460000 origins [ 1174.414322][T22641] CPU: 1 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1174.423001][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1174.433053][T22641] Call Trace: [ 1174.436355][T22641] dump_stack+0x21c/0x280 [ 1174.440703][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1174.446434][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1174.452254][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.457482][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1174.463300][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1174.469376][T22641] ? __wake_up+0x1fc/0x250 [ 1174.473792][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.479093][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1174.484899][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.490091][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1174.495718][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1174.501782][T22641] ? _copy_from_user+0x201/0x310 [ 1174.506712][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.511903][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.516834][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.521937][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.526868][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.531375][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.536565][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1174.542189][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1174.547463][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1174.552214][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.556908][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1174.562702][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1174.567889][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.573947][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1174.580087][T22641] __do_fast_syscall_32+0x129/0x180 [ 1174.585286][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1174.590124][T22641] do_SYSENTER_32+0x73/0x90 [ 1174.594624][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1174.600943][T22641] RIP: 0023:0xf7efe549 [ 1174.604999][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1174.624604][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1174.633010][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1174.640968][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1174.648925][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1174.656899][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1174.664865][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1174.672823][T22641] Uninit was stored to memory at: [ 1174.677842][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1174.683550][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.688474][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.693572][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.698507][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.703002][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.707668][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.713719][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1174.719863][T22641] __do_fast_syscall_32+0x129/0x180 [ 1174.725047][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1174.729884][T22641] do_SYSENTER_32+0x73/0x90 [ 1174.734375][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1174.740674][T22641] [ 1174.742990][T22641] Uninit was stored to memory at: [ 1174.748006][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1174.753722][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.758646][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.763739][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.768663][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.773151][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.777813][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.783864][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1174.790004][T22641] __do_fast_syscall_32+0x129/0x180 [ 1174.795187][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1174.800035][T22641] do_SYSENTER_32+0x73/0x90 [ 1174.804525][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1174.810827][T22641] [ 1174.813135][T22641] Uninit was stored to memory at: [ 1174.818236][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1174.823951][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.828872][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.833966][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.838892][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.843381][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.848052][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.854363][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1174.860501][T22641] __do_fast_syscall_32+0x129/0x180 [ 1174.865695][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1174.870533][T22641] do_SYSENTER_32+0x73/0x90 [ 1174.875030][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1174.881328][T22641] [ 1174.883633][T22641] Uninit was stored to memory at: [ 1174.888644][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1174.894350][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.899271][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.904364][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.909303][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.913791][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.918452][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.924506][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1174.930647][T22641] __do_fast_syscall_32+0x129/0x180 [ 1174.935830][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1174.940666][T22641] do_SYSENTER_32+0x73/0x90 [ 1174.945157][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1174.951456][T22641] [ 1174.953761][T22641] Uninit was stored to memory at: [ 1174.958792][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1174.964497][T22641] __msan_chain_origin+0x57/0xa0 [ 1174.970374][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1174.975468][T22641] get_compat_msghdr+0x108/0x2b0 [ 1174.980390][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1174.984878][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1174.989540][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1174.995595][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1175.001732][T22641] __do_fast_syscall_32+0x129/0x180 [ 1175.006916][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1175.011755][T22641] do_SYSENTER_32+0x73/0x90 [ 1175.016244][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1175.022544][T22641] [ 1175.024849][T22641] Uninit was stored to memory at: [ 1175.029861][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1175.035567][T22641] __msan_chain_origin+0x57/0xa0 [ 1175.040489][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1175.045583][T22641] get_compat_msghdr+0x108/0x2b0 [ 1175.050508][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1175.054995][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1175.059657][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1175.065716][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1175.071854][T22641] __do_fast_syscall_32+0x129/0x180 [ 1175.077035][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1175.081869][T22641] do_SYSENTER_32+0x73/0x90 [ 1175.086358][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1175.092659][T22641] [ 1175.094964][T22641] Uninit was stored to memory at: [ 1175.099980][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1175.105685][T22641] __msan_chain_origin+0x57/0xa0 [ 1175.110607][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1175.115700][T22641] get_compat_msghdr+0x108/0x2b0 [ 1175.120624][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1175.125113][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1175.129774][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1175.135828][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1175.142226][T22641] __do_fast_syscall_32+0x129/0x180 [ 1175.147410][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1175.152244][T22641] do_SYSENTER_32+0x73/0x90 [ 1175.156732][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 16:24:54 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1b}, 0x0) [ 1175.163032][T22641] [ 1175.165340][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1175.171997][T22641] do_recvmmsg+0xc2/0x22e0 [ 1175.176400][T22641] do_recvmmsg+0xc2/0x22e0 16:24:54 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:24:54 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:24:54 executing program 2: prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10') openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') writev(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='clear_refs\x00') writev(r1, &(0x7f0000000480)=[{&(0x7f0000000000)='+4', 0x2}, {&(0x7f0000000380)="57aba08e43068437b5addec8674c9148e4395860db0b44839e5a870345a47068d07db06b6246fbffbf5ebadf39fedc8d09b0832614e8e0df441d0dd75d1ac8f6727498c5c09f30b59548c6fcfdf2c66535ca59e0f669baffb7cb2a4ac927049da33948d85fc4bd", 0x67}, {&(0x7f0000000400)="0aa28867eb23e369e7787e110a0a91c79daded957dfda2c1053627be0e47f5551fbc59740d6cd2bd2b49a2e6ed1ff9a7105bd6b1ae4a2903c7ec0e514ea4576b74457347cb", 0x45}, {&(0x7f0000000240)="22c3062012ca378dae4d19353d73ae18b07a7a06f1f022d43f81650071746b99b3a427", 0x23}], 0x4) r2 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x145042, 0x0) prctl$PR_GET_KEEPCAPS(0x7) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4411}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000300)='fd/3\x00') openat$hwrng(0xffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x10040, 0x0) pipe2(&(0x7f0000000180), 0x84000) openat(r1, &(0x7f0000000200)='./file0\x00', 0x1156c0, 0x30) ioctl$UI_SET_KEYBIT(r3, 0x40045565, 0x3b) sendmsg$BATADV_CMD_SET_HARDIF(r3, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="1ccd0000", @ANYRES16=0x0, @ANYBLOB="200028b97000fddbdffb38fc7644b1024102b64af3beefbc251000000008003900080000006fe7e151f1c59e7c248e515acaf17ebbecec2679e53b9475c8c84ec7f4025c842173ef63d5f681ab68fd4789177bb1d0813d2fb27e20b228c02bab4f434430dab7d62a423dd1d10bd78bbbf0d5014e2d24917fa7a8e89464764c94be002ad9b3deebe23fbad22559080f37ec6dfaa33adfba43b8b96b19f749401ba6a2f4586e3692ca2fd3"], 0x1c}, 0x1, 0x0, 0x0, 0x4008014}, 0x20000000) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='oom_score_adj\x00') lseek(r4, 0xfffffffffffffffc, 0x4) sendfile(r2, r2, 0x0, 0xffffffff) 16:24:55 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000001580)=ANY=[@ANYBLOB="50000000140001000000000000000000e0000001000000000000000000000000fe88000000000000000000000000000100"/62, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00('], 0x50}}, 0x0) [ 1176.350234][T22657] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1176.419197][T22663] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:24:56 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80}, {}, {}, 0x0, 0x0, 0x1}, {{}, 0x0, @in6=@ipv4={[], [], @local}}}, 0xe4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 16:24:56 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1176.949785][T22677] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 1177.048472][T22679] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1177.578981][T22641] not chained 470000 origins [ 1177.583607][T22641] CPU: 0 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1177.592272][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1177.602323][T22641] Call Trace: [ 1177.605622][T22641] dump_stack+0x21c/0x280 [ 1177.609960][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1177.615681][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1177.621490][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.626692][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1177.632506][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1177.638600][T22641] ? __wake_up+0x1fc/0x250 [ 1177.643015][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.648218][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1177.654029][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.659653][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1177.665472][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1177.671550][T22641] ? _copy_from_user+0x201/0x310 [ 1177.676489][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.681693][T22641] __msan_chain_origin+0x57/0xa0 [ 1177.686635][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1177.692184][T22641] get_compat_msghdr+0x108/0x2b0 [ 1177.697130][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1177.701645][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.706853][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1177.712488][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1177.717779][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1177.722560][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1177.727246][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1177.733063][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1177.738265][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1177.744352][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1177.750512][T22641] __do_fast_syscall_32+0x129/0x180 [ 1177.755718][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1177.760571][T22641] do_SYSENTER_32+0x73/0x90 [ 1177.765079][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1177.771403][T22641] RIP: 0023:0xf7efe549 [ 1177.775478][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1177.795087][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1177.803506][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1177.811479][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1177.819451][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1177.827423][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1177.835397][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1177.843371][T22641] Uninit was stored to memory at: [ 1177.848409][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1177.854138][T22641] __msan_chain_origin+0x57/0xa0 [ 1177.859077][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1177.864188][T22641] get_compat_msghdr+0x108/0x2b0 [ 1177.869129][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1177.873633][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1177.878313][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1177.884385][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1177.890539][T22641] __do_fast_syscall_32+0x129/0x180 [ 1177.895741][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1177.900592][T22641] do_SYSENTER_32+0x73/0x90 [ 1177.905095][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1177.911407][T22641] [ 1177.913727][T22641] Uninit was stored to memory at: [ 1177.918759][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1177.924485][T22641] __msan_chain_origin+0x57/0xa0 [ 1177.929424][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1177.934537][T22641] get_compat_msghdr+0x108/0x2b0 [ 1177.939476][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1177.943983][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1177.948661][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1177.954729][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1177.960885][T22641] __do_fast_syscall_32+0x129/0x180 [ 1177.966083][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1177.970934][T22641] do_SYSENTER_32+0x73/0x90 [ 1177.975441][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1177.981751][T22641] [ 1177.984070][T22641] Uninit was stored to memory at: [ 1177.989099][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1177.994822][T22641] __msan_chain_origin+0x57/0xa0 [ 1177.999759][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.004873][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.009811][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.014319][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.018998][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.025075][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.031236][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.036441][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.041302][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.045810][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.052122][T22641] [ 1178.054447][T22641] Uninit was stored to memory at: [ 1178.059477][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.065201][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.070164][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.075278][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.080226][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.084734][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.089411][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.095658][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.101815][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.107010][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.111888][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.116391][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.122700][T22641] [ 1178.125022][T22641] Uninit was stored to memory at: [ 1178.130059][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.136000][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.140931][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.146097][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.151009][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.155488][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.160141][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.166183][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.172375][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.177550][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.182379][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.186859][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.193158][T22641] [ 1178.195484][T22641] Uninit was stored to memory at: [ 1178.200511][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.206212][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.211128][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.216238][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.221176][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.225711][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.230371][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.236424][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.242568][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.247750][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.252584][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.257065][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.263378][T22641] [ 1178.265679][T22641] Uninit was stored to memory at: [ 1178.270682][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.276378][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.281292][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.286383][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.291343][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.295825][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.300481][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.306527][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.312691][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.317864][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.322691][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.327173][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.333471][T22641] [ 1178.335777][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1178.342435][T22641] do_recvmmsg+0xc2/0x22e0 [ 1178.346841][T22641] do_recvmmsg+0xc2/0x22e0 [ 1178.648400][T22641] not chained 480000 origins [ 1178.653044][T22641] CPU: 1 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1178.661707][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1178.671757][T22641] Call Trace: [ 1178.675053][T22641] dump_stack+0x21c/0x280 [ 1178.679416][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1178.685139][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1178.690971][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.696196][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1178.702008][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1178.708076][T22641] ? __wake_up+0x1fc/0x250 [ 1178.712495][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.717684][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1178.723496][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.728684][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1178.734292][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1178.740338][T22641] ? _copy_from_user+0x201/0x310 [ 1178.745250][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.750435][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.755348][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.760467][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.765393][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.769877][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.775049][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1178.780659][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1178.785918][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1178.790668][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.795336][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1178.801130][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1178.806307][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.812350][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.818480][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.823666][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.828492][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.832986][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.839308][T22641] RIP: 0023:0xf7efe549 [ 1178.843364][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1178.863115][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1178.871514][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1178.879462][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1178.887408][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1178.895355][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1178.903306][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1178.911254][T22641] Uninit was stored to memory at: [ 1178.916273][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.921967][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.926879][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1178.931961][T22641] get_compat_msghdr+0x108/0x2b0 [ 1178.936902][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1178.941392][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1178.946049][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1178.952101][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1178.958279][T22641] __do_fast_syscall_32+0x129/0x180 [ 1178.963464][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1178.968301][T22641] do_SYSENTER_32+0x73/0x90 [ 1178.972792][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1178.979088][T22641] [ 1178.981390][T22641] Uninit was stored to memory at: [ 1178.986414][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1178.992115][T22641] __msan_chain_origin+0x57/0xa0 [ 1178.997028][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.002141][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.007058][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.011545][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.016210][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.022261][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.028404][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.033582][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.038418][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.042906][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.049196][T22641] [ 1179.051495][T22641] Uninit was stored to memory at: [ 1179.056495][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.062197][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.067119][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.072201][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.077123][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.081601][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.086426][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.092486][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.098613][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.103793][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.108642][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.113120][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.119422][T22641] [ 1179.121730][T22641] Uninit was stored to memory at: [ 1179.126731][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.132422][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.137334][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.142502][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.147417][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.151902][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.156554][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.162594][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.168733][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.173905][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.178731][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.183208][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.189498][T22641] [ 1179.191794][T22641] Uninit was stored to memory at: [ 1179.196804][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.202496][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.207433][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.212518][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.217446][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.221934][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.226589][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.232630][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.238766][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.243942][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.248777][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.253258][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.259550][T22641] [ 1179.261846][T22641] Uninit was stored to memory at: [ 1179.266846][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.272550][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.277461][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.282544][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.287543][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.292018][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.296680][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.302720][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.308855][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.314028][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.318851][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.323341][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.329642][T22641] [ 1179.331940][T22641] Uninit was stored to memory at: [ 1179.336941][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.342643][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.347559][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.352644][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.357561][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.362051][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.366703][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.372744][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.378901][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.384073][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.388896][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.393374][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.399665][T22641] [ 1179.401974][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1179.408631][T22641] do_recvmmsg+0xc2/0x22e0 [ 1179.413045][T22641] do_recvmmsg+0xc2/0x22e0 [ 1179.697306][T22641] not chained 490000 origins [ 1179.701933][T22641] CPU: 1 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1179.710594][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1179.720641][T22641] Call Trace: [ 1179.723934][T22641] dump_stack+0x21c/0x280 [ 1179.728267][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1179.734005][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1179.739807][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.745002][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1179.750809][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1179.756873][T22641] ? __wake_up+0x1fc/0x250 [ 1179.761295][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.766494][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1179.772291][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.777466][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1179.783084][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1179.789128][T22641] ? _copy_from_user+0x201/0x310 [ 1179.794047][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.799219][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.804133][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.809219][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.814135][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.818631][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.823839][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1179.829496][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1179.834758][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1179.839497][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.844148][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1179.849924][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1179.855096][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1179.861147][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1179.867277][T22641] __do_fast_syscall_32+0x129/0x180 [ 1179.872449][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1179.877282][T22641] do_SYSENTER_32+0x73/0x90 [ 1179.881761][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1179.888058][T22641] RIP: 0023:0xf7efe549 [ 1179.892102][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1179.911682][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1179.920071][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1179.928046][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1179.935992][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1179.943937][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1179.951880][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1179.959826][T22641] Uninit was stored to memory at: [ 1179.964832][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1179.970525][T22641] __msan_chain_origin+0x57/0xa0 [ 1179.975435][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1179.980518][T22641] get_compat_msghdr+0x108/0x2b0 [ 1179.985431][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1179.989905][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1179.994559][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.000599][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.006726][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.011895][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.016719][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.021207][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.027598][T22641] [ 1180.029899][T22641] Uninit was stored to memory at: [ 1180.034950][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.040651][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.045565][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.050646][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.055569][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.060047][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.064710][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.070751][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.076879][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.082062][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.086897][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.091373][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.097667][T22641] [ 1180.099966][T22641] Uninit was stored to memory at: [ 1180.104964][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.110665][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.115575][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.120658][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.125594][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.130261][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.134913][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.140956][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.147084][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.152255][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.157091][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.161571][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.167868][T22641] [ 1180.170168][T22641] Uninit was stored to memory at: [ 1180.175172][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.180869][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.185786][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.190881][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.195797][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.200278][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.204930][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.210973][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.217102][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.222273][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.227097][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.231583][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.237878][T22641] [ 1180.240179][T22641] Uninit was stored to memory at: [ 1180.245181][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.250873][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.255804][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.260887][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.265801][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.270279][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.274929][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.280967][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.287094][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.292277][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.297100][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.301579][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.307870][T22641] [ 1180.310168][T22641] Uninit was stored to memory at: [ 1180.315165][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.320870][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.325780][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.330872][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.335822][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.340311][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.344976][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.351362][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.357490][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.362671][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.367517][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.371999][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.378296][T22641] [ 1180.380595][T22641] Uninit was stored to memory at: [ 1180.385594][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1180.391371][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.396888][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.401983][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.406894][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.411370][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.416020][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.422059][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.428188][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.433368][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.438205][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.442683][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.448974][T22641] [ 1180.451274][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1180.457933][T22641] do_recvmmsg+0xc2/0x22e0 [ 1180.462342][T22641] do_recvmmsg+0xc2/0x22e0 [ 1180.727259][T22641] not chained 500000 origins [ 1180.731892][T22641] CPU: 1 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1180.740559][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1180.750611][T22641] Call Trace: [ 1180.753919][T22641] dump_stack+0x21c/0x280 [ 1180.758519][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1180.764240][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1180.770047][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.775245][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1180.781063][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1180.787128][T22641] ? __wake_up+0x1fc/0x250 [ 1180.791545][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.796744][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1180.802549][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.807752][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1180.813387][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1180.819456][T22641] ? _copy_from_user+0x201/0x310 [ 1180.824396][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.829626][T22641] __msan_chain_origin+0x57/0xa0 [ 1180.834559][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1180.839650][T22641] get_compat_msghdr+0x108/0x2b0 [ 1180.844582][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1180.849115][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.854292][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1180.859915][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1180.865179][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1180.869942][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1180.874595][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1180.880433][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1180.885608][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1180.891689][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1180.897819][T22641] __do_fast_syscall_32+0x129/0x180 [ 1180.903033][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1180.907906][T22641] do_SYSENTER_32+0x73/0x90 [ 1180.912395][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1180.918696][T22641] RIP: 0023:0xf7efe549 [ 1180.922741][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1180.942319][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1180.950708][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1180.958670][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1180.966615][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1180.974559][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1180.982515][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1180.990480][T22641] Uninit was stored to memory at: [ 1180.995497][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.001196][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.006108][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.011189][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.016101][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.020592][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.025245][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.031283][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.037411][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.042585][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.047425][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.051921][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.058215][T22641] [ 1181.060531][T22641] Uninit was stored to memory at: [ 1181.065537][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.071239][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.076163][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.081247][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.086160][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.090636][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.095287][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.101333][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.107460][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.112631][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.117469][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.121946][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.128236][T22641] [ 1181.130535][T22641] Uninit was stored to memory at: [ 1181.135536][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.141229][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.146140][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.151237][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.156163][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.160643][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.165309][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.171347][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.177477][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.182734][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.187558][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.192033][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.198325][T22641] [ 1181.200624][T22641] Uninit was stored to memory at: [ 1181.205625][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.211328][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.216238][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.221322][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.226235][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.230711][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.235362][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.241407][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.247540][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.252725][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.257581][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.262069][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.268363][T22641] [ 1181.270663][T22641] Uninit was stored to memory at: [ 1181.275663][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.281356][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.286266][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.291351][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.296263][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.300739][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.305390][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.311429][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.317566][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.322737][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.327561][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.332036][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.338327][T22641] [ 1181.340624][T22641] Uninit was stored to memory at: [ 1181.345632][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.351325][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.356251][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.361349][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.366274][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.370751][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.375402][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.381442][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.387692][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.392865][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.397690][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.402178][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.408470][T22641] [ 1181.410769][T22641] Uninit was stored to memory at: [ 1181.415770][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1181.421464][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.426375][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.431458][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.436371][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.440846][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.445497][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.451538][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.457679][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.462869][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.467709][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.472184][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.478474][T22641] [ 1181.480785][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1181.487434][T22641] do_recvmmsg+0xc2/0x22e0 [ 1181.491837][T22641] do_recvmmsg+0xc2/0x22e0 [ 1181.770689][T22641] not chained 510000 origins [ 1181.775316][T22641] CPU: 1 PID: 22641 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1181.783978][T22641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1181.794025][T22641] Call Trace: [ 1181.797319][T22641] dump_stack+0x21c/0x280 [ 1181.801658][T22641] kmsan_internal_chain_origin+0x6f/0x130 [ 1181.807374][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1181.813176][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.818460][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1181.824268][T22641] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1181.830337][T22641] ? __wake_up+0x1fc/0x250 [ 1181.834754][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.839946][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1181.845750][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.850950][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1181.856585][T22641] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1181.862655][T22641] ? _copy_from_user+0x201/0x310 [ 1181.867596][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.872787][T22641] __msan_chain_origin+0x57/0xa0 [ 1181.877734][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1181.882826][T22641] get_compat_msghdr+0x108/0x2b0 [ 1181.887740][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1181.892222][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.897404][T22641] ? kmsan_internal_set_origin+0x85/0xc0 [ 1181.903022][T22641] ? __msan_poison_alloca+0xe9/0x110 [ 1181.908305][T22641] ? __sys_recvmmsg+0xb5/0x5f0 [ 1181.913053][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1181.917706][T22641] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1181.923500][T22641] ? kmsan_get_metadata+0x116/0x180 [ 1181.928673][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1181.934726][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1181.940853][T22641] __do_fast_syscall_32+0x129/0x180 [ 1181.946033][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1181.950868][T22641] do_SYSENTER_32+0x73/0x90 [ 1181.955360][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1181.961656][T22641] RIP: 0023:0xf7efe549 [ 1181.965716][T22641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1181.985302][T22641] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1181.993700][T22641] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1182.001644][T22641] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1182.009588][T22641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1182.017551][T22641] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1182.025495][T22641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1182.033440][T22641] Uninit was stored to memory at: [ 1182.038451][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.044143][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.049074][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.054252][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.059161][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.063638][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.068300][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.074346][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.080474][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.085648][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.090470][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.094961][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.101251][T22641] [ 1182.103565][T22641] Uninit was stored to memory at: [ 1182.108564][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.114259][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.119168][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.124251][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.129162][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.133639][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.138294][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.144332][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.150457][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.155627][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.160449][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.164925][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.171215][T22641] [ 1182.173517][T22641] Uninit was stored to memory at: [ 1182.178532][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.184242][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.189163][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.194258][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.199170][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.203648][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.208300][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.214352][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.220478][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.225658][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.230481][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.234960][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.241264][T22641] [ 1182.243566][T22641] Uninit was stored to memory at: [ 1182.248566][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.254260][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.259175][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.264260][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.269182][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.273661][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.278317][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.284377][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.290522][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.295695][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.300518][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.305001][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.311307][T22641] [ 1182.313613][T22641] Uninit was stored to memory at: [ 1182.318617][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.324322][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.329242][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.334327][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.339236][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.343718][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.348379][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.354418][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.360544][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.365716][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.370539][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.375016][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.381311][T22641] [ 1182.383633][T22641] Uninit was stored to memory at: [ 1182.388644][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.394337][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.399246][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.404330][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.409252][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.413729][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.418378][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.424417][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.430542][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.435724][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.440557][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.445034][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.451674][T22641] [ 1182.453972][T22641] Uninit was stored to memory at: [ 1182.458972][T22641] kmsan_internal_chain_origin+0xad/0x130 [ 1182.464678][T22641] __msan_chain_origin+0x57/0xa0 [ 1182.469606][T22641] __get_compat_msghdr+0x6db/0x9d0 [ 1182.474696][T22641] get_compat_msghdr+0x108/0x2b0 [ 1182.479643][T22641] do_recvmmsg+0xdc7/0x22e0 [ 1182.484135][T22641] __sys_recvmmsg+0x340/0x5f0 [ 1182.488795][T22641] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1182.494846][T22641] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1182.501003][T22641] __do_fast_syscall_32+0x129/0x180 [ 1182.506202][T22641] do_fast_syscall_32+0x6a/0xc0 [ 1182.511024][T22641] do_SYSENTER_32+0x73/0x90 [ 1182.515521][T22641] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1182.521813][T22641] [ 1182.524112][T22641] Local variable ----msg_sys@do_recvmmsg created at: [ 1182.530772][T22641] do_recvmmsg+0xc2/0x22e0 [ 1182.535162][T22641] do_recvmmsg+0xc2/0x22e0 16:25:02 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:02 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000003740)=@allocspi={0x11c, 0x16, 0x1, 0x0, 0x0, {{{@in=@multicast1, @in=@broadcast}, {@in6=@loopback, 0x0, 0x6c}, @in=@multicast1}}, [@address_filter={0x28, 0x1a, {@in=@empty, @in=@loopback}}]}, 0x11c}}, 0x0) 16:25:02 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1c}, 0x0) 16:25:02 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newpolicy={0x194, 0x13, 0x1, 0x0, 0x0, {{@in=@remote, @in6=@ipv4={[], [], @multicast1}}, {}, {}, 0x0, 0x0, 0x0, 0xc3a062e3f7df33d5}, [@sa={0xe0, 0x6, {{@in6=@empty, @in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}}, {@in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}}, @in=@multicast1}}]}, 0x194}}, 0x0) 16:25:02 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1182.744568][T22698] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1182.818972][T22699] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:02 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000640)=@delpolicy={0x5c, 0x14, 0x1, 0x0, 0x0, {{@in6=@remote, @in=@broadcast}}, [@policy_type={0xa, 0x10, {0x1}}]}, 0x5c}}, 0x0) 16:25:02 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:02 executing program 2: 16:25:02 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:02 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1d}, 0x0) [ 1183.594710][T22718] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1183.684223][T22727] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:03 executing program 2: [ 1184.428690][T22713] not chained 520000 origins [ 1184.433318][T22713] CPU: 0 PID: 22713 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1184.441980][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1184.452025][T22713] Call Trace: [ 1184.455311][T22713] dump_stack+0x21c/0x280 [ 1184.459634][T22713] kmsan_internal_chain_origin+0x6f/0x130 [ 1184.465340][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1184.471132][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.476316][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1184.482110][T22713] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1184.488165][T22713] ? __wake_up+0x1fc/0x250 [ 1184.492568][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.497754][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1184.503554][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.508747][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1184.514372][T22713] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1184.520431][T22713] ? _copy_from_user+0x201/0x310 [ 1184.525530][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.530729][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.535683][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.540790][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.545723][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1184.550223][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.555432][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1184.561059][T22713] ? __msan_poison_alloca+0xe9/0x110 [ 1184.566336][T22713] ? __sys_recvmmsg+0xb5/0x5f0 [ 1184.571090][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1184.575759][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1184.581555][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1184.586767][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1184.592830][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1184.598975][T22713] __do_fast_syscall_32+0x129/0x180 [ 1184.604164][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1184.609004][T22713] do_SYSENTER_32+0x73/0x90 [ 1184.613500][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1184.619811][T22713] RIP: 0023:0xf7efe549 [ 1184.623869][T22713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1184.643461][T22713] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1184.651936][T22713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1184.659914][T22713] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1184.667880][T22713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1184.675842][T22713] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1184.683801][T22713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1184.691764][T22713] Uninit was stored to memory at: [ 1184.696788][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1184.702496][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.707462][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.712562][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.717500][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1184.721993][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1184.726658][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1184.732710][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1184.738857][T22713] __do_fast_syscall_32+0x129/0x180 [ 1184.744058][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1184.748904][T22713] do_SYSENTER_32+0x73/0x90 [ 1184.753398][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1184.760063][T22713] [ 1184.762370][T22713] Uninit was stored to memory at: [ 1184.767401][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1184.773110][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.778039][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.783141][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.788071][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1184.792562][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1184.797229][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1184.803284][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1184.809425][T22713] __do_fast_syscall_32+0x129/0x180 [ 1184.814630][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1184.819469][T22713] do_SYSENTER_32+0x73/0x90 [ 1184.823991][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1184.830296][T22713] [ 1184.832604][T22713] Uninit was stored to memory at: [ 1184.837635][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1184.843345][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.848270][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.853367][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.858299][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1184.862791][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1184.867455][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1184.873512][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1184.879653][T22713] __do_fast_syscall_32+0x129/0x180 [ 1184.884838][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1184.889673][T22713] do_SYSENTER_32+0x73/0x90 [ 1184.894165][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1184.900468][T22713] [ 1184.902776][T22713] Uninit was stored to memory at: [ 1184.907793][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1184.913520][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.918444][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.923541][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.928488][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1184.932980][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1184.937648][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1184.943703][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1184.949848][T22713] __do_fast_syscall_32+0x129/0x180 [ 1184.955143][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1184.959979][T22713] do_SYSENTER_32+0x73/0x90 [ 1184.964487][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1184.970791][T22713] [ 1184.973120][T22713] Uninit was stored to memory at: [ 1184.978136][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1184.984983][T22713] __msan_chain_origin+0x57/0xa0 [ 1184.989916][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1184.995010][T22713] get_compat_msghdr+0x108/0x2b0 [ 1184.999932][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1185.004420][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1185.009083][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1185.015135][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1185.021276][T22713] __do_fast_syscall_32+0x129/0x180 [ 1185.026462][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1185.031298][T22713] do_SYSENTER_32+0x73/0x90 [ 1185.035789][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1185.042088][T22713] [ 1185.044394][T22713] Uninit was stored to memory at: [ 1185.049407][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1185.055114][T22713] __msan_chain_origin+0x57/0xa0 [ 1185.060035][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1185.065130][T22713] get_compat_msghdr+0x108/0x2b0 [ 1185.070053][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1185.074542][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1185.079203][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1185.085257][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1185.091395][T22713] __do_fast_syscall_32+0x129/0x180 [ 1185.096578][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1185.101426][T22713] do_SYSENTER_32+0x73/0x90 [ 1185.105916][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1185.112218][T22713] [ 1185.114525][T22713] Uninit was stored to memory at: [ 1185.119537][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1185.125242][T22713] __msan_chain_origin+0x57/0xa0 [ 1185.130164][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1185.135258][T22713] get_compat_msghdr+0x108/0x2b0 [ 1185.140183][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1185.144673][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1185.149334][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1185.155385][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1185.161524][T22713] __do_fast_syscall_32+0x129/0x180 [ 1185.166706][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1185.171545][T22713] do_SYSENTER_32+0x73/0x90 [ 1185.176034][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1185.182332][T22713] [ 1185.184640][T22713] Local variable ----msg_sys@do_recvmmsg created at: [ 1185.191304][T22713] do_recvmmsg+0xc2/0x22e0 [ 1185.195704][T22713] do_recvmmsg+0xc2/0x22e0 [ 1185.993870][T22713] not chained 530000 origins [ 1185.998501][T22713] CPU: 1 PID: 22713 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1186.007166][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1186.017239][T22713] Call Trace: [ 1186.020539][T22713] dump_stack+0x21c/0x280 [ 1186.024882][T22713] kmsan_internal_chain_origin+0x6f/0x130 [ 1186.030608][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1186.036418][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.041617][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1186.047434][T22713] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1186.053505][T22713] ? __wake_up+0x1fc/0x250 [ 1186.057927][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.063128][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1186.068935][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.074136][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1186.079775][T22713] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1186.085848][T22713] ? _copy_from_user+0x201/0x310 [ 1186.090789][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.095989][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.100934][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.106056][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.111005][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.115523][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.120731][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1186.126370][T22713] ? __msan_poison_alloca+0xe9/0x110 [ 1186.131662][T22713] ? __sys_recvmmsg+0xb5/0x5f0 [ 1186.136559][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.141240][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1186.147044][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1186.152262][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.158333][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.164490][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.169702][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.174556][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.179064][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.185385][T22713] RIP: 0023:0xf7efe549 [ 1186.189452][T22713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1186.209055][T22713] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1186.217470][T22713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1186.225445][T22713] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1186.233418][T22713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1186.241389][T22713] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1186.249357][T22713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1186.257327][T22713] Uninit was stored to memory at: [ 1186.262361][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.268081][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.273018][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.278123][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.283059][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.287560][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.292239][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.298320][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.304476][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.309670][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.314522][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.319063][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.325382][T22713] [ 1186.327688][T22713] Uninit was stored to memory at: [ 1186.332706][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.338399][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.343322][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.348407][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.353321][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.357811][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.362462][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.368502][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.374633][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.379805][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.384632][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.389111][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.395405][T22713] [ 1186.397712][T22713] Uninit was stored to memory at: [ 1186.402802][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.408501][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.413412][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.418539][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.423455][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.427935][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.432592][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.438636][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.444768][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.449969][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.454795][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.459273][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.465565][T22713] [ 1186.467867][T22713] Uninit was stored to memory at: [ 1186.472867][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.478578][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.483529][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.488621][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.493543][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.498026][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.502684][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.508725][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.514854][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.520026][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.524861][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.529340][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.535631][T22713] [ 1186.537941][T22713] Uninit was stored to memory at: [ 1186.542953][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.548645][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.553558][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.558640][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.563552][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.568029][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.572707][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.578768][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.584909][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.590079][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.594903][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.599382][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.605676][T22713] [ 1186.607977][T22713] Uninit was stored to memory at: [ 1186.612998][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.618705][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.623626][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.628713][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.633630][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.638111][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.642788][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.648842][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.654984][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.660154][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.664977][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.669468][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.675776][T22713] [ 1186.678077][T22713] Uninit was stored to memory at: [ 1186.683090][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1186.688787][T22713] __msan_chain_origin+0x57/0xa0 [ 1186.693697][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1186.698785][T22713] get_compat_msghdr+0x108/0x2b0 [ 1186.703735][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1186.708212][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1186.712861][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1186.718899][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1186.725029][T22713] __do_fast_syscall_32+0x129/0x180 [ 1186.730199][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1186.735024][T22713] do_SYSENTER_32+0x73/0x90 [ 1186.739501][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1186.745793][T22713] [ 1186.748094][T22713] Local variable ----msg_sys@do_recvmmsg created at: [ 1186.754747][T22713] do_recvmmsg+0xc2/0x22e0 [ 1186.759135][T22713] do_recvmmsg+0xc2/0x22e0 [ 1187.119898][T22713] not chained 540000 origins [ 1187.124522][T22713] CPU: 0 PID: 22713 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1187.133183][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1187.143236][T22713] Call Trace: [ 1187.146528][T22713] dump_stack+0x21c/0x280 [ 1187.150862][T22713] kmsan_internal_chain_origin+0x6f/0x130 [ 1187.156579][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1187.162414][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.167588][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1187.173379][T22713] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1187.179420][T22713] ? __wake_up+0x1fc/0x250 [ 1187.184156][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.189327][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1187.195123][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.200296][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1187.205905][T22713] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1187.211959][T22713] ? _copy_from_user+0x201/0x310 [ 1187.216870][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.222053][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.226968][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.232057][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.236973][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.241456][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.246631][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1187.252237][T22713] ? __msan_poison_alloca+0xe9/0x110 [ 1187.257524][T22713] ? __sys_recvmmsg+0xb5/0x5f0 [ 1187.262267][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.266935][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1187.272713][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1187.277890][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.283934][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.290061][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.295250][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.300092][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.304577][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.310873][T22713] RIP: 0023:0xf7efe549 [ 1187.314918][T22713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1187.334498][T22713] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1187.342881][T22713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1187.350829][T22713] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1187.358779][T22713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1187.366728][T22713] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1187.374689][T22713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1187.382641][T22713] Uninit was stored to memory at: [ 1187.387645][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.393448][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.398365][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.403455][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.408376][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.412852][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.417515][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.423569][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.429712][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.434934][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.440087][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.444568][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.450865][T22713] [ 1187.453173][T22713] Uninit was stored to memory at: [ 1187.458195][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.463899][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.468814][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.473899][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.478814][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.483329][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.488953][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.495019][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.501186][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.506390][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.511214][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.515698][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.521989][T22713] [ 1187.524292][T22713] Uninit was stored to memory at: [ 1187.529304][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.535011][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.539922][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.545021][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.549934][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.554412][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.559062][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.565116][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.571272][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.576446][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.581279][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.585757][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.592050][T22713] [ 1187.594350][T22713] Uninit was stored to memory at: [ 1187.599352][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.605070][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.609982][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.615068][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.620007][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.624488][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.629142][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.635185][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.641317][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.646495][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.651321][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.655808][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.662101][T22713] [ 1187.664400][T22713] Uninit was stored to memory at: [ 1187.669402][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.675109][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.680032][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.685118][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.690030][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.694511][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.699165][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.705222][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.711365][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.716539][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.721367][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.725851][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.732163][T22713] [ 1187.734466][T22713] Uninit was stored to memory at: [ 1187.739469][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.745526][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.750445][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.755529][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.760443][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.764930][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.769586][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.775631][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.781772][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.786968][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.791807][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.796288][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.802583][T22713] [ 1187.804891][T22713] Uninit was stored to memory at: [ 1187.809912][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1187.815608][T22713] __msan_chain_origin+0x57/0xa0 [ 1187.820520][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1187.825609][T22713] get_compat_msghdr+0x108/0x2b0 [ 1187.830520][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1187.834998][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1187.839647][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1187.845688][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1187.851816][T22713] __do_fast_syscall_32+0x129/0x180 [ 1187.856987][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1187.861811][T22713] do_SYSENTER_32+0x73/0x90 [ 1187.866296][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1187.872592][T22713] [ 1187.874894][T22713] Local variable ----msg_sys@do_recvmmsg created at: [ 1187.881544][T22713] do_recvmmsg+0xc2/0x22e0 [ 1187.885934][T22713] do_recvmmsg+0xc2/0x22e0 [ 1188.170393][T22713] not chained 550000 origins [ 1188.175013][T22713] CPU: 0 PID: 22713 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1188.183674][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1188.193723][T22713] Call Trace: [ 1188.197017][T22713] dump_stack+0x21c/0x280 [ 1188.201378][T22713] kmsan_internal_chain_origin+0x6f/0x130 [ 1188.207099][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1188.212904][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.218102][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1188.223917][T22713] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1188.229985][T22713] ? __wake_up+0x1fc/0x250 [ 1188.234399][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.239601][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1188.245408][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.250615][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1188.256254][T22713] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1188.262325][T22713] ? _copy_from_user+0x201/0x310 [ 1188.267266][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.272469][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.277404][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.282494][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.287412][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.291896][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.297070][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1188.302699][T22713] ? __msan_poison_alloca+0xe9/0x110 [ 1188.307962][T22713] ? __sys_recvmmsg+0xb5/0x5f0 [ 1188.312700][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.317363][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1188.323166][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1188.328355][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.334401][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.340530][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.345717][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.350553][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.355033][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.361346][T22713] RIP: 0023:0xf7efe549 [ 1188.365400][T22713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1188.385004][T22713] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1188.393406][T22713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1188.401361][T22713] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1188.409325][T22713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1188.417287][T22713] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1188.425247][T22713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1188.433215][T22713] Uninit was stored to memory at: [ 1188.438231][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.443938][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.448862][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.453960][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.458871][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.463359][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.468025][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.474085][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.480241][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.485437][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.490280][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.494792][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.501171][T22713] [ 1188.503496][T22713] Uninit was stored to memory at: [ 1188.508523][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.514220][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.519140][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.524237][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.529165][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.533644][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.538302][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.544353][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.550504][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.555694][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.560516][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.565008][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.571310][T22713] [ 1188.573610][T22713] Uninit was stored to memory at: [ 1188.579393][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.585096][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.590020][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.595104][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.600016][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.604504][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.609166][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.615209][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.621524][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.626712][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.631549][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.636031][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.642321][T22713] [ 1188.644629][T22713] Uninit was stored to memory at: [ 1188.649647][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.655349][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.660262][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.665363][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.670310][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.674792][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.679489][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.685545][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.691684][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.696900][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.701726][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.706234][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.712547][T22713] [ 1188.714848][T22713] Uninit was stored to memory at: [ 1188.719849][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.725555][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.730482][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.735567][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.740492][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.744981][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.749643][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.755683][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.761808][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.766981][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.771805][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.776281][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.782571][T22713] [ 1188.784873][T22713] Uninit was stored to memory at: [ 1188.789885][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.795580][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.800490][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.805584][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.810509][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.815009][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.819677][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.825733][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.831879][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.837061][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.841885][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.846365][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.852829][T22713] [ 1188.855127][T22713] Uninit was stored to memory at: [ 1188.860132][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1188.865839][T22713] __msan_chain_origin+0x57/0xa0 [ 1188.870778][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1188.875875][T22713] get_compat_msghdr+0x108/0x2b0 [ 1188.880786][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1188.885450][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1188.890202][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1188.896261][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1188.902391][T22713] __do_fast_syscall_32+0x129/0x180 [ 1188.907566][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1188.912390][T22713] do_SYSENTER_32+0x73/0x90 [ 1188.916873][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1188.923184][T22713] [ 1188.925515][T22713] Local variable ----msg_sys@do_recvmmsg created at: [ 1188.932222][T22713] do_recvmmsg+0xc2/0x22e0 [ 1188.936627][T22713] do_recvmmsg+0xc2/0x22e0 [ 1189.232018][T22713] not chained 560000 origins [ 1189.236688][T22713] CPU: 0 PID: 22713 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1189.245349][T22713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1189.255438][T22713] Call Trace: [ 1189.258732][T22713] dump_stack+0x21c/0x280 [ 1189.263055][T22713] kmsan_internal_chain_origin+0x6f/0x130 [ 1189.268760][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1189.274541][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.279712][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1189.285496][T22713] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1189.291538][T22713] ? __wake_up+0x1fc/0x250 [ 1189.295932][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.301113][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1189.306895][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.312071][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1189.317690][T22713] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1189.323733][T22713] ? _copy_from_user+0x201/0x310 [ 1189.328641][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.333814][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.338728][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.343826][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.348743][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.353239][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.358425][T22713] ? kmsan_internal_set_origin+0x85/0xc0 [ 1189.364051][T22713] ? __msan_poison_alloca+0xe9/0x110 [ 1189.369314][T22713] ? __sys_recvmmsg+0xb5/0x5f0 [ 1189.374066][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.378723][T22713] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1189.384503][T22713] ? kmsan_get_metadata+0x116/0x180 [ 1189.389677][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.395724][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.401853][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.407026][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.411850][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.416331][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.422629][T22713] RIP: 0023:0xf7efe549 [ 1189.426674][T22713] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1189.446263][T22713] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1189.454678][T22713] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1189.462625][T22713] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1189.470573][T22713] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1189.478533][T22713] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1189.486496][T22713] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1189.494450][T22713] Uninit was stored to memory at: [ 1189.499462][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.505161][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.510113][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.515211][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.520126][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.524603][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.529255][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.535306][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.541436][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.546620][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.551460][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.555939][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.562234][T22713] [ 1189.564534][T22713] Uninit was stored to memory at: [ 1189.569538][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.575243][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.580167][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.585252][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.590162][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.594639][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.599291][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.605385][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.611512][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.616683][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.621507][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.625985][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.632276][T22713] [ 1189.634575][T22713] Uninit was stored to memory at: [ 1189.639576][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.645286][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.650210][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.655318][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.660240][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.664727][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.669396][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.675454][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.681583][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.686770][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.691606][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.696103][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.702394][T22713] [ 1189.704694][T22713] Uninit was stored to memory at: [ 1189.709713][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.715418][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.720328][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.725415][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.730338][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.734816][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.739464][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.745518][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.751658][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.756850][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.761680][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.766160][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.772451][T22713] [ 1189.774760][T22713] Uninit was stored to memory at: [ 1189.779762][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.785455][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.790364][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.795458][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.800384][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.804862][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.809529][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.815586][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.821715][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.826892][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.831726][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.836204][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.842929][T22713] [ 1189.845230][T22713] Uninit was stored to memory at: [ 1189.850231][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.855928][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.860857][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.865945][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.870868][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.875344][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.879993][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.886033][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.892160][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.897332][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.902153][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.906641][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.912942][T22713] [ 1189.915241][T22713] Uninit was stored to memory at: [ 1189.920244][T22713] kmsan_internal_chain_origin+0xad/0x130 [ 1189.925938][T22713] __msan_chain_origin+0x57/0xa0 [ 1189.930849][T22713] __get_compat_msghdr+0x6db/0x9d0 [ 1189.935933][T22713] get_compat_msghdr+0x108/0x2b0 [ 1189.940845][T22713] do_recvmmsg+0xdc7/0x22e0 [ 1189.945324][T22713] __sys_recvmmsg+0x340/0x5f0 [ 1189.949975][T22713] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1189.956027][T22713] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1189.962168][T22713] __do_fast_syscall_32+0x129/0x180 [ 1189.967342][T22713] do_fast_syscall_32+0x6a/0xc0 [ 1189.972164][T22713] do_SYSENTER_32+0x73/0x90 [ 1189.976643][T22713] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1189.982933][T22713] [ 1189.985234][T22713] Local variable ----msg_sys@do_recvmmsg created at: [ 1189.991884][T22713] do_recvmmsg+0xc2/0x22e0 [ 1189.996275][T22713] do_recvmmsg+0xc2/0x22e0 16:25:09 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:09 executing program 5: 16:25:09 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:09 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 16:25:09 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1e}, 0x0) 16:25:09 executing program 2: [ 1190.252456][T22751] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1190.409983][T22753] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:10 executing program 5: 16:25:10 executing program 2: 16:25:10 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:10 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x21}, 0x0) 16:25:10 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) [ 1191.158908][T22777] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:10 executing program 2: [ 1191.378523][T22786] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1191.900515][T22771] not chained 570000 origins [ 1191.905146][T22771] CPU: 1 PID: 22771 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1191.913809][T22771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1191.923859][T22771] Call Trace: [ 1191.927154][T22771] dump_stack+0x21c/0x280 [ 1191.931495][T22771] kmsan_internal_chain_origin+0x6f/0x130 [ 1191.937221][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1191.943027][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1191.948228][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1191.954042][T22771] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1191.960099][T22771] ? __wake_up+0x1fc/0x250 [ 1191.964557][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1191.969735][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1191.975513][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1191.980684][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1191.986292][T22771] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1191.992333][T22771] ? _copy_from_user+0x201/0x310 [ 1191.997245][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1192.002438][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.007367][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.012485][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.017430][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.021934][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1192.027138][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1192.032338][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1192.037973][T22771] ? __msan_poison_alloca+0xe9/0x110 [ 1192.043262][T22771] ? __sys_recvmmsg+0xb5/0x5f0 [ 1192.048035][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.052804][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1192.058614][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1192.063820][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.069893][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.076053][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.081257][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.086111][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.090622][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.096943][T22771] RIP: 0023:0xf7efe549 [ 1192.101011][T22771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1192.120639][T22771] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1192.129060][T22771] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1192.137035][T22771] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1192.145007][T22771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1192.152981][T22771] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1192.160954][T22771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1192.168929][T22771] Uninit was stored to memory at: [ 1192.173969][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.179696][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.184636][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.189782][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.194720][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.199225][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.203902][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.209971][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.216128][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.221467][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.226325][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.230915][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.237222][T22771] [ 1192.239545][T22771] Uninit was stored to memory at: [ 1192.244583][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.250302][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.255236][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.260344][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.265281][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.269782][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.274459][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.280525][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.286678][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.291875][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.296726][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.301232][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.307542][T22771] [ 1192.309860][T22771] Uninit was stored to memory at: [ 1192.314890][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.320620][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.325557][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.330671][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.335623][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.340133][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.344815][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.350885][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.357039][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.362239][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.367092][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.371603][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.377916][T22771] [ 1192.380232][T22771] Uninit was stored to memory at: [ 1192.385261][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.390985][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.395920][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.401026][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.405963][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.410469][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.415148][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.421300][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.427454][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.432651][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.437498][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.442002][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.448310][T22771] [ 1192.450626][T22771] Uninit was stored to memory at: [ 1192.455663][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.461388][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.466323][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.471427][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.476373][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.480916][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.485618][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.491693][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.497851][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.503051][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.507905][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.512413][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.518723][T22771] [ 1192.521044][T22771] Uninit was stored to memory at: [ 1192.526077][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.531799][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.536740][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.541853][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.546792][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.551298][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.555976][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.562042][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.568194][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.573392][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.578240][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.582745][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.589054][T22771] [ 1192.591375][T22771] Uninit was stored to memory at: [ 1192.596408][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1192.602132][T22771] __msan_chain_origin+0x57/0xa0 [ 1192.607068][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1192.612177][T22771] get_compat_msghdr+0x108/0x2b0 [ 1192.617112][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1192.621620][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1192.626295][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1192.632450][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1192.639217][T22771] __do_fast_syscall_32+0x129/0x180 [ 1192.644417][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1192.649266][T22771] do_SYSENTER_32+0x73/0x90 [ 1192.653780][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1192.660090][T22771] [ 1192.662409][T22771] Local variable ----msg_sys@do_recvmmsg created at: [ 1192.669085][T22771] do_recvmmsg+0xc2/0x22e0 [ 1192.673506][T22771] do_recvmmsg+0xc2/0x22e0 [ 1193.059573][T22771] not chained 580000 origins [ 1193.064205][T22771] CPU: 0 PID: 22771 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1193.072871][T22771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1193.082922][T22771] Call Trace: [ 1193.086219][T22771] dump_stack+0x21c/0x280 [ 1193.090561][T22771] kmsan_internal_chain_origin+0x6f/0x130 [ 1193.096282][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1193.102085][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.107286][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1193.113187][T22771] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1193.119257][T22771] ? __wake_up+0x1fc/0x250 [ 1193.123675][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.128872][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1193.134679][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.139884][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1193.145527][T22771] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1193.151603][T22771] ? _copy_from_user+0x201/0x310 [ 1193.156591][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.161795][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.166741][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.171861][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.176810][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.181321][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.186525][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.191728][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1193.197367][T22771] ? __msan_poison_alloca+0xe9/0x110 [ 1193.202653][T22771] ? __sys_recvmmsg+0xb5/0x5f0 [ 1193.207425][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.212104][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1193.217909][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1193.223203][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.229277][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.235435][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.240641][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.245497][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.250004][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.256327][T22771] RIP: 0023:0xf7efe549 [ 1193.260394][T22771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1193.279996][T22771] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1193.288412][T22771] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1193.296383][T22771] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1193.304390][T22771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1193.312360][T22771] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1193.320330][T22771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1193.328301][T22771] Uninit was stored to memory at: [ 1193.333339][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.339066][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.344008][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.349116][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.354054][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.358558][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.363247][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.369318][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.375472][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.380670][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.385519][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.390025][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.396336][T22771] [ 1193.398656][T22771] Uninit was stored to memory at: [ 1193.403684][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.409407][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.414350][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.419459][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.424397][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.428901][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.433577][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.439648][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.445800][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.451000][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.455863][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.460370][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.466677][T22771] [ 1193.469007][T22771] Uninit was stored to memory at: [ 1193.474036][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.479765][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.484711][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.489829][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.494774][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.499284][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.503969][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.510044][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.516295][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.521499][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.526351][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.530855][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.537164][T22771] [ 1193.539485][T22771] Uninit was stored to memory at: [ 1193.544514][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.550239][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.555249][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.560358][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.565296][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.569800][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.574478][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.580533][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.586664][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.591857][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.596695][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.601183][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.607486][T22771] [ 1193.609802][T22771] Uninit was stored to memory at: [ 1193.614810][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.620508][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.625433][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.630543][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.635458][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.639952][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.644620][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.650706][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.656838][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.662011][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.666858][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.671337][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.677629][T22771] [ 1193.679930][T22771] Uninit was stored to memory at: [ 1193.684946][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.690649][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.695562][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.700646][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.705597][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.710087][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.714761][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.720811][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.726941][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.732124][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.736959][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.741435][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.747733][T22771] [ 1193.750048][T22771] Uninit was stored to memory at: [ 1193.755051][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1193.760761][T22771] __msan_chain_origin+0x57/0xa0 [ 1193.765683][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1193.770779][T22771] get_compat_msghdr+0x108/0x2b0 [ 1193.775692][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1193.780169][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1193.784837][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1193.790893][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1193.797023][T22771] __do_fast_syscall_32+0x129/0x180 [ 1193.802207][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1193.807033][T22771] do_SYSENTER_32+0x73/0x90 [ 1193.811510][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1193.817817][T22771] [ 1193.820118][T22771] Local variable ----msg_sys@do_recvmmsg created at: [ 1193.826779][T22771] do_recvmmsg+0xc2/0x22e0 [ 1193.831182][T22771] do_recvmmsg+0xc2/0x22e0 [ 1194.048595][T22771] not chained 590000 origins [ 1194.053216][T22771] CPU: 0 PID: 22771 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1194.061870][T22771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1194.071917][T22771] Call Trace: [ 1194.075198][T22771] dump_stack+0x21c/0x280 [ 1194.079506][T22771] kmsan_internal_chain_origin+0x6f/0x130 [ 1194.085214][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1194.091023][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.096207][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1194.101987][T22771] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1194.108048][T22771] ? __wake_up+0x1fc/0x250 [ 1194.112436][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.117607][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1194.123397][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.128594][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1194.134203][T22771] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1194.140256][T22771] ? _copy_from_user+0x201/0x310 [ 1194.145179][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.150365][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.155290][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.160401][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.165513][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.170014][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.175192][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.180371][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1194.185997][T22771] ? __msan_poison_alloca+0xe9/0x110 [ 1194.191273][T22771] ? __sys_recvmmsg+0xb5/0x5f0 [ 1194.196014][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.200668][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1194.206448][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1194.211625][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.217668][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.223812][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.228998][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.233853][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.238332][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.244638][T22771] RIP: 0023:0xf7efe549 [ 1194.248714][T22771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1194.268299][T22771] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1194.276690][T22771] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1194.284649][T22771] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1194.292607][T22771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1194.300555][T22771] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1194.308500][T22771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1194.316446][T22771] Uninit was stored to memory at: [ 1194.321454][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.327149][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.332070][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.337164][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.342093][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.346586][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.351236][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.357275][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.363679][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.368867][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.373717][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.378219][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.384518][T22771] [ 1194.386832][T22771] Uninit was stored to memory at: [ 1194.391835][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.397541][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.402460][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.407548][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.412471][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.416953][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.421606][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.427647][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.433778][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.438966][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.443802][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.448290][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.454582][T22771] [ 1194.456881][T22771] Uninit was stored to memory at: [ 1194.461907][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.467617][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.472527][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.477614][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.482541][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.487047][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.491715][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.497765][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.503910][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.509115][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.513966][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.518465][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.524766][T22771] [ 1194.527095][T22771] Uninit was stored to memory at: [ 1194.532098][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.537820][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.542822][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.547907][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.552834][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.557313][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.561975][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.568031][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.574189][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.579362][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.584196][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.588688][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.594988][T22771] [ 1194.597304][T22771] Uninit was stored to memory at: [ 1194.602323][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.608032][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.612955][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.618042][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.622957][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.627453][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.632103][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.638157][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.644296][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.649482][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.654313][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.658795][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.665091][T22771] [ 1194.667415][T22771] Uninit was stored to memory at: [ 1194.672431][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.678184][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.683108][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.688205][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.693140][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.697655][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.702398][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.708445][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.714617][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.719802][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.724639][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.729132][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.735427][T22771] [ 1194.737729][T22771] Uninit was stored to memory at: [ 1194.742729][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1194.748484][T22771] __msan_chain_origin+0x57/0xa0 [ 1194.753397][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1194.758520][T22771] get_compat_msghdr+0x108/0x2b0 [ 1194.763443][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1194.767932][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1194.772590][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1194.778632][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1194.784776][T22771] __do_fast_syscall_32+0x129/0x180 [ 1194.789986][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1194.794835][T22771] do_SYSENTER_32+0x73/0x90 [ 1194.799314][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1194.805610][T22771] [ 1194.807926][T22771] Local variable ----msg_sys@do_recvmmsg created at: [ 1194.814631][T22771] do_recvmmsg+0xc2/0x22e0 [ 1194.819032][T22771] do_recvmmsg+0xc2/0x22e0 [ 1195.079199][T22771] not chained 600000 origins [ 1195.083818][T22771] CPU: 0 PID: 22771 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1195.092483][T22771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1195.102565][T22771] Call Trace: [ 1195.105863][T22771] dump_stack+0x21c/0x280 [ 1195.110201][T22771] kmsan_internal_chain_origin+0x6f/0x130 [ 1195.115923][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1195.121731][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.126927][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1195.132739][T22771] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1195.138808][T22771] ? __wake_up+0x1fc/0x250 [ 1195.143223][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.148422][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1195.154223][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.159423][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1195.165059][T22771] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1195.171126][T22771] ? _copy_from_user+0x201/0x310 [ 1195.176062][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.181265][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.186206][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.191324][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.196267][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.200774][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.205978][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.211180][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1195.216812][T22771] ? __msan_poison_alloca+0xe9/0x110 [ 1195.222098][T22771] ? __sys_recvmmsg+0xb5/0x5f0 [ 1195.226864][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.231540][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1195.237349][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1195.242554][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.248626][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.254782][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.259981][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.264837][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.269342][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.275664][T22771] RIP: 0023:0xf7efe549 [ 1195.279722][T22771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1195.299310][T22771] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1195.307700][T22771] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1195.315657][T22771] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1195.323625][T22771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1195.331573][T22771] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1195.339521][T22771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1195.347486][T22771] Uninit was stored to memory at: [ 1195.352491][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.358190][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.363112][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.368208][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.373130][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.377621][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.382272][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.388667][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.394812][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.400013][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.404838][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.409316][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.415612][T22771] [ 1195.417922][T22771] Uninit was stored to memory at: [ 1195.422922][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.428617][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.433541][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.438642][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.443562][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.448062][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.452732][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.458775][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.464916][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.470099][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.475021][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.479518][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.485820][T22771] [ 1195.488136][T22771] Uninit was stored to memory at: [ 1195.493161][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.498871][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.503788][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.508873][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.513799][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.518307][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.522959][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.529017][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.535165][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.540358][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.545186][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.549675][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.555974][T22771] [ 1195.558298][T22771] Uninit was stored to memory at: [ 1195.563306][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.569000][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.573921][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.579018][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.583945][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.588447][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.593126][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.599178][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.605310][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.610483][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.615317][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.619808][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.626101][T22771] [ 1195.628416][T22771] Uninit was stored to memory at: [ 1195.633430][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.639135][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.644048][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.649145][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.654085][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.658594][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.663259][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.669313][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.675457][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.680655][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.685483][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.689976][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.696286][T22771] [ 1195.698603][T22771] Uninit was stored to memory at: [ 1195.703610][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.709303][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.714227][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.719324][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.724239][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.728719][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.733382][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.739436][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.745569][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.750761][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.755595][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.760085][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.766376][T22771] [ 1195.768675][T22771] Uninit was stored to memory at: [ 1195.773688][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1195.779406][T22771] __msan_chain_origin+0x57/0xa0 [ 1195.784320][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1195.789417][T22771] get_compat_msghdr+0x108/0x2b0 [ 1195.794342][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1195.798845][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1195.803519][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1195.809572][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1195.815716][T22771] __do_fast_syscall_32+0x129/0x180 [ 1195.820902][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1195.825736][T22771] do_SYSENTER_32+0x73/0x90 [ 1195.830222][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1195.836514][T22771] [ 1195.838814][T22771] Local variable ----msg_sys@do_recvmmsg created at: [ 1195.845463][T22771] do_recvmmsg+0xc2/0x22e0 [ 1195.849868][T22771] do_recvmmsg+0xc2/0x22e0 [ 1196.170992][T22771] not chained 610000 origins [ 1196.175612][T22771] CPU: 0 PID: 22771 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1196.184274][T22771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1196.194316][T22771] Call Trace: [ 1196.197584][T22771] dump_stack+0x21c/0x280 [ 1196.201905][T22771] kmsan_internal_chain_origin+0x6f/0x130 [ 1196.207613][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1196.213409][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.218578][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1196.224545][T22771] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1196.230597][T22771] ? __wake_up+0x1fc/0x250 [ 1196.235004][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.240189][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1196.245981][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.251178][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1196.256789][T22771] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1196.262836][T22771] ? _copy_from_user+0x201/0x310 [ 1196.267770][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.272941][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.277869][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.282956][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.287881][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.292359][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.297534][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.302722][T22771] ? kmsan_internal_set_origin+0x85/0xc0 [ 1196.308357][T22771] ? __msan_poison_alloca+0xe9/0x110 [ 1196.313634][T22771] ? __sys_recvmmsg+0xb5/0x5f0 [ 1196.318381][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.323037][T22771] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1196.328826][T22771] ? kmsan_get_metadata+0x116/0x180 [ 1196.334003][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.340059][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.346201][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.351386][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.356214][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.360694][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.367001][T22771] RIP: 0023:0xf7efe549 [ 1196.371058][T22771] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1196.390727][T22771] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1196.399122][T22771] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020005c80 [ 1196.407082][T22771] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1196.415041][T22771] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1196.423352][T22771] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1196.431363][T22771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1196.439327][T22771] Uninit was stored to memory at: [ 1196.444353][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.450062][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.454988][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.460086][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.465013][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.469504][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.474176][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.480237][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.486372][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.491592][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.496425][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.500907][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.507203][T22771] [ 1196.509511][T22771] Uninit was stored to memory at: [ 1196.514533][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.520235][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.525167][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.530282][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.535210][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.539687][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.544348][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.550399][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.556544][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.561721][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.566565][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.571075][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.577370][T22771] [ 1196.579669][T22771] Uninit was stored to memory at: [ 1196.584684][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.590414][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.595328][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.600429][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.605352][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.609840][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.614517][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.620574][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.626704][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.631875][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.636722][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.641201][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.647494][T22771] [ 1196.649802][T22771] Uninit was stored to memory at: [ 1196.654817][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.660568][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.665495][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.670592][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.675511][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.679992][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.684656][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.690706][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.696839][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.702012][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.706840][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.711374][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.717669][T22771] [ 1196.719979][T22771] Uninit was stored to memory at: [ 1196.724998][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.730706][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.735619][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.740767][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.745694][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.750209][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.754874][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.760916][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.767067][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.772241][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.777066][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.781542][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.787840][T22771] [ 1196.790151][T22771] Uninit was stored to memory at: [ 1196.795155][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.800849][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.805771][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.810867][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.815779][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.820280][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.824945][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.831017][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.837144][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.842319][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.847145][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.851622][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.857927][T22771] [ 1196.860230][T22771] Uninit was stored to memory at: [ 1196.865249][T22771] kmsan_internal_chain_origin+0xad/0x130 [ 1196.870951][T22771] __msan_chain_origin+0x57/0xa0 [ 1196.875890][T22771] __get_compat_msghdr+0x6db/0x9d0 [ 1196.880972][T22771] get_compat_msghdr+0x108/0x2b0 [ 1196.885899][T22771] do_recvmmsg+0xdc7/0x22e0 [ 1196.890388][T22771] __sys_recvmmsg+0x340/0x5f0 [ 1196.895148][T22771] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1196.901217][T22771] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1196.907383][T22771] __do_fast_syscall_32+0x129/0x180 [ 1196.912555][T22771] do_fast_syscall_32+0x6a/0xc0 [ 1196.917400][T22771] do_SYSENTER_32+0x73/0x90 [ 1196.921881][T22771] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1196.928190][T22771] [ 1196.930513][T22771] Local variable ----msg_sys@do_recvmmsg created at: [ 1196.937162][T22771] do_recvmmsg+0xc2/0x22e0 [ 1196.941564][T22771] do_recvmmsg+0xc2/0x22e0 16:25:16 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(0xffffffffffffffff, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(0xffffffffffffffff, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:16 executing program 5: 16:25:16 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:16 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:16 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x22}, 0x0) 16:25:16 executing program 2: [ 1197.292110][T22807] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1197.357077][T22809] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:17 executing program 2: 16:25:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:17 executing program 5: 16:25:17 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x23}, 0x0) 16:25:17 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:17 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(0xffffffffffffffff, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(0xffffffffffffffff, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) [ 1198.001963][T22830] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:17 executing program 2: 16:25:17 executing program 5: statx(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x800, 0x0, 0x0) [ 1198.316971][T22839] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:18 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x24}, 0x0) 16:25:18 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(0xffffffffffffffff, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(0xffffffffffffffff, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:18 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1198.830179][T22855] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:18 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x5601, 0x0) 16:25:18 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername(r0, 0x0, &(0x7f0000000100)) [ 1199.126856][T22864] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:18 executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:18 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x25}, 0x0) 16:25:19 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1199.610791][T22879] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:19 executing program 5: r0 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r0) r2 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, r1) keyctl$unlink(0x9, r2, r1) 16:25:19 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = eventfd2(0x0, 0x0) dup2(r1, r0) [ 1199.843934][T22890] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:19 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:19 executing program 5: syz_mount_image$ext4(&(0x7f00000003c0)='ext3\x00', &(0x7f0000000400)='./file0\x00', 0x2, 0x2, &(0x7f0000000680)=[{0x0, 0x0, 0xfffffffffffffff7}, {0x0}], 0x400, &(0x7f0000000700)={[{@noload='noload'}]}) [ 1200.422486][T22905] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:20 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x26}, 0x0) 16:25:20 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$P9_RREAD(r0, &(0x7f0000000040)={0xb}, 0xfffffffffffffdef) [ 1200.668891][T22915] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1200.758089][T22918] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 16:25:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) [ 1200.872413][T22887] not chained 620000 origins [ 1200.877034][T22887] CPU: 1 PID: 22887 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1200.885686][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1200.895721][T22887] Call Trace: [ 1200.899001][T22887] dump_stack+0x21c/0x280 [ 1200.903323][T22887] kmsan_internal_chain_origin+0x6f/0x130 [ 1200.909028][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1200.914821][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1200.920020][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1200.925816][T22887] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1200.931871][T22887] ? __wake_up+0x1fc/0x250 [ 1200.936272][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1200.941457][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1200.947259][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1200.952447][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1200.958066][T22887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1200.964124][T22887] ? _copy_from_user+0x201/0x310 [ 1200.969046][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1200.974237][T22887] __msan_chain_origin+0x57/0xa0 [ 1200.979164][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1200.984264][T22887] get_compat_msghdr+0x108/0x2b0 [ 1200.989193][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1200.993685][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1200.998872][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1201.004058][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1201.009678][T22887] ? __msan_poison_alloca+0xe9/0x110 [ 1201.014950][T22887] ? __sys_recvmmsg+0xb5/0x5f0 [ 1201.019708][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.024373][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1201.030161][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1201.035349][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.041418][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.047565][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.052747][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.057587][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.062078][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.068386][T22887] RIP: 0023:0xf7efe549 [ 1201.072442][T22887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1201.092031][T22887] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1201.100427][T22887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80 [ 1201.108384][T22887] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1201.116351][T22887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1201.124317][T22887] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1201.132272][T22887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1201.140230][T22887] Uninit was stored to memory at: [ 1201.145245][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.150947][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.155869][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.160964][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.165893][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.170382][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.175045][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.181096][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.187234][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.192417][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.197253][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.201743][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.208043][T22887] [ 1201.210349][T22887] Uninit was stored to memory at: [ 1201.215364][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.221069][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.225990][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.231082][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.236007][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.240494][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.245155][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.251206][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.257346][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.262530][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.267368][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.271857][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.278155][T22887] [ 1201.280461][T22887] Uninit was stored to memory at: [ 1201.285473][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.291175][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.296097][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.301191][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.306113][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.310603][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.315267][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.321320][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.327460][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.332639][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.337473][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.341963][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.348263][T22887] [ 1201.350570][T22887] Uninit was stored to memory at: [ 1201.355584][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.361375][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.366326][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.371420][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.376344][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.380832][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.385500][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.391570][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.397707][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.402890][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.407723][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.412227][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.418527][T22887] [ 1201.420836][T22887] Uninit was stored to memory at: [ 1201.425854][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.431644][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.436580][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.441674][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.446597][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.451084][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.455767][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.461818][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.468045][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.473241][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.478077][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.482579][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.488888][T22887] [ 1201.491201][T22887] Uninit was stored to memory at: [ 1201.496223][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.501936][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.506866][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.511965][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.516894][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.521386][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.526049][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.532103][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.538245][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.543429][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.548265][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.552755][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.559052][T22887] [ 1201.561358][T22887] Uninit was stored to memory at: [ 1201.566370][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1201.572075][T22887] __msan_chain_origin+0x57/0xa0 [ 1201.576995][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1201.582091][T22887] get_compat_msghdr+0x108/0x2b0 [ 1201.587015][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1201.591502][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1201.596163][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1201.602216][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1201.608370][T22887] __do_fast_syscall_32+0x129/0x180 [ 1201.613555][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1201.618389][T22887] do_SYSENTER_32+0x73/0x90 [ 1201.622894][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1201.629203][T22887] [ 1201.631524][T22887] Local variable ----msg_sys@do_recvmmsg created at: [ 1201.638203][T22887] do_recvmmsg+0xc2/0x22e0 [ 1201.642611][T22887] do_recvmmsg+0xc2/0x22e0 [ 1201.811836][T22923] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 16:25:21 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1202.512833][T22936] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1202.545177][T22937] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1203.101058][T22887] not chained 630000 origins [ 1203.105688][T22887] CPU: 0 PID: 22887 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1203.114352][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1203.124401][T22887] Call Trace: [ 1203.127706][T22887] dump_stack+0x21c/0x280 [ 1203.132043][T22887] kmsan_internal_chain_origin+0x6f/0x130 [ 1203.137764][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1203.143572][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.148773][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1203.154588][T22887] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1203.160656][T22887] ? __wake_up+0x1fc/0x250 [ 1203.165083][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.170282][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1203.176094][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.181306][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1203.186943][T22887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1203.193013][T22887] ? _copy_from_user+0x201/0x310 [ 1203.197951][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.203154][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.208098][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.213222][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.218166][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.222679][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.227882][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.233083][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1203.238723][T22887] ? __msan_poison_alloca+0xe9/0x110 [ 1203.244013][T22887] ? __sys_recvmmsg+0xb5/0x5f0 [ 1203.248782][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.253464][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1203.259268][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1203.264473][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.270545][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.276706][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.281940][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.286794][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.291301][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.297632][T22887] RIP: 0023:0xf7efe549 [ 1203.301706][T22887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1203.321309][T22887] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1203.329723][T22887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80 [ 1203.337730][T22887] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1203.345707][T22887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1203.353682][T22887] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1203.361654][T22887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1203.369643][T22887] Uninit was stored to memory at: [ 1203.374695][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.380416][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.385354][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.390466][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.395407][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.399911][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.404591][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.410657][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.416823][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.422025][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.426875][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.431380][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.437695][T22887] [ 1203.440022][T22887] Uninit was stored to memory at: [ 1203.445054][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.450781][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.455720][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.460832][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.465769][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.470275][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.474956][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.481025][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.487200][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.492404][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.497256][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.501763][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.508081][T22887] [ 1203.510407][T22887] Uninit was stored to memory at: [ 1203.515442][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.521169][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.526110][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.531222][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.536162][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.540667][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.545433][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.551508][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.557662][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.562859][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.567710][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.572315][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.578625][T22887] [ 1203.580944][T22887] Uninit was stored to memory at: [ 1203.585976][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.591706][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.596643][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.601755][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.606696][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.611198][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.615876][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.621943][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.628100][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.633299][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.638151][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.642656][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.648966][T22887] [ 1203.651310][T22887] Uninit was stored to memory at: [ 1203.656338][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.662057][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.666995][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.672101][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.677039][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.681543][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.686223][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.692289][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.698465][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.703671][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.708534][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.713044][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.719355][T22887] [ 1203.721759][T22887] Uninit was stored to memory at: [ 1203.726789][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.732509][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.737446][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.742556][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.747502][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.752002][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.756676][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.762744][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.768899][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.774097][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.778950][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.783457][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.789767][T22887] [ 1203.792085][T22887] Uninit was stored to memory at: [ 1203.797114][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1203.802835][T22887] __msan_chain_origin+0x57/0xa0 [ 1203.807774][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1203.812885][T22887] get_compat_msghdr+0x108/0x2b0 [ 1203.817823][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1203.822329][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1203.827006][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1203.833072][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1203.839224][T22887] __do_fast_syscall_32+0x129/0x180 [ 1203.844431][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1203.849284][T22887] do_SYSENTER_32+0x73/0x90 [ 1203.853790][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1203.860100][T22887] [ 1203.862423][T22887] Local variable ----msg_sys@do_recvmmsg created at: [ 1203.869100][T22887] do_recvmmsg+0xc2/0x22e0 [ 1203.873514][T22887] do_recvmmsg+0xc2/0x22e0 [ 1204.482054][T22887] not chained 640000 origins [ 1204.486687][T22887] CPU: 0 PID: 22887 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1204.495460][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1204.505518][T22887] Call Trace: [ 1204.508814][T22887] dump_stack+0x21c/0x280 [ 1204.513150][T22887] kmsan_internal_chain_origin+0x6f/0x130 [ 1204.518871][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1204.524678][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.529875][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1204.535696][T22887] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1204.541765][T22887] ? __wake_up+0x1fc/0x250 [ 1204.546191][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.551394][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1204.557199][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.562400][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1204.568037][T22887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1204.574111][T22887] ? _copy_from_user+0x201/0x310 [ 1204.579056][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.584257][T22887] __msan_chain_origin+0x57/0xa0 [ 1204.589200][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1204.594330][T22887] get_compat_msghdr+0x108/0x2b0 [ 1204.599275][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1204.603783][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.608987][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.614190][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1204.619830][T22887] ? __msan_poison_alloca+0xe9/0x110 [ 1204.625117][T22887] ? __sys_recvmmsg+0xb5/0x5f0 [ 1204.629970][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1204.634652][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1204.640457][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1204.645660][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1204.651731][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1204.657896][T22887] __do_fast_syscall_32+0x129/0x180 [ 1204.663203][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1204.668067][T22887] do_SYSENTER_32+0x73/0x90 [ 1204.672576][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1204.678900][T22887] RIP: 0023:0xf7efe549 [ 1204.682973][T22887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1204.702579][T22887] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1204.710994][T22887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80 [ 1204.718964][T22887] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1204.726933][T22887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1204.734912][T22887] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1204.742892][T22887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1204.750865][T22887] Uninit was stored to memory at: [ 1204.755909][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1204.761632][T22887] __msan_chain_origin+0x57/0xa0 [ 1204.766571][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1204.771680][T22887] get_compat_msghdr+0x108/0x2b0 [ 1204.776617][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1204.781124][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1204.785802][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1204.791872][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1204.798092][T22887] __do_fast_syscall_32+0x129/0x180 [ 1204.803361][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1204.808202][T22887] do_SYSENTER_32+0x73/0x90 [ 1204.812681][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1204.819579][T22887] [ 1204.821879][T22887] Uninit was stored to memory at: [ 1204.826899][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1204.832618][T22887] __msan_chain_origin+0x57/0xa0 [ 1204.837545][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1204.842633][T22887] get_compat_msghdr+0x108/0x2b0 [ 1204.847549][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1204.852025][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1204.856680][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1204.862721][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1204.868876][T22887] __do_fast_syscall_32+0x129/0x180 [ 1204.874082][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1204.878920][T22887] do_SYSENTER_32+0x73/0x90 [ 1204.883416][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1204.889707][T22887] [ 1204.892004][T22887] Uninit was stored to memory at: [ 1204.897007][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1204.902700][T22887] __msan_chain_origin+0x57/0xa0 [ 1204.907625][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1204.912726][T22887] get_compat_msghdr+0x108/0x2b0 [ 1204.917643][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1204.922121][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1204.926787][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1204.933273][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1204.939424][T22887] __do_fast_syscall_32+0x129/0x180 [ 1204.944862][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1204.949684][T22887] do_SYSENTER_32+0x73/0x90 [ 1204.954177][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1204.960478][T22887] [ 1204.962776][T22887] Uninit was stored to memory at: [ 1204.967792][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1204.973488][T22887] __msan_chain_origin+0x57/0xa0 [ 1204.978399][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1204.983494][T22887] get_compat_msghdr+0x108/0x2b0 [ 1204.988420][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1204.992899][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1204.997550][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.003601][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.009750][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.014948][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.019775][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.024254][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.030544][T22887] [ 1205.032845][T22887] Uninit was stored to memory at: [ 1205.038458][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1205.044152][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.049077][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.054162][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.059074][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.063567][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.068216][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.074254][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.080395][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.085570][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.090393][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.094871][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.101178][T22887] [ 1205.103478][T22887] Uninit was stored to memory at: [ 1205.108498][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1205.114206][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.119151][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.124238][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.129150][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.133627][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.138308][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.144347][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.150488][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.155677][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.160502][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.164981][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.171271][T22887] [ 1205.173572][T22887] Uninit was stored to memory at: [ 1205.178580][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1205.184277][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.189191][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.194276][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.199189][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.203714][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.208365][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.214417][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.220563][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.225749][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.230585][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.235064][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.241359][T22887] [ 1205.243711][T22887] Local variable ----msg_sys@do_recvmmsg created at: [ 1205.250359][T22887] do_recvmmsg+0xc2/0x22e0 [ 1205.254797][T22887] do_recvmmsg+0xc2/0x22e0 [ 1205.586768][T22887] not chained 650000 origins [ 1205.591421][T22887] CPU: 1 PID: 22887 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1205.600084][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1205.610572][T22887] Call Trace: [ 1205.613868][T22887] dump_stack+0x21c/0x280 [ 1205.618203][T22887] kmsan_internal_chain_origin+0x6f/0x130 [ 1205.623920][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1205.629725][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.634923][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1205.640734][T22887] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1205.646802][T22887] ? __wake_up+0x1fc/0x250 [ 1205.651228][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.656428][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1205.662224][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.667401][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1205.673008][T22887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1205.679052][T22887] ? _copy_from_user+0x201/0x310 [ 1205.683967][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.689142][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.694062][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.699180][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.704095][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.708580][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.713753][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.718926][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1205.724533][T22887] ? __msan_poison_alloca+0xe9/0x110 [ 1205.729815][T22887] ? __sys_recvmmsg+0xb5/0x5f0 [ 1205.734583][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.739247][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1205.745027][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1205.750200][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.756241][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.762369][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.767541][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.772365][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.777277][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.783578][T22887] RIP: 0023:0xf7efe549 [ 1205.787620][T22887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1205.807198][T22887] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1205.815586][T22887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80 [ 1205.823546][T22887] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1205.831495][T22887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1205.839454][T22887] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1205.847410][T22887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1205.855356][T22887] Uninit was stored to memory at: [ 1205.860371][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1205.866064][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.870972][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.876054][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.880965][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.885442][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.890091][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.896145][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.902273][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.907461][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.912296][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.916774][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.923066][T22887] [ 1205.925371][T22887] Uninit was stored to memory at: [ 1205.930385][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1205.936109][T22887] __msan_chain_origin+0x57/0xa0 [ 1205.941021][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1205.946103][T22887] get_compat_msghdr+0x108/0x2b0 [ 1205.951012][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1205.955487][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1205.960137][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1205.966175][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1205.972312][T22887] __do_fast_syscall_32+0x129/0x180 [ 1205.977484][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1205.982309][T22887] do_SYSENTER_32+0x73/0x90 [ 1205.986787][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1205.993102][T22887] [ 1205.995412][T22887] Uninit was stored to memory at: [ 1206.000412][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.006104][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.011026][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.016164][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.021082][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.025563][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.030234][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.036283][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.042414][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.047621][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.052445][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.056923][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.063737][T22887] [ 1206.066046][T22887] Uninit was stored to memory at: [ 1206.071061][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.076758][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.081669][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.086753][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.091666][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.096156][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.100807][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.106845][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.112972][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.118143][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.122979][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.127455][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.133746][T22887] [ 1206.136051][T22887] Uninit was stored to memory at: [ 1206.141067][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.146774][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.151684][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.156767][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.161676][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.166153][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.170804][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.176931][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.183058][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.188236][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.193058][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.197544][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.203836][T22887] [ 1206.206141][T22887] Uninit was stored to memory at: [ 1206.211150][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.216841][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.221750][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.226832][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.231744][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.236221][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.240876][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.246917][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.253058][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.258237][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.263058][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.267545][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.273838][T22887] [ 1206.276137][T22887] Uninit was stored to memory at: [ 1206.281136][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.286828][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.291739][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.296824][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.301734][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.306217][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.310868][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.316907][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.323038][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.328227][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.333060][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.337546][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.343852][T22887] [ 1206.346155][T22887] Local variable ----msg_sys@do_recvmmsg created at: [ 1206.352804][T22887] do_recvmmsg+0xc2/0x22e0 [ 1206.357193][T22887] do_recvmmsg+0xc2/0x22e0 [ 1206.666263][T22887] not chained 660000 origins [ 1206.670890][T22887] CPU: 1 PID: 22887 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1206.679556][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1206.689641][T22887] Call Trace: [ 1206.692957][T22887] dump_stack+0x21c/0x280 [ 1206.697266][T22887] kmsan_internal_chain_origin+0x6f/0x130 [ 1206.705217][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1206.710993][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.716247][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1206.722221][T22887] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1206.728274][T22887] ? __wake_up+0x1fc/0x250 [ 1206.732668][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.737894][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1206.743683][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.748862][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1206.754490][T22887] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1206.760535][T22887] ? _copy_from_user+0x201/0x310 [ 1206.765470][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.770641][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.775553][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.780669][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.785585][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.790074][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.795251][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.800423][T22887] ? kmsan_internal_set_origin+0x85/0xc0 [ 1206.806045][T22887] ? __msan_poison_alloca+0xe9/0x110 [ 1206.811324][T22887] ? __sys_recvmmsg+0xb5/0x5f0 [ 1206.816063][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.820715][T22887] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1206.826507][T22887] ? kmsan_get_metadata+0x116/0x180 [ 1206.831693][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.837736][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.843867][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.849039][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.853885][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.858379][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1206.864680][T22887] RIP: 0023:0xf7efe549 [ 1206.868722][T22887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1206.888312][T22887] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1206.896697][T22887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005c80 [ 1206.904654][T22887] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1206.912612][T22887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1206.920576][T22887] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1206.928520][T22887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1206.936478][T22887] Uninit was stored to memory at: [ 1206.941483][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1206.947186][T22887] __msan_chain_origin+0x57/0xa0 [ 1206.952097][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1206.957185][T22887] get_compat_msghdr+0x108/0x2b0 [ 1206.962097][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1206.966576][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1206.971235][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1206.977275][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1206.983404][T22887] __do_fast_syscall_32+0x129/0x180 [ 1206.988574][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1206.993398][T22887] do_SYSENTER_32+0x73/0x90 [ 1206.997875][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.004166][T22887] [ 1207.006476][T22887] Uninit was stored to memory at: [ 1207.011487][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.017180][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.022090][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.027173][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.032085][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.036567][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.041226][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.047265][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.053393][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.058577][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.063418][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.067896][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.074186][T22887] [ 1207.076499][T22887] Uninit was stored to memory at: [ 1207.081510][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.087205][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.092116][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.097199][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.102111][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.106591][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.111242][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.117282][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.123410][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.128580][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.133405][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.137880][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.144170][T22887] [ 1207.146468][T22887] Uninit was stored to memory at: [ 1207.151470][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.157162][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.162093][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.167178][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.172090][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.176567][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.181230][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.187271][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.193401][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.198575][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.203401][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.207878][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.214170][T22887] [ 1207.216468][T22887] Uninit was stored to memory at: [ 1207.221478][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.227175][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.232084][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.237171][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.242095][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.246576][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.251224][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.257263][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.263407][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.268593][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.273422][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.277898][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.284190][T22887] [ 1207.286501][T22887] Uninit was stored to memory at: [ 1207.291504][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.297209][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.302119][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.307213][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.312131][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.316624][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.321289][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.327342][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.333479][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.338684][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.343509][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.347987][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.354293][T22887] [ 1207.356592][T22887] Uninit was stored to memory at: [ 1207.361593][T22887] kmsan_internal_chain_origin+0xad/0x130 [ 1207.367357][T22887] __msan_chain_origin+0x57/0xa0 [ 1207.372296][T22887] __get_compat_msghdr+0x6db/0x9d0 [ 1207.377385][T22887] get_compat_msghdr+0x108/0x2b0 [ 1207.382301][T22887] do_recvmmsg+0xdc7/0x22e0 [ 1207.386798][T22887] __sys_recvmmsg+0x340/0x5f0 [ 1207.391462][T22887] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1207.397515][T22887] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1207.403652][T22887] __do_fast_syscall_32+0x129/0x180 [ 1207.408829][T22887] do_fast_syscall_32+0x6a/0xc0 [ 1207.413714][T22887] do_SYSENTER_32+0x73/0x90 [ 1207.418227][T22887] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1207.424522][T22887] [ 1207.426826][T22887] Local variable ----msg_sys@do_recvmmsg created at: [ 1207.433527][T22887] do_recvmmsg+0xc2/0x22e0 [ 1207.437920][T22887] do_recvmmsg+0xc2/0x22e0 16:25:27 executing program 4: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:27 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_pktinfo(r0, 0x6, 0x24, 0x0, &(0x7f0000000040)) 16:25:27 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x27}, 0x0) 16:25:27 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:27 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:27 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0xb, &(0x7f0000000000)={0x11, {{0x2, 0x0, @multicast1}}}, 0x90) [ 1207.714412][T22961] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1207.865811][T22969] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:27 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x5409, 0x0) 16:25:27 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b70, 0x0) 16:25:27 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:27 executing program 3: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:27 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x28}, 0x0) [ 1208.741579][T22990] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:28 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000880)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) [ 1208.981389][T22992] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1209.248605][T22981] not chained 670000 origins [ 1209.253237][T22981] CPU: 0 PID: 22981 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1209.261922][T22981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1209.271977][T22981] Call Trace: [ 1209.275279][T22981] dump_stack+0x21c/0x280 [ 1209.279621][T22981] kmsan_internal_chain_origin+0x6f/0x130 [ 1209.285352][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1209.291164][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.296364][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1209.302183][T22981] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1209.308279][T22981] ? __wake_up+0x1fc/0x250 [ 1209.312699][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.317900][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1209.323712][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.328941][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1209.334584][T22981] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1209.340664][T22981] ? _copy_from_user+0x201/0x310 [ 1209.345604][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.350799][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.355732][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.360838][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.365770][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.370269][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.375458][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1209.381083][T22981] ? __msan_poison_alloca+0xe9/0x110 [ 1209.386359][T22981] ? __sys_recvmmsg+0xb5/0x5f0 [ 1209.391130][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.395826][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1209.401616][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1209.406803][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.412866][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.419015][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.424225][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.429067][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.433560][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.439872][T22981] RIP: 0023:0xf7efe549 [ 1209.443945][T22981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1209.463538][T22981] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1209.471950][T22981] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1209.479908][T22981] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1209.487880][T22981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1209.495847][T22981] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1209.503812][T22981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1209.511774][T22981] Uninit was stored to memory at: [ 1209.516795][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.522504][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.527428][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.532539][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.537470][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.541963][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.546640][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.552693][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.558834][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.564022][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.568874][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.573365][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.579681][T22981] [ 1209.581986][T22981] Uninit was stored to memory at: [ 1209.586998][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.592704][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.597626][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.602720][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.607643][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.612135][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.616804][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.622856][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.628997][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.634182][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.639020][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.643511][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.649819][T22981] [ 1209.652141][T22981] Uninit was stored to memory at: [ 1209.657167][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.662917][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.667844][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.672942][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.677868][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.682358][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.687021][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.693076][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.699224][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.704408][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.709253][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.713745][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.720046][T22981] [ 1209.722367][T22981] Uninit was stored to memory at: [ 1209.727401][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.733132][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.738066][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.743181][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.748108][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.752598][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.757263][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.763317][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.769459][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.774646][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.779484][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.783978][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.790278][T22981] [ 1209.792585][T22981] Uninit was stored to memory at: [ 1209.797601][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.803309][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.808230][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.813326][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.818250][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.822740][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.827415][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.833467][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.839609][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.844795][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.849630][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.854121][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.860420][T22981] [ 1209.862746][T22981] Uninit was stored to memory at: [ 1209.870202][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.875910][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.880833][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.885940][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.890864][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.895359][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.900024][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.906092][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.912232][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.917417][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.922255][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.926749][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1209.933050][T22981] [ 1209.935364][T22981] Uninit was stored to memory at: [ 1209.940380][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1209.946087][T22981] __msan_chain_origin+0x57/0xa0 [ 1209.951010][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1209.956107][T22981] get_compat_msghdr+0x108/0x2b0 [ 1209.961036][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1209.965535][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1209.970199][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1209.976252][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1209.982392][T22981] __do_fast_syscall_32+0x129/0x180 [ 1209.987577][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1209.992421][T22981] do_SYSENTER_32+0x73/0x90 [ 1209.996911][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1210.003216][T22981] [ 1210.005524][T22981] Local variable ----msg_sys@do_recvmmsg created at: [ 1210.012184][T22981] do_recvmmsg+0xc2/0x22e0 [ 1210.016588][T22981] do_recvmmsg+0xc2/0x22e0 [ 1210.931275][T22981] not chained 680000 origins [ 1210.935901][T22981] CPU: 0 PID: 22981 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1210.944564][T22981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1210.954611][T22981] Call Trace: [ 1210.957905][T22981] dump_stack+0x21c/0x280 [ 1210.962250][T22981] kmsan_internal_chain_origin+0x6f/0x130 [ 1210.968146][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1210.973954][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1210.979152][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1210.984962][T22981] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1210.991031][T22981] ? __wake_up+0x1fc/0x250 [ 1210.995451][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1211.000657][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1211.006473][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1211.011675][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1211.017320][T22981] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1211.023394][T22981] ? _copy_from_user+0x201/0x310 [ 1211.028335][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1211.033587][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.038529][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.043644][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.048603][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.053109][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1211.058310][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1211.063933][T22981] ? __msan_poison_alloca+0xe9/0x110 [ 1211.069208][T22981] ? __sys_recvmmsg+0xb5/0x5f0 [ 1211.073959][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.078625][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1211.084418][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1211.089608][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.095666][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.101814][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.106999][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.111837][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.116330][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.122638][T22981] RIP: 0023:0xf7efe549 [ 1211.126697][T22981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1211.146290][T22981] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1211.154686][T22981] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1211.162645][T22981] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1211.170603][T22981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1211.178559][T22981] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1211.186515][T22981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1211.194471][T22981] Uninit was stored to memory at: [ 1211.199487][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.205193][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.210113][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.215209][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.220132][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.224621][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.230074][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.236131][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.242270][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.247456][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.252291][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.256780][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.263079][T22981] [ 1211.265390][T22981] Uninit was stored to memory at: [ 1211.270422][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.276127][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.281048][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.286142][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.291066][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.295575][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.300238][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.306289][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.312427][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.317698][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.322537][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.327041][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.333341][T22981] [ 1211.335650][T22981] Uninit was stored to memory at: [ 1211.340675][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.346382][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.351305][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.356400][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.361333][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.365833][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.370497][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.376549][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.382689][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.387875][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.392713][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.397205][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.403509][T22981] [ 1211.405817][T22981] Uninit was stored to memory at: [ 1211.410832][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.416537][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.421459][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.426552][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.431476][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.435978][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.440647][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.446715][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.452860][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.458048][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.462896][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.467409][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.473725][T22981] [ 1211.476034][T22981] Uninit was stored to memory at: [ 1211.481051][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.486902][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.491830][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.496930][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.501855][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.506346][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.511011][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.517064][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.523208][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.528403][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.533250][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.537741][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.544041][T22981] [ 1211.546348][T22981] Uninit was stored to memory at: [ 1211.551362][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.557067][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.561992][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.567091][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.572017][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.576506][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.581169][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.587222][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.593362][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.598546][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.603383][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.607873][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.614173][T22981] [ 1211.616480][T22981] Uninit was stored to memory at: [ 1211.621495][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1211.627201][T22981] __msan_chain_origin+0x57/0xa0 [ 1211.632122][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1211.637217][T22981] get_compat_msghdr+0x108/0x2b0 [ 1211.642139][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1211.646643][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1211.651315][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1211.657378][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1211.663562][T22981] __do_fast_syscall_32+0x129/0x180 [ 1211.668754][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1211.673592][T22981] do_SYSENTER_32+0x73/0x90 [ 1211.678086][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1211.684388][T22981] [ 1211.686698][T22981] Local variable ----msg_sys@do_recvmmsg created at: [ 1211.693359][T22981] do_recvmmsg+0xc2/0x22e0 [ 1211.697761][T22981] do_recvmmsg+0xc2/0x22e0 [ 1212.194932][T22981] not chained 690000 origins [ 1212.199563][T22981] CPU: 1 PID: 22981 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1212.208253][T22981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1212.218315][T22981] Call Trace: [ 1212.221610][T22981] dump_stack+0x21c/0x280 [ 1212.225949][T22981] kmsan_internal_chain_origin+0x6f/0x130 [ 1212.231668][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1212.237473][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.242671][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1212.249436][T22981] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1212.255504][T22981] ? __wake_up+0x1fc/0x250 [ 1212.259921][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.265135][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1212.271197][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.276406][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1212.282047][T22981] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1212.288118][T22981] ? _copy_from_user+0x201/0x310 [ 1212.293056][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.298253][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.303205][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.308319][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.313266][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.317783][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.322984][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1212.328619][T22981] ? __msan_poison_alloca+0xe9/0x110 [ 1212.333905][T22981] ? __sys_recvmmsg+0xb5/0x5f0 [ 1212.338660][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.343327][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1212.349118][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1212.354304][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.360363][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.366506][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.371698][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.376541][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.381041][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.387356][T22981] RIP: 0023:0xf7efe549 [ 1212.391415][T22981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1212.411006][T22981] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1212.419415][T22981] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1212.427376][T22981] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1212.435348][T22981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1212.443304][T22981] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1212.451260][T22981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1212.459220][T22981] Uninit was stored to memory at: [ 1212.464239][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.469946][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.474868][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.479962][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.484900][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.489402][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.494082][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.500142][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.506302][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.511487][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.516323][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.520841][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.527141][T22981] [ 1212.529455][T22981] Uninit was stored to memory at: [ 1212.534481][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.540187][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.545130][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.550226][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.555150][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.559640][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.564305][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.570702][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.576842][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.582026][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.586862][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.591350][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.597648][T22981] [ 1212.599952][T22981] Uninit was stored to memory at: [ 1212.604964][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.610684][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.615606][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.620708][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.625719][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.630207][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.634870][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.640925][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.647091][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.652287][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.657129][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.661641][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.667948][T22981] [ 1212.670257][T22981] Uninit was stored to memory at: [ 1212.675276][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.680988][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.685912][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.691008][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.695932][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.700420][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.705082][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.711135][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.717287][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.722646][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.727481][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.731970][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.738270][T22981] [ 1212.740592][T22981] Uninit was stored to memory at: [ 1212.745605][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.751318][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.756462][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.761558][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.766484][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.770973][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.775644][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.781696][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.787839][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.793022][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.797861][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.802351][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.808650][T22981] [ 1212.810970][T22981] Uninit was stored to memory at: [ 1212.815982][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.821689][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.826610][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.831706][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.836633][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.841124][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.845791][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.851844][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.857985][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.863174][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.868011][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.872506][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.878805][T22981] [ 1212.881114][T22981] Uninit was stored to memory at: [ 1212.886128][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1212.891882][T22981] __msan_chain_origin+0x57/0xa0 [ 1212.896806][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1212.901903][T22981] get_compat_msghdr+0x108/0x2b0 [ 1212.906829][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1212.911317][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1212.915981][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1212.922553][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1212.928695][T22981] __do_fast_syscall_32+0x129/0x180 [ 1212.933878][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1212.938715][T22981] do_SYSENTER_32+0x73/0x90 [ 1212.943203][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1212.949501][T22981] [ 1212.951902][T22981] Local variable ----msg_sys@do_recvmmsg created at: [ 1212.958561][T22981] do_recvmmsg+0xc2/0x22e0 [ 1212.962961][T22981] do_recvmmsg+0xc2/0x22e0 [ 1213.333015][T22981] not chained 700000 origins [ 1213.337644][T22981] CPU: 0 PID: 22981 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1213.346306][T22981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1213.356353][T22981] Call Trace: [ 1213.359651][T22981] dump_stack+0x21c/0x280 [ 1213.364859][T22981] kmsan_internal_chain_origin+0x6f/0x130 [ 1213.370580][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1213.376384][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.381584][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1213.387396][T22981] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1213.393463][T22981] ? __wake_up+0x1fc/0x250 [ 1213.397881][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.403077][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1213.408881][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.414209][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1213.419855][T22981] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1213.425925][T22981] ? _copy_from_user+0x201/0x310 [ 1213.430868][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.436070][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.441015][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.446136][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.451081][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.456116][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.461322][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1213.466949][T22981] ? __msan_poison_alloca+0xe9/0x110 [ 1213.472307][T22981] ? __sys_recvmmsg+0xb5/0x5f0 [ 1213.477051][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.481707][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1213.487489][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1213.492719][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.498807][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.504959][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.510166][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.515008][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.519489][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.525799][T22981] RIP: 0023:0xf7efe549 [ 1213.529855][T22981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1213.549478][T22981] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1213.557967][T22981] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1213.565924][T22981] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1213.573977][T22981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1213.581943][T22981] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1213.589891][T22981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1213.597839][T22981] Uninit was stored to memory at: [ 1213.602856][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.608553][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.613473][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.618563][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.623488][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.627978][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.632630][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.638670][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.644820][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.650004][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.654840][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.659327][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.665628][T22981] [ 1213.667943][T22981] Uninit was stored to memory at: [ 1213.672952][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.678649][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.683576][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.688688][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.693613][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.698090][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.702837][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.708881][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.715024][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.720226][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.725061][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.729551][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.735843][T22981] [ 1213.738141][T22981] Uninit was stored to memory at: [ 1213.743151][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.748857][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.753775][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.758858][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.763782][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.768297][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.772946][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.779007][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.785156][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.790338][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.795175][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.799665][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.805963][T22981] [ 1213.808272][T22981] Uninit was stored to memory at: [ 1213.813279][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.818977][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.823900][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.828997][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.833930][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.838406][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.843057][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.849099][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.855227][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.860411][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.865246][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.869746][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.876038][T22981] [ 1213.878338][T22981] Uninit was stored to memory at: [ 1213.883354][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.889058][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.893969][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.899052][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.903975][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.908473][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.913145][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.919212][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.925367][T22981] __do_fast_syscall_32+0x129/0x180 [ 1213.930553][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1213.935378][T22981] do_SYSENTER_32+0x73/0x90 [ 1213.939855][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1213.946147][T22981] [ 1213.948456][T22981] Uninit was stored to memory at: [ 1213.953460][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1213.959156][T22981] __msan_chain_origin+0x57/0xa0 [ 1213.964085][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1213.969180][T22981] get_compat_msghdr+0x108/0x2b0 [ 1213.974093][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1213.978569][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1213.983228][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1213.989281][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1213.995411][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.000603][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.005441][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.009928][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.016226][T22981] [ 1214.018537][T22981] Uninit was stored to memory at: [ 1214.023553][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.029260][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.034174][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.039256][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.044177][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.048683][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.053351][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.059403][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.065557][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.070741][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.075567][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.080044][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.086336][T22981] [ 1214.088647][T22981] Local variable ----msg_sys@do_recvmmsg created at: [ 1214.095306][T22981] do_recvmmsg+0xc2/0x22e0 [ 1214.099694][T22981] do_recvmmsg+0xc2/0x22e0 [ 1214.333023][T22981] not chained 710000 origins [ 1214.337648][T22981] CPU: 0 PID: 22981 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1214.346313][T22981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1214.356366][T22981] Call Trace: [ 1214.359663][T22981] dump_stack+0x21c/0x280 [ 1214.364008][T22981] kmsan_internal_chain_origin+0x6f/0x130 [ 1214.369731][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1214.375536][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.380734][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1214.386548][T22981] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1214.392614][T22981] ? __wake_up+0x1fc/0x250 [ 1214.397028][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.402222][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1214.408025][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.413224][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1214.420512][T22981] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1214.426588][T22981] ? _copy_from_user+0x201/0x310 [ 1214.431523][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.436724][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.441661][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.446789][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.451732][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.456250][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.461453][T22981] ? kmsan_internal_set_origin+0x85/0xc0 [ 1214.467088][T22981] ? __msan_poison_alloca+0xe9/0x110 [ 1214.472376][T22981] ? __sys_recvmmsg+0xb5/0x5f0 [ 1214.477199][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.481879][T22981] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1214.487684][T22981] ? kmsan_get_metadata+0x116/0x180 [ 1214.492895][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.498967][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.505164][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.510364][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.515214][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.519710][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.526022][T22981] RIP: 0023:0xf7efe549 [ 1214.530082][T22981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1214.549666][T22981] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1214.558054][T22981] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1214.566011][T22981] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1214.574009][T22981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1214.581954][T22981] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1214.589901][T22981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1214.597847][T22981] Uninit was stored to memory at: [ 1214.602851][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.608548][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.613461][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.618546][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.623468][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.628044][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.632696][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.638754][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.644895][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.650085][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.654911][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.659442][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.665740][T22981] [ 1214.668054][T22981] Uninit was stored to memory at: [ 1214.673061][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.678817][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.683749][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.688845][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.693772][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.698249][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.702902][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.708979][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.715143][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.720318][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.725159][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.729651][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.735966][T22981] [ 1214.738273][T22981] Uninit was stored to memory at: [ 1214.743318][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.749025][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.753952][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.759034][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.763958][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.768448][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.773105][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.779160][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.785299][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.790486][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.795312][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.799804][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.806114][T22981] [ 1214.808442][T22981] Uninit was stored to memory at: [ 1214.813444][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.819155][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.824077][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.829172][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.834087][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.838573][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.843249][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.849303][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.855433][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.860605][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.865447][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.869952][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.876244][T22981] [ 1214.878549][T22981] Uninit was stored to memory at: [ 1214.883561][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.889268][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.894189][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.899300][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.904224][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.908712][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.913366][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.919407][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.925548][T22981] __do_fast_syscall_32+0x129/0x180 [ 1214.930731][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1214.935571][T22981] do_SYSENTER_32+0x73/0x90 [ 1214.940050][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1214.946350][T22981] [ 1214.948662][T22981] Uninit was stored to memory at: [ 1214.953670][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1214.959378][T22981] __msan_chain_origin+0x57/0xa0 [ 1214.964302][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1214.969418][T22981] get_compat_msghdr+0x108/0x2b0 [ 1214.974332][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1214.978810][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1214.983475][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1214.989537][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1214.995669][T22981] __do_fast_syscall_32+0x129/0x180 [ 1215.000840][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1215.005674][T22981] do_SYSENTER_32+0x73/0x90 [ 1215.010169][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1215.016467][T22981] [ 1215.018780][T22981] Uninit was stored to memory at: [ 1215.023796][T22981] kmsan_internal_chain_origin+0xad/0x130 [ 1215.029503][T22981] __msan_chain_origin+0x57/0xa0 [ 1215.034419][T22981] __get_compat_msghdr+0x6db/0x9d0 [ 1215.039505][T22981] get_compat_msghdr+0x108/0x2b0 [ 1215.044427][T22981] do_recvmmsg+0xdc7/0x22e0 [ 1215.048928][T22981] __sys_recvmmsg+0x340/0x5f0 [ 1215.053594][T22981] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1215.059638][T22981] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1215.065784][T22981] __do_fast_syscall_32+0x129/0x180 [ 1215.070969][T22981] do_fast_syscall_32+0x6a/0xc0 [ 1215.075795][T22981] do_SYSENTER_32+0x73/0x90 [ 1215.080288][T22981] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1215.086581][T22981] [ 1215.088882][T22981] Local variable ----msg_sys@do_recvmmsg created at: [ 1215.095545][T22981] do_recvmmsg+0xc2/0x22e0 [ 1215.099952][T22981] do_recvmmsg+0xc2/0x22e0 16:25:34 executing program 4: r0 = socket(0x0, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:34 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x540b, 0x0) 16:25:34 executing program 3: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:34 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:34 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x29}, 0x0) 16:25:34 executing program 5: sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) pipe2(&(0x7f0000004440), 0x0) [ 1215.406337][T23026] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1215.481195][T23028] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:35 executing program 5: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0xfffffffffffffe93) 16:25:35 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x5606, 0x0) 16:25:35 executing program 3: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:35 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) r4 = socket(0x10, 0x80002, 0x0) r5 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r5, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:35 executing program 4: r0 = socket(0x0, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:35 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2a}, 0x0) [ 1216.241776][T23051] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:35 executing program 5: prctl$PR_MCE_KILL(0x8, 0x1, 0x0) [ 1216.369990][T23060] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:36 executing program 2: r0 = socket$inet(0x2, 0x3, 0x5) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x89e1, 0x0) 16:25:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:36 executing program 1: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:36 executing program 4: r0 = socket(0x0, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:36 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000001c0), 0x4) 16:25:36 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2b}, 0x0) [ 1217.211519][T23082] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:36 executing program 2: r0 = socket$inet(0x2, 0x3, 0x5) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x8912, &(0x7f0000000540)) 16:25:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:37 executing program 4: r0 = socket(0x10, 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:37 executing program 5: prctl$PR_MCE_KILL(0x10, 0x0, 0x0) 16:25:37 executing program 1: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:37 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2c}, 0x0) 16:25:37 executing program 2: setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000000)={0x0, {{0x2, 0x0, @multicast1}}}, 0x90) r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x5411, &(0x7f00000000c0)) [ 1218.357971][T23111] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:38 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:38 executing program 2: prctl$PR_MCE_KILL(0x2, 0x15a0000, 0x0) 16:25:38 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b60, 0x0) 16:25:38 executing program 4: r0 = socket(0x10, 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:38 executing program 1: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:38 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2d}, 0x0) 16:25:38 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) [ 1219.171807][T23132] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:38 executing program 2: r0 = socket$inet(0x2, 0x3, 0x5) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x8923, &(0x7f0000000540)) 16:25:39 executing program 4: r0 = socket(0x10, 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) [ 1219.444252][T23144] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:39 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x7, 0x4, 0x3f0, 0x1f8, 0xe8, 0x0, 0xe8, 0x308, 0x308, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@AUDIT={0x28, 'AUDIT\x00'}}, {{@arp={@local, @remote, 0x0, 0x0, 0x0, 0x0, {}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'ip6_vti0\x00', 'ip6erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@local, @empty, @private, @empty}}}, {{@arp={@multicast2, @rand_addr, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'macsec0\x00', 'veth1_to_bond\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@link_local, @multicast2, @broadcast}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x440) 16:25:39 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:39 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:39 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2e}, 0x0) 16:25:39 executing program 5: r0 = socket$inet(0x2, 0x3, 0x5) getsockopt$inet_buf(r0, 0x0, 0x32, 0x0, &(0x7f0000000100)) 16:25:39 executing program 4: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:39 executing program 2: setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000000)={0x0, {{0x2, 0x0, @multicast1}}}, 0x90) r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x8903, &(0x7f00000000c0)) [ 1220.269613][T23163] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:39 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:25:40 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x560c, 0x0) 16:25:40 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b32, 0x0) 16:25:40 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x2f}, 0x0) 16:25:40 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:40 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1221.207587][T23180] not chained 720000 origins [ 1221.212215][T23180] CPU: 1 PID: 23180 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1221.220880][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1221.230932][T23180] Call Trace: [ 1221.234221][T23180] dump_stack+0x21c/0x280 [ 1221.238566][T23180] kmsan_internal_chain_origin+0x6f/0x130 [ 1221.244278][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1221.250158][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.255346][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1221.261143][T23180] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1221.267200][T23180] ? __wake_up+0x1fc/0x250 [ 1221.271602][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.276789][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1221.282580][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.287769][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1221.293400][T23180] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1221.299462][T23180] ? _copy_from_user+0x201/0x310 [ 1221.304389][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.309577][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.314506][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.319608][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.324542][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.329042][T23180] ? __msan_get_context_state+0x9/0x20 [ 1221.334490][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.339771][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.344960][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1221.350580][T23180] ? __msan_poison_alloca+0xe9/0x110 [ 1221.355854][T23180] ? __sys_recvmmsg+0xb5/0x5f0 [ 1221.360611][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.365279][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1221.371084][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1221.376272][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.382335][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.388478][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.393672][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.398512][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.403006][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.409315][T23180] RIP: 0023:0xf7efe549 [ 1221.413374][T23180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1221.433071][T23180] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1221.441470][T23180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1221.449425][T23180] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1221.457381][T23180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1221.465338][T23180] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1221.473295][T23180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1221.481692][T23180] Uninit was stored to memory at: [ 1221.486709][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.492425][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.497352][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.502448][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.507373][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.511864][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.516533][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.522587][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.528728][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.533911][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.538748][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.543238][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.549540][T23180] [ 1221.551851][T23180] Uninit was stored to memory at: [ 1221.556864][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.562572][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.567496][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.572592][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.577514][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.582003][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.586665][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.592717][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.598857][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.604059][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.608895][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.613423][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.619729][T23180] [ 1221.622046][T23180] Uninit was stored to memory at: [ 1221.627072][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.632782][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.637723][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.642827][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.647764][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.652264][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.656933][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.663004][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.669163][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.674356][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.679198][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.683694][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.689997][T23180] [ 1221.692306][T23180] Uninit was stored to memory at: [ 1221.697325][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.703033][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.707958][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.713054][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.717987][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.722476][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.727162][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.733223][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.739369][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.744559][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.749402][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.753896][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.760202][T23180] [ 1221.762527][T23180] Uninit was stored to memory at: [ 1221.767547][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.773258][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.778181][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.783275][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.788202][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.792690][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.797352][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.803407][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.809544][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.814728][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.819569][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.824061][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.830365][T23180] [ 1221.832672][T23180] Uninit was stored to memory at: [ 1221.837684][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.843391][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.848314][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.853408][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.858333][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.862823][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.867483][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.873535][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.879673][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.884856][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.889693][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.894181][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.900479][T23180] [ 1221.902786][T23180] Uninit was stored to memory at: [ 1221.907797][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1221.913503][T23180] __msan_chain_origin+0x57/0xa0 [ 1221.918427][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1221.923521][T23180] get_compat_msghdr+0x108/0x2b0 [ 1221.928444][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1221.932932][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1221.937599][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1221.943652][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1221.949790][T23180] __do_fast_syscall_32+0x129/0x180 [ 1221.954974][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1221.959820][T23180] do_SYSENTER_32+0x73/0x90 [ 1221.964310][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1221.970611][T23180] [ 1221.972921][T23180] Local variable ----msg_sys@do_recvmmsg created at: [ 1221.979588][T23180] do_recvmmsg+0xc2/0x22e0 [ 1221.983992][T23180] do_recvmmsg+0xc2/0x22e0 16:25:41 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x17, &(0x7f0000000000)={0x0, {{0x2, 0x0, @multicast1}}}, 0x90) [ 1222.088066][T23191] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 16:25:41 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x5416, 0x0) 16:25:41 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x30}, 0x0) 16:25:41 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) [ 1223.091242][T23210] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1223.899823][T23180] not chained 730000 origins [ 1223.904451][T23180] CPU: 0 PID: 23180 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1223.913112][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1223.923157][T23180] Call Trace: [ 1223.926451][T23180] dump_stack+0x21c/0x280 [ 1223.930791][T23180] kmsan_internal_chain_origin+0x6f/0x130 [ 1223.936512][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1223.942319][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1223.947516][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1223.953326][T23180] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1223.959396][T23180] ? __wake_up+0x1fc/0x250 [ 1223.963813][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1223.969023][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1223.974828][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1223.980986][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1223.986654][T23180] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1223.992724][T23180] ? _copy_from_user+0x201/0x310 [ 1223.997790][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1224.002990][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.007926][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.013045][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.017990][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.022500][T23180] ? __msan_get_context_state+0x9/0x20 [ 1224.027957][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1224.033159][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1224.038362][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1224.043997][T23180] ? __msan_poison_alloca+0xe9/0x110 [ 1224.049306][T23180] ? __sys_recvmmsg+0xb5/0x5f0 [ 1224.054074][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.058756][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1224.064560][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1224.069765][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.075839][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.081993][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.087192][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.092044][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.096549][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.102873][T23180] RIP: 0023:0xf7efe549 [ 1224.106942][T23180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1224.126543][T23180] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1224.134958][T23180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1224.142929][T23180] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1224.150899][T23180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1224.158867][T23180] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1224.166835][T23180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1224.174804][T23180] Uninit was stored to memory at: [ 1224.179835][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.185644][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.190583][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.195693][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.200629][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.205137][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.209811][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.215878][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.222030][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.227228][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.232074][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.236675][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.242987][T23180] [ 1224.245302][T23180] Uninit was stored to memory at: [ 1224.250331][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.256051][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.260988][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.266101][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.271037][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.275537][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.280215][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.286279][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.292432][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.297629][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.302477][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.306982][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.313290][T23180] [ 1224.315610][T23180] Uninit was stored to memory at: [ 1224.320645][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.326368][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.331303][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.336415][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.341351][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.345871][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.350547][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.356621][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.362774][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.367975][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.372827][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.377335][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.383648][T23180] [ 1224.385965][T23180] Uninit was stored to memory at: [ 1224.390998][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.396721][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.401660][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.406775][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.411712][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.416216][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.420895][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.426964][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.433135][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.438349][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.443196][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.447696][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.454004][T23180] [ 1224.456321][T23180] Uninit was stored to memory at: [ 1224.461350][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.467509][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.472449][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.477558][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.482611][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.487127][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.491926][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.497969][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.504103][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.509277][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.514106][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.518585][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.524878][T23180] [ 1224.527179][T23180] Uninit was stored to memory at: [ 1224.532185][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.537880][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.542792][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.547876][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.552788][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.557267][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.561918][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.567972][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.574125][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.579310][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.584136][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.588614][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.594905][T23180] [ 1224.597203][T23180] Uninit was stored to memory at: [ 1224.602202][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1224.607894][T23180] __msan_chain_origin+0x57/0xa0 [ 1224.612806][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1224.617890][T23180] get_compat_msghdr+0x108/0x2b0 [ 1224.622803][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1224.627281][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1224.631931][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1224.637971][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1224.644126][T23180] __do_fast_syscall_32+0x129/0x180 [ 1224.649296][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1224.654120][T23180] do_SYSENTER_32+0x73/0x90 [ 1224.658596][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1224.664900][T23180] [ 1224.667200][T23180] Local variable ----msg_sys@do_recvmmsg created at: [ 1224.673856][T23180] do_recvmmsg+0xc2/0x22e0 [ 1224.678250][T23180] do_recvmmsg+0xc2/0x22e0 [ 1225.002826][T23180] not chained 740000 origins [ 1225.007450][T23180] CPU: 1 PID: 23180 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1225.016121][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1225.026166][T23180] Call Trace: [ 1225.029436][T23180] dump_stack+0x21c/0x280 [ 1225.033747][T23180] kmsan_internal_chain_origin+0x6f/0x130 [ 1225.039443][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1225.045223][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.050394][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1225.056177][T23180] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1225.062220][T23180] ? __wake_up+0x1fc/0x250 [ 1225.066613][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.071825][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1225.077606][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.082792][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1225.088403][T23180] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1225.094446][T23180] ? _copy_from_user+0x201/0x310 [ 1225.099370][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.104661][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.109596][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.114733][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.119679][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.124179][T23180] ? __msan_get_context_state+0x9/0x20 [ 1225.129610][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.134788][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.139966][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1225.145574][T23180] ? __msan_poison_alloca+0xe9/0x110 [ 1225.150833][T23180] ? __sys_recvmmsg+0xb5/0x5f0 [ 1225.155572][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.160223][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1225.166002][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1225.171185][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.177226][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.183381][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.188571][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.193422][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.197917][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.204218][T23180] RIP: 0023:0xf7efe549 [ 1225.208264][T23180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1225.227857][T23180] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1225.236244][T23180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1225.244190][T23180] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1225.252150][T23180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1225.260099][T23180] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1225.268056][T23180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1225.276105][T23180] Uninit was stored to memory at: [ 1225.281112][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.286839][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.291751][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.296853][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.301774][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.306254][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.310903][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.316958][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.323085][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.328257][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.333099][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.337581][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.343873][T23180] [ 1225.346174][T23180] Uninit was stored to memory at: [ 1225.351173][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.356866][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.361809][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.366893][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.371897][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.376375][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.381024][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.387082][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.393231][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.398406][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.403232][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.407718][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.414009][T23180] [ 1225.416307][T23180] Uninit was stored to memory at: [ 1225.421321][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.427015][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.431927][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.437011][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.441922][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.446413][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.451102][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.457145][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.463276][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.468563][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.473392][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.477892][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.484191][T23180] [ 1225.486496][T23180] Uninit was stored to memory at: [ 1225.491506][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.497299][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.502211][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.507309][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.512251][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.516730][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.521385][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.527441][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.533584][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.538756][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.543580][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.548057][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.554350][T23180] [ 1225.556650][T23180] Uninit was stored to memory at: [ 1225.561655][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.567352][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.572263][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.577349][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.582272][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.586760][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.591426][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.597482][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.603614][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.608787][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.613625][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.618117][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.624418][T23180] [ 1225.626735][T23180] Uninit was stored to memory at: [ 1225.631746][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.637441][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.642353][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.647437][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.652362][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.656842][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.661506][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.667544][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.673672][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.678845][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.683669][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.688148][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.694446][T23180] [ 1225.696755][T23180] Uninit was stored to memory at: [ 1225.701769][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1225.707463][T23180] __msan_chain_origin+0x57/0xa0 [ 1225.712376][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1225.717459][T23180] get_compat_msghdr+0x108/0x2b0 [ 1225.722375][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1225.726865][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1225.731515][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1225.737641][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1225.743771][T23180] __do_fast_syscall_32+0x129/0x180 [ 1225.748943][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1225.753780][T23180] do_SYSENTER_32+0x73/0x90 [ 1225.758257][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1225.764562][T23180] [ 1225.766864][T23180] Local variable ----msg_sys@do_recvmmsg created at: [ 1225.773525][T23180] do_recvmmsg+0xc2/0x22e0 [ 1225.777914][T23180] do_recvmmsg+0xc2/0x22e0 [ 1226.043036][T23180] not chained 750000 origins [ 1226.047659][T23180] CPU: 1 PID: 23180 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1226.056330][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1226.066382][T23180] Call Trace: [ 1226.069853][T23180] dump_stack+0x21c/0x280 [ 1226.074195][T23180] kmsan_internal_chain_origin+0x6f/0x130 [ 1226.079913][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1226.085718][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.090916][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1226.096729][T23180] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1226.102798][T23180] ? __wake_up+0x1fc/0x250 [ 1226.107212][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.112410][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1226.118213][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.123414][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1226.129049][T23180] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1226.135115][T23180] ? _copy_from_user+0x201/0x310 [ 1226.140051][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.145249][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.150186][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.155303][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.160246][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.164756][T23180] ? __msan_get_context_state+0x9/0x20 [ 1226.170242][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.175446][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.180647][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1226.186290][T23180] ? __msan_poison_alloca+0xe9/0x110 [ 1226.191578][T23180] ? __sys_recvmmsg+0xb5/0x5f0 [ 1226.196334][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.200988][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1226.206779][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1226.211965][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.218010][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.224153][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.229328][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.234166][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.238649][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.244947][T23180] RIP: 0023:0xf7efe549 [ 1226.249009][T23180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1226.268599][T23180] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1226.276985][T23180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1226.284930][T23180] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1226.292874][T23180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1226.300829][T23180] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1226.308783][T23180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1226.316742][T23180] Uninit was stored to memory at: [ 1226.321762][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.327458][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.332544][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.337730][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.342643][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.347120][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.351830][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.357913][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.364047][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.369221][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.374045][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.378524][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.384820][T23180] [ 1226.387119][T23180] Uninit was stored to memory at: [ 1226.392126][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.397819][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.402728][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.407833][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.412775][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.417264][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.421926][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.427966][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.434716][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.439893][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.444715][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.449193][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.455491][T23180] [ 1226.457797][T23180] Uninit was stored to memory at: [ 1226.462813][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.468516][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.473433][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.478539][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.483490][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.487976][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.492642][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.498688][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.504818][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.509992][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.514834][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.519325][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.525647][T23180] [ 1226.527949][T23180] Uninit was stored to memory at: [ 1226.532948][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.538641][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.543553][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.548637][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.553549][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.558025][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.562688][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.568739][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.574867][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.580037][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.584862][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.589341][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.595631][T23180] [ 1226.597930][T23180] Uninit was stored to memory at: [ 1226.602948][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.608641][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.613552][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.618659][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.623585][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.628069][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.632722][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.638771][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.644905][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.650093][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.654947][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.659427][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.665721][T23180] [ 1226.668050][T23180] Uninit was stored to memory at: [ 1226.673054][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.678752][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.683685][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.688768][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.693695][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.698170][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.702821][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.708874][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.715017][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.720211][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.725038][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.729517][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.735809][T23180] [ 1226.738107][T23180] Uninit was stored to memory at: [ 1226.743107][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1226.748802][T23180] __msan_chain_origin+0x57/0xa0 [ 1226.753715][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1226.758797][T23180] get_compat_msghdr+0x108/0x2b0 [ 1226.763709][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1226.768186][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1226.772851][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1226.778891][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1226.785018][T23180] __do_fast_syscall_32+0x129/0x180 [ 1226.790188][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1226.795012][T23180] do_SYSENTER_32+0x73/0x90 [ 1226.799489][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1226.805781][T23180] [ 1226.808091][T23180] Local variable ----msg_sys@do_recvmmsg created at: [ 1226.814739][T23180] do_recvmmsg+0xc2/0x22e0 [ 1226.819130][T23180] do_recvmmsg+0xc2/0x22e0 [ 1227.076575][T23180] not chained 760000 origins [ 1227.081207][T23180] CPU: 1 PID: 23180 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1227.089872][T23180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1227.099925][T23180] Call Trace: [ 1227.103223][T23180] dump_stack+0x21c/0x280 [ 1227.107584][T23180] kmsan_internal_chain_origin+0x6f/0x130 [ 1227.113309][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1227.119115][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.124352][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1227.130168][T23180] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1227.136234][T23180] ? __wake_up+0x1fc/0x250 [ 1227.140652][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.145852][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1227.151653][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.156853][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1227.162479][T23180] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1227.168528][T23180] ? _copy_from_user+0x201/0x310 [ 1227.173440][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.178618][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.183534][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.188636][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.193580][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.198069][T23180] ? __msan_get_context_state+0x9/0x20 [ 1227.203518][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.208693][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.213870][T23180] ? kmsan_internal_set_origin+0x85/0xc0 [ 1227.219479][T23180] ? __msan_poison_alloca+0xe9/0x110 [ 1227.224755][T23180] ? __sys_recvmmsg+0xb5/0x5f0 [ 1227.229508][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.234178][T23180] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1227.239962][T23180] ? kmsan_get_metadata+0x116/0x180 [ 1227.245140][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.251182][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.257329][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.262501][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.267333][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.271813][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.278112][T23180] RIP: 0023:0xf7efe549 [ 1227.282156][T23180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1227.301734][T23180] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1227.310118][T23180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1227.318064][T23180] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1227.326011][T23180] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1227.333967][T23180] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1227.341928][T23180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1227.349888][T23180] Uninit was stored to memory at: [ 1227.354896][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.360591][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.365515][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.370597][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.375520][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.379996][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.384648][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.390698][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.396824][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.401996][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.406821][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.411304][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.417594][T23180] [ 1227.419904][T23180] Uninit was stored to memory at: [ 1227.424916][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.430610][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.435534][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.440631][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.445563][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.450054][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.454721][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.460785][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.466921][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.472145][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.476985][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.481482][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.487785][T23180] [ 1227.490194][T23180] Uninit was stored to memory at: [ 1227.495255][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.500998][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.505914][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.511012][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.515932][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.520409][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.525061][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.531111][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.537252][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.542463][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.547290][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.551782][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.558074][T23180] [ 1227.560372][T23180] Uninit was stored to memory at: [ 1227.565375][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.571080][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.575991][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.581073][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.585985][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.590473][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.595122][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.601171][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.607309][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.612483][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.617315][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.621804][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.628146][T23180] [ 1227.630448][T23180] Uninit was stored to memory at: [ 1227.635453][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.641163][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.646092][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.651178][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.656103][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.660590][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.665279][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.671347][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.677478][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.682649][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.687489][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.691966][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.698257][T23180] [ 1227.700557][T23180] Uninit was stored to memory at: [ 1227.705562][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.711257][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.716167][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.721250][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.726160][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.730639][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.735291][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.741345][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.747491][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.752663][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.757488][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.761966][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.768258][T23180] [ 1227.770557][T23180] Uninit was stored to memory at: [ 1227.775566][T23180] kmsan_internal_chain_origin+0xad/0x130 [ 1227.781261][T23180] __msan_chain_origin+0x57/0xa0 [ 1227.786171][T23180] __get_compat_msghdr+0x6db/0x9d0 [ 1227.791274][T23180] get_compat_msghdr+0x108/0x2b0 [ 1227.796185][T23180] do_recvmmsg+0xdc7/0x22e0 [ 1227.800716][T23180] __sys_recvmmsg+0x340/0x5f0 [ 1227.805387][T23180] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1227.811478][T23180] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1227.817610][T23180] __do_fast_syscall_32+0x129/0x180 [ 1227.822787][T23180] do_fast_syscall_32+0x6a/0xc0 [ 1227.827612][T23180] do_SYSENTER_32+0x73/0x90 [ 1227.832095][T23180] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1227.838390][T23180] [ 1227.840690][T23180] Local variable ----msg_sys@do_recvmmsg created at: [ 1227.847355][T23180] do_recvmmsg+0xc2/0x22e0 [ 1227.851746][T23180] do_recvmmsg+0xc2/0x22e0 16:25:47 executing program 4: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:47 executing program 2: r0 = syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000180)) 16:25:47 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$sock(r0, &(0x7f0000003380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20002855) 16:25:47 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:47 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x31}, 0x0) 16:25:47 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1228.226408][T23229] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1228.371385][T23239] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:48 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mtu(r0, 0x0, 0x29, 0x0, 0x11) 16:25:48 executing program 2: r0 = socket$inet(0x2, 0x3, 0x5) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x89e1, &(0x7f0000000540)) 16:25:48 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:48 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x32}, 0x0) 16:25:48 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1229.031237][T23246] not chained 770000 origins [ 1229.035863][T23246] CPU: 0 PID: 23246 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1229.044518][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1229.054556][T23246] Call Trace: [ 1229.057836][T23246] dump_stack+0x21c/0x280 [ 1229.062160][T23246] kmsan_internal_chain_origin+0x6f/0x130 [ 1229.067865][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1229.073661][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.078851][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1229.084649][T23246] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1229.090704][T23246] ? __wake_up+0x1fc/0x250 [ 1229.095110][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.100295][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1229.106089][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.111280][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1229.116903][T23246] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1229.122961][T23246] ? _copy_from_user+0x201/0x310 [ 1229.127889][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.133077][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.138017][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.143122][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.148055][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.152563][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.157752][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.162940][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1229.168562][T23246] ? __msan_poison_alloca+0xe9/0x110 [ 1229.173922][T23246] ? __sys_recvmmsg+0xb5/0x5f0 [ 1229.178676][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.183366][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1229.189157][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1229.194343][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.200399][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.206632][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.211822][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.216660][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.221152][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.227463][T23246] RIP: 0023:0xf7efe549 [ 1229.231518][T23246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1229.251107][T23246] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1229.259505][T23246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1229.267652][T23246] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1229.275608][T23246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1229.283567][T23246] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1229.291525][T23246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1229.299484][T23246] Uninit was stored to memory at: [ 1229.304505][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.310211][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.315134][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.320227][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.325413][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.329900][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.334583][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.340642][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.346781][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.351966][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.356831][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.361331][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.367633][T23246] [ 1229.369940][T23246] Uninit was stored to memory at: [ 1229.374961][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.380667][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.385617][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.390712][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.395642][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.400131][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.404796][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.410860][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.417008][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.422193][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.427032][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.431521][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.437820][T23246] [ 1229.440127][T23246] Uninit was stored to memory at: [ 1229.445142][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.450849][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.455769][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.460866][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.465791][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.470295][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.474967][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.481034][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.487200][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.492391][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.497233][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.501732][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.508034][T23246] [ 1229.510346][T23246] Uninit was stored to memory at: [ 1229.515363][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.521070][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.525992][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.531087][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.536012][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.540504][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.545165][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.551218][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.557357][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.562542][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.567377][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.571866][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.578166][T23246] [ 1229.580473][T23246] Uninit was stored to memory at: [ 1229.585486][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.591193][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.596123][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.601220][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.606147][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.610637][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.615300][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.621351][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.627490][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.632678][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.637517][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.642021][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.648321][T23246] [ 1229.650636][T23246] Uninit was stored to memory at: [ 1229.655678][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.661387][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.666433][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.671536][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.676470][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.680970][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.685634][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.691686][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.697827][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.703023][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.707861][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.712352][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.718652][T23246] [ 1229.720957][T23246] Uninit was stored to memory at: [ 1229.725969][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1229.731673][T23246] __msan_chain_origin+0x57/0xa0 [ 1229.736599][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1229.741694][T23246] get_compat_msghdr+0x108/0x2b0 [ 1229.746704][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1229.751191][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1229.755854][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1229.761904][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1229.768043][T23246] __do_fast_syscall_32+0x129/0x180 [ 1229.773227][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1229.778062][T23246] do_SYSENTER_32+0x73/0x90 [ 1229.782550][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1229.788861][T23246] [ 1229.791168][T23246] Local variable ----msg_sys@do_recvmmsg created at: [ 1229.797838][T23246] do_recvmmsg+0xc2/0x22e0 [ 1229.803295][T23246] do_recvmmsg+0xc2/0x22e0 16:25:49 executing program 5: socket$inet(0x2, 0x3, 0x5) socket$inet_tcp(0x2, 0x1, 0x0) openat$null(0xffffffffffffff9c, &(0x7f00000033c0)='/dev/null\x00', 0x200000, 0x0) pselect6(0x40, &(0x7f0000000040)={0x4}, &(0x7f0000000080)={0x23}, 0x0, &(0x7f0000000100)={0x77359400}, 0x0) [ 1230.476550][T23258] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1230.619366][T23269] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1231.446556][T23246] not chained 780000 origins [ 1231.451184][T23246] CPU: 1 PID: 23246 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1231.459846][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1231.469892][T23246] Call Trace: [ 1231.473187][T23246] dump_stack+0x21c/0x280 [ 1231.477524][T23246] kmsan_internal_chain_origin+0x6f/0x130 [ 1231.483256][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1231.489081][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.494288][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1231.500102][T23246] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1231.506173][T23246] ? __wake_up+0x1fc/0x250 [ 1231.510591][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.515790][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1231.521593][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.526798][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1231.532435][T23246] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1231.538511][T23246] ? _copy_from_user+0x201/0x310 [ 1231.543446][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.548651][T23246] __msan_chain_origin+0x57/0xa0 [ 1231.553678][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1231.558798][T23246] get_compat_msghdr+0x108/0x2b0 [ 1231.563743][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1231.568249][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.573447][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.578654][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1231.584288][T23246] ? __msan_poison_alloca+0xe9/0x110 [ 1231.589575][T23246] ? __sys_recvmmsg+0xb5/0x5f0 [ 1231.594340][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1231.599016][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1231.604810][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1231.609985][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1231.616026][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1231.622154][T23246] __do_fast_syscall_32+0x129/0x180 [ 1231.627334][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1231.632211][T23246] do_SYSENTER_32+0x73/0x90 [ 1231.636769][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1231.643074][T23246] RIP: 0023:0xf7efe549 [ 1231.647124][T23246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1231.666713][T23246] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1231.675103][T23246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1231.683060][T23246] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1231.691004][T23246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1231.698951][T23246] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1231.706897][T23246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1231.715118][T23246] Uninit was stored to memory at: [ 1231.720122][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1231.725831][T23246] __msan_chain_origin+0x57/0xa0 [ 1231.730750][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1231.735858][T23246] get_compat_msghdr+0x108/0x2b0 [ 1231.740798][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1231.745277][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1231.749926][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1231.755965][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1231.762130][T23246] __do_fast_syscall_32+0x129/0x180 [ 1231.767302][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1231.772129][T23246] do_SYSENTER_32+0x73/0x90 [ 1231.776635][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1231.782930][T23246] [ 1231.785243][T23246] Uninit was stored to memory at: [ 1231.790244][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1231.795956][T23246] __msan_chain_origin+0x57/0xa0 [ 1231.800866][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1231.805960][T23246] get_compat_msghdr+0x108/0x2b0 [ 1231.810872][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1231.815360][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1231.820010][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1231.826049][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1231.832174][T23246] __do_fast_syscall_32+0x129/0x180 [ 1231.837362][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1231.842200][T23246] do_SYSENTER_32+0x73/0x90 [ 1231.846701][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1231.852992][T23246] [ 1231.855306][T23246] Uninit was stored to memory at: [ 1231.860314][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1231.866025][T23246] __msan_chain_origin+0x57/0xa0 [ 1231.870944][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1231.876028][T23246] get_compat_msghdr+0x108/0x2b0 [ 1231.880939][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1231.885428][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1231.890077][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1231.896115][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1231.902242][T23246] __do_fast_syscall_32+0x129/0x180 [ 1231.907415][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1231.912240][T23246] do_SYSENTER_32+0x73/0x90 [ 1231.916719][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1231.923019][T23246] [ 1231.925319][T23246] Uninit was stored to memory at: [ 1231.930317][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1231.936010][T23246] __msan_chain_origin+0x57/0xa0 [ 1231.940932][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1231.946029][T23246] get_compat_msghdr+0x108/0x2b0 [ 1231.950941][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1231.955429][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1231.960079][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1231.966117][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1231.972243][T23246] __do_fast_syscall_32+0x129/0x180 [ 1231.977415][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1231.982249][T23246] do_SYSENTER_32+0x73/0x90 [ 1231.986728][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1231.993030][T23246] [ 1231.995330][T23246] Uninit was stored to memory at: [ 1232.000331][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.006023][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.010935][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.016029][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.020940][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.025419][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.030070][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.036110][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.042251][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.047439][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.052262][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.056738][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.063028][T23246] [ 1232.065329][T23246] Uninit was stored to memory at: [ 1232.070349][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.076042][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.080953][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.086036][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.090947][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.095425][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.100073][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.106114][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.112241][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.117429][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.122261][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.126750][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.133039][T23246] [ 1232.135338][T23246] Uninit was stored to memory at: [ 1232.140353][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.146061][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.150985][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.156156][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.161067][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.165555][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.170214][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.176257][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.182384][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.187554][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.192380][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.196860][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.203157][T23246] [ 1232.205487][T23246] Local variable ----msg_sys@do_recvmmsg created at: [ 1232.212146][T23246] do_recvmmsg+0xc2/0x22e0 [ 1232.216535][T23246] do_recvmmsg+0xc2/0x22e0 [ 1232.448183][T23246] not chained 790000 origins [ 1232.452807][T23246] CPU: 1 PID: 23246 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1232.461469][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1232.471520][T23246] Call Trace: [ 1232.474817][T23246] dump_stack+0x21c/0x280 [ 1232.479156][T23246] kmsan_internal_chain_origin+0x6f/0x130 [ 1232.484884][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1232.490695][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.495899][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1232.501708][T23246] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1232.507779][T23246] ? __wake_up+0x1fc/0x250 [ 1232.512189][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.517382][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1232.523191][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.528393][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1232.534027][T23246] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1232.540093][T23246] ? _copy_from_user+0x201/0x310 [ 1232.545033][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.550233][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.555167][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.560282][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.565223][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.569726][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.574927][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.580125][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1232.585755][T23246] ? __msan_poison_alloca+0xe9/0x110 [ 1232.591314][T23246] ? __sys_recvmmsg+0xb5/0x5f0 [ 1232.596082][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.600763][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1232.606571][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1232.611772][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.617844][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.624001][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.629202][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.634420][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.638928][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.645248][T23246] RIP: 0023:0xf7efe549 [ 1232.649441][T23246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1232.669027][T23246] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1232.677419][T23246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1232.685369][T23246] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1232.693316][T23246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1232.701268][T23246] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1232.709230][T23246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1232.717194][T23246] Uninit was stored to memory at: [ 1232.722201][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.727895][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.732806][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.737903][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.742814][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.747290][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.751939][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.757979][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.764118][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.769292][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.774119][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.778607][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.784910][T23246] [ 1232.787220][T23246] Uninit was stored to memory at: [ 1232.792250][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.798118][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.803038][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.808121][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.813031][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.817521][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.822184][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.828237][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.834378][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.839548][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.844386][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.848865][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.855155][T23246] [ 1232.857459][T23246] Uninit was stored to memory at: [ 1232.862561][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.868279][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.873199][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.878313][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.883231][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.887732][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.892384][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.898436][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.904563][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.909733][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.914557][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.919033][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.925324][T23246] [ 1232.927622][T23246] Uninit was stored to memory at: [ 1232.932641][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1232.938356][T23246] __msan_chain_origin+0x57/0xa0 [ 1232.943266][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1232.948350][T23246] get_compat_msghdr+0x108/0x2b0 [ 1232.953275][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1232.957750][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1232.962746][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1232.968791][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1232.974922][T23246] __do_fast_syscall_32+0x129/0x180 [ 1232.980110][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1232.984935][T23246] do_SYSENTER_32+0x73/0x90 [ 1232.989410][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1232.995712][T23246] [ 1232.998010][T23246] Uninit was stored to memory at: [ 1233.003010][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.008702][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.013612][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.018694][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.023605][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.028080][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.032730][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.038787][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.044929][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.050107][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.054931][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.059408][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.065708][T23246] [ 1233.068013][T23246] Uninit was stored to memory at: [ 1233.073040][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.078734][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.083645][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.088727][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.093641][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.098118][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.102778][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.108817][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.114959][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.120166][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.124990][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.129480][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.135770][T23246] [ 1233.138068][T23246] Uninit was stored to memory at: [ 1233.143079][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.148781][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.153691][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.158774][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.163699][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.168184][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.172861][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.178904][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.185032][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.190202][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.195026][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.199502][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.205793][T23246] [ 1233.208093][T23246] Local variable ----msg_sys@do_recvmmsg created at: [ 1233.214742][T23246] do_recvmmsg+0xc2/0x22e0 [ 1233.219129][T23246] do_recvmmsg+0xc2/0x22e0 [ 1233.520654][T23246] not chained 800000 origins [ 1233.525298][T23246] CPU: 1 PID: 23246 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1233.533990][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1233.544035][T23246] Call Trace: [ 1233.547335][T23246] dump_stack+0x21c/0x280 [ 1233.551670][T23246] kmsan_internal_chain_origin+0x6f/0x130 [ 1233.557386][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1233.563187][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.568382][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1233.574185][T23246] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1233.580243][T23246] ? __wake_up+0x1fc/0x250 [ 1233.584701][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.589874][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1233.595657][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.600831][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1233.606477][T23246] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1233.612520][T23246] ? _copy_from_user+0x201/0x310 [ 1233.617432][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.622606][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.627520][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.632611][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.637528][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.642005][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.647220][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.652446][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1233.658099][T23246] ? __msan_poison_alloca+0xe9/0x110 [ 1233.663368][T23246] ? __sys_recvmmsg+0xb5/0x5f0 [ 1233.668142][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.672797][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1233.678593][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1233.683811][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.689858][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.695988][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.701165][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.705998][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.710492][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.717057][T23246] RIP: 0023:0xf7efe549 [ 1233.721108][T23246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1233.740687][T23246] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1233.749075][T23246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1233.757021][T23246] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1233.764968][T23246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1233.772911][T23246] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1233.780855][T23246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1233.788819][T23246] Uninit was stored to memory at: [ 1233.793834][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.799528][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.804440][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.809524][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.814439][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.818915][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.823565][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.829606][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.835733][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.840903][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.845739][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.850215][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.856506][T23246] [ 1233.858805][T23246] Uninit was stored to memory at: [ 1233.863805][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.869507][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.874416][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.879498][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.884409][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.888909][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.893565][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.899620][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.905748][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.910919][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.915744][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.920221][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.926513][T23246] [ 1233.928831][T23246] Uninit was stored to memory at: [ 1233.934021][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1233.939730][T23246] __msan_chain_origin+0x57/0xa0 [ 1233.944690][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1233.949777][T23246] get_compat_msghdr+0x108/0x2b0 [ 1233.954735][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1233.959213][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1233.963908][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1233.969971][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1233.976099][T23246] __do_fast_syscall_32+0x129/0x180 [ 1233.981272][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1233.986096][T23246] do_SYSENTER_32+0x73/0x90 [ 1233.990583][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1233.996875][T23246] [ 1233.999173][T23246] Uninit was stored to memory at: [ 1234.004188][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.009880][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.014792][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.019877][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.024788][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.029264][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.034091][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.040130][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.046259][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.051431][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.056254][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.060731][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.067021][T23246] [ 1234.069322][T23246] Uninit was stored to memory at: [ 1234.074322][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.080014][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.086140][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.091242][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.096188][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.100668][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.105320][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.111361][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.117489][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.122659][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.127483][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.131971][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.138263][T23246] [ 1234.140561][T23246] Uninit was stored to memory at: [ 1234.145564][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.151259][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.156276][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.161358][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.166293][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.170772][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.175422][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.181473][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.187614][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.192799][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.197652][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.202130][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.208435][T23246] [ 1234.210744][T23246] Uninit was stored to memory at: [ 1234.215745][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.221439][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.226349][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.231448][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.236369][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.240858][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.245510][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.251549][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.257692][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.262863][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.267686][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.272172][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.278477][T23246] [ 1234.280776][T23246] Local variable ----msg_sys@do_recvmmsg created at: [ 1234.287443][T23246] do_recvmmsg+0xc2/0x22e0 [ 1234.291832][T23246] do_recvmmsg+0xc2/0x22e0 [ 1234.538266][T23246] not chained 810000 origins [ 1234.542910][T23246] CPU: 1 PID: 23246 Comm: syz-executor.4 Not tainted 5.9.0-rc8-syzkaller #0 [ 1234.551572][T23246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1234.561620][T23246] Call Trace: [ 1234.564939][T23246] dump_stack+0x21c/0x280 [ 1234.569274][T23246] kmsan_internal_chain_origin+0x6f/0x130 [ 1234.574997][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1234.580802][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.585997][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1234.591910][T23246] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1234.597975][T23246] ? __wake_up+0x1fc/0x250 [ 1234.602394][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.607608][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1234.613416][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.618619][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1234.624260][T23246] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 1234.630329][T23246] ? _copy_from_user+0x201/0x310 [ 1234.635268][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.640471][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.645408][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.650529][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.655476][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.659987][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.665191][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.670391][T23246] ? kmsan_internal_set_origin+0x85/0xc0 [ 1234.676023][T23246] ? __msan_poison_alloca+0xe9/0x110 [ 1234.681313][T23246] ? __sys_recvmmsg+0xb5/0x5f0 [ 1234.686083][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.690760][T23246] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1234.696565][T23246] ? kmsan_get_metadata+0x116/0x180 [ 1234.701757][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.707807][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.713941][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.719116][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.723943][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.728425][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.734723][T23246] RIP: 0023:0xf7efe549 [ 1234.738768][T23246] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1234.758350][T23246] RSP: 002b:00000000f54f80cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 1234.766738][T23246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020005c80 [ 1234.774685][T23246] RDX: 00000000fffffe7d RSI: 0000000000010122 RDI: 0000000000000000 [ 1234.782633][T23246] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1234.790581][T23246] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1234.798532][T23246] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1234.806493][T23246] Uninit was stored to memory at: [ 1234.811526][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.817226][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.822139][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.827224][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.832136][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.836616][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.841267][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.847307][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.853450][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.858624][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.863451][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.867951][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.874256][T23246] [ 1234.876556][T23246] Uninit was stored to memory at: [ 1234.881559][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.887253][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.892165][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.897249][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.902171][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.906662][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.911330][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.917386][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.923516][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.928687][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1234.933511][T23246] do_SYSENTER_32+0x73/0x90 [ 1234.937988][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1234.944290][T23246] [ 1234.946614][T23246] Uninit was stored to memory at: [ 1234.951619][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1234.957331][T23246] __msan_chain_origin+0x57/0xa0 [ 1234.962251][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1234.967335][T23246] get_compat_msghdr+0x108/0x2b0 [ 1234.972248][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1234.976727][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1234.981381][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1234.987433][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1234.993563][T23246] __do_fast_syscall_32+0x129/0x180 [ 1234.998737][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1235.003561][T23246] do_SYSENTER_32+0x73/0x90 [ 1235.008037][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1235.014333][T23246] [ 1235.016638][T23246] Uninit was stored to memory at: [ 1235.021640][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1235.027335][T23246] __msan_chain_origin+0x57/0xa0 [ 1235.032245][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1235.037330][T23246] get_compat_msghdr+0x108/0x2b0 [ 1235.042255][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1235.046734][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1235.051388][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1235.057430][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1235.063557][T23246] __do_fast_syscall_32+0x129/0x180 [ 1235.068742][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1235.073566][T23246] do_SYSENTER_32+0x73/0x90 [ 1235.078042][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1235.084333][T23246] [ 1235.086644][T23246] Uninit was stored to memory at: [ 1235.091654][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1235.097349][T23246] __msan_chain_origin+0x57/0xa0 [ 1235.102260][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1235.107344][T23246] get_compat_msghdr+0x108/0x2b0 [ 1235.112255][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1235.116748][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1235.121420][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1235.127462][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1235.133592][T23246] __do_fast_syscall_32+0x129/0x180 [ 1235.138781][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1235.143609][T23246] do_SYSENTER_32+0x73/0x90 [ 1235.148087][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1235.154379][T23246] [ 1235.156680][T23246] Uninit was stored to memory at: [ 1235.161682][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1235.167375][T23246] __msan_chain_origin+0x57/0xa0 [ 1235.172285][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1235.177368][T23246] get_compat_msghdr+0x108/0x2b0 [ 1235.182280][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1235.186758][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1235.191408][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1235.197449][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1235.203578][T23246] __do_fast_syscall_32+0x129/0x180 [ 1235.208750][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1235.213572][T23246] do_SYSENTER_32+0x73/0x90 [ 1235.218062][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1235.224383][T23246] [ 1235.226683][T23246] Uninit was stored to memory at: [ 1235.231683][T23246] kmsan_internal_chain_origin+0xad/0x130 [ 1235.237380][T23246] __msan_chain_origin+0x57/0xa0 [ 1235.242302][T23246] __get_compat_msghdr+0x6db/0x9d0 [ 1235.247388][T23246] get_compat_msghdr+0x108/0x2b0 [ 1235.252302][T23246] do_recvmmsg+0xdc7/0x22e0 [ 1235.256795][T23246] __sys_recvmmsg+0x340/0x5f0 [ 1235.261446][T23246] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 1235.267485][T23246] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 1235.273616][T23246] __do_fast_syscall_32+0x129/0x180 [ 1235.278787][T23246] do_fast_syscall_32+0x6a/0xc0 [ 1235.283614][T23246] do_SYSENTER_32+0x73/0x90 [ 1235.288092][T23246] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1235.294391][T23246] [ 1235.296690][T23246] Local variable ----msg_sys@do_recvmmsg created at: [ 1235.303340][T23246] do_recvmmsg+0xc2/0x22e0 [ 1235.307730][T23246] do_recvmmsg+0xc2/0x22e0 16:25:55 executing program 4: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0x7fa}, 0x74) write(r0, &(0x7f000018efdc)="1400000052001f0214f9f4070009040081000710", 0x14) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x39}}], 0x3fffffffffffe7d, 0x10122, 0x0) 16:25:55 executing program 2: prctl$PR_MCE_KILL(0x2f, 0x1, 0x0) 16:25:55 executing program 5: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0) statx(0xffffffffffffffff, 0x0, 0x800, 0x0, 0x0) 16:25:55 executing program 0: set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0x4) r0 = socket$inet(0x2, 0x2000080001, 0x84) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x1ff}, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x0, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x33}, 0x0) 16:25:55 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r3, &(0x7f0000000140), 0x4924b68, 0x0) 16:25:55 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c00000024001d0f000000ecffbfffffffffff00", @ANYRES32, @ANYBLOB="00000000f1ffffff0000000008000100647272"], 0x2c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@delchain={0x30, 0x28, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xffff}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x4}}]}, 0x30}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) r4 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 1235.751175][T23288] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1235.782754][T23289] QAT: Invalid ioctl [ 1235.825627][T23289] QAT: Invalid ioctl [ 1235.873989][T23293] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. 16:25:55 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) sendmmsg$sock(r0, &(0x7f0000002d00)=[{{&(0x7f0000000700)=@qipcrtr={0x2a, 0x3}, 0x80, 0x0}}], 0x1, 0x0) [ 1236.260610][T23312] ===================================================== [ 1236.267600][T23312] BUG: KMSAN: uninit-value in ip_tunnel_xmit+0x585/0x3a40 [ 1236.274726][T23312] CPU: 1 PID: 23312 Comm: syz-executor.2 Not tainted 5.9.0-rc8-syzkaller #0 [ 1236.283396][T23312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1236.293452][T23312] Call Trace: [ 1236.296761][T23312] dump_stack+0x21c/0x280 [ 1236.301102][T23312] kmsan_report+0xf7/0x1e0 [ 1236.305528][T23312] __msan_warning+0x5f/0xa0 [ 1236.310039][T23312] ip_tunnel_xmit+0x585/0x3a40 [ 1236.314810][T23312] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1236.320635][T23312] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1236.326796][T23312] ? skb_push+0x15b/0x250 [ 1236.331133][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.336341][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.341599][T23312] ipgre_xmit+0x1261/0x1380 [ 1236.346122][T23312] ? ipgre_close+0x280/0x280 [ 1236.350801][T23312] xmit_one+0x1fc/0x760 [ 1236.354962][T23312] __dev_queue_xmit+0x3310/0x4490 [ 1236.359987][T23312] dev_queue_xmit+0x4b/0x60 [ 1236.364486][T23312] ? netdev_core_pick_tx+0x5a0/0x5a0 [ 1236.369813][T23312] packet_sendmsg+0x86e9/0x99c0 [ 1236.374658][T23312] ? get_compat_msghdr+0x108/0x2b0 [ 1236.379759][T23312] ? __sys_sendmmsg+0x77e/0x1010 [ 1236.384697][T23312] ? __se_compat_sys_sendmmsg+0xcd/0xf0 [ 1236.390230][T23312] ? __ia32_compat_sys_sendmmsg+0x56/0x70 [ 1236.395949][T23312] ? __do_fast_syscall_32+0x129/0x180 [ 1236.401308][T23312] ? do_fast_syscall_32+0x6a/0xc0 [ 1236.406319][T23312] ? do_SYSENTER_32+0x73/0x90 [ 1236.410982][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.416171][T23312] ? kmsan_internal_set_origin+0x85/0xc0 [ 1236.421800][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.426985][T23312] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1236.432803][T23312] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1236.438891][T23312] ? aa_sk_perm+0x99e/0xed0 [ 1236.443414][T23312] ____sys_sendmsg+0xc7a/0x1240 [ 1236.448272][T23312] ? packet_getsockopt+0x1110/0x1110 [ 1236.453567][T23312] __sys_sendmmsg+0x835/0x1010 [ 1236.458356][T23312] ? kmsan_internal_check_memory+0xb1/0x520 [ 1236.464248][T23312] ? kmsan_internal_set_origin+0x85/0xc0 [ 1236.469877][T23312] ? kmsan_copy_to_user+0x9c/0xb0 [ 1236.474892][T23312] ? _copy_to_user+0x1bf/0x260 [ 1236.479649][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.484854][T23312] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 1236.490239][T23312] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 1236.495792][T23312] __do_fast_syscall_32+0x129/0x180 [ 1236.500987][T23312] do_fast_syscall_32+0x6a/0xc0 [ 1236.505828][T23312] do_SYSENTER_32+0x73/0x90 [ 1236.510323][T23312] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1236.516632][T23312] RIP: 0023:0xf7fd5549 [ 1236.520687][T23312] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1236.540286][T23312] RSP: 002b:00000000f55cf0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 1236.548682][T23312] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020002d00 [ 1236.556638][T23312] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 1236.564596][T23312] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1236.572552][T23312] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1236.580510][T23312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1236.588463][T23312] [ 1236.590778][T23312] Uninit was created at: [ 1236.595024][T23312] kmsan_internal_poison_shadow+0x5c/0xf0 [ 1236.600732][T23312] kmsan_slab_alloc+0x8d/0xe0 [ 1236.605400][T23312] __kmalloc_node_track_caller+0x7de/0x1320 [ 1236.611287][T23312] __alloc_skb+0x309/0xae0 [ 1236.615697][T23312] alloc_skb_with_frags+0x1f3/0xc20 [ 1236.620885][T23312] sock_alloc_send_pskb+0xc73/0xe40 [ 1236.626071][T23312] packet_sendmsg+0x6a93/0x99c0 [ 1236.630909][T23312] ____sys_sendmsg+0xc7a/0x1240 [ 1236.635747][T23312] __sys_sendmmsg+0x835/0x1010 [ 1236.640609][T23312] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 1236.645981][T23312] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 1236.651522][T23312] __do_fast_syscall_32+0x129/0x180 [ 1236.656711][T23312] do_fast_syscall_32+0x6a/0xc0 [ 1236.661568][T23312] do_SYSENTER_32+0x73/0x90 [ 1236.666064][T23312] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1236.672368][T23312] ===================================================== [ 1236.679282][T23312] Disabling lock debugging due to kernel taint [ 1236.685438][T23312] Kernel panic - not syncing: panic_on_warn set ... [ 1236.692014][T23312] CPU: 1 PID: 23312 Comm: syz-executor.2 Tainted: G B 5.9.0-rc8-syzkaller #0 [ 1236.702051][T23312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1236.712111][T23312] Call Trace: [ 1236.715406][T23312] dump_stack+0x21c/0x280 [ 1236.719737][T23312] panic+0x4c8/0xea7 [ 1236.723630][T23312] ? add_taint+0x17c/0x210 [ 1236.728055][T23312] kmsan_report+0x1da/0x1e0 [ 1236.732581][T23312] __msan_warning+0x5f/0xa0 [ 1236.737083][T23312] ip_tunnel_xmit+0x585/0x3a40 [ 1236.741833][T23312] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1236.747629][T23312] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1236.753684][T23312] ? skb_push+0x15b/0x250 [ 1236.757999][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.763275][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.768460][T23312] ipgre_xmit+0x1261/0x1380 [ 1236.772954][T23312] ? ipgre_close+0x280/0x280 [ 1236.777534][T23312] xmit_one+0x1fc/0x760 [ 1236.781678][T23312] __dev_queue_xmit+0x3310/0x4490 [ 1236.786703][T23312] dev_queue_xmit+0x4b/0x60 [ 1236.791191][T23312] ? netdev_core_pick_tx+0x5a0/0x5a0 [ 1236.796464][T23312] packet_sendmsg+0x86e9/0x99c0 [ 1236.801302][T23312] ? get_compat_msghdr+0x108/0x2b0 [ 1236.806416][T23312] ? __sys_sendmmsg+0x77e/0x1010 [ 1236.811352][T23312] ? __se_compat_sys_sendmmsg+0xcd/0xf0 [ 1236.816884][T23312] ? __ia32_compat_sys_sendmmsg+0x56/0x70 [ 1236.822591][T23312] ? __do_fast_syscall_32+0x129/0x180 [ 1236.827963][T23312] ? do_fast_syscall_32+0x6a/0xc0 [ 1236.832974][T23312] ? do_SYSENTER_32+0x73/0x90 [ 1236.837636][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.842827][T23312] ? kmsan_internal_set_origin+0x85/0xc0 [ 1236.848445][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.853630][T23312] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 1236.859424][T23312] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1236.865474][T23312] ? aa_sk_perm+0x99e/0xed0 [ 1236.869975][T23312] ____sys_sendmsg+0xc7a/0x1240 [ 1236.874816][T23312] ? packet_getsockopt+0x1110/0x1110 [ 1236.880094][T23312] __sys_sendmmsg+0x835/0x1010 [ 1236.884854][T23312] ? kmsan_internal_check_memory+0xb1/0x520 [ 1236.890736][T23312] ? kmsan_internal_set_origin+0x85/0xc0 [ 1236.896361][T23312] ? kmsan_copy_to_user+0x9c/0xb0 [ 1236.901375][T23312] ? _copy_to_user+0x1bf/0x260 [ 1236.906133][T23312] ? kmsan_get_metadata+0x116/0x180 [ 1236.911320][T23312] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 1236.916681][T23312] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 1236.922216][T23312] __do_fast_syscall_32+0x129/0x180 [ 1236.927402][T23312] do_fast_syscall_32+0x6a/0xc0 [ 1236.932240][T23312] do_SYSENTER_32+0x73/0x90 [ 1236.936733][T23312] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1236.943043][T23312] RIP: 0023:0xf7fd5549 [ 1236.947107][T23312] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 1236.966697][T23312] RSP: 002b:00000000f55cf0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 1236.975097][T23312] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020002d00 [ 1236.983054][T23312] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 1236.991015][T23312] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1236.998972][T23312] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1237.006930][T23312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1237.015492][T23312] Kernel Offset: disabled [ 1237.019802][T23312] Rebooting in 86400 seconds..