2:
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
select(0x40, &(0x7f0000000040), &(0x7f0000000080)={0x9}, 0x0, 0x0)

20:05:47 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:05:48 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f00000077c0)=[{{&(0x7f0000000100)={0xa, 0x4e23, 0x0, @private1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=[@dontfrag={{0x14, 0x29, 0x3e, 0x7f}}], 0x18}}], 0x1, 0x0)

20:05:48 executing program 4:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$unlink(0x9, r0, r0)

20:05:48 executing program 2:
open(&(0x7f0000000080)='./file0\x00', 0x2ac0, 0x0)

20:05:48 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:05:48 executing program 4:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000031c0), 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(r0, 0x0, 0x0)

20:05:48 executing program 1:
clone3(&(0x7f0000000a80)={0x40000, 0x0, 0x0, 0x0, {}, &(0x7f0000000900)=""/113, 0x71, 0x0, &(0x7f0000000a40)=[0x0, 0xffffffffffffffff], 0x2}, 0x58)

20:05:48 executing program 2:
clone3(&(0x7f0000000a80)={0x40000, 0x0, 0x0, 0x0, {}, &(0x7f0000000900)=""/113, 0x71, 0x0, &(0x7f0000000a40)=[0x0], 0x1}, 0x58)

20:05:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(0x0, r0)

20:05:48 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000002280)={0x0, 0x0, 0x0}, 0x0)

20:05:49 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:05:49 executing program 4:
r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil)
shmat(r0, &(0x7f0000ffa000/0x3000)=nil, 0x5000)
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)

20:05:49 executing program 5:
getresuid(&(0x7f0000000700), &(0x7f0000000740), &(0x7f0000000780))
getpid()
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000009a00)={&(0x7f00000098c0), 0xc, &(0x7f00000099c0)={0x0}}, 0x0)

20:05:49 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:05:49 executing program 1:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$unlink(0x9, r1, r0)

20:05:49 executing program 4:
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)
mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)

20:05:49 executing program 2:
clone3(&(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

20:05:50 executing program 5:
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)
openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)

[ 2844.587001][ T3119] ieee802154 phy0 wpan0: encryption failed: -22
[ 2844.593588][ T3119] ieee802154 phy1 wpan1: encryption failed: -22
20:05:50 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg$unix(r0, &(0x7f00000022c0), 0x3ffffffffffff80, 0x0, &(0x7f0000002440)={0x77359400})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[], 0x40}}, 0x0)

20:05:50 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000040)={0x10, 0x2}, 0x10)
r1 = socket$inet(0x2, 0x5, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = dup2(r2, r1)
sendto$inet(r3, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x10, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f0000000040)=ANY=[@ANYRES32=<r4=>0x0], &(0x7f0000001700)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x21, &(0x7f0000000040)={0x400, 0x0, 0x0, 0x0, r4}, 0x10)

20:05:50 executing program 1:
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8003, &(0x7f0000000000)=0xfffffffffffffe01, 0x21, 0x2)

20:05:50 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:05:50 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000020c0)='children\x00')
read$FUSE(r0, 0x0, 0x0)

20:05:50 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r1, &(0x7f0000000100)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x2}, 0x1c, 0x0}, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x105, &(0x7f0000000140)={0x1, [<r2=>0x0]}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x2, &(0x7f00000018c0)={r2}, 0x14)

20:05:50 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000140)="b9ff2300600d698cff9e145f08004de7f9c764362ae28eff07002000000004a08b79", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

20:05:50 executing program 4:
move_pages(0x0, 0x2, &(0x7f0000000040)=[&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil], &(0x7f0000000080), &(0x7f00000000c0), 0x0)

20:05:51 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:05:51 executing program 2:
shmget$private(0x0, 0x3000, 0x81, &(0x7f0000ffa000/0x3000)=nil)
shmdt(0x0)
r0 = getegid()
getgroups(0x6, &(0x7f0000000080)=[r0, r0, r0, r0, r0, r0])
r1 = shmget(0x1, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000000)=""/254)
getuid()
shmctl$IPC_SET(0x0, 0x1, 0x0)
shmget(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
mknodat(0xffffffffffffffff, 0x0, 0x0, 0x0)

20:05:51 executing program 5:
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0x1000000, &(0x7f0000001480), 0x315058, &(0x7f0000001680))

20:05:51 executing program 1:
syz_usb_connect$hid(0x2, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x227d, 0x709, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x20, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x1, 0x3, {0x9, 0x21, 0x100, 0x1}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x3f, 0xe3, 0x4}}]}}}]}}]}}, &(0x7f0000000140)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x310, 0xd9, 0x1, 0x73}, 0xc, &(0x7f0000000080)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x1e, 0x2, 0xd, 0x1f}]}, 0x1, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x807}}]})

[ 2846.423051][T14590] usb 2-1: new full-speed USB device number 40 using dummy_hcd
[ 2846.487488][ T7249] not chained 320000 origins
[ 2846.492097][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2846.492758][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2846.492758][ T7249] Call Trace:
[ 2846.492758][ T7249]  dump_stack+0x25a/0x2f6
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2846.492758][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2846.492758][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2846.492758][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2846.492758][ T7249]  ? should_fail+0x75/0x9c0
[ 2846.492758][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2846.492758][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2846.492758][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2846.492758][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2846.492758][ T7249]  ? _copy_from_user+0x219/0x310
[ 2846.492758][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2846.492758][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2846.492758][ T7249]  ? _copy_from_user+0x219/0x310
[ 2846.492758][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2846.492758][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2846.492758][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2846.492758][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] RIP: 0023:0xf6f37549
[ 2846.492758][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2846.492758][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2846.492758][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2846.492758][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2846.492758][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2846.492758][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2846.492758][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Uninit was stored to memory at:
[ 2846.492758][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2846.492758][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2846.492758][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2846.492758][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2846.492758][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2846.492758][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2846.492758][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2846.492758][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2846.492758][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2846.492758][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2846.492758][ T7249] 
[ 2846.492758][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2846.492758][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2846.492758][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2847.548014][T14590] usb 2-1: not running at top speed; connect to a high speed hub
[ 2847.657733][T14590] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 2847.668993][T14590] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2847.679168][T14590] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 2847.800085][ T7249] not chained 330000 origins
[ 2847.802699][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2847.802699][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2847.802699][ T7249] Call Trace:
[ 2847.802699][ T7249]  dump_stack+0x25a/0x2f6
[ 2847.828698][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2847.835174][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2847.835174][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2847.835174][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2847.835174][ T7249]  ? should_fail+0x75/0x9c0
[ 2847.835174][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2847.835174][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2847.835174][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2847.835174][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2847.835174][ T7249]  ? _copy_from_user+0x219/0x310
[ 2847.835174][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2847.835174][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2847.835174][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2847.835174][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2847.835174][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2847.835174][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2847.835174][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2847.835174][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2847.835174][ T7249]  ? _copy_from_user+0x219/0x310
[ 2847.835174][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2847.835174][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2847.835174][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2847.835174][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2847.835174][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2847.835174][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2847.835174][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2847.835174][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2847.835174][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2847.835174][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2847.835174][ T7249] RIP: 0023:0xf6f37549
[ 2847.835174][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2847.835174][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2847.835174][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2847.835174][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2847.835174][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2847.835174][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2848.045814][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Uninit was stored to memory at:
[ 2848.053001][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2848.053001][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2848.053001][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2848.053001][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2848.053001][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.053001][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2848.053001][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2848.053001][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2848.053001][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2848.053001][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2848.053001][ T7249] 
[ 2848.053001][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2848.053001][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2848.053001][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2848.603728][T14590] usb 2-1: New USB device found, idVendor=227d, idProduct=0709, bcdDevice= 0.40
[ 2848.613072][T14590] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2848.621195][T14590] usb 2-1: Product: syz
[ 2848.625622][T14590] usb 2-1: Manufacturer: syz
[ 2848.630333][T14590] usb 2-1: SerialNumber: syz
[ 2849.109198][T14590] usbhid 2-1:1.0: can't add hid device: -22
[ 2849.115631][T14590] usbhid: probe of 2-1:1.0 failed with error -22
[ 2849.142259][T14590] usb 2-1: USB disconnect, device number 40
[ 2849.219372][ T7252] not chained 340000 origins
[ 2849.222729][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2849.222729][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2849.232853][ T7252] Call Trace:
[ 2849.232853][ T7252]  dump_stack+0x25a/0x2f6
[ 2849.232853][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2849.232853][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2849.232853][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2849.232853][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2849.232853][ T7252]  ? should_fail+0x75/0x9c0
[ 2849.232853][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2849.232853][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2849.232853][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2849.292809][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2849.292809][ T7252]  ? _copy_from_user+0x219/0x310
[ 2849.292809][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2849.292809][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2849.292809][ T7252]  ? _copy_from_user+0x219/0x310
[ 2849.292809][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2849.292809][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2849.292809][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2849.292809][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] RIP: 0023:0xf6f37549
[ 2849.292809][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2849.292809][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2849.292809][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2849.292809][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2849.292809][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2849.292809][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2849.292809][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Uninit was stored to memory at:
[ 2849.292809][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2849.292809][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2849.292809][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2849.292809][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2849.292809][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2849.292809][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2849.292809][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2849.292809][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2849.292809][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2849.292809][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2849.292809][ T7252] 
[ 2849.292809][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2849.292809][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2849.292809][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2850.150590][ T7249] not chained 350000 origins
[ 2850.152727][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2850.159563][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2850.159563][ T7249] Call Trace:
[ 2850.159563][ T7249]  dump_stack+0x25a/0x2f6
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2850.159563][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2850.159563][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2850.159563][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2850.159563][ T7249]  ? should_fail+0x75/0x9c0
[ 2850.159563][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2850.159563][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2850.159563][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2850.159563][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2850.159563][ T7249]  ? _copy_from_user+0x219/0x310
[ 2850.159563][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2850.159563][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2850.159563][ T7249]  ? _copy_from_user+0x219/0x310
[ 2850.159563][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2850.159563][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2850.159563][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2850.159563][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] RIP: 0023:0xf6f37549
[ 2850.159563][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2850.159563][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2850.159563][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2850.159563][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2850.159563][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2850.159563][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2850.159563][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Uninit was stored to memory at:
[ 2850.159563][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2850.159563][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2850.159563][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2850.159563][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2850.159563][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2850.159563][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2850.159563][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2850.159563][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2850.159563][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2850.159563][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2850.159563][ T7249] 
[ 2850.159563][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2850.159563][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2850.159563][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2851.052909][T14590] usb 2-1: new full-speed USB device number 41 using dummy_hcd
[ 2851.128999][ T7252] not chained 360000 origins
[ 2851.132729][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2851.132729][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2851.132729][ T7252] Call Trace:
[ 2851.132729][ T7252]  dump_stack+0x25a/0x2f6
[ 2851.132729][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2851.132729][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2851.166284][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2851.166284][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2851.166284][ T7252]  ? should_fail+0x75/0x9c0
[ 2851.166284][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2851.166284][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2851.166284][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2851.166284][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2851.166284][ T7252]  ? _copy_from_user+0x219/0x310
[ 2851.166284][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2851.166284][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2851.166284][ T7252]  ? _copy_from_user+0x219/0x310
[ 2851.166284][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2851.166284][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2851.166284][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2851.166284][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] RIP: 0023:0xf6f37549
[ 2851.166284][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2851.166284][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2851.166284][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2851.166284][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2851.166284][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2851.166284][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2851.166284][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Uninit was stored to memory at:
[ 2851.166284][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2851.166284][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2851.166284][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2851.166284][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2851.166284][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2851.166284][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2851.166284][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2851.166284][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2851.166284][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2851.166284][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2851.166284][ T7252] 
[ 2851.166284][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2851.166284][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2851.166284][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2852.184725][ T7249] not chained 370000 origins
[ 2852.189333][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2852.192701][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2852.192701][ T7249] Call Trace:
[ 2852.192701][ T7249]  dump_stack+0x25a/0x2f6
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2852.192701][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2852.192701][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2852.192701][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2852.192701][ T7249]  ? should_fail+0x75/0x9c0
[ 2852.192701][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2852.192701][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2852.192701][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2852.192701][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2852.192701][ T7249]  ? _copy_from_user+0x219/0x310
[ 2852.192701][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2852.192701][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2852.192701][ T7249]  ? _copy_from_user+0x219/0x310
[ 2852.192701][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2852.192701][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2852.192701][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2852.192701][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] RIP: 0023:0xf6f37549
[ 2852.192701][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2852.192701][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2852.192701][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2852.192701][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2852.192701][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2852.192701][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2852.192701][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Uninit was stored to memory at:
[ 2852.192701][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2852.192701][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2852.192701][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2852.192701][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2852.192701][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2852.192701][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2852.192701][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2852.192701][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2852.192701][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2852.192701][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2852.192701][ T7249] 
[ 2852.192701][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2852.192701][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2852.192701][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122472][ T7249] not chained 380000 origins
[ 2853.122717][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2853.122717][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2853.122717][ T7249] Call Trace:
[ 2853.122717][ T7249]  dump_stack+0x25a/0x2f6
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2853.122717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2853.122717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2853.122717][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2853.122717][ T7249]  ? should_fail+0x75/0x9c0
[ 2853.122717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2853.122717][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2853.122717][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2853.122717][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2853.122717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2853.122717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2853.122717][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2853.122717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2853.122717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2853.122717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2853.122717][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2853.122717][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] RIP: 0023:0xf6f37549
[ 2853.122717][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2853.122717][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2853.122717][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2853.122717][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2853.122717][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2853.122717][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2853.122717][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Uninit was stored to memory at:
[ 2853.122717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2853.122717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2853.122717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2853.122717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2853.122717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.122717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2853.122717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2853.122717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2853.122717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2853.122717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2853.122717][ T7249] 
[ 2853.122717][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2853.122717][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2853.122717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2853.978768][ T7252] not chained 390000 origins
[ 2853.982718][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2853.982718][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2853.982718][ T7252] Call Trace:
[ 2853.982718][ T7252]  dump_stack+0x25a/0x2f6
[ 2853.982718][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2853.982718][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2853.982718][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2853.982718][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2854.029787][ T7252]  ? should_fail+0x75/0x9c0
[ 2854.029787][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.029787][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2854.029787][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2854.029787][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2854.029787][ T7252]  ? _copy_from_user+0x219/0x310
[ 2854.029787][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2854.029787][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2854.029787][ T7252]  ? _copy_from_user+0x219/0x310
[ 2854.029787][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.029787][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2854.029787][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2854.029787][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] RIP: 0023:0xf6f37549
[ 2854.029787][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2854.029787][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2854.029787][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2854.029787][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2854.029787][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2854.029787][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2854.029787][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Uninit was stored to memory at:
[ 2854.029787][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.029787][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.029787][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.029787][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.029787][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.029787][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.029787][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.029787][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.029787][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.029787][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.029787][ T7252] 
[ 2854.029787][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2854.029787][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2854.029787][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.856957][ T7252] not chained 400000 origins
[ 2854.861571][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2854.862770][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2854.862770][ T7252] Call Trace:
[ 2854.862770][ T7252]  dump_stack+0x25a/0x2f6
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2854.862770][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.862770][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2854.862770][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2854.862770][ T7252]  ? should_fail+0x75/0x9c0
[ 2854.862770][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.862770][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2854.862770][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2854.862770][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2854.862770][ T7252]  ? _copy_from_user+0x219/0x310
[ 2854.862770][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2854.862770][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2854.862770][ T7252]  ? _copy_from_user+0x219/0x310
[ 2854.862770][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2854.862770][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2854.862770][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2854.862770][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] RIP: 0023:0xf6f37549
[ 2854.862770][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2854.862770][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2854.862770][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2854.862770][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2854.862770][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2854.862770][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2854.862770][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Uninit was stored to memory at:
[ 2854.862770][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2854.862770][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2854.862770][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2854.862770][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2854.862770][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2854.862770][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2854.862770][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2854.862770][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2854.862770][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2854.862770][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2854.862770][ T7252] 
[ 2854.862770][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2854.862770][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2854.862770][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.746670][ T7252] not chained 410000 origins
[ 2855.751280][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2855.752714][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2855.752714][ T7252] Call Trace:
[ 2855.752714][ T7252]  dump_stack+0x25a/0x2f6
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2855.752714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2855.752714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2855.752714][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2855.752714][ T7252]  ? should_fail+0x75/0x9c0
[ 2855.752714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2855.752714][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2855.752714][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2855.752714][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2855.752714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2855.752714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2855.752714][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2855.752714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2855.752714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2855.752714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2855.752714][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2855.752714][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] RIP: 0023:0xf6f37549
[ 2855.752714][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2855.752714][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2855.752714][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2855.752714][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2855.752714][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2855.752714][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2855.752714][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Uninit was stored to memory at:
[ 2855.752714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2855.752714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2855.752714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2855.752714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2855.752714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2855.752714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2855.752714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2855.752714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2855.752714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2855.752714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2855.752714][ T7252] 
[ 2855.752714][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2855.752714][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2855.752714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2856.681838][ T7249] not chained 420000 origins
[ 2856.682702][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2856.682702][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2856.682702][ T7249] Call Trace:
[ 2856.682702][ T7249]  dump_stack+0x25a/0x2f6
[ 2856.682702][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2856.712871][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2856.712871][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2856.712871][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2856.712871][ T7249]  ? should_fail+0x75/0x9c0
[ 2856.712871][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2856.742822][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2856.742822][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2856.742822][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2856.742822][ T7249]  ? _copy_from_user+0x219/0x310
[ 2856.742822][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2856.742822][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2856.742822][ T7249]  ? _copy_from_user+0x219/0x310
[ 2856.742822][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2856.742822][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2856.742822][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2856.742822][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] RIP: 0023:0xf6f37549
[ 2856.742822][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2856.742822][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2856.742822][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2856.742822][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2856.742822][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2856.742822][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2856.742822][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Uninit was stored to memory at:
[ 2856.742822][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2856.742822][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2856.742822][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2856.742822][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2856.742822][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2856.742822][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2856.742822][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2856.742822][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2856.742822][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2856.742822][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2856.742822][ T7249] 
[ 2856.742822][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2856.742822][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2856.742822][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2857.507574][ T7252] not chained 430000 origins
[ 2857.512182][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2857.512945][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2857.512945][ T7252] Call Trace:
[ 2857.512945][ T7252]  dump_stack+0x25a/0x2f6
[ 2857.512945][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2857.512945][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2857.512945][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2857.512945][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2857.512945][ T7252]  ? should_fail+0x75/0x9c0
[ 2857.564877][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2857.564877][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2857.564877][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2857.564877][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2857.564877][ T7252]  ? _copy_from_user+0x219/0x310
[ 2857.564877][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2857.564877][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.564877][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.564877][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.564877][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2857.564877][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.564877][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2857.564877][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2857.632992][ T7252]  ? _copy_from_user+0x219/0x310
[ 2857.632992][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2857.632992][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2857.632992][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2857.632992][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] RIP: 0023:0xf6f37549
[ 2857.632992][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2857.632992][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2857.632992][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2857.632992][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2857.632992][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2857.632992][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2857.632992][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Uninit was stored to memory at:
[ 2857.632992][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2857.632992][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2857.632992][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2857.632992][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2857.632992][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2857.632992][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2857.632992][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2857.632992][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2857.632992][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2857.632992][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2857.632992][ T7252] 
[ 2857.632992][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2857.632992][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2857.632992][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2858.404060][ T7249] not chained 440000 origins
[ 2858.408669][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2858.412714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2858.412714][ T7249] Call Trace:
[ 2858.412714][ T7249]  dump_stack+0x25a/0x2f6
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2858.412714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2858.412714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2858.412714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2858.412714][ T7249]  ? should_fail+0x75/0x9c0
[ 2858.412714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2858.412714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2858.412714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2858.412714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2858.412714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2858.412714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2858.412714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2858.412714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2858.412714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2858.412714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2858.412714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2858.412714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] RIP: 0023:0xf6f37549
[ 2858.412714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2858.412714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2858.412714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2858.412714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2858.412714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2858.412714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2858.412714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Uninit was stored to memory at:
[ 2858.412714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2858.412714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2858.412714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2858.412714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2858.412714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2858.412714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2858.412714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2858.412714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2858.412714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2858.412714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2858.412714][ T7249] 
[ 2858.412714][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2858.412714][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2858.412714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.349388][ T7249] not chained 450000 origins
[ 2859.352713][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2859.352713][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2859.352713][ T7249] Call Trace:
[ 2859.352713][ T7249]  dump_stack+0x25a/0x2f6
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2859.352713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2859.352713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2859.352713][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2859.352713][ T7249]  ? should_fail+0x75/0x9c0
[ 2859.352713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2859.352713][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2859.352713][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2859.352713][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2859.352713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2859.352713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2859.352713][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2859.352713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2859.352713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2859.352713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2859.352713][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2859.352713][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] RIP: 0023:0xf6f37549
[ 2859.352713][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2859.352713][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2859.352713][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2859.352713][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2859.352713][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2859.352713][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2859.352713][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Uninit was stored to memory at:
[ 2859.352713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2859.352713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2859.352713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2859.352713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2859.352713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2859.352713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2859.352713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2859.352713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2859.352713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2859.352713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2859.352713][ T7249] 
[ 2859.352713][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2859.352713][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2859.352713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.277414][ T7249] not chained 460000 origins
[ 2860.282021][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2860.282717][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2860.282717][ T7249] Call Trace:
[ 2860.282717][ T7249]  dump_stack+0x25a/0x2f6
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2860.282717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2860.282717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2860.282717][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2860.282717][ T7249]  ? should_fail+0x75/0x9c0
[ 2860.282717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2860.282717][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2860.282717][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2860.282717][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2860.282717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2860.282717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2860.282717][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2860.282717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2860.282717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2860.282717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2860.282717][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2860.282717][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] RIP: 0023:0xf6f37549
[ 2860.282717][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2860.282717][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2860.282717][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2860.282717][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2860.282717][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2860.282717][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2860.282717][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Uninit was stored to memory at:
[ 2860.282717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2860.282717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2860.282717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2860.282717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2860.282717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2860.282717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2860.282717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2860.282717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2860.282717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2860.282717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2860.282717][ T7249] 
[ 2860.282717][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2860.282717][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2860.282717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2861.214333][ T7252] not chained 470000 origins
[ 2861.218946][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2861.222797][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2861.222797][ T7252] Call Trace:
[ 2861.222797][ T7252]  dump_stack+0x25a/0x2f6
[ 2861.222797][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2861.222797][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2861.222797][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2861.222797][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2861.222797][ T7252]  ? should_fail+0x75/0x9c0
[ 2861.222797][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2861.222797][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2861.222797][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2861.222797][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2861.222797][ T7252]  ? _copy_from_user+0x219/0x310
[ 2861.222797][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2861.222797][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.222797][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.312833][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.312833][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2861.312833][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.312833][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2861.312833][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2861.312833][ T7252]  ? _copy_from_user+0x219/0x310
[ 2861.342910][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2861.342910][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2861.342910][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2861.342910][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] RIP: 0023:0xf6f37549
[ 2861.342910][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2861.342910][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2861.342910][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2861.342910][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2861.342910][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2861.342910][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2861.342910][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Uninit was stored to memory at:
[ 2861.342910][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2861.342910][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2861.342910][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2861.342910][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2861.342910][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2861.342910][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2861.342910][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2861.342910][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2861.342910][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2861.342910][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2861.342910][ T7252] 
[ 2861.342910][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2861.342910][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2861.342910][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2862.034302][ T7249] not chained 480000 origins
[ 2862.038907][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2862.042733][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2862.042733][ T7249] Call Trace:
[ 2862.042733][ T7249]  dump_stack+0x25a/0x2f6
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2862.042733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2862.042733][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2862.042733][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2862.042733][ T7249]  ? should_fail+0x75/0x9c0
[ 2862.042733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2862.042733][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2862.042733][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2862.042733][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2862.042733][ T7249]  ? _copy_from_user+0x219/0x310
[ 2862.042733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2862.042733][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2862.042733][ T7249]  ? _copy_from_user+0x219/0x310
[ 2862.042733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2862.042733][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2862.042733][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2862.042733][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] RIP: 0023:0xf6f37549
[ 2862.042733][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2862.042733][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2862.042733][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2862.042733][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2862.042733][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2862.042733][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2862.042733][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Uninit was stored to memory at:
[ 2862.042733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2862.042733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2862.042733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2862.042733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2862.042733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.042733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2862.042733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2862.042733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2862.042733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2862.042733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2862.042733][ T7249] 
[ 2862.042733][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2862.042733][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2862.042733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2862.997456][ T7249] not chained 490000 origins
[ 2863.002067][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2863.002721][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2863.002721][ T7249] Call Trace:
[ 2863.002721][ T7249]  dump_stack+0x25a/0x2f6
[ 2863.002721][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2863.002721][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.002721][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2863.002721][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2863.002721][ T7249]  ? should_fail+0x75/0x9c0
[ 2863.002721][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.002721][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2863.002721][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2863.002721][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2863.002721][ T7249]  ? _copy_from_user+0x219/0x310
[ 2863.002721][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.002721][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.002721][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.002721][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.002721][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2863.002721][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.002721][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2863.002721][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2863.002721][ T7249]  ? _copy_from_user+0x219/0x310
[ 2863.002721][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.002721][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2863.002721][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2863.142790][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] RIP: 0023:0xf6f37549
[ 2863.142790][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2863.142790][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2863.142790][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2863.142790][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2863.142790][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2863.142790][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2863.142790][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Uninit was stored to memory at:
[ 2863.142790][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.142790][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2863.142790][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.142790][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2863.142790][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.142790][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.142790][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2863.142790][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2863.142790][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2863.142790][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.142790][ T7249] 
[ 2863.142790][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2863.142790][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2863.142790][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2863.895869][ T7252] not chained 500000 origins
[ 2863.900477][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2863.902817][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2863.902817][ T7252] Call Trace:
[ 2863.902817][ T7252]  dump_stack+0x25a/0x2f6
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2863.902817][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.902817][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2863.902817][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2863.902817][ T7252]  ? should_fail+0x75/0x9c0
[ 2863.902817][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.902817][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2863.902817][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2863.902817][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2863.902817][ T7252]  ? _copy_from_user+0x219/0x310
[ 2863.902817][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2863.902817][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2863.902817][ T7252]  ? _copy_from_user+0x219/0x310
[ 2863.902817][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2863.902817][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2863.902817][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2863.902817][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] RIP: 0023:0xf6f37549
[ 2863.902817][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2863.902817][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2863.902817][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2863.902817][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2863.902817][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2863.902817][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2863.902817][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Uninit was stored to memory at:
[ 2863.902817][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2863.902817][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2863.902817][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2863.902817][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2863.902817][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2863.902817][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2863.902817][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2863.902817][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2863.902817][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2863.902817][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2863.902817][ T7252] 
[ 2863.902817][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2863.902817][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2863.902817][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.706379][ T7252] not chained 510000 origins
[ 2864.710988][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2864.712780][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2864.712780][ T7252] Call Trace:
[ 2864.712780][ T7252]  dump_stack+0x25a/0x2f6
[ 2864.712780][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2864.712780][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2864.712780][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2864.712780][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2864.758792][ T7252]  ? should_fail+0x75/0x9c0
[ 2864.758792][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2864.758792][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2864.758792][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2864.758792][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2864.758792][ T7252]  ? _copy_from_user+0x219/0x310
[ 2864.758792][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2864.758792][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2864.758792][ T7252]  ? _copy_from_user+0x219/0x310
[ 2864.758792][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2864.758792][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2864.758792][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2864.758792][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] RIP: 0023:0xf6f37549
[ 2864.758792][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2864.758792][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2864.758792][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2864.758792][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2864.758792][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2864.758792][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2864.758792][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Uninit was stored to memory at:
[ 2864.758792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2864.758792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2864.758792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2864.758792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2864.758792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2864.758792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2864.758792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2864.758792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2864.758792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2864.758792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2864.758792][ T7252] 
[ 2864.758792][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2864.758792][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2864.758792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2865.610417][ T7249] not chained 520000 origins
[ 2865.612715][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2865.612715][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2865.612715][ T7249] Call Trace:
[ 2865.612715][ T7249]  dump_stack+0x25a/0x2f6
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2865.612715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2865.612715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2865.612715][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2865.612715][ T7249]  ? should_fail+0x75/0x9c0
[ 2865.612715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2865.612715][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2865.612715][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2865.612715][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2865.612715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2865.612715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2865.612715][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2865.612715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2865.612715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2865.612715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2865.612715][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2865.612715][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] RIP: 0023:0xf6f37549
[ 2865.612715][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2865.612715][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2865.612715][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2865.612715][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2865.612715][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2865.612715][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2865.612715][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Uninit was stored to memory at:
[ 2865.612715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2865.612715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2865.612715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2865.612715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2865.612715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2865.612715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2865.612715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2865.612715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2865.612715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2865.612715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2865.612715][ T7249] 
[ 2865.612715][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2865.612715][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2865.612715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2866.540959][ T7252] not chained 530000 origins
[ 2866.542726][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2866.542726][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2866.542726][ T7252] Call Trace:
[ 2866.542726][ T7252]  dump_stack+0x25a/0x2f6
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2866.542726][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2866.542726][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2866.542726][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2866.542726][ T7252]  ? should_fail+0x75/0x9c0
[ 2866.542726][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2866.542726][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2866.542726][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2866.542726][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2866.542726][ T7252]  ? _copy_from_user+0x219/0x310
[ 2866.542726][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2866.542726][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2866.542726][ T7252]  ? _copy_from_user+0x219/0x310
[ 2866.542726][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2866.542726][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2866.542726][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2866.542726][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] RIP: 0023:0xf6f37549
[ 2866.542726][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2866.542726][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2866.542726][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2866.542726][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2866.542726][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2866.542726][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2866.542726][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Uninit was stored to memory at:
[ 2866.542726][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2866.542726][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2866.542726][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2866.542726][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2866.542726][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2866.542726][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2866.542726][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2866.542726][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2866.542726][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2866.542726][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2866.542726][ T7252] 
[ 2866.542726][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2866.542726][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2866.542726][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462392][ T7249] not chained 540000 origins
[ 2867.462728][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2867.462728][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2867.462728][ T7249] Call Trace:
[ 2867.462728][ T7249]  dump_stack+0x25a/0x2f6
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2867.462728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2867.462728][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2867.462728][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2867.462728][ T7249]  ? should_fail+0x75/0x9c0
[ 2867.462728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2867.462728][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2867.462728][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2867.462728][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2867.462728][ T7249]  ? _copy_from_user+0x219/0x310
[ 2867.462728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2867.462728][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2867.462728][ T7249]  ? _copy_from_user+0x219/0x310
[ 2867.462728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2867.462728][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2867.462728][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2867.462728][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] RIP: 0023:0xf6f37549
[ 2867.462728][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2867.462728][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2867.462728][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2867.462728][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2867.462728][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2867.462728][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2867.462728][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Uninit was stored to memory at:
[ 2867.462728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2867.462728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2867.462728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2867.462728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2867.462728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2867.462728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2867.462728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2867.462728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2867.462728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2867.462728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2867.462728][ T7249] 
[ 2867.462728][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2867.462728][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2867.462728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2868.369442][ T7252] not chained 550000 origins
[ 2868.372716][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2868.372716][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2868.382831][ T7252] Call Trace:
[ 2868.382831][ T7252]  dump_stack+0x25a/0x2f6
[ 2868.382831][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2868.382831][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2868.382831][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2868.382831][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2868.422870][ T7252]  ? should_fail+0x75/0x9c0
[ 2868.422870][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2868.422870][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2868.422870][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2868.422870][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2868.422870][ T7252]  ? _copy_from_user+0x219/0x310
[ 2868.422870][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2868.422870][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2868.422870][ T7252]  ? _copy_from_user+0x219/0x310
[ 2868.422870][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2868.422870][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2868.422870][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2868.422870][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] RIP: 0023:0xf6f37549
[ 2868.422870][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2868.422870][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2868.422870][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2868.422870][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2868.422870][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2868.422870][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2868.422870][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Uninit was stored to memory at:
[ 2868.422870][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2868.422870][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2868.422870][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2868.422870][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2868.422870][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2868.422870][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2868.422870][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2868.422870][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2868.422870][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2868.422870][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2868.422870][ T7252] 
[ 2868.422870][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2868.422870][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2868.422870][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.268221][ T7252] not chained 560000 origins
[ 2869.272714][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2869.272714][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2869.272714][ T7252] Call Trace:
[ 2869.272714][ T7252]  dump_stack+0x25a/0x2f6
[ 2869.272714][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2869.272714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2869.272714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2869.272714][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2869.272714][ T7252]  ? should_fail+0x75/0x9c0
[ 2869.272714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2869.272714][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2869.272714][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2869.272714][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2869.272714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2869.272714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2869.272714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.272714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.272714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.272714][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2869.272714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.272714][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2869.272714][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2869.272714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2869.272714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2869.272714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2869.272714][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2869.272714][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2869.272714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.272714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.272714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.272714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.272714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.272714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.272714][ T7252] RIP: 0023:0xf6f37549
[ 2869.272714][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2869.272714][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2869.272714][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2869.272714][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2869.272714][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2869.272714][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2869.272714][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2869.272714][ T7252] Uninit was stored to memory at:
[ 2869.272714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.272714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.272714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Uninit was stored to memory at:
[ 2869.542802][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2869.542802][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2869.542802][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2869.542802][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2869.542802][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2869.542802][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2869.542802][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2869.542802][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2869.542802][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2869.542802][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2869.542802][ T7252] 
[ 2869.542802][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2869.542802][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2869.542802][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.168956][ T7252] not chained 570000 origins
[ 2870.172714][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2870.172714][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2870.183228][ T7252] Call Trace:
[ 2870.192844][ T7252]  dump_stack+0x25a/0x2f6
[ 2870.192844][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2870.192844][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2870.192844][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2870.212871][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2870.212871][ T7252]  ? should_fail+0x75/0x9c0
[ 2870.212871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2870.212871][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2870.212871][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2870.212871][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2870.212871][ T7252]  ? _copy_from_user+0x219/0x310
[ 2870.212871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2870.212871][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2870.212871][ T7252]  ? _copy_from_user+0x219/0x310
[ 2870.212871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2870.212871][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2870.212871][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2870.212871][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] RIP: 0023:0xf6f37549
[ 2870.212871][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2870.212871][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2870.212871][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2870.212871][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2870.212871][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2870.212871][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2870.212871][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Uninit was stored to memory at:
[ 2870.212871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2870.212871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2870.212871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2870.212871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2870.212871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2870.212871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2870.212871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2870.212871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2870.212871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2870.212871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2870.212871][ T7252] 
[ 2870.212871][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2870.212871][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2870.212871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2871.080007][ T7249] not chained 580000 origins
[ 2871.082729][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2871.082729][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2871.082729][ T7249] Call Trace:
[ 2871.082729][ T7249]  dump_stack+0x25a/0x2f6
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2871.082729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2871.082729][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2871.082729][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2871.082729][ T7249]  ? should_fail+0x75/0x9c0
[ 2871.082729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2871.082729][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2871.082729][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2871.082729][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2871.082729][ T7249]  ? _copy_from_user+0x219/0x310
[ 2871.082729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2871.082729][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2871.082729][ T7249]  ? _copy_from_user+0x219/0x310
[ 2871.082729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2871.082729][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2871.082729][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2871.082729][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] RIP: 0023:0xf6f37549
[ 2871.082729][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2871.082729][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2871.082729][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2871.082729][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2871.082729][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2871.082729][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2871.082729][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Uninit was stored to memory at:
[ 2871.082729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2871.082729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2871.082729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2871.082729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2871.082729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2871.082729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2871.082729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2871.082729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2871.082729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2871.082729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2871.082729][ T7249] 
[ 2871.082729][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2871.082729][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2871.082729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.014729][ T7252] not chained 590000 origins
[ 2872.019341][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2872.022716][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2872.022716][ T7252] Call Trace:
[ 2872.022716][ T7252]  dump_stack+0x25a/0x2f6
[ 2872.022716][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2872.022716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.022716][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2872.022716][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2872.022716][ T7252]  ? should_fail+0x75/0x9c0
[ 2872.022716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.022716][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2872.022716][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2872.022716][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2872.022716][ T7252]  ? _copy_from_user+0x219/0x310
[ 2872.022716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2872.102790][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2872.102790][ T7252]  ? _copy_from_user+0x219/0x310
[ 2872.102790][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.102790][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2872.102790][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2872.102790][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] RIP: 0023:0xf6f37549
[ 2872.102790][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2872.102790][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2872.102790][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2872.102790][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2872.102790][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2872.102790][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2872.102790][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Uninit was stored to memory at:
[ 2872.102790][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.102790][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2872.102790][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.102790][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2872.102790][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.102790][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.102790][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2872.102790][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2872.102790][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2872.102790][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.102790][ T7252] 
[ 2872.102790][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2872.102790][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2872.102790][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2872.944795][ T7249] not chained 600000 origins
[ 2872.949404][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2872.952714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2872.952714][ T7249] Call Trace:
[ 2872.952714][ T7249]  dump_stack+0x25a/0x2f6
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2872.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.952714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2872.952714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2872.952714][ T7249]  ? should_fail+0x75/0x9c0
[ 2872.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.952714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2872.952714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2872.952714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2872.952714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2872.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2872.952714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2872.952714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2872.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2872.952714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2872.952714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2872.952714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] RIP: 0023:0xf6f37549
[ 2872.952714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2872.952714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2872.952714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2872.952714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2872.952714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2872.952714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2872.952714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Uninit was stored to memory at:
[ 2872.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2872.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2872.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2872.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2872.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2872.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2872.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2872.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2872.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2872.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2872.952714][ T7249] 
[ 2872.952714][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2872.952714][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2872.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.848548][ T7249] not chained 610000 origins
[ 2873.852711][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2873.852711][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2873.852711][ T7249] Call Trace:
[ 2873.852711][ T7249]  dump_stack+0x25a/0x2f6
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2873.852711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2873.852711][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2873.852711][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2873.852711][ T7249]  ? should_fail+0x75/0x9c0
[ 2873.852711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2873.852711][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2873.852711][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2873.852711][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2873.852711][ T7249]  ? _copy_from_user+0x219/0x310
[ 2873.852711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2873.852711][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2873.852711][ T7249]  ? _copy_from_user+0x219/0x310
[ 2873.852711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2873.852711][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2873.852711][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2873.852711][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] RIP: 0023:0xf6f37549
[ 2873.852711][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2873.852711][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2873.852711][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2873.852711][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2873.852711][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2873.852711][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2873.852711][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Uninit was stored to memory at:
[ 2873.852711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2873.852711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2873.852711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2873.852711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2873.852711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2873.852711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2873.852711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2873.852711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2873.852711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2873.852711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2873.852711][ T7249] 
[ 2873.852711][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2873.852711][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2873.852711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2874.777075][ T7252] not chained 620000 origins
[ 2874.781686][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2874.782715][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2874.782715][ T7252] Call Trace:
[ 2874.782715][ T7252]  dump_stack+0x25a/0x2f6
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2874.782715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2874.782715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2874.782715][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2874.782715][ T7252]  ? should_fail+0x75/0x9c0
[ 2874.782715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2874.782715][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2874.782715][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2874.782715][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2874.782715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2874.782715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2874.782715][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2874.782715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2874.782715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2874.782715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2874.782715][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2874.782715][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] RIP: 0023:0xf6f37549
[ 2874.782715][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2874.782715][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2874.782715][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2874.782715][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2874.782715][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2874.782715][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2874.782715][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Uninit was stored to memory at:
[ 2874.782715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2874.782715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2874.782715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2874.782715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2874.782715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2874.782715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2874.782715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2874.782715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2874.782715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2874.782715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2874.782715][ T7252] 
[ 2874.782715][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2874.782715][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2874.782715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.709525][ T7252] not chained 630000 origins
[ 2875.712719][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2875.712719][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2875.712719][ T7252] Call Trace:
[ 2875.712719][ T7252]  dump_stack+0x25a/0x2f6
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2875.712719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2875.712719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2875.712719][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2875.712719][ T7252]  ? should_fail+0x75/0x9c0
[ 2875.712719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2875.712719][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2875.712719][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2875.712719][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2875.712719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2875.712719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2875.712719][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2875.712719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2875.712719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2875.712719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2875.712719][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2875.712719][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] RIP: 0023:0xf6f37549
[ 2875.712719][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2875.712719][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2875.712719][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2875.712719][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2875.712719][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2875.712719][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2875.712719][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Uninit was stored to memory at:
[ 2875.712719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2875.712719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2875.712719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2875.712719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2875.712719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2875.712719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2875.712719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2875.712719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2875.712719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2875.712719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2875.712719][ T7252] 
[ 2875.712719][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2875.712719][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2875.712719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2876.620624][ T7249] not chained 640000 origins
[ 2876.622726][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2876.622726][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2876.622726][ T7249] Call Trace:
[ 2876.622726][ T7249]  dump_stack+0x25a/0x2f6
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2876.622726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2876.622726][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2876.622726][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2876.622726][ T7249]  ? should_fail+0x75/0x9c0
[ 2876.622726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2876.622726][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2876.622726][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2876.622726][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2876.622726][ T7249]  ? _copy_from_user+0x219/0x310
[ 2876.622726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2876.622726][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2876.622726][ T7249]  ? _copy_from_user+0x219/0x310
[ 2876.622726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2876.622726][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2876.622726][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2876.622726][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] RIP: 0023:0xf6f37549
[ 2876.622726][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2876.622726][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2876.622726][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2876.622726][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2876.622726][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2876.622726][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2876.622726][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Uninit was stored to memory at:
[ 2876.622726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2876.622726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2876.622726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2876.622726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2876.622726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2876.622726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2876.622726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2876.622726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2876.622726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2876.622726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2876.622726][ T7249] 
[ 2876.622726][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2876.622726][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2876.622726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.514110][ T7249] not chained 650000 origins
[ 2877.518714][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2877.522718][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2877.522718][ T7249] Call Trace:
[ 2877.522718][ T7249]  dump_stack+0x25a/0x2f6
[ 2877.522718][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2877.522718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2877.522718][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2877.522718][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2877.522718][ T7249]  ? should_fail+0x75/0x9c0
[ 2877.522718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2877.522718][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2877.522718][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2877.522718][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2877.522718][ T7249]  ? _copy_from_user+0x219/0x310
[ 2877.522718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2877.522718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.522718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.522718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.522718][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2877.622816][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2877.622816][ T7249]  ? _copy_from_user+0x219/0x310
[ 2877.622816][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2877.622816][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2877.622816][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2877.622816][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] RIP: 0023:0xf6f37549
[ 2877.622816][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2877.622816][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2877.622816][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2877.622816][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2877.622816][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2877.622816][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2877.622816][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Uninit was stored to memory at:
[ 2877.622816][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2877.622816][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2877.622816][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2877.622816][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2877.622816][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2877.622816][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2877.622816][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2877.622816][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2877.622816][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2877.622816][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2877.622816][ T7249] 
[ 2877.622816][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2877.622816][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2877.622816][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2878.447151][ T7252] not chained 660000 origins
[ 2878.451755][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2878.452717][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2878.452717][ T7252] Call Trace:
[ 2878.452717][ T7252]  dump_stack+0x25a/0x2f6
[ 2878.452717][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2878.452717][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2878.452717][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2878.452717][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2878.452717][ T7252]  ? should_fail+0x75/0x9c0
[ 2878.452717][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2878.452717][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2878.452717][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2878.452717][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2878.452717][ T7252]  ? _copy_from_user+0x219/0x310
[ 2878.452717][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2878.452717][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.452717][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.452717][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.452717][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2878.452717][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.452717][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2878.452717][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2878.452717][ T7252]  ? _copy_from_user+0x219/0x310
[ 2878.452717][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2878.452717][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2878.452717][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2878.452717][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2878.452717][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.452717][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.452717][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.452717][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.452717][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.452717][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.452717][ T7252] RIP: 0023:0xf6f37549
[ 2878.452717][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2878.452717][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2878.452717][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2878.452717][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2878.452717][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2878.452717][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2878.452717][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2878.452717][ T7252] Uninit was stored to memory at:
[ 2878.452717][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.452717][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.452717][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.452717][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.452717][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.452717][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.452717][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Uninit was stored to memory at:
[ 2878.742791][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2878.742791][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2878.742791][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2878.742791][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2878.742791][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2878.742791][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2878.742791][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2878.742791][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2878.742791][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2878.742791][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2878.742791][ T7252] 
[ 2878.742791][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2878.742791][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2878.742791][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2879.221929][ T7249] not chained 670000 origins
[ 2879.222720][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2879.222720][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2879.222720][ T7249] Call Trace:
[ 2879.222720][ T7249]  dump_stack+0x25a/0x2f6
[ 2879.222720][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2879.222720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2879.222720][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2879.222720][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2879.222720][ T7249]  ? should_fail+0x75/0x9c0
[ 2879.222720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2879.222720][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2879.222720][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2879.222720][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2879.222720][ T7249]  ? _copy_from_user+0x219/0x310
[ 2879.222720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2879.222720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.222720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.222720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.222720][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2879.332919][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.332919][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2879.341724][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2879.341724][ T7249]  ? _copy_from_user+0x219/0x310
[ 2879.341724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2879.341724][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2879.341724][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2879.341724][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] RIP: 0023:0xf6f37549
[ 2879.341724][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2879.341724][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2879.341724][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2879.341724][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2879.341724][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2879.341724][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2879.341724][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Uninit was stored to memory at:
[ 2879.341724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2879.341724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2879.341724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2879.341724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2879.341724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2879.341724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2879.341724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2879.341724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2879.341724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2879.341724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2879.341724][ T7249] 
[ 2879.341724][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2879.341724][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2879.341724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.127745][ T7249] not chained 680000 origins
[ 2880.132354][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2880.132722][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2880.132722][ T7249] Call Trace:
[ 2880.132722][ T7249]  dump_stack+0x25a/0x2f6
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2880.132722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2880.132722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2880.132722][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2880.132722][ T7249]  ? should_fail+0x75/0x9c0
[ 2880.132722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2880.132722][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2880.132722][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2880.132722][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2880.132722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2880.132722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2880.132722][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2880.132722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2880.132722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2880.132722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2880.132722][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2880.132722][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] RIP: 0023:0xf6f37549
[ 2880.132722][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2880.132722][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2880.132722][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2880.132722][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2880.132722][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2880.132722][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2880.132722][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Uninit was stored to memory at:
[ 2880.132722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2880.132722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2880.132722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2880.132722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2880.132722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2880.132722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2880.132722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2880.132722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2880.132722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2880.132722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2880.132722][ T7249] 
[ 2880.132722][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2880.132722][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2880.132722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.051099][ T7249] not chained 690000 origins
[ 2881.052728][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2881.052728][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2881.052728][ T7249] Call Trace:
[ 2881.052728][ T7249]  dump_stack+0x25a/0x2f6
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2881.052728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.052728][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2881.052728][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2881.052728][ T7249]  ? should_fail+0x75/0x9c0
[ 2881.052728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.052728][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2881.052728][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2881.052728][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2881.052728][ T7249]  ? _copy_from_user+0x219/0x310
[ 2881.052728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2881.052728][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2881.052728][ T7249]  ? _copy_from_user+0x219/0x310
[ 2881.052728][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.052728][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2881.052728][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2881.052728][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] RIP: 0023:0xf6f37549
[ 2881.052728][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2881.052728][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2881.052728][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2881.052728][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2881.052728][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2881.052728][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2881.052728][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Uninit was stored to memory at:
[ 2881.052728][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.052728][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.052728][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.052728][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.052728][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.052728][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.052728][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.052728][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.052728][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.052728][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.052728][ T7249] 
[ 2881.052728][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2881.052728][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2881.052728][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962151][ T7249] not chained 700000 origins
[ 2881.962726][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2881.962726][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2881.962726][ T7249] Call Trace:
[ 2881.962726][ T7249]  dump_stack+0x25a/0x2f6
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2881.962726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.962726][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2881.962726][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2881.962726][ T7249]  ? should_fail+0x75/0x9c0
[ 2881.962726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.962726][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2881.962726][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2881.962726][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2881.962726][ T7249]  ? _copy_from_user+0x219/0x310
[ 2881.962726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2881.962726][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2881.962726][ T7249]  ? _copy_from_user+0x219/0x310
[ 2881.962726][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2881.962726][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2881.962726][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2881.962726][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] RIP: 0023:0xf6f37549
[ 2881.962726][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2881.962726][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2881.962726][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2881.962726][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2881.962726][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2881.962726][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2881.962726][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Uninit was stored to memory at:
[ 2881.962726][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2881.962726][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2881.962726][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2881.962726][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2881.962726][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2881.962726][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2881.962726][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2881.962726][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2881.962726][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2881.962726][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2881.962726][ T7249] 
[ 2881.962726][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2881.962726][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2881.962726][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2882.857130][ T7252] not chained 710000 origins
[ 2882.861731][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2882.862704][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2882.862704][ T7252] Call Trace:
[ 2882.862704][ T7252]  dump_stack+0x25a/0x2f6
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2882.862704][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2882.862704][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2882.862704][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2882.862704][ T7252]  ? should_fail+0x75/0x9c0
[ 2882.862704][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2882.862704][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2882.862704][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2882.862704][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2882.862704][ T7252]  ? _copy_from_user+0x219/0x310
[ 2882.862704][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2882.862704][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2882.862704][ T7252]  ? _copy_from_user+0x219/0x310
[ 2882.862704][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2882.862704][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2882.862704][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2882.862704][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] RIP: 0023:0xf6f37549
[ 2882.862704][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2882.862704][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2882.862704][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2882.862704][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2882.862704][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2882.862704][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2882.862704][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Uninit was stored to memory at:
[ 2882.862704][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2882.862704][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2882.862704][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2882.862704][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2882.862704][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2882.862704][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2882.862704][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2882.862704][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2882.862704][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2882.862704][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2882.862704][ T7252] 
[ 2882.862704][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2882.862704][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2882.862704][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2883.797155][ T7249] not chained 720000 origins
[ 2883.801761][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2883.802733][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2883.802733][ T7249] Call Trace:
[ 2883.802733][ T7249]  dump_stack+0x25a/0x2f6
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2883.802733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2883.802733][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2883.802733][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2883.802733][ T7249]  ? should_fail+0x75/0x9c0
[ 2883.802733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2883.802733][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2883.802733][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2883.802733][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2883.802733][ T7249]  ? _copy_from_user+0x219/0x310
[ 2883.802733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2883.802733][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2883.802733][ T7249]  ? _copy_from_user+0x219/0x310
[ 2883.802733][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2883.802733][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2883.802733][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2883.802733][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] RIP: 0023:0xf6f37549
[ 2883.802733][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2883.802733][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2883.802733][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2883.802733][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2883.802733][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2883.802733][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2883.802733][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Uninit was stored to memory at:
[ 2883.802733][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2883.802733][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2883.802733][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2883.802733][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2883.802733][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2883.802733][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2883.802733][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2883.802733][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2883.802733][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2883.802733][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2883.802733][ T7249] 
[ 2883.802733][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2883.802733][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2883.802733][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2884.687756][ T7252] not chained 730000 origins
[ 2884.692369][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2884.692715][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2884.692715][ T7252] Call Trace:
[ 2884.692715][ T7252]  dump_stack+0x25a/0x2f6
[ 2884.692715][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2884.692715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2884.692715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2884.692715][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2884.692715][ T7252]  ? should_fail+0x75/0x9c0
[ 2884.692715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2884.692715][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2884.692715][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2884.692715][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2884.692715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2884.692715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2884.692715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.692715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.692715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.692715][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2884.692715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.692715][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2884.692715][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2884.692715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2884.692715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2884.692715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2884.692715][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2884.692715][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2884.692715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.692715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.692715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.692715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.692715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.692715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.692715][ T7252] RIP: 0023:0xf6f37549
[ 2884.692715][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2884.692715][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2884.902794][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2884.902794][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2884.902794][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2884.902794][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2884.902794][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Uninit was stored to memory at:
[ 2884.902794][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2884.902794][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2884.902794][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2884.902794][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2884.902794][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2884.902794][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2884.902794][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2884.902794][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2884.902794][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2884.902794][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2884.902794][ T7252] 
[ 2884.902794][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2884.902794][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2884.902794][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2885.573890][ T7249] not chained 740000 origins
[ 2885.578501][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2885.582722][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2885.582722][ T7249] Call Trace:
[ 2885.582722][ T7249]  dump_stack+0x25a/0x2f6
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2885.582722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2885.582722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2885.582722][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2885.582722][ T7249]  ? should_fail+0x75/0x9c0
[ 2885.582722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2885.582722][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2885.582722][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2885.582722][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2885.582722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2885.582722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2885.582722][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2885.582722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2885.582722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2885.582722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2885.582722][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2885.582722][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] RIP: 0023:0xf6f37549
[ 2885.582722][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2885.582722][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2885.582722][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2885.582722][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2885.582722][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2885.582722][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2885.582722][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Uninit was stored to memory at:
[ 2885.582722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2885.582722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2885.582722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2885.582722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2885.582722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2885.582722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2885.582722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2885.582722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2885.582722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2885.582722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2885.582722][ T7249] 
[ 2885.582722][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2885.582722][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2885.582722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.917673][ T7249] not chained 750000 origins
[ 2886.922281][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2886.922722][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2886.922722][ T7249] Call Trace:
[ 2886.922722][ T7249]  dump_stack+0x25a/0x2f6
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2886.922722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2886.922722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2886.922722][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2886.922722][ T7249]  ? should_fail+0x75/0x9c0
[ 2886.922722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2886.922722][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2886.922722][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2886.922722][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2886.922722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2886.922722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2886.922722][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2886.922722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2886.922722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2886.922722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2886.922722][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2886.922722][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] RIP: 0023:0xf6f37549
[ 2886.922722][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2886.922722][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2886.922722][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2886.922722][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2886.922722][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2886.922722][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2886.922722][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Uninit was stored to memory at:
[ 2886.922722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2886.922722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2886.922722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2886.922722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2886.922722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2886.922722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2886.922722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2886.922722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2886.922722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2886.922722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2886.922722][ T7249] 
[ 2886.922722][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2886.922722][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2886.922722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2888.050767][ T7252] not chained 760000 origins
[ 2888.052723][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2888.052723][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2888.052723][ T7252] Call Trace:
[ 2888.052723][ T7252]  dump_stack+0x25a/0x2f6
[ 2888.052723][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2888.052723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.052723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2888.052723][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2888.052723][ T7252]  ? should_fail+0x75/0x9c0
[ 2888.052723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.052723][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2888.052723][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2888.052723][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2888.052723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2888.052723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.052723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.052723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.052723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.052723][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2888.052723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.052723][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2888.052723][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2888.052723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2888.052723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.052723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2888.052723][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2888.052723][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2888.052723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.052723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.052723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.052723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.052723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.052723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.052723][ T7252] RIP: 0023:0xf6f37549
[ 2888.052723][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2888.052723][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2888.052723][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2888.052723][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2888.052723][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2888.052723][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2888.052723][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2888.052723][ T7252] Uninit was stored to memory at:
[ 2888.052723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.052723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.052723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.052723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.052723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.052723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.052723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.052723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.052723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.052723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.052723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.052723][ T7252] 
[ 2888.052723][ T7252] Uninit was stored to memory at:
[ 2888.052723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.052723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.052723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.052723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Uninit was stored to memory at:
[ 2888.399236][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.399236][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.399236][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.399236][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Uninit was stored to memory at:
[ 2888.399236][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.399236][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.399236][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.399236][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Uninit was stored to memory at:
[ 2888.399236][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.399236][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.399236][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.399236][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Uninit was stored to memory at:
[ 2888.399236][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.399236][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.399236][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.399236][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Uninit was stored to memory at:
[ 2888.399236][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.399236][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2888.399236][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.399236][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2888.399236][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.399236][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.399236][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2888.399236][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2888.399236][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2888.399236][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.399236][ T7252] 
[ 2888.399236][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2888.399236][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2888.399236][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2888.950690][ T7249] not chained 770000 origins
[ 2888.952714][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2888.952714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2888.952714][ T7249] Call Trace:
[ 2888.952714][ T7249]  dump_stack+0x25a/0x2f6
[ 2888.952714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2888.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.952714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2888.952714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2888.952714][ T7249]  ? should_fail+0x75/0x9c0
[ 2888.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.952714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2888.952714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2888.952714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2888.952714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2888.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2888.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2888.952714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2888.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2888.952714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2888.952714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2888.952714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2888.952714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2888.952714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2888.952714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2888.952714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2888.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2888.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2888.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2888.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2888.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.952714][ T7249] RIP: 0023:0xf6f37549
[ 2888.952714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2888.952714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2888.952714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2888.952714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2888.952714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2888.952714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2888.952714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2888.952714][ T7249] Uninit was stored to memory at:
[ 2888.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2888.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2888.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2888.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2888.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2888.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2888.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2888.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.952714][ T7249] 
[ 2888.952714][ T7249] Uninit was stored to memory at:
[ 2888.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2888.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2888.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2888.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2888.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2888.952714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2888.952714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2888.952714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2888.952714][ T7249] 
[ 2888.952714][ T7249] Uninit was stored to memory at:
[ 2888.952714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2888.952714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2888.952714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2888.952714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2888.952714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2888.952714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2888.952714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2888.952714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2889.382829][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2889.382829][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2889.382829][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.382829][ T7249] 
[ 2889.382829][ T7249] Uninit was stored to memory at:
[ 2889.382829][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.382829][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2889.382829][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.382829][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2889.382829][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2889.382829][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2889.382829][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.382829][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2889.382829][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2889.382829][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2889.382829][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.382829][ T7249] 
[ 2889.382829][ T7249] Uninit was stored to memory at:
[ 2889.382829][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.382829][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2889.382829][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.382829][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2889.382829][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2889.382829][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2889.382829][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.382829][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2889.382829][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2889.382829][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2889.382829][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.382829][ T7249] 
[ 2889.382829][ T7249] Uninit was stored to memory at:
[ 2889.382829][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.382829][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2889.382829][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.382829][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2889.382829][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2889.382829][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2889.382829][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.382829][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2889.382829][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2889.382829][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2889.382829][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.382829][ T7249] 
[ 2889.382829][ T7249] Uninit was stored to memory at:
[ 2889.382829][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.382829][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2889.382829][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.382829][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2889.382829][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2889.382829][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2889.382829][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.382829][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2889.382829][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2889.382829][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2889.382829][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.382829][ T7249] 
[ 2889.382829][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2889.382829][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2889.382829][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2889.876994][ T7252] not chained 780000 origins
[ 2889.881604][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2889.882729][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2889.882729][ T7252] Call Trace:
[ 2889.882729][ T7252]  dump_stack+0x25a/0x2f6
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2889.882729][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2889.882729][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2889.882729][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2889.882729][ T7252]  ? should_fail+0x75/0x9c0
[ 2889.882729][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2889.882729][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2889.882729][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2889.882729][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2889.882729][ T7252]  ? _copy_from_user+0x219/0x310
[ 2889.882729][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2889.882729][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2889.882729][ T7252]  ? _copy_from_user+0x219/0x310
[ 2889.882729][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2889.882729][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2889.882729][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2889.882729][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] RIP: 0023:0xf6f37549
[ 2889.882729][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2889.882729][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2889.882729][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2889.882729][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2889.882729][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2889.882729][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2889.882729][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Uninit was stored to memory at:
[ 2889.882729][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2889.882729][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2889.882729][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2889.882729][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2889.882729][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2889.882729][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2889.882729][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2889.882729][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2889.882729][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2889.882729][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2889.882729][ T7252] 
[ 2889.882729][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2889.882729][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2889.882729][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.798478][ T7252] not chained 790000 origins
[ 2890.802716][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2890.802716][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2890.802716][ T7252] Call Trace:
[ 2890.802716][ T7252]  dump_stack+0x25a/0x2f6
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2890.802716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2890.802716][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2890.802716][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2890.802716][ T7252]  ? should_fail+0x75/0x9c0
[ 2890.802716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2890.802716][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2890.802716][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2890.802716][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2890.802716][ T7252]  ? _copy_from_user+0x219/0x310
[ 2890.802716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2890.802716][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2890.802716][ T7252]  ? _copy_from_user+0x219/0x310
[ 2890.802716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2890.802716][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2890.802716][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2890.802716][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] RIP: 0023:0xf6f37549
[ 2890.802716][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2890.802716][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2890.802716][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2890.802716][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2890.802716][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2890.802716][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2890.802716][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Uninit was stored to memory at:
[ 2890.802716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2890.802716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2890.802716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2890.802716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2890.802716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2890.802716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2890.802716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2890.802716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2890.802716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2890.802716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2890.802716][ T7252] 
[ 2890.802716][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2890.802716][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2890.802716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2891.751871][ T7249] not chained 800000 origins
[ 2891.752714][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2891.752714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2891.752714][ T7249] Call Trace:
[ 2891.752714][ T7249]  dump_stack+0x25a/0x2f6
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2891.752714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2891.752714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2891.752714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2891.752714][ T7249]  ? should_fail+0x75/0x9c0
[ 2891.752714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2891.752714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2891.752714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2891.752714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2891.752714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2891.752714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2891.752714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2891.752714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2891.752714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2891.752714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2891.752714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2891.752714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] RIP: 0023:0xf6f37549
[ 2891.752714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2891.752714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2891.752714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2891.752714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2891.752714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2891.752714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2891.752714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Uninit was stored to memory at:
[ 2891.752714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2891.752714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2891.752714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2891.752714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2891.752714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2891.752714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2891.752714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2891.752714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2891.752714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2891.752714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2891.752714][ T7249] 
[ 2891.752714][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2891.752714][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2891.752714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.666977][ T7249] not chained 810000 origins
[ 2892.671584][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2892.672727][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2892.672727][ T7249] Call Trace:
[ 2892.672727][ T7249]  dump_stack+0x25a/0x2f6
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2892.672727][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2892.672727][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2892.672727][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2892.672727][ T7249]  ? should_fail+0x75/0x9c0
[ 2892.672727][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2892.672727][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2892.672727][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2892.672727][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2892.672727][ T7249]  ? _copy_from_user+0x219/0x310
[ 2892.672727][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2892.672727][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2892.672727][ T7249]  ? _copy_from_user+0x219/0x310
[ 2892.672727][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2892.672727][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2892.672727][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2892.672727][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] RIP: 0023:0xf6f37549
[ 2892.672727][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2892.672727][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2892.672727][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2892.672727][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2892.672727][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2892.672727][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2892.672727][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Uninit was stored to memory at:
[ 2892.672727][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2892.672727][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2892.672727][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2892.672727][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2892.672727][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2892.672727][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2892.672727][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2892.672727][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2892.672727][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2892.672727][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2892.672727][ T7249] 
[ 2892.672727][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2892.672727][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2892.672727][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.595243][ T7249] not chained 820000 origins
[ 2893.599852][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2893.602715][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2893.602715][ T7249] Call Trace:
[ 2893.602715][ T7249]  dump_stack+0x25a/0x2f6
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2893.602715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2893.602715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2893.602715][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2893.602715][ T7249]  ? should_fail+0x75/0x9c0
[ 2893.602715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2893.602715][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2893.602715][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2893.602715][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2893.602715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2893.602715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2893.602715][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2893.602715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2893.602715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2893.602715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2893.602715][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2893.602715][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] RIP: 0023:0xf6f37549
[ 2893.602715][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2893.602715][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2893.602715][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2893.602715][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2893.602715][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2893.602715][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2893.602715][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Uninit was stored to memory at:
[ 2893.602715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2893.602715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2893.602715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2893.602715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2893.602715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2893.602715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2893.602715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2893.602715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2893.602715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2893.602715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2893.602715][ T7249] 
[ 2893.602715][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2893.602715][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2893.602715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.339136][T20168] unregister_netdevice: waiting for veth3 to become free. Usage count = 2
[ 2894.495554][ T7249] not chained 830000 origins
[ 2894.500163][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2894.502722][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2894.502722][ T7249] Call Trace:
[ 2894.502722][ T7249]  dump_stack+0x25a/0x2f6
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2894.502722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2894.502722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2894.502722][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2894.502722][ T7249]  ? should_fail+0x75/0x9c0
[ 2894.502722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2894.502722][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2894.502722][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2894.502722][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2894.502722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2894.502722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2894.502722][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2894.502722][ T7249]  ? _copy_from_user+0x219/0x310
[ 2894.502722][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2894.502722][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2894.502722][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2894.502722][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] RIP: 0023:0xf6f37549
[ 2894.502722][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2894.502722][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2894.502722][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2894.502722][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2894.502722][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2894.502722][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2894.502722][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Uninit was stored to memory at:
[ 2894.502722][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2894.502722][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2894.502722][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2894.502722][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2894.502722][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2894.502722][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2894.502722][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2894.502722][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2894.502722][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2894.502722][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2894.502722][ T7249] 
[ 2894.502722][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2894.502722][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2894.502722][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.025004][ T7249] not chained 840000 origins
[ 2896.029610][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2896.032711][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2896.032711][ T7249] Call Trace:
[ 2896.032711][ T7249]  dump_stack+0x25a/0x2f6
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2896.032711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.032711][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2896.032711][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2896.032711][ T7249]  ? should_fail+0x75/0x9c0
[ 2896.032711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.032711][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2896.032711][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2896.032711][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2896.032711][ T7249]  ? _copy_from_user+0x219/0x310
[ 2896.032711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2896.032711][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2896.032711][ T7249]  ? _copy_from_user+0x219/0x310
[ 2896.032711][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.032711][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2896.032711][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2896.032711][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] RIP: 0023:0xf6f37549
[ 2896.032711][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2896.032711][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2896.032711][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2896.032711][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2896.032711][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2896.032711][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2896.032711][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Uninit was stored to memory at:
[ 2896.032711][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.032711][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2896.032711][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.032711][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2896.032711][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.032711][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.032711][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2896.032711][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2896.032711][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2896.032711][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.032711][ T7249] 
[ 2896.032711][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2896.032711][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2896.032711][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2896.955470][ T7252] not chained 850000 origins
[ 2896.960080][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2896.962720][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2896.962720][ T7252] Call Trace:
[ 2896.962720][ T7252]  dump_stack+0x25a/0x2f6
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2896.962720][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.962720][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2896.962720][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2896.962720][ T7252]  ? should_fail+0x75/0x9c0
[ 2896.962720][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.962720][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2896.962720][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2896.962720][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2896.962720][ T7252]  ? _copy_from_user+0x219/0x310
[ 2896.962720][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2896.962720][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2896.962720][ T7252]  ? _copy_from_user+0x219/0x310
[ 2896.962720][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2896.962720][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2896.962720][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2896.962720][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] RIP: 0023:0xf6f37549
[ 2896.962720][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2896.962720][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2896.962720][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2896.962720][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2896.962720][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2896.962720][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2896.962720][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Uninit was stored to memory at:
[ 2896.962720][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2896.962720][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2896.962720][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2896.962720][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2896.962720][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2896.962720][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2896.962720][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2896.962720][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2896.962720][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2896.962720][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2896.962720][ T7252] 
[ 2896.962720][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2896.962720][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2896.962720][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2897.888743][ T7249] not chained 860000 origins
[ 2897.892717][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2897.892717][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2897.892717][ T7249] Call Trace:
[ 2897.892717][ T7249]  dump_stack+0x25a/0x2f6
[ 2897.892717][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2897.892717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2897.892717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2897.892717][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2897.892717][ T7249]  ? should_fail+0x75/0x9c0
[ 2897.892717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2897.892717][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2897.892717][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2897.892717][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2897.892717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2897.892717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2897.892717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2897.892717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2897.892717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2897.892717][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2897.892717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2897.892717][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2897.892717][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2897.892717][ T7249]  ? _copy_from_user+0x219/0x310
[ 2897.892717][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2897.892717][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2897.892717][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2897.892717][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2897.892717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2897.892717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2897.892717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2897.892717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2897.892717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2897.892717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2897.892717][ T7249] RIP: 0023:0xf6f37549
[ 2897.892717][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2897.892717][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2897.892717][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2897.892717][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2897.892717][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2897.892717][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2897.892717][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2897.892717][ T7249] Uninit was stored to memory at:
[ 2897.892717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2897.892717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2897.892717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2897.892717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2897.892717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2897.892717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2897.892717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2897.892717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2897.892717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2897.892717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2897.892717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2897.892717][ T7249] 
[ 2897.892717][ T7249] Uninit was stored to memory at:
[ 2897.892717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2897.892717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2897.892717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2897.892717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2897.892717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2897.892717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2897.892717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2897.892717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2897.892717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2897.892717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2897.892717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2897.892717][ T7249] 
[ 2897.892717][ T7249] Uninit was stored to memory at:
[ 2897.892717][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2897.892717][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2897.892717][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2897.892717][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2897.892717][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2897.892717][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2897.892717][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2897.892717][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2897.892717][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2897.892717][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2897.892717][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2897.892717][ T7249] 
[ 2897.892717][ T7249] Uninit was stored to memory at:
[ 2898.342795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.342795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.342795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.342795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.342795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.342795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.342795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.342795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.342795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.342795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.342795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.342795][ T7249] 
[ 2898.342795][ T7249] Uninit was stored to memory at:
[ 2898.342795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.342795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.342795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.342795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.342795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.342795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.342795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.342795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.342795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.342795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.342795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.342795][ T7249] 
[ 2898.342795][ T7249] Uninit was stored to memory at:
[ 2898.342795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.342795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.342795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.342795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.342795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.342795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.342795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.342795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.342795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.342795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.342795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.342795][ T7249] 
[ 2898.342795][ T7249] Uninit was stored to memory at:
[ 2898.342795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.342795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.342795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.342795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.342795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.342795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.342795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.342795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.342795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.342795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.342795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.342795][ T7249] 
[ 2898.342795][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2898.342795][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2898.342795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.805432][ T7249] not chained 870000 origins
[ 2898.810038][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2898.812716][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2898.812716][ T7249] Call Trace:
[ 2898.812716][ T7249]  dump_stack+0x25a/0x2f6
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2898.812716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2898.812716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2898.812716][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2898.812716][ T7249]  ? should_fail+0x75/0x9c0
[ 2898.812716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2898.812716][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2898.812716][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2898.812716][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2898.812716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2898.812716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2898.812716][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2898.812716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2898.812716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2898.812716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2898.812716][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2898.812716][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] RIP: 0023:0xf6f37549
[ 2898.812716][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2898.812716][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2898.812716][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2898.812716][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2898.812716][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2898.812716][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2898.812716][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Uninit was stored to memory at:
[ 2898.812716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2898.812716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2898.812716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2898.812716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2898.812716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2898.812716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2898.812716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2898.812716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2898.812716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2898.812716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2898.812716][ T7249] 
[ 2898.812716][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2898.812716][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2898.812716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.738865][ T7249] not chained 880000 origins
[ 2899.742719][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2899.742719][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2899.742719][ T7249] Call Trace:
[ 2899.742719][ T7249]  dump_stack+0x25a/0x2f6
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2899.742719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2899.742719][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2899.742719][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2899.742719][ T7249]  ? should_fail+0x75/0x9c0
[ 2899.742719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2899.742719][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2899.742719][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2899.742719][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2899.742719][ T7249]  ? _copy_from_user+0x219/0x310
[ 2899.742719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2899.742719][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2899.742719][ T7249]  ? _copy_from_user+0x219/0x310
[ 2899.742719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2899.742719][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2899.742719][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2899.742719][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] RIP: 0023:0xf6f37549
[ 2899.742719][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2899.742719][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2899.742719][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2899.742719][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2899.742719][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2899.742719][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2899.742719][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Uninit was stored to memory at:
[ 2899.742719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2899.742719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2899.742719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2899.742719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2899.742719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2899.742719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2899.742719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2899.742719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2899.742719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2899.742719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2899.742719][ T7249] 
[ 2899.742719][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2899.742719][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2899.742719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.673491][ T7249] not chained 890000 origins
[ 2900.678095][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2900.682724][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2900.682724][ T7249] Call Trace:
[ 2900.682724][ T7249]  dump_stack+0x25a/0x2f6
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2900.682724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2900.682724][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2900.682724][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2900.682724][ T7249]  ? should_fail+0x75/0x9c0
[ 2900.682724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2900.682724][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2900.682724][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2900.682724][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2900.682724][ T7249]  ? _copy_from_user+0x219/0x310
[ 2900.682724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2900.682724][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2900.682724][ T7249]  ? _copy_from_user+0x219/0x310
[ 2900.682724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2900.682724][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2900.682724][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2900.682724][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] RIP: 0023:0xf6f37549
[ 2900.682724][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2900.682724][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2900.682724][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2900.682724][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2900.682724][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2900.682724][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2900.682724][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Uninit was stored to memory at:
[ 2900.682724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2900.682724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2900.682724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2900.682724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2900.682724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2900.682724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2900.682724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2900.682724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2900.682724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2900.682724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2900.682724][ T7249] 
[ 2900.682724][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2900.682724][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2900.682724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.598469][ T7252] not chained 900000 origins
[ 2901.602714][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2901.602714][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2901.602714][ T7252] Call Trace:
[ 2901.602714][ T7252]  dump_stack+0x25a/0x2f6
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2901.602714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2901.602714][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2901.602714][ T7252]  ? should_fail+0x75/0x9c0
[ 2901.602714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2901.602714][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2901.602714][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2901.602714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2901.602714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2901.602714][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2901.602714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2901.602714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2901.602714][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2901.602714][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.602714][ T7252] RIP: 0023:0xf6f37549
[ 2901.602714][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2901.798912][ T7249] not chained 910000 origins
[ 2901.602714][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2901.602714][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2901.602714][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2901.602714][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2901.602714][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2901.602714][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249] Call Trace:
[ 2901.802720][ T7249]  dump_stack+0x25a/0x2f6
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  ? should_fail+0x75/0x9c0
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249]  ? _copy_from_user+0x219/0x310
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  ? _copy_from_user+0x219/0x310
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249] RIP: 0023:0xf6f37549
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  ORIG_RAX: 0000000000000151
[ 2901.802720][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249] Uninit was stored to memory at:
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249] 
[ 2901.802720][ T7249] Uninit was stored to memory at:
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249] 
[ 2901.802720][ T7249] Uninit was stored to memory at:
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Uninit was stored to memory at:
[ 2901.802720][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.802720][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2901.802720][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2901.602714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.802720][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2901.602714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2901.802720][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.602714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2901.802720][ T7249] 
[ 2901.802720][ T7249] Uninit was stored to memory at:
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2901.602714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.802720][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2901.602714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2901.802720][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2901.602714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2901.802720][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2901.602714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2901.802720][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2901.602714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2901.802720][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2901.602714][ T7252] 
[ 2901.602714][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2901.802720][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2901.602714][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2901.802720][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2901.602714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2901.802720][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2902.761913][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2902.761913][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2902.761913][ T7249] 
[ 2902.761913][ T7249] Uninit was stored to memory at:
[ 2902.761913][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2902.761913][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2902.761913][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2902.761913][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2902.761913][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2902.761913][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2902.761913][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2902.761913][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2902.761913][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2902.761913][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2902.761913][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2902.761913][ T7249] 
[ 2902.761913][ T7249] Uninit was stored to memory at:
[ 2902.761913][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2902.761913][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2902.761913][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2902.761913][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2902.761913][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2902.761913][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2902.761913][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2902.761913][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2902.761913][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2902.761913][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2902.761913][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2902.761913][ T7249] 
[ 2902.761913][ T7249] Uninit was stored to memory at:
[ 2902.761913][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2902.761913][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2902.761913][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2902.761913][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2902.761913][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2902.761913][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2902.761913][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2902.761913][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2902.761913][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2902.761913][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2902.761913][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2902.761913][ T7249] 
[ 2902.761913][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2902.761913][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2902.761913][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.329205][ T7249] not chained 920000 origins
[ 2903.332719][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2903.332719][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2903.332719][ T7249] Call Trace:
[ 2903.332719][ T7249]  dump_stack+0x25a/0x2f6
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2903.332719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2903.332719][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2903.332719][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2903.332719][ T7249]  ? should_fail+0x75/0x9c0
[ 2903.332719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2903.332719][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2903.332719][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2903.332719][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2903.332719][ T7249]  ? _copy_from_user+0x219/0x310
[ 2903.332719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2903.332719][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2903.332719][ T7249]  ? _copy_from_user+0x219/0x310
[ 2903.332719][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2903.332719][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2903.332719][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2903.332719][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] RIP: 0023:0xf6f37549
[ 2903.332719][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2903.332719][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2903.332719][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2903.332719][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2903.332719][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2903.332719][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2903.332719][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Uninit was stored to memory at:
[ 2903.332719][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2903.332719][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2903.332719][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2903.332719][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2903.332719][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2903.332719][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2903.332719][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2903.332719][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2903.332719][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2903.332719][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2903.332719][ T7249] 
[ 2903.332719][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2903.332719][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2903.332719][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.268303][ T7249] not chained 930000 origins
[ 2904.272723][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2904.272723][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2904.272723][ T7249] Call Trace:
[ 2904.272723][ T7249]  dump_stack+0x25a/0x2f6
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2904.272723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2904.272723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2904.272723][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2904.272723][ T7249]  ? should_fail+0x75/0x9c0
[ 2904.272723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2904.272723][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2904.272723][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2904.272723][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2904.272723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2904.272723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2904.272723][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2904.272723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2904.272723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2904.272723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2904.272723][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2904.272723][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] RIP: 0023:0xf6f37549
[ 2904.272723][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2904.272723][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2904.272723][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2904.272723][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2904.272723][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2904.272723][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2904.272723][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Uninit was stored to memory at:
[ 2904.272723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2904.272723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2904.272723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2904.272723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2904.272723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2904.272723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2904.272723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2904.272723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2904.272723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2904.272723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2904.272723][ T7249] 
[ 2904.272723][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2904.272723][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2904.272723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.204840][ T7249] not chained 940000 origins
[ 2905.209489][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2905.212713][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2905.212713][ T7249] Call Trace:
[ 2905.212713][ T7249]  dump_stack+0x25a/0x2f6
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2905.212713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2905.212713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2905.212713][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2905.212713][ T7249]  ? should_fail+0x75/0x9c0
[ 2905.212713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2905.212713][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2905.212713][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2905.212713][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2905.212713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2905.212713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2905.212713][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2905.212713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2905.212713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2905.212713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2905.212713][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2905.212713][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] RIP: 0023:0xf6f37549
[ 2905.212713][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2905.212713][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2905.212713][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2905.212713][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2905.212713][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2905.212713][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2905.212713][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Uninit was stored to memory at:
[ 2905.212713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2905.212713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2905.212713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2905.212713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2905.212713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2905.212713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2905.212713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2905.212713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2905.212713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2905.212713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2905.212713][ T7249] 
[ 2905.212713][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2905.212713][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2905.212713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.025912][ T3119] ieee802154 phy0 wpan0: encryption failed: -22
[ 2906.032363][ T3119] ieee802154 phy1 wpan1: encryption failed: -22
[ 2906.153751][ T7252] not chained 950000 origins
[ 2906.158359][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2906.162713][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2906.162713][ T7252] Call Trace:
[ 2906.162713][ T7252]  dump_stack+0x25a/0x2f6
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2906.162713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2906.162713][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2906.162713][ T7252]  ? should_fail+0x75/0x9c0
[ 2906.162713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2906.162713][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2906.162713][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2906.162713][ T7252]  ? _copy_from_user+0x219/0x310
[ 2906.162713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2906.162713][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2906.162713][ T7252]  ? _copy_from_user+0x219/0x310
[ 2906.162713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2906.162713][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2906.162713][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.162713][ T7252] RIP: 0023:0xf6f37549
[ 2906.162713][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2906.162713][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2906.162713][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2906.162713][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2906.162713][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2906.162713][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2906.162713][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.416577][ T7249] not chained 960000 origins
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.421454][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2906.422725][ T7249] Call Trace:
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  dump_stack+0x25a/0x2f6
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  ? should_fail+0x75/0x9c0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249]  ? _copy_from_user+0x219/0x310
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  ? _copy_from_user+0x219/0x310
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249] RIP: 0023:0xf6f37549
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  ORIG_RAX: 0000000000000151
[ 2906.422725][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249] Uninit was stored to memory at:
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249] 
[ 2906.422725][ T7249] Uninit was stored to memory at:
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249] 
[ 2906.422725][ T7249] Uninit was stored to memory at:
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Uninit was stored to memory at:
[ 2906.422725][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.422725][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2906.422725][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.422725][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2906.162713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2906.422725][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.162713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2906.422725][ T7249] 
[ 2906.422725][ T7249] Uninit was stored to memory at:
[ 2906.422725][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2906.162713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.422725][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2906.162713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2906.422725][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2906.162713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2906.422725][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2906.162713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2906.422725][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2906.162713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2906.422725][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2906.162713][ T7252] 
[ 2906.162713][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2906.422725][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2906.162713][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2906.422725][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2906.162713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2906.422725][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2907.322780][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.322780][ T7249] 
[ 2907.322780][ T7249] Uninit was stored to memory at:
[ 2907.322780][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.322780][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2907.322780][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.322780][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2907.322780][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2907.322780][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2907.322780][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.322780][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2907.322780][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2907.322780][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2907.322780][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.322780][ T7249] 
[ 2907.322780][ T7249] Uninit was stored to memory at:
[ 2907.322780][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.322780][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2907.322780][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.322780][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2907.322780][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2907.484090][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2907.484090][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.484090][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2907.484090][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2907.484090][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2907.484090][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.484090][ T7249] 
[ 2907.484090][ T7249] Uninit was stored to memory at:
[ 2907.484090][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.484090][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2907.484090][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.484090][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2907.484090][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2907.484090][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2907.484090][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.484090][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2907.484090][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2907.484090][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2907.484090][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.484090][ T7249] 
[ 2907.484090][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2907.484090][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2907.484090][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762506][ T7252] not chained 970000 origins
[ 2907.762724][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2907.762724][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2907.762724][ T7252] Call Trace:
[ 2907.762724][ T7252]  dump_stack+0x25a/0x2f6
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2907.762724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2907.762724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2907.762724][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2907.762724][ T7252]  ? should_fail+0x75/0x9c0
[ 2907.762724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2907.762724][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2907.762724][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2907.762724][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2907.762724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2907.762724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2907.762724][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2907.762724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2907.762724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2907.762724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2907.762724][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2907.762724][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] RIP: 0023:0xf6f37549
[ 2907.762724][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2907.762724][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2907.762724][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2907.762724][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2907.762724][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2907.762724][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2907.762724][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Uninit was stored to memory at:
[ 2907.762724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2907.762724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2907.762724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2907.762724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2907.762724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2907.762724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2907.762724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2907.762724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2907.762724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2907.762724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2907.762724][ T7252] 
[ 2907.762724][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2907.762724][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2907.762724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.561282][ T7252] not chained 980000 origins
[ 2908.562716][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2908.562716][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2908.562716][ T7252] Call Trace:
[ 2908.562716][ T7252]  dump_stack+0x25a/0x2f6
[ 2908.562716][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2908.562716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2908.562716][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2908.562716][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2908.562716][ T7252]  ? should_fail+0x75/0x9c0
[ 2908.562716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2908.562716][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2908.562716][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2908.562716][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2908.562716][ T7252]  ? _copy_from_user+0x219/0x310
[ 2908.562716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2908.562716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2908.562716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2908.562716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2908.562716][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2908.562716][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2908.562716][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2908.562716][ T7252]  ? _copy_from_user+0x219/0x310
[ 2908.562716][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2908.562716][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2908.562716][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2908.562716][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2908.562716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2908.562716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2908.562716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2908.562716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2908.562716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2908.562716][ T7252] RIP: 0023:0xf6f37549
[ 2908.562716][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2908.562716][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2908.562716][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2908.562716][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2908.562716][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2908.562716][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2908.562716][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2908.562716][ T7252] Uninit was stored to memory at:
[ 2908.562716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2908.562716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2908.562716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2908.562716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2908.562716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2908.562716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2908.562716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2908.562716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2908.562716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2908.562716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2908.562716][ T7252] 
[ 2908.562716][ T7252] Uninit was stored to memory at:
[ 2908.562716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2908.562716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2908.562716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2908.562716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2908.562716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2908.562716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2908.562716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2908.562716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2908.562716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2908.562716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2908.562716][ T7252] 
[ 2908.562716][ T7252] Uninit was stored to memory at:
[ 2908.562716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2908.562716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2908.562716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2908.562716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2908.562716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2908.562716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2908.562716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2908.562716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2908.562716][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2908.562716][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2908.562716][ T7252] 
[ 2908.562716][ T7252] Uninit was stored to memory at:
[ 2908.562716][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2908.562716][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2908.562716][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2908.562716][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2908.562716][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2908.562716][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2908.562716][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2908.562716][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2908.562716][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2909.063013][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2909.063013][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.063013][ T7252] 
[ 2909.063013][ T7252] Uninit was stored to memory at:
[ 2909.063013][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.063013][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2909.063013][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.063013][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2909.063013][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2909.063013][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2909.063013][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.063013][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2909.063013][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2909.063013][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2909.063013][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.063013][ T7252] 
[ 2909.063013][ T7252] Uninit was stored to memory at:
[ 2909.063013][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.063013][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2909.063013][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.063013][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2909.063013][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2909.063013][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2909.063013][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.063013][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2909.063013][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2909.063013][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2909.063013][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.063013][ T7252] 
[ 2909.063013][ T7252] Uninit was stored to memory at:
[ 2909.063013][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.063013][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2909.063013][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.063013][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2909.063013][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2909.063013][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2909.063013][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.063013][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2909.063013][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2909.063013][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2909.063013][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.063013][ T7252] 
[ 2909.063013][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2909.063013][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2909.063013][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2909.479348][ T7249] not chained 990000 origins
[ 2909.482715][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2909.482715][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2909.482715][ T7249] Call Trace:
[ 2909.482715][ T7249]  dump_stack+0x25a/0x2f6
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2909.482715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2909.482715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2909.482715][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2909.482715][ T7249]  ? should_fail+0x75/0x9c0
[ 2909.482715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2909.482715][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2909.482715][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2909.482715][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2909.482715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2909.482715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2909.482715][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2909.482715][ T7249]  ? _copy_from_user+0x219/0x310
[ 2909.482715][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2909.482715][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2909.482715][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2909.482715][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] RIP: 0023:0xf6f37549
[ 2909.482715][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2909.482715][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2909.482715][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2909.482715][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2909.482715][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2909.482715][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2909.482715][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Uninit was stored to memory at:
[ 2909.482715][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2909.482715][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2909.482715][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2909.482715][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2909.482715][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2909.482715][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2909.482715][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2909.482715][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2909.482715][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2909.482715][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2909.482715][ T7249] 
[ 2909.482715][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2909.482715][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2909.482715][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2910.408595][ T7252] not chained 1000000 origins
[ 2910.412725][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2910.412725][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2910.412725][ T7252] Call Trace:
[ 2910.412725][ T7252]  dump_stack+0x25a/0x2f6
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2910.412725][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2910.412725][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2910.412725][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2910.412725][ T7252]  ? should_fail+0x75/0x9c0
[ 2910.412725][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2910.412725][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2910.412725][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2910.412725][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2910.412725][ T7252]  ? _copy_from_user+0x219/0x310
[ 2910.412725][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2910.412725][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2910.412725][ T7252]  ? _copy_from_user+0x219/0x310
[ 2910.412725][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2910.412725][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2910.412725][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2910.412725][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] RIP: 0023:0xf6f37549
[ 2910.412725][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2910.412725][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2910.412725][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2910.412725][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2910.412725][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2910.412725][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2910.412725][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Uninit was stored to memory at:
[ 2910.412725][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2910.412725][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2910.412725][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2910.412725][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2910.412725][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2910.412725][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2910.412725][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2910.412725][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2910.412725][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2910.412725][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2910.412725][ T7252] 
[ 2910.412725][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2910.412725][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2910.412725][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.341912][ T7252] not chained 1010000 origins
[ 2911.342713][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2911.342713][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2911.342713][ T7252] Call Trace:
[ 2911.342713][ T7252]  dump_stack+0x25a/0x2f6
[ 2911.342713][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2911.342713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2911.382871][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2911.382871][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2911.382871][ T7252]  ? should_fail+0x75/0x9c0
[ 2911.382871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2911.382871][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2911.382871][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2911.382871][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2911.382871][ T7252]  ? _copy_from_user+0x219/0x310
[ 2911.382871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2911.382871][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2911.382871][ T7252]  ? _copy_from_user+0x219/0x310
[ 2911.382871][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2911.382871][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2911.382871][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2911.382871][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] RIP: 0023:0xf6f37549
[ 2911.382871][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2911.382871][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2911.382871][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2911.382871][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2911.382871][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2911.382871][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2911.382871][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Uninit was stored to memory at:
[ 2911.382871][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2911.382871][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2911.382871][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2911.382871][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2911.382871][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2911.382871][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2911.382871][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2911.382871][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2911.382871][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2911.382871][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2911.382871][ T7252] 
[ 2911.382871][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2911.382871][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2911.382871][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242501][ T7252] not chained 1020000 origins
[ 2912.242718][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2912.242718][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2912.242718][ T7252] Call Trace:
[ 2912.242718][ T7252]  dump_stack+0x25a/0x2f6
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2912.242718][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2912.242718][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2912.242718][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2912.242718][ T7252]  ? should_fail+0x75/0x9c0
[ 2912.242718][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2912.242718][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2912.242718][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2912.242718][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2912.242718][ T7252]  ? _copy_from_user+0x219/0x310
[ 2912.242718][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2912.242718][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2912.242718][ T7252]  ? _copy_from_user+0x219/0x310
[ 2912.242718][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2912.242718][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2912.242718][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2912.242718][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] RIP: 0023:0xf6f37549
[ 2912.242718][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2912.242718][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2912.242718][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2912.242718][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2912.242718][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2912.242718][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2912.242718][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Uninit was stored to memory at:
[ 2912.242718][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2912.242718][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2912.242718][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2912.242718][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2912.242718][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2912.242718][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2912.242718][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2912.242718][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2912.242718][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2912.242718][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2912.242718][ T7252] 
[ 2912.242718][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2912.242718][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2912.242718][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.176185][ T7252] not chained 1030000 origins
[ 2913.180882][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2913.182722][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2913.182722][ T7252] Call Trace:
[ 2913.182722][ T7252]  dump_stack+0x25a/0x2f6
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2913.182722][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2913.182722][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2913.182722][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2913.182722][ T7252]  ? should_fail+0x75/0x9c0
[ 2913.182722][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2913.182722][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2913.182722][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2913.182722][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2913.182722][ T7252]  ? _copy_from_user+0x219/0x310
[ 2913.182722][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2913.182722][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2913.182722][ T7252]  ? _copy_from_user+0x219/0x310
[ 2913.182722][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2913.182722][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2913.182722][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2913.182722][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] RIP: 0023:0xf6f37549
[ 2913.182722][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2913.182722][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2913.182722][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2913.182722][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2913.182722][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2913.182722][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2913.182722][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Uninit was stored to memory at:
[ 2913.182722][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2913.182722][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2913.182722][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2913.182722][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2913.182722][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2913.182722][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2913.182722][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2913.182722][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2913.182722][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2913.182722][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2913.182722][ T7252] 
[ 2913.182722][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2913.182722][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2913.182722][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2914.103007][ T7249] not chained 1040000 origins
[ 2914.103032][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2914.103061][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2914.103076][ T7249] Call Trace:
[ 2914.103086][ T7249]  dump_stack+0x25a/0x2f6
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2914.112716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.112716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2914.112716][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2914.112716][ T7249]  ? should_fail+0x75/0x9c0
[ 2914.112716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.112716][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2914.112716][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2914.112716][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2914.112716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2914.112716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2914.112716][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2914.112716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2914.112716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.112716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2914.112716][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2914.112716][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] RIP: 0023:0xf6f37549
[ 2914.112716][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2914.112716][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2914.112716][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2914.112716][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2914.112716][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2914.112716][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2914.112716][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Uninit was stored to memory at:
[ 2914.112716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.112716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.112716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.112716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.112716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.112716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.112716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.112716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.112716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.112716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.112716][ T7249] 
[ 2914.112716][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2914.112716][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2914.112716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.960059][ T7249] not chained 1050000 origins
[ 2914.962729][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2914.962729][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2914.962729][ T7249] Call Trace:
[ 2914.962729][ T7249]  dump_stack+0x25a/0x2f6
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2914.962729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.962729][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2914.962729][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2914.962729][ T7249]  ? should_fail+0x75/0x9c0
[ 2914.962729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.962729][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2914.962729][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2914.962729][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2914.962729][ T7249]  ? _copy_from_user+0x219/0x310
[ 2914.962729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2914.962729][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2914.962729][ T7249]  ? _copy_from_user+0x219/0x310
[ 2914.962729][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2914.962729][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2914.962729][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2914.962729][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] RIP: 0023:0xf6f37549
[ 2914.962729][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2914.962729][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2914.962729][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2914.962729][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2914.962729][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2914.962729][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2914.962729][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Uninit was stored to memory at:
[ 2914.962729][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2914.962729][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2914.962729][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2914.962729][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2914.962729][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2914.962729][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2914.962729][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2914.962729][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2914.962729][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2914.962729][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2914.962729][ T7249] 
[ 2914.962729][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2914.962729][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2914.962729][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.893973][ T7249] not chained 1060000 origins
[ 2915.898672][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2915.902714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2915.902714][ T7249] Call Trace:
[ 2915.902714][ T7249]  dump_stack+0x25a/0x2f6
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2915.902714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2915.902714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2915.902714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2915.902714][ T7249]  ? should_fail+0x75/0x9c0
[ 2915.902714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2915.902714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2915.902714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2915.902714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2915.902714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2915.902714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2915.902714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2915.902714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2915.902714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2915.902714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2915.902714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2915.902714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] RIP: 0023:0xf6f37549
[ 2915.902714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2915.902714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2915.902714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2915.902714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2915.902714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2915.902714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2915.902714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Uninit was stored to memory at:
[ 2915.902714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2915.902714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2915.902714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2915.902714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2915.902714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2915.902714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2915.902714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2915.902714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2915.902714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2915.902714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2915.902714][ T7249] 
[ 2915.902714][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2915.902714][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2915.902714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2916.826190][ T7252] not chained 1070000 origins
[ 2916.830885][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2916.832714][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2916.832714][ T7252] Call Trace:
[ 2916.832714][ T7252]  dump_stack+0x25a/0x2f6
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2916.832714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2916.832714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2916.832714][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2916.832714][ T7252]  ? should_fail+0x75/0x9c0
[ 2916.832714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2916.832714][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2916.832714][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2916.832714][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2916.832714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2916.832714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2916.832714][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2916.832714][ T7252]  ? _copy_from_user+0x219/0x310
[ 2916.832714][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2916.832714][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2916.832714][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2916.832714][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] RIP: 0023:0xf6f37549
[ 2916.832714][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2916.832714][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2916.832714][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2916.832714][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2916.832714][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2916.832714][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2916.832714][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Uninit was stored to memory at:
[ 2916.832714][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2916.832714][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2916.832714][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2916.832714][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2916.832714][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2916.832714][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2916.832714][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2916.832714][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2916.832714][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2916.832714][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2916.832714][ T7252] 
[ 2916.832714][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2916.832714][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2916.832714][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722109][ T7249] not chained 1080000 origins
[ 2917.722716][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2917.722716][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2917.722716][ T7249] Call Trace:
[ 2917.722716][ T7249]  dump_stack+0x25a/0x2f6
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2917.722716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2917.722716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2917.722716][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2917.722716][ T7249]  ? should_fail+0x75/0x9c0
[ 2917.722716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2917.722716][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2917.722716][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2917.722716][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2917.722716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2917.722716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2917.722716][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2917.722716][ T7249]  ? _copy_from_user+0x219/0x310
[ 2917.722716][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2917.722716][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2917.722716][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2917.722716][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] RIP: 0023:0xf6f37549
[ 2917.722716][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2917.722716][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2917.722716][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2917.722716][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2917.722716][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2917.722716][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2917.722716][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Uninit was stored to memory at:
[ 2917.722716][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2917.722716][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2917.722716][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2917.722716][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2917.722716][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2917.722716][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2917.722716][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2917.722716][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2917.722716][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2917.722716][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2917.722716][ T7249] 
[ 2917.722716][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2917.722716][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2917.722716][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.656333][ T7249] not chained 1090000 origins
[ 2918.661065][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2918.662714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2918.662714][ T7249] Call Trace:
[ 2918.662714][ T7249]  dump_stack+0x25a/0x2f6
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2918.662714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2918.662714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2918.662714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2918.662714][ T7249]  ? should_fail+0x75/0x9c0
[ 2918.662714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2918.662714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2918.662714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2918.662714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2918.662714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2918.662714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2918.662714][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2918.662714][ T7249]  ? _copy_from_user+0x219/0x310
[ 2918.662714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2918.662714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2918.662714][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2918.662714][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] RIP: 0023:0xf6f37549
[ 2918.662714][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2918.662714][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2918.662714][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2918.662714][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2918.662714][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2918.662714][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2918.662714][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Uninit was stored to memory at:
[ 2918.662714][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2918.662714][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2918.662714][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2918.662714][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2918.662714][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2918.662714][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2918.662714][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2918.662714][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2918.662714][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2918.662714][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2918.662714][ T7249] 
[ 2918.662714][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2918.662714][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2918.662714][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.597735][ T7249] not chained 1100000 origins
[ 2919.602434][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2919.602723][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2919.602723][ T7249] Call Trace:
[ 2919.602723][ T7249]  dump_stack+0x25a/0x2f6
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2919.602723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2919.602723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2919.602723][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2919.602723][ T7249]  ? should_fail+0x75/0x9c0
[ 2919.602723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2919.602723][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2919.602723][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2919.602723][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2919.602723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2919.602723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2919.602723][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2919.602723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2919.602723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2919.602723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2919.602723][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2919.602723][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] RIP: 0023:0xf6f37549
[ 2919.602723][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2919.602723][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2919.602723][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2919.602723][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2919.602723][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2919.602723][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2919.602723][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Uninit was stored to memory at:
[ 2919.602723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2919.602723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2919.602723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2919.602723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2919.602723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2919.602723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2919.602723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2919.602723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2919.602723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2919.602723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2919.602723][ T7249] 
[ 2919.602723][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2919.602723][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2919.602723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.529969][ T7249] not chained 1110000 origins
[ 2920.532714][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2920.532714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2920.532714][ T7249] Call Trace:
[ 2920.532714][ T7249]  dump_stack+0x25a/0x2f6
[ 2920.532714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2920.532714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2920.532714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2920.532714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2920.582812][ T7249]  ? should_fail+0x75/0x9c0
[ 2920.582812][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2920.582812][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2920.582812][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2920.582812][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2920.582812][ T7249]  ? _copy_from_user+0x219/0x310
[ 2920.582812][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2920.582812][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2920.582812][ T7249]  ? _copy_from_user+0x219/0x310
[ 2920.582812][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2920.582812][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2920.582812][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2920.582812][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] RIP: 0023:0xf6f37549
[ 2920.582812][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2920.582812][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2920.582812][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2920.582812][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2920.582812][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2920.582812][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2920.582812][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Uninit was stored to memory at:
[ 2920.582812][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2920.582812][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2920.582812][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2920.582812][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2920.582812][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2920.582812][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2920.582812][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2920.582812][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2920.582812][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2920.582812][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2920.582812][ T7249] 
[ 2920.582812][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2920.582812][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2920.582812][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.466356][ T7249] not chained 1120000 origins
[ 2921.471052][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2921.472714][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2921.472714][ T7249] Call Trace:
[ 2921.472714][ T7249]  dump_stack+0x25a/0x2f6
[ 2921.472714][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2921.472714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2921.472714][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2921.472714][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2921.472714][ T7249]  ? should_fail+0x75/0x9c0
[ 2921.472714][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2921.472714][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2921.472714][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2921.472714][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2921.542795][ T7249]  ? _copy_from_user+0x219/0x310
[ 2921.542795][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2921.542795][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2921.542795][ T7249]  ? _copy_from_user+0x219/0x310
[ 2921.542795][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2921.542795][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2921.542795][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2921.542795][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] RIP: 0023:0xf6f37549
[ 2921.542795][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2921.542795][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2921.542795][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2921.542795][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2921.542795][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2921.542795][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2921.542795][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Uninit was stored to memory at:
[ 2921.542795][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2921.542795][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2921.542795][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2921.542795][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2921.542795][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2921.542795][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2921.542795][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2921.542795][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2921.542795][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2921.542795][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2921.542795][ T7249] 
[ 2921.542795][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2921.542795][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2921.542795][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.401496][ T7249] not chained 1130000 origins
[ 2922.402718][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2922.402718][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2922.402718][ T7249] Call Trace:
[ 2922.402718][ T7249]  dump_stack+0x25a/0x2f6
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2922.402718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2922.402718][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2922.402718][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2922.402718][ T7249]  ? should_fail+0x75/0x9c0
[ 2922.402718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2922.402718][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2922.402718][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2922.402718][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2922.402718][ T7249]  ? _copy_from_user+0x219/0x310
[ 2922.402718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2922.402718][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2922.402718][ T7249]  ? _copy_from_user+0x219/0x310
[ 2922.402718][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2922.402718][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2922.402718][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2922.402718][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] RIP: 0023:0xf6f37549
[ 2922.402718][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2922.402718][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2922.402718][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2922.402718][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2922.402718][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2922.402718][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2922.402718][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Uninit was stored to memory at:
[ 2922.402718][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2922.402718][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2922.402718][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2922.402718][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2922.402718][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2922.402718][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2922.402718][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2922.402718][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2922.402718][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2922.402718][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2922.402718][ T7249] 
[ 2922.402718][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2922.402718][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2922.402718][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2923.339183][ T7252] not chained 1140000 origins
[ 2923.342719][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2923.342719][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2923.342719][ T7252] Call Trace:
[ 2923.342719][ T7252]  dump_stack+0x25a/0x2f6
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2923.342719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2923.342719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2923.342719][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2923.342719][ T7252]  ? should_fail+0x75/0x9c0
[ 2923.342719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2923.342719][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2923.342719][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2923.342719][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2923.342719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2923.342719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2923.342719][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2923.342719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2923.342719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2923.342719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2923.342719][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2923.342719][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] RIP: 0023:0xf6f37549
[ 2923.342719][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2923.342719][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2923.342719][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2923.342719][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2923.342719][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2923.342719][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2923.342719][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Uninit was stored to memory at:
[ 2923.342719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2923.342719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2923.342719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2923.342719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2923.342719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2923.342719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2923.342719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2923.342719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2923.342719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2923.342719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2923.342719][ T7252] 
[ 2923.342719][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2923.342719][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2923.342719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.281601][ T7252] not chained 1150000 origins
[ 2924.282715][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2924.282715][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2924.282715][ T7252] Call Trace:
[ 2924.282715][ T7252]  dump_stack+0x25a/0x2f6
[ 2924.282715][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2924.282715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2924.282715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2924.282715][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2924.282715][ T7252]  ? should_fail+0x75/0x9c0
[ 2924.282715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2924.342792][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2924.342792][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2924.342792][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2924.342792][ T7252]  ? _copy_from_user+0x219/0x310
[ 2924.342792][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2924.342792][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2924.342792][ T7252]  ? _copy_from_user+0x219/0x310
[ 2924.342792][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2924.342792][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2924.342792][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2924.342792][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] RIP: 0023:0xf6f37549
[ 2924.342792][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2924.342792][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2924.342792][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2924.342792][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2924.342792][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2924.342792][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2924.342792][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Uninit was stored to memory at:
[ 2924.342792][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2924.342792][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2924.342792][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2924.342792][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2924.342792][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2924.342792][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2924.342792][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2924.342792][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2924.342792][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2924.342792][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2924.342792][ T7252] 
[ 2924.342792][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2924.342792][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2924.342792][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.213694][ T7249] not chained 1160000 origins
[ 2925.218388][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2925.222777][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2925.222777][ T7249] Call Trace:
[ 2925.222777][ T7249]  dump_stack+0x25a/0x2f6
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2925.222777][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2925.222777][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2925.222777][ T7249]  ? should_fail+0x75/0x9c0
[ 2925.222777][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2925.222777][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2925.222777][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2925.222777][ T7249]  ? _copy_from_user+0x219/0x310
[ 2925.222777][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2925.222777][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2925.222777][ T7249]  ? _copy_from_user+0x219/0x310
[ 2925.222777][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2925.222777][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2925.222777][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249] RIP: 0023:0xf6f37549
[ 2925.222777][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2925.410151][ T7252] not chained 1170000 origins
[ 2925.222777][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2925.222777][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2925.222777][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2925.222777][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2925.222777][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2925.222777][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252] Call Trace:
[ 2925.412710][ T7252]  dump_stack+0x25a/0x2f6
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  ? should_fail+0x75/0x9c0
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252]  ? _copy_from_user+0x219/0x310
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  ? _copy_from_user+0x219/0x310
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249] 
[ 2925.412710][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252] RIP: 0023:0xf6f37549
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252]  ORIG_RAX: 0000000000000151
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252] Uninit was stored to memory at:
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252] 
[ 2925.412710][ T7252] Uninit was stored to memory at:
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252] 
[ 2925.412710][ T7252] Uninit was stored to memory at:
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Uninit was stored to memory at:
[ 2925.412710][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.412710][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2925.412710][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2925.222777][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.412710][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2925.222777][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2925.412710][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2925.222777][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2925.412710][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252] 
[ 2925.412710][ T7252] Uninit was stored to memory at:
[ 2925.222777][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.412710][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2925.222777][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2925.412710][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2925.222777][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2925.412710][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2925.222777][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2925.412710][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2925.222777][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2925.412710][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2925.222777][ T7249] 
[ 2925.222777][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2925.412710][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2925.222777][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2925.412710][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2925.222777][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2925.412710][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2926.372080][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2926.372080][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2926.372080][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2926.372080][ T7252] 
[ 2926.372080][ T7252] Uninit was stored to memory at:
[ 2926.372080][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2926.372080][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2926.372080][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2926.372080][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2926.372080][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2926.372080][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2926.372080][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2926.372080][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2926.372080][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2926.372080][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2926.372080][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2926.372080][ T7252] 
[ 2926.372080][ T7252] Uninit was stored to memory at:
[ 2926.372080][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2926.372080][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2926.372080][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2926.372080][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2926.372080][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2926.372080][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2926.372080][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2926.372080][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2926.372080][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2926.372080][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2926.372080][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2926.372080][ T7252] 
[ 2926.372080][ T7252] Uninit was stored to memory at:
[ 2926.372080][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2926.372080][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2926.372080][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2926.372080][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2926.372080][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2926.372080][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2926.372080][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2926.372080][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2926.372080][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2926.372080][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2926.372080][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2926.372080][ T7252] 
[ 2926.372080][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2926.372080][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2926.372080][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2926.943562][ T7252] not chained 1180000 origins
[ 2926.948258][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2926.952721][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2926.952721][ T7252] Call Trace:
[ 2926.952721][ T7252]  dump_stack+0x25a/0x2f6
[ 2926.952721][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2926.952721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2926.952721][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2926.952721][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2926.952721][ T7252]  ? should_fail+0x75/0x9c0
[ 2926.952721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2926.952721][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2926.952721][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2926.952721][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2926.952721][ T7252]  ? _copy_from_user+0x219/0x310
[ 2926.952721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2926.952721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2926.952721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2926.952721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2926.952721][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2926.952721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2926.952721][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2926.952721][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2926.952721][ T7252]  ? _copy_from_user+0x219/0x310
[ 2926.952721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2926.952721][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2926.952721][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2926.952721][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2926.952721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2926.952721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2926.952721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2926.952721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2926.952721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2926.952721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2926.952721][ T7252] RIP: 0023:0xf6f37549
[ 2926.952721][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2926.952721][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2926.952721][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2926.952721][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2926.952721][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2926.952721][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2926.952721][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2926.952721][ T7252] Uninit was stored to memory at:
[ 2926.952721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2926.952721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2926.952721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2926.952721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Uninit was stored to memory at:
[ 2927.222868][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.222868][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.222868][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.222868][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.222868][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.222868][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.222868][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.222868][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.222868][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.222868][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.222868][ T7252] 
[ 2927.222868][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2927.222868][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2927.222868][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.697112][ T7252] not chained 1190000 origins
[ 2927.701807][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2927.702719][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2927.702719][ T7252] Call Trace:
[ 2927.702719][ T7252]  dump_stack+0x25a/0x2f6
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2927.702719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2927.702719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2927.702719][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2927.702719][ T7252]  ? should_fail+0x75/0x9c0
[ 2927.702719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2927.702719][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2927.702719][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2927.702719][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2927.702719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2927.702719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2927.702719][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2927.702719][ T7252]  ? _copy_from_user+0x219/0x310
[ 2927.702719][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2927.702719][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2927.702719][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2927.702719][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] RIP: 0023:0xf6f37549
[ 2927.702719][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2927.702719][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2927.702719][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2927.702719][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2927.702719][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2927.702719][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2927.702719][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Uninit was stored to memory at:
[ 2927.702719][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2927.702719][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2927.702719][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2927.702719][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2927.702719][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2927.702719][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2927.702719][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2927.702719][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2927.702719][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2927.702719][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2927.702719][ T7252] 
[ 2927.702719][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2927.702719][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2927.702719][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.683846][ T7252] not chained 1200000 origins
[ 2928.688544][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2928.692723][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2928.692723][ T7252] Call Trace:
[ 2928.692723][ T7252]  dump_stack+0x25a/0x2f6
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2928.692723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2928.692723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2928.692723][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2928.692723][ T7252]  ? should_fail+0x75/0x9c0
[ 2928.692723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2928.692723][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2928.692723][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2928.692723][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2928.692723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2928.692723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2928.692723][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2928.692723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2928.692723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2928.692723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2928.692723][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2928.692723][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] RIP: 0023:0xf6f37549
[ 2928.692723][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2928.692723][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2928.692723][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2928.692723][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2928.692723][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2928.692723][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2928.692723][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Uninit was stored to memory at:
[ 2928.692723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2928.692723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2928.692723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2928.692723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2928.692723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2928.692723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2928.692723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2928.692723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2928.692723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2928.692723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2928.692723][ T7252] 
[ 2928.692723][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2928.692723][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2928.692723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2929.616319][ T7249] not chained 1210000 origins
[ 2929.621023][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2929.622723][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2929.622723][ T7249] Call Trace:
[ 2929.622723][ T7249]  dump_stack+0x25a/0x2f6
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2929.622723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2929.622723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2929.622723][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2929.622723][ T7249]  ? should_fail+0x75/0x9c0
[ 2929.622723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2929.622723][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2929.622723][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2929.622723][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2929.622723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2929.622723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2929.622723][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2929.622723][ T7249]  ? _copy_from_user+0x219/0x310
[ 2929.622723][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2929.622723][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2929.622723][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2929.622723][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] RIP: 0023:0xf6f37549
[ 2929.622723][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2929.622723][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2929.622723][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2929.622723][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2929.622723][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2929.622723][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2929.622723][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Uninit was stored to memory at:
[ 2929.622723][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2929.622723][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2929.622723][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2929.622723][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2929.622723][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2929.622723][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2929.622723][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2929.622723][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2929.622723][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2929.622723][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2929.622723][ T7249] 
[ 2929.622723][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2929.622723][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2929.622723][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2930.420382][ T7252] not chained 1220000 origins
[ 2930.422721][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2930.422721][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2930.422721][ T7252] Call Trace:
[ 2930.422721][ T7252]  dump_stack+0x25a/0x2f6
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2930.422721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2930.422721][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2930.422721][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2930.422721][ T7252]  ? should_fail+0x75/0x9c0
[ 2930.422721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2930.422721][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2930.422721][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2930.422721][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2930.422721][ T7252]  ? _copy_from_user+0x219/0x310
[ 2930.422721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2930.422721][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2930.422721][ T7252]  ? _copy_from_user+0x219/0x310
[ 2930.422721][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2930.422721][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2930.422721][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2930.422721][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] RIP: 0023:0xf6f37549
[ 2930.422721][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2930.422721][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2930.422721][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2930.422721][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2930.422721][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2930.422721][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2930.422721][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Uninit was stored to memory at:
[ 2930.422721][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2930.422721][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2930.422721][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2930.422721][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2930.422721][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2930.422721][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2930.422721][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2930.422721][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2930.422721][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2930.422721][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2930.422721][ T7252] 
[ 2930.422721][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2930.422721][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2930.422721][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.385392][ T7252] not chained 1230000 origins
[ 2931.390088][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2931.392724][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2931.392724][ T7252] Call Trace:
[ 2931.392724][ T7252]  dump_stack+0x25a/0x2f6
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2931.392724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2931.392724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2931.392724][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2931.392724][ T7252]  ? should_fail+0x75/0x9c0
[ 2931.392724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2931.392724][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2931.392724][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2931.392724][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2931.392724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2931.392724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2931.392724][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2931.392724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2931.392724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2931.392724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2931.392724][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2931.392724][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] RIP: 0023:0xf6f37549
[ 2931.392724][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2931.392724][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2931.392724][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2931.392724][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2931.392724][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2931.392724][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2931.392724][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Uninit was stored to memory at:
[ 2931.392724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2931.392724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2931.392724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2931.392724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2931.392724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2931.392724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2931.392724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2931.392724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2931.392724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2931.392724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2931.392724][ T7252] 
[ 2931.392724][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2931.392724][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2931.392724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.254049][ T7252] not chained 1240000 origins
[ 2932.258742][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2932.262805][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2932.272462][ T7252] Call Trace:
[ 2932.272462][ T7252]  dump_stack+0x25a/0x2f6
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2932.272462][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2932.272462][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2932.272462][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2932.272462][ T7252]  ? should_fail+0x75/0x9c0
[ 2932.272462][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2932.272462][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2932.272462][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2932.272462][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2932.272462][ T7252]  ? _copy_from_user+0x219/0x310
[ 2932.272462][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2932.272462][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2932.272462][ T7252]  ? _copy_from_user+0x219/0x310
[ 2932.272462][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2932.272462][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2932.272462][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2932.272462][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] RIP: 0023:0xf6f37549
[ 2932.272462][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2932.272462][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2932.272462][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2932.272462][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2932.272462][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2932.272462][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2932.272462][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Uninit was stored to memory at:
[ 2932.272462][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2932.272462][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2932.272462][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2932.272462][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2932.272462][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2932.272462][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2932.272462][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2932.272462][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2932.272462][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2932.272462][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2932.272462][ T7252] 
[ 2932.272462][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2932.272462][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2932.272462][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2933.183958][ T7249] not chained 1250000 origins
[ 2933.188669][ T7249] CPU: 1 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2933.192713][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2933.192713][ T7249] Call Trace:
[ 2933.192713][ T7249]  dump_stack+0x25a/0x2f6
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2933.192713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2933.192713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2933.192713][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2933.192713][ T7249]  ? should_fail+0x75/0x9c0
[ 2933.192713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2933.192713][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2933.192713][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2933.192713][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2933.192713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2933.192713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2933.192713][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2933.192713][ T7249]  ? _copy_from_user+0x219/0x310
[ 2933.192713][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2933.192713][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2933.192713][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2933.192713][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] RIP: 0023:0xf6f37549
[ 2933.192713][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2933.192713][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2933.192713][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2933.192713][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2933.192713][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2933.192713][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2933.192713][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Uninit was stored to memory at:
[ 2933.192713][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2933.192713][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2933.192713][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2933.192713][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2933.192713][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2933.192713][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2933.192713][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2933.192713][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2933.192713][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2933.192713][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2933.192713][ T7249] 
[ 2933.192713][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2933.192713][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2933.192713][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2934.118573][ T7252] not chained 1260000 origins
[ 2934.122713][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2934.122713][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2934.122713][ T7252] Call Trace:
[ 2934.122713][ T7252]  dump_stack+0x25a/0x2f6
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2934.122713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2934.122713][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2934.122713][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2934.122713][ T7252]  ? should_fail+0x75/0x9c0
[ 2934.122713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2934.122713][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2934.122713][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2934.122713][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2934.122713][ T7252]  ? _copy_from_user+0x219/0x310
[ 2934.122713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2934.122713][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2934.122713][ T7252]  ? _copy_from_user+0x219/0x310
[ 2934.122713][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2934.122713][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2934.122713][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2934.122713][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] RIP: 0023:0xf6f37549
[ 2934.122713][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2934.122713][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2934.122713][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2934.122713][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2934.122713][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2934.122713][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2934.122713][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Uninit was stored to memory at:
[ 2934.122713][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2934.122713][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2934.122713][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2934.122713][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2934.122713][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2934.122713][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2934.122713][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2934.122713][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2934.122713][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2934.122713][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2934.122713][ T7252] 
[ 2934.122713][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2934.122713][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2934.122713][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.050249][ T7252] not chained 1270000 origins
[ 2935.052724][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2935.052724][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2935.052724][ T7252] Call Trace:
[ 2935.052724][ T7252]  dump_stack+0x25a/0x2f6
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2935.052724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.052724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2935.052724][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2935.052724][ T7252]  ? should_fail+0x75/0x9c0
[ 2935.052724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.052724][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2935.052724][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2935.052724][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2935.052724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2935.052724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2935.052724][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2935.052724][ T7252]  ? _copy_from_user+0x219/0x310
[ 2935.052724][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.052724][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2935.052724][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2935.052724][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] RIP: 0023:0xf6f37549
[ 2935.052724][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2935.052724][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2935.052724][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2935.052724][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2935.052724][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2935.052724][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2935.052724][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Uninit was stored to memory at:
[ 2935.052724][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.052724][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2935.052724][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.052724][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2935.052724][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.052724][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.052724][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2935.052724][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2935.052724][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2935.052724][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.052724][ T7252] 
[ 2935.052724][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2935.052724][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2935.052724][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2935.978506][ T7249] not chained 1280000 origins
[ 2935.982724][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2935.982724][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2935.982724][ T7249] Call Trace:
[ 2935.982724][ T7249]  dump_stack+0x25a/0x2f6
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2935.982724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.982724][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2935.982724][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2935.982724][ T7249]  ? should_fail+0x75/0x9c0
[ 2935.982724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.982724][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2935.982724][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2935.982724][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2935.982724][ T7249]  ? _copy_from_user+0x219/0x310
[ 2935.982724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2935.982724][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2935.982724][ T7249]  ? _copy_from_user+0x219/0x310
[ 2935.982724][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2935.982724][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2935.982724][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2935.982724][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] RIP: 0023:0xf6f37549
[ 2935.982724][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2935.982724][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2935.982724][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2935.982724][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2935.982724][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2935.982724][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2935.982724][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Uninit was stored to memory at:
[ 2935.982724][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2935.982724][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2935.982724][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2935.982724][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2935.982724][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2935.982724][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2935.982724][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2935.982724][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2935.982724][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2935.982724][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2935.982724][ T7249] 
[ 2935.982724][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2935.982724][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2935.982724][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2936.939760][ T7252] not chained 1290000 origins
[ 2936.942727][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2936.942727][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2936.942727][ T7252] Call Trace:
[ 2936.942727][ T7252]  dump_stack+0x25a/0x2f6
[ 2936.942727][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2936.972781][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2936.972781][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2936.972781][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2936.972781][ T7252]  ? should_fail+0x75/0x9c0
[ 2936.972781][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2936.972781][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2937.007460][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2937.007460][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2937.007460][ T7252]  ? _copy_from_user+0x219/0x310
[ 2937.007460][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2937.007460][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2937.007460][ T7252]  ? _copy_from_user+0x219/0x310
[ 2937.007460][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.007460][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2937.007460][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2937.007460][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] RIP: 0023:0xf6f37549
[ 2937.007460][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2937.007460][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2937.007460][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2937.007460][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2937.007460][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2937.007460][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2937.007460][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Uninit was stored to memory at:
[ 2937.007460][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.007460][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.007460][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.007460][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.007460][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.007460][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.007460][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.007460][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.007460][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.007460][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.007460][ T7252] 
[ 2937.007460][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2937.007460][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2937.007460][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.697343][ T7252] not chained 1300000 origins
[ 2937.702038][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2937.702772][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2937.702772][ T7252] Call Trace:
[ 2937.702772][ T7252]  dump_stack+0x25a/0x2f6
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2937.702772][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.702772][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2937.702772][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2937.702772][ T7252]  ? should_fail+0x75/0x9c0
[ 2937.702772][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.702772][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2937.702772][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2937.702772][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2937.702772][ T7252]  ? _copy_from_user+0x219/0x310
[ 2937.702772][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2937.702772][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2937.702772][ T7252]  ? _copy_from_user+0x219/0x310
[ 2937.702772][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2937.702772][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2937.702772][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2937.702772][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] RIP: 0023:0xf6f37549
[ 2937.702772][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2937.702772][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2937.702772][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2937.702772][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2937.702772][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2937.702772][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2937.702772][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Uninit was stored to memory at:
[ 2937.702772][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2937.702772][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2937.702772][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2937.702772][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2937.702772][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2937.702772][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2937.702772][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2937.702772][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2937.702772][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2937.702772][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2937.702772][ T7252] 
[ 2937.702772][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2937.702772][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2937.702772][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.627832][ T7252] not chained 1310000 origins
[ 2938.632587][ T7252] CPU: 0 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2938.632723][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2938.632723][ T7252] Call Trace:
[ 2938.632723][ T7252]  dump_stack+0x25a/0x2f6
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2938.632723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2938.632723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2938.632723][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2938.632723][ T7252]  ? should_fail+0x75/0x9c0
[ 2938.632723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2938.632723][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2938.632723][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2938.632723][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2938.632723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2938.632723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2938.632723][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2938.632723][ T7252]  ? _copy_from_user+0x219/0x310
[ 2938.632723][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2938.632723][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2938.632723][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2938.632723][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] RIP: 0023:0xf6f37549
[ 2938.632723][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2938.632723][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2938.632723][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2938.632723][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2938.632723][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2938.632723][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2938.632723][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Uninit was stored to memory at:
[ 2938.632723][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2938.632723][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2938.632723][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2938.632723][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2938.632723][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2938.632723][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2938.632723][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2938.632723][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2938.632723][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2938.632723][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2938.632723][ T7252] 
[ 2938.632723][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2938.632723][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2938.632723][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2939.487377][ T7249] not chained 1320000 origins
[ 2939.492065][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2939.492776][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2939.502083][ T7249] Call Trace:
[ 2939.502083][ T7249]  dump_stack+0x25a/0x2f6
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2939.502083][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2939.502083][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2939.502083][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2939.502083][ T7249]  ? should_fail+0x75/0x9c0
[ 2939.502083][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2939.502083][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2939.502083][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2939.502083][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2939.502083][ T7249]  ? _copy_from_user+0x219/0x310
[ 2939.502083][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2939.502083][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2939.502083][ T7249]  ? _copy_from_user+0x219/0x310
[ 2939.502083][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2939.502083][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2939.502083][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2939.502083][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] RIP: 0023:0xf6f37549
[ 2939.502083][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2939.502083][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2939.502083][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2939.502083][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2939.502083][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2939.502083][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2939.502083][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Uninit was stored to memory at:
[ 2939.502083][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2939.502083][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2939.502083][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2939.502083][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2939.502083][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2939.502083][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2939.502083][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2939.502083][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2939.502083][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2939.502083][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2939.502083][ T7249] 
[ 2939.502083][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2939.502083][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2939.502083][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.366835][ T7249] not chained 1330000 origins
[ 2940.371523][ T7249] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2940.372806][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2940.372806][ T7249] Call Trace:
[ 2940.372806][ T7249]  dump_stack+0x25a/0x2f6
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0x6f/0x110
[ 2940.372806][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2940.372806][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2940.372806][ T7249]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2940.372806][ T7249]  ? should_fail+0x75/0x9c0
[ 2940.372806][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2940.372806][ T7249]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2940.372806][ T7249]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2940.372806][ T7249]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2940.372806][ T7249]  ? _copy_from_user+0x219/0x310
[ 2940.372806][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  ? __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  ? setup_fault_attr+0x360/0x390
[ 2940.372806][ T7249]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2940.372806][ T7249]  ? _copy_from_user+0x219/0x310
[ 2940.372806][ T7249]  ? kmsan_get_metadata+0x11b/0x180
[ 2940.372806][ T7249]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2940.372806][ T7249]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2940.372806][ T7249]  ? get_old_timespec32+0x2bf/0x360
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] RIP: 0023:0xf6f37549
[ 2940.372806][ T7249] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2940.372806][ T7249] RSP: 002b:00000000f45315fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2940.372806][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2940.372806][ T7249] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2940.372806][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2940.372806][ T7249] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2940.372806][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Uninit was stored to memory at:
[ 2940.372806][ T7249]  kmsan_internal_chain_origin+0xa0/0x110
[ 2940.372806][ T7249]  __msan_chain_origin+0xcb/0x140
[ 2940.372806][ T7249]  __get_compat_msghdr+0x6e1/0x9d0
[ 2940.372806][ T7249]  get_compat_msghdr+0x108/0x2c0
[ 2940.372806][ T7249]  do_recvmmsg+0x1063/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2940.372806][ T7249]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2940.372806][ T7249]  __do_fast_syscall_32+0x96/0xe0
[ 2940.372806][ T7249]  do_fast_syscall_32+0x3c/0x80
[ 2940.372806][ T7249]  do_SYSENTER_32+0x1b/0x20
[ 2940.372806][ T7249]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2940.372806][ T7249] 
[ 2940.372806][ T7249] Local variable ----msg_sys@do_recvmmsg created at:
[ 2940.372806][ T7249]  do_recvmmsg+0xc1/0x2120
[ 2940.372806][ T7249]  __sys_recvmmsg+0x309/0x6f0
[ 2941.235262][ T7252] not chained 1340000 origins
[ 2941.239953][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2941.242715][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2941.242715][ T7252] Call Trace:
[ 2941.242715][ T7252]  dump_stack+0x25a/0x2f6
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2941.242715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2941.242715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2941.242715][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2941.242715][ T7252]  ? should_fail+0x75/0x9c0
[ 2941.242715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2941.242715][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2941.242715][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2941.242715][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2941.242715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2941.242715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2941.242715][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2941.242715][ T7252]  ? _copy_from_user+0x219/0x310
[ 2941.242715][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2941.242715][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2941.242715][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2941.242715][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] RIP: 0023:0xf6f37549
[ 2941.242715][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2941.242715][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2941.242715][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2941.242715][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2941.242715][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2941.242715][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2941.242715][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Uninit was stored to memory at:
[ 2941.242715][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2941.242715][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2941.242715][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2941.242715][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2941.242715][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2941.242715][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2941.242715][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2941.242715][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2941.242715][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2941.242715][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2941.242715][ T7252] 
[ 2941.242715][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2941.242715][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2941.242715][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.167241][ T7252] not chained 1350000 origins
[ 2942.171936][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2942.180256][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2942.182774][ T7252] Call Trace:
[ 2942.182774][ T7252]  dump_stack+0x25a/0x2f6
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2942.182774][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2942.182774][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2942.182774][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2942.182774][ T7252]  ? should_fail+0x75/0x9c0
[ 2942.182774][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2942.182774][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2942.182774][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2942.182774][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2942.182774][ T7252]  ? _copy_from_user+0x219/0x310
[ 2942.182774][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2942.182774][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2942.182774][ T7252]  ? _copy_from_user+0x219/0x310
[ 2942.182774][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2942.182774][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2942.182774][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2942.182774][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] RIP: 0023:0xf6f37549
[ 2942.182774][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2942.182774][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2942.182774][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2942.182774][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2942.182774][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2942.182774][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2942.182774][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Uninit was stored to memory at:
[ 2942.182774][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2942.182774][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2942.182774][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2942.182774][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2942.182774][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2942.182774][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2942.182774][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2942.182774][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2942.182774][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2942.182774][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2942.182774][ T7252] 
[ 2942.182774][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2942.182774][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2942.182774][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.115156][ T7252] not chained 1360000 origins
[ 2943.119849][ T7252] CPU: 1 PID: 7252 Comm: syz-executor.0 Not tainted 5.13.0-syzkaller #0
[ 2943.122699][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2943.122699][ T7252] Call Trace:
[ 2943.122699][ T7252]  dump_stack+0x25a/0x2f6
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0x6f/0x110
[ 2943.145696][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2943.145696][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2943.145696][ T7252]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 2943.145696][ T7252]  ? should_fail+0x75/0x9c0
[ 2943.145696][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2943.145696][ T7252]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 2943.145696][ T7252]  ? kmsan_internal_unpoison_memory+0x10/0x20
[ 2943.145696][ T7252]  ? kmsan_unpoison_memory+0xeb/0x120
[ 2943.145696][ T7252]  ? _copy_from_user+0x219/0x310
[ 2943.145696][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  ? __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  ? setup_fault_attr+0x360/0x390
[ 2943.145696][ T7252]  ? kmsan_internal_unpoison_memory+0x11/0x20
[ 2943.145696][ T7252]  ? _copy_from_user+0x219/0x310
[ 2943.145696][ T7252]  ? kmsan_get_metadata+0x11b/0x180
[ 2943.145696][ T7252]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 2943.145696][ T7252]  ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 2943.145696][ T7252]  ? get_old_timespec32+0x2bf/0x360
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] RIP: 0023:0xf6f37549
[ 2943.145696][ T7252] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2943.145696][ T7252] RSP: 002b:00000000f45105fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2943.145696][ T7252] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200022c0
[ 2943.145696][ T7252] RDX: 00000000ffffff80 RSI: 0000000000000000 RDI: 0000000020002440
[ 2943.145696][ T7252] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2943.145696][ T7252] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 2943.145696][ T7252] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Uninit was stored to memory at:
[ 2943.145696][ T7252]  kmsan_internal_chain_origin+0xa0/0x110
[ 2943.145696][ T7252]  __msan_chain_origin+0xcb/0x140
[ 2943.145696][ T7252]  __get_compat_msghdr+0x6e1/0x9d0
[ 2943.145696][ T7252]  get_compat_msghdr+0x108/0x2c0
[ 2943.145696][ T7252]  do_recvmmsg+0x1063/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
[ 2943.145696][ T7252]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 2943.145696][ T7252]  __do_fast_syscall_32+0x96/0xe0
[ 2943.145696][ T7252]  do_fast_syscall_32+0x3c/0x80
[ 2943.145696][ T7252]  do_SYSENTER_32+0x1b/0x20
[ 2943.145696][ T7252]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 2943.145696][ T7252] 
[ 2943.145696][ T7252] Local variable ----msg_sys@do_recvmmsg created at:
[ 2943.145696][ T7252]  do_recvmmsg+0xc1/0x2120
[ 2943.145696][ T7252]  __sys_recvmmsg+0x309/0x6f0
20:07:29 executing program 0:
setpriority(0x1, 0x0, 0x9)

20:07:29 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x2c, 0x4, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_CHAIN_POLICY={0x8}, @NFTA_CHAIN_HANDLE={0x4}]}, 0x2c}}, 0x0)

20:07:29 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x9, 0x20b02)
write$binfmt_elf64(r0, 0x0, 0x0)

20:07:29 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:07:29 executing program 5:
syz_genetlink_get_family_id$gtp(&(0x7f0000001300), 0xffffffffffffffff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000001d80), 0xffffffffffffffff)

20:07:29 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000100)={0x0, @in, 0x0, 0x0, 0x81, 0x0, 0x2}, 0x98)

[ 2944.259067][ T7303] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
20:07:30 executing program 2:
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)

20:07:30 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:30 executing program 1:
clock_gettime(0xd00aed55e09ac3ce, 0x0)

20:07:30 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000200)={0x3, @vbi})

20:07:30 executing program 5:
request_key(&(0x7f0000000200)='id_resolver\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)='*\x00', 0xffffffffffffffff)
syz_io_uring_setup(0x5b82, &(0x7f0000000480), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0)

20:07:30 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2949.318982][ T7336] chnl_net:caif_netlink_parms(): no params data found
[ 2949.432388][ T7336] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2949.439969][ T7336] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2949.449670][ T7336] device bridge_slave_0 entered promiscuous mode
[ 2949.460395][ T7336] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2949.468002][ T7336] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2949.477995][ T7336] device bridge_slave_1 entered promiscuous mode
[ 2949.521788][ T7336] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2949.539949][ T7336] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2949.577488][ T7336] team0: Port device team_slave_0 added
[ 2949.586961][ T7336] team0: Port device team_slave_1 added
[ 2949.621847][ T7336] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2949.629580][ T7336] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2949.655842][ T7336] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2949.670419][ T7336] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2949.677823][ T7336] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2949.704045][ T7336] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2949.753901][ T7336] device hsr_slave_0 entered promiscuous mode
[ 2949.761443][ T7336] device hsr_slave_1 entered promiscuous mode
[ 2949.769811][ T7336] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2949.777696][ T7336] Cannot create hsr debugfs directory
[ 2949.927035][ T7336] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2949.934328][ T7336] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2949.941800][ T7336] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2949.949204][ T7336] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2950.029541][ T7336] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2950.052033][T14590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2950.065563][T14590] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2950.075426][T14590] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2950.088811][T14590] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 2950.108816][ T7336] 8021q: adding VLAN 0 to HW filter on device team0
[ 2950.127958][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2950.137053][T28324] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2950.144400][T28324] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2950.163612][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2950.172466][T27919] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2950.179904][T27919] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2950.218337][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 2950.228850][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 2950.255663][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 2950.266212][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2950.286364][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2950.295889][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2950.314124][ T7336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 2950.345970][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2950.353883][T28324] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2950.377612][ T7336] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2950.475530][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2950.485782][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2950.522381][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2950.531685][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2950.547756][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2950.556843][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2950.572041][ T7336] device veth0_vlan entered promiscuous mode
[ 2950.594287][ T7336] device veth1_vlan entered promiscuous mode
[ 2950.637226][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2950.646708][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2950.655977][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2950.665827][T27919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2950.681775][ T7336] device veth0_macvtap entered promiscuous mode
[ 2950.696875][ T7336] device veth1_macvtap entered promiscuous mode
[ 2950.726619][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.737406][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.747411][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.758052][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.768106][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.778749][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.788799][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.799503][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.809543][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.820180][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.830336][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.840970][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.851014][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 2950.861654][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.875044][ T7336] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2950.883820][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2950.893150][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2950.902330][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2950.912234][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2950.938272][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2950.948858][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.959275][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2950.969979][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2950.980013][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2950.990631][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2951.000750][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2951.011485][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2951.021517][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2951.032155][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2951.042193][ T7336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 2951.052901][ T7336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2951.069143][ T7336] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2951.073617][ T2829] Bluetooth: hci4: command 0x0409 tx timeout
[ 2951.077496][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2951.092416][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2951.385408][  T483] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2951.393835][  T483] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2951.414676][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2951.488614][  T483] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2951.497237][  T483] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2951.505206][ T1482] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
20:07:37 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x1, &(0x7f0000000040), 0x10)

20:07:37 executing program 2:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, 0x0)

20:07:37 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto(r0, &(0x7f0000000300)='T', 0x1, 0x0, &(0x7f0000000040)=@in={0x10, 0x2}, 0x10)

20:07:37 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = fcntl$dupfd(r1, 0x0, r0)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x21, &(0x7f00000000c0), 0x10)

20:07:37 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x12, &(0x7f00000001c0), 0x1)
bind$inet(r0, &(0x7f0000000040)={0x10, 0x2}, 0x10)
connect$inet(r0, &(0x7f0000000000)={0xffffffffffffffd3, 0x2}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001280)="f4e82b349f89100b4e71773f26ff4650547a8b04ce38b7fb05c868351a94b1873f0be553db", 0x25}, {&(0x7f0000000340)="1aab5112083ba4835adf07573afb1d0a9fac09b630ece28f1ee094edbbe7c45d", 0x20}], 0x2}, 0x0)

20:07:37 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:37 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0x1c, 0x1c, 0x2}, 0x1c)

20:07:37 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000640)={&(0x7f0000000000)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f0000000700)=ANY=[], 0x68}, 0x0)

20:07:37 executing program 2:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x3, 0x0, 0x80}})

20:07:37 executing program 4:
syz_usb_connect$cdc_ecm(0x2, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x3ff}}}}}]}}]}}, 0x0)

20:07:37 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:37 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
mmap$xdp(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x9, 0x10, r0, 0x0)

20:07:38 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x7ffc, 0x0)
pipe2(&(0x7f0000000040), 0x0)
ioctl$int_out(r0, 0x5460, &(0x7f0000000000))

20:07:38 executing program 2:
socketpair(0x11, 0x3, 0x300, &(0x7f0000000280))

20:07:38 executing program 5:
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)

[ 2952.793245][ T1482] usb 5-1: new full-speed USB device number 111 using dummy_hcd
20:07:38 executing program 0:
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/user\x00')
ioctl$FS_IOC_RESVSP(r0, 0x5460, &(0x7f0000000100))

20:07:38 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:38 executing program 2:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0xffff)
mount$9p_tcp(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000440)={'trans=tcp,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@nodevmap}, {@uname={'uname', 0x3d, '\x95\x00-\x1d}Y\x90\xba~G\a\xf8e\x88J\xd4&\xf0\xebjB\xbb\x8f\x9b^\x06\x13\xfe\x8d\xd9\xd0\x18\x1e\xc3\v1(\x06\x00x\xb8\xc0\x05#?\x825\xf4\xd4\xd5\xbe\x89\xf6\xb1\x81\xa1\xf5\xa8)\vu\x02\xfc\x86\xc1m\x04I\xd1\xbb\x02YN\x1fe\xc6\xf1\n\xaal\xce\xc7\x00\xac\x86\x1f\x9f\xe7e=\x94\xde\xa5c\xcf\xe0 \x97'}}, {@aname={'aname', 0x3d, '\\-)!%'}}], [{@fsuuid={'fsuuid', 0x3d, {[0x0, 0x64], 0x2d, [], 0x2d, [0xa], 0x2d, [0x30, 0x0, 0x38, 0x61], 0x2d, [0x0, 0x0, 0x33, 0x0, 0x0, 0x32, 0x0, 0x38]}}}]}})
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(0xffffffffffffffff, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x2, 0x0)

20:07:38 executing program 1:
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, &(0x7f0000000140)=""/4096)

[ 2953.144102][T27919] Bluetooth: hci4: command 0x041b tx timeout
[ 2953.155600][ T1482] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[ 2953.166889][ T1482] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
20:07:38 executing program 5:
socket(0x18, 0x0, 0x16b)

[ 2953.384828][ T1482] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2953.394347][ T1482] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2953.402574][ T1482] usb 5-1: Product: syz
[ 2953.407101][ T1482] usb 5-1: Manufacturer: syz
[ 2953.411815][ T1482] usb 5-1: SerialNumber: syz
[ 2953.548098][ T7632] 9pnet: p9_fd_create_tcp (7632): problem connecting socket to 127.0.0.1
20:07:39 executing program 2:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8903, 0x0)

[ 2953.627200][ T7608] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 2953.687552][ T1482] cdc_ether: probe of 5-1:1.0 failed with error -22
[ 2953.916557][ T1482] usb 5-1: USB disconnect, device number 111
[ 2954.708526][ T1482] usb 5-1: new full-speed USB device number 112 using dummy_hcd
[ 2955.073160][ T1482] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[ 2955.084344][ T1482] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2955.223002][T27919] Bluetooth: hci4: command 0x040f tx timeout
[ 2955.253636][ T1482] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2955.262969][ T1482] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2955.271709][ T1482] usb 5-1: Product: syz
[ 2955.276331][ T1482] usb 5-1: Manufacturer: syz
[ 2955.281030][ T1482] usb 5-1: SerialNumber: syz
[ 2955.307159][ T7608] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 2955.329297][ T1482] cdc_ether: probe of 5-1:1.0 failed with error -22
20:07:40 executing program 4:
r0 = getpgid(0x0)
ptrace$setopts(0x4206, r0, 0x3, 0x0)

20:07:40 executing program 1:
ioprio_set$pid(0x0, 0x0, 0x0)

20:07:40 executing program 0:
bpf$MAP_GET_NEXT_KEY(0x10, &(0x7f0000001100)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

20:07:40 executing program 5:
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)

20:07:40 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:40 executing program 2:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8940, 0x0)

[ 2955.435472][ T1482] usb 5-1: USB disconnect, device number 112
20:07:41 executing program 2:
syz_open_procfs(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
mmap$xdp(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

20:07:41 executing program 1:
socket(0xa, 0x803, 0x0)

20:07:41 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000180)={0x10, 0x2}, 0x10)
r1 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r2 = dup2(r0, r1)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f00000002c0)=ANY=[@ANYBLOB="00da464d", @ANYRES32=0x0], &(0x7f0000001700)=0x8)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x27, &(0x7f0000000080), &(0x7f0000000100)=0x8)

20:07:41 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

20:07:41 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:41 executing program 4:
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000001040)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

20:07:42 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getmulticast={0x14, 0x3a, 0x1}, 0x14}}, 0x0)

20:07:42 executing program 2:
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffa000/0x4000)=nil)

20:07:42 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x2}, 0x40)

20:07:42 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x5451)

20:07:42 executing program 4:
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000001380)='./file0\x00', 0x0, 0x1, &(0x7f0000001740)=[{&(0x7f0000001640)='B', 0x1, 0x1000}], 0x20710a0, &(0x7f00000017c0)={[], [{@dont_hash}]})
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0)

20:07:42 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:42 executing program 1:
r0 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

20:07:42 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x1, &(0x7f0000000000)=@raw=[@alu={0x0, 0x0, 0xb}], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xbd, &(0x7f0000000080)=""/189, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:42 executing program 0:
bpf$MAP_CREATE(0x0, 0x0, 0x300)

[ 2957.313599][T27919] Bluetooth: hci4: command 0x0419 tx timeout
20:07:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='coredump_filter\x00')
write$P9_RATTACH(r0, 0x0, 0x0)

20:07:42 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x598, 0x4)

20:07:43 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:43 executing program 1:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x4020940d, 0x0)

20:07:43 executing program 2:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8990, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:07:43 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000240)=[{0x3, 0x0, 0x0, 0x39a}]})

20:07:43 executing program 0:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f00000000c0)={'ip6_vti0\x00', 0x0})

20:07:43 executing program 4:
clock_gettime(0x7, &(0x7f0000001040))

20:07:43 executing program 1:
mount$fuse(0x7ffffffff000, 0x0, 0x0, 0x0, 0x0)

20:07:43 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)

20:07:43 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x11, 0x5, &(0x7f0000001640)=@framed={{}, [@call, @func]}, &(0x7f00000016c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:43 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x1, &(0x7f0000000000)=@raw=[@generic={0x81}], &(0x7f0000000080)='GPL\x00', 0x2, 0x9a, &(0x7f00000000c0)=""/154, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:43 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='projid_map\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)

20:07:44 executing program 4:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)

20:07:44 executing program 1:
mremap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ff9000/0x1000)=nil)

20:07:44 executing program 0:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x2c0, 0x0)

20:07:44 executing program 2:
bpf$MAP_CREATE(0x16, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

20:07:44 executing program 5:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x41, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, 0x0)

20:07:44 executing program 4:
r0 = getpgid(0x0)
syz_open_procfs(r0, 0x0)

20:07:44 executing program 1:
r0 = socket(0x1e, 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0)

20:07:45 executing program 0:
mmap$xdp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000004, 0xa0071, 0xffffffffffffffff, 0x0)

20:07:45 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)

20:07:45 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f00000000c0)={'ip6gre0\x00', 0x0})

20:07:45 executing program 2:
openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0)

20:07:45 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000003440)={&(0x7f0000003340), 0xc, &(0x7f0000003400)={0x0}}, 0x2404c001)

[ 2959.922932][T27919] usb 6-1: new high-speed USB device number 24 using dummy_hcd
20:07:45 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x40)
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)

20:07:45 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x5452, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:07:45 executing program 2:
bpf$MAP_CREATE(0x17, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

[ 2960.306620][T27919] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
20:07:45 executing program 1:
clone(0x20000000, &(0x7f0000000100)='2m', &(0x7f0000000140), &(0x7f0000000180), 0x0)

[ 2960.505292][T27919] usb 6-1: New USB device found, idVendor=056a, idProduct=0041, bcdDevice= 0.40
[ 2960.514604][T27919] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2960.522960][T27919] usb 6-1: Product: syz
[ 2960.527227][T27919] usb 6-1: Manufacturer: syz
[ 2960.531933][T27919] usb 6-1: SerialNumber: syz
[ 2960.760308][T27919] usbhid 6-1:1.0: couldn't find an input interrupt endpoint
[ 2960.959042][T27919] usb 6-1: USB disconnect, device number 24
[ 2961.747841][T27919] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[ 2962.153018][T27919] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 2962.334153][T27919] usb 6-1: New USB device found, idVendor=056a, idProduct=0041, bcdDevice= 0.40
[ 2962.345236][T27919] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2962.353520][T27919] usb 6-1: Product: syz
[ 2962.357793][T27919] usb 6-1: Manufacturer: syz
[ 2962.362462][T27919] usb 6-1: SerialNumber: syz
[ 2962.409569][T27919] usbhid 6-1:1.0: couldn't find an input interrupt endpoint
20:07:48 executing program 5:
bpf$MAP_CREATE(0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

20:07:48 executing program 0:
clock_getres(0x0, &(0x7f0000003240))

20:07:48 executing program 2:
syz_usb_connect$cdc_ecm(0x2, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, 0x0)

20:07:48 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x11, 0x7, &(0x7f0000001640)=@framed={{}, [@call, @initr0, @func]}, &(0x7f00000016c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:48 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)

20:07:48 executing program 1:
bpf$OBJ_GET_MAP(0x7, &(0x7f0000002f00)={&(0x7f0000002ec0)='./file0\x00'}, 0x10)

[ 2962.547231][T27919] usb 6-1: USB disconnect, device number 25
20:07:48 executing program 4:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x2}]})

20:07:48 executing program 0:
pipe2$9p(&(0x7f0000000300), 0x0)

20:07:48 executing program 1:
openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000200), 0x2, 0x0)

20:07:48 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='auxv\x00')

20:07:48 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:48 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000001ac0)={0x6}, 0x40)

20:07:49 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:49 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{}, {0x6}]})

20:07:49 executing program 5:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "9eeadfec3f37daf27f04fe605918646859535f2018ef0f0e98c945ca52d50638953d32900e86e2548fc07f7e6e2b182f010daaecc92f206fbb8a04d9b9383d"}, 0x60)

20:07:49 executing program 1:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001240)='./cgroup/syz0\x00', 0x200002, 0x0)

20:07:49 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
r1 = dup(r0)
read$FUSE(r1, 0x0, 0x0)

20:07:49 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000000)=""/73)

[ 2963.956387][   T35] audit: type=1326 audit(1631995669.476:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7851 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6f46549 code=0x0
20:07:49 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x3, 0x0, 0x0, 0x1ff}]})

20:07:49 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5}, {0x2}, {}]})

20:07:49 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:50 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
r1 = dup(r0)
read$FUSE(r1, 0x0, 0x0)

20:07:50 executing program 2:
unshare(0x68000200)

20:07:50 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')

[ 2964.778002][   T35] audit: type=1326 audit(1631995670.296:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7851 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6f46549 code=0x0
20:07:50 executing program 1:
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x7000)

20:07:50 executing program 0:
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x4000)

20:07:50 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:50 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
r1 = dup(r0)
read$FUSE(r1, 0x0, 0x0)

20:07:50 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000240)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x4c}, 0x4c}}, 0x0)

20:07:50 executing program 5:
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r0, 0x5421)

20:07:51 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[], 0x14}}, 0x0)

20:07:51 executing program 3:
close(0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0)

20:07:51 executing program 0:
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x14)

20:07:51 executing program 4:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
r1 = dup(r0)
read$FUSE(r1, 0x0, 0x0)

20:07:51 executing program 1:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000004cc0), 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r0, r1, 0x0)

20:07:51 executing program 2:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89a2, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:07:51 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001600)=ANY=[@ANYBLOB="8001000001717b"], 0x180}}, 0x0)

20:07:51 executing program 3:
close(0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0)

20:07:51 executing program 0:
waitid(0x0, 0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffd000/0x3000)=nil)

20:07:51 executing program 4:
bpf$MAP_GET_NEXT_KEY(0x6, &(0x7f0000001100)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

20:07:51 executing program 1:
select(0x40, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)={0x0, 0xea60})

20:07:52 executing program 5:
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil)

20:07:52 executing program 2:
unshare(0x200)
unshare(0x200)

20:07:52 executing program 3:
close(0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r1, 0x200002)
sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0)

20:07:52 executing program 0:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000080)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0})

20:07:52 executing program 4:
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1)

20:07:52 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@ipv4_delrule={0x1c}, 0x1c}}, 0x0)

20:07:52 executing program 2:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0xf0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x2}}}}}}]}}, 0x0)

20:07:52 executing program 5:
getresgid(&(0x7f0000003640), &(0x7f0000003680), &(0x7f00000036c0))

20:07:52 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
mmap$xdp(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0)

20:07:52 executing program 1:
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x38)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

20:07:52 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2967.466596][ T3119] ieee802154 phy0 wpan0: encryption failed: -22
[ 2967.473313][ T3119] ieee802154 phy1 wpan1: encryption failed: -22
[ 2967.493947][ T1482] usb 1-1: new high-speed USB device number 101 using dummy_hcd
20:07:53 executing program 5:
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x2010, r0, 0x8000000)

[ 2967.735613][ T1482] usb 1-1: Using ep0 maxpacket: 8
20:07:53 executing program 4:
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000004c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

20:07:53 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0, 0x204}, 0x40)

[ 2967.894745][ T1482] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2967.973901][ T1482] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2967.985270][ T1482] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2967.995421][ T1482] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2968.005459][ T1482] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 2968.015506][ T1482] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2968.025650][ T1482] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
20:07:53 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2968.435795][ T1482] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2968.445296][ T1482] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2968.453731][ T1482] usb 1-1: Product: syz
[ 2968.458028][ T1482] usb 1-1: Manufacturer: syz
[ 2968.462858][ T1482] usb 1-1: SerialNumber: syz
[ 2968.823173][ T1482] cdc_ncm 1-1:1.0: bind() failure
[ 2968.836426][ T1482] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 2968.843439][ T1482] cdc_ncm 1-1:1.1: bind() failure
[ 2968.894793][ T1482] usb 1-1: USB disconnect, device number 101
[ 2969.572973][ T1482] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[ 2969.822996][ T1482] usb 1-1: Using ep0 maxpacket: 8
[ 2969.993740][ T1482] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2970.073222][ T1482] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2970.084560][ T1482] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2970.094622][ T1482] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2970.104798][ T1482] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 2970.114931][ T1482] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2970.125764][ T1482] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
20:07:55 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, 0x0)
r0 = getpgrp(0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f00000021c0))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x40)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0xd, 0x24, 0x4, 0x1, 0x0, r3}, 0x40)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001180)={r4, &(0x7f00000010c0), &(0x7f00000021c0)=""/4106}, 0x20)
close(r3)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r4}, 0x20)

20:07:55 executing program 5:
prctl$PR_SET_SECCOMP(0x38, 0x0, 0x0)

20:07:55 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000002680)={[], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}]})

20:07:55 executing program 1:
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000ff6000/0x9000)=nil)

20:07:55 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x2, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:07:55 executing program 3:
r0 = socket$inet6(0xa, 0x0, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2970.343407][ T1482] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2970.352623][ T1482] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2970.393981][ T1482] usb 1-1: can't set config #1, error -71
[ 2970.438017][ T1482] usb 1-1: USB disconnect, device number 102
20:07:56 executing program 1:
bpf$MAP_GET_NEXT_KEY(0x17, 0x0, 0x0)

20:07:56 executing program 5:
r0 = epoll_create(0xca)
epoll_wait(r0, &(0x7f0000002240)=[{}], 0x1, 0x4)

20:07:56 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}], 0x20}, 0x0)

20:07:56 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x0, 0x7, 0x0, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:56 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(0xffffffffffffffff)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:56 executing program 1:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x410003, 0x0)

20:07:57 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, 0x0)
r0 = getpgrp(0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f00000021c0))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x40)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0xd, 0x24, 0x4, 0x1, 0x0, r3}, 0x40)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001180)={r4, &(0x7f00000010c0), &(0x7f00000021c0)=""/4106}, 0x20)
close(r3)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r4}, 0x20)

20:07:57 executing program 5:
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

20:07:57 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')

20:07:57 executing program 2:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000010c0)='ns/mnt\x00')

20:07:57 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(0xffffffffffffffff)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:57 executing program 1:
fsopen(&(0x7f0000000000)='bpf\x00', 0x0)

20:07:57 executing program 2:
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ff9000/0x4000)=nil)

20:07:57 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x2, &(0x7f0000000000)=@raw=[@map={0x18, 0x0, 0x1, 0x0, 0x1}], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:07:57 executing program 5:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, 0x0, 0x0)

20:07:57 executing program 1:
syz_usb_connect$cdc_ncm(0x3, 0x6e, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, 0x0)

20:07:57 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(0xffffffffffffffff)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:58 executing program 2:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, 0x0)

[ 2972.733070][ T1482] usb 2-1: new high-speed USB device number 42 using dummy_hcd
20:07:58 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, 0x0)
r0 = getpgrp(0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f00000021c0))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x40)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0xd, 0x24, 0x4, 0x1, 0x0, r3}, 0x40)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001180)={r4, &(0x7f00000010c0), &(0x7f00000021c0)=""/4106}, 0x20)
close(r3)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r4}, 0x20)

20:07:58 executing program 5:
r0 = socket(0x11, 0x2, 0x0)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={0x0}}, 0x0)

20:07:58 executing program 4:
syz_genetlink_get_family_id$net_dm(&(0x7f00000001c0), 0xffffffffffffffff)
getrusage(0x1, &(0x7f0000000200))

20:07:58 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:07:58 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x150}}, 0x0)

[ 2972.983132][ T1482] usb 2-1: Using ep0 maxpacket: 8
[ 2973.103127][ T1482] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2973.114357][ T1482] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2973.124599][ T1482] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2973.134717][ T1482] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 2973.144913][ T1482] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2973.154942][ T1482] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
20:07:58 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x401, 0x2, 0x8}, 0x40)

20:07:58 executing program 2:
syz_open_dev$hidraw(&(0x7f0000000440), 0x0, 0x81)

20:07:58 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000240)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)

[ 2973.523858][ T1482] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2973.533276][ T1482] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2973.541411][ T1482] usb 2-1: Product: syz
[ 2973.545923][ T1482] usb 2-1: Manufacturer: syz
[ 2973.550635][ T1482] usb 2-1: SerialNumber: syz
20:07:59 executing program 4:
mremap(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ff6000/0x4000)=nil)

[ 2974.053456][ T1482] cdc_ncm 2-1:1.0: bind() failure
[ 2974.087932][ T1482] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[ 2974.095301][ T1482] cdc_ncm 2-1:1.1: bind() failure
[ 2974.195271][ T1482] usb 2-1: USB disconnect, device number 42
[ 2974.793160][ T1482] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 2975.038410][ T1482] usb 2-1: Using ep0 maxpacket: 8
[ 2975.173237][ T1482] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2975.184672][ T1482] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2975.194748][ T1482] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 2975.204780][ T1482] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 2975.214786][ T1482] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2975.224849][ T1482] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[ 2975.393518][ T1482] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2975.402653][ T1482] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2975.411122][ T1482] usb 2-1: Product: syz
[ 2975.415571][ T1482] usb 2-1: Manufacturer: syz
[ 2975.420265][ T1482] usb 2-1: SerialNumber: syz
20:08:01 executing program 1:
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/user\x00')
ioctl$FS_IOC_RESVSP(r0, 0x4030582a, 0x0)

20:08:01 executing program 5:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x45}]})

20:08:01 executing program 2:
mmap$xdp(&(0x7f0000fed000/0x10000)=nil, 0x10000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')

20:08:01 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, 0x0)
r0 = getpgrp(0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f00000021c0))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x40)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0xd, 0x24, 0x4, 0x1, 0x0, r3}, 0x40)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001180)={r4, &(0x7f00000010c0), &(0x7f00000021c0)=""/4106}, 0x20)
close(r3)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r4}, 0x20)

20:08:01 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:01 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5, 0x0, 0x0, 0x0, 0x820, 0x1}, 0x40)

[ 2975.603417][ T1482] cdc_ncm 2-1:1.0: bind() failure
[ 2975.654826][ T1482] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[ 2975.661752][ T1482] cdc_ncm 2-1:1.1: bind() failure
[ 2975.778292][ T1482] usb 2-1: USB disconnect, device number 43
20:08:01 executing program 2:
clock_gettime(0x1, &(0x7f0000001040))

20:08:01 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8970, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:08:01 executing program 5:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8921, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

20:08:01 executing program 1:
mlock2(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000), 0x40)
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)

20:08:02 executing program 4:
r0 = socket(0x1e, 0x2, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, 0x0, 0x0)

20:08:02 executing program 2:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000002b00)={'vcan0\x00'})
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000002b00)={'vcan0\x00'})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000300)="93c699a2785319737ba1ba1685bc14d0c178dab7b634cff72306dba8d7daa0bd7cd0ba6d6a5a339b8f3d12dc5cd0ff4079a06a8a9cb8f5dc4b1e1a1f76c50be7a499ab9ce2e3b473fecfb8adffbdec39c4a329e8c63dde01d4fba7cd6db50f5e1ef08c169024845bdc247a0be0eec0ee6e47b63b9e1291f5ae0c79cf1fcc5a91fdef71f387498671fa216af913840aa277440ef4fe08a164b73aa5457ee9ec1dc8bab444a0d58c52da3a0a", 0xab}, {&(0x7f00000003c0)="f435afd99dbb3620235d8d", 0xb}, {&(0x7f0000000400)="45d7f6289c5dd9db3b43e32ff2530c7b102695c8b9a8b2ff196a6ea3c7f98f87b3657ed230ddac875e0d8d378af78d052c29ac7eae857e28f6f5e6ab688c0961c9ba207045253ec5b034af1d1bb27fd75988cdb60ff68ed6bbb3ed6398a9f57bde4793416955ce27e494673134cdc1a09d263d814b262c709700e82bc89db3aa69518cb1360fa22240ef4569f9a89f3456f8116d4992d966899bddced29e8e", 0x9f}, {&(0x7f00000004c0)="24e3bdd029dfc9bf5caf60e4c5836b4f1a5725e01f259c985a2f42383bdf74a6abd293aa4b74eeccde8adbb00fab3c254389309f6e197713c898dc9f9d0de41a60fcc25eb61c016cf9ae80bd8fd22a246a6e98ee22f871d2554ebf03936575de7d99bcb94e662109902a91e4ed47ee6ffba3a9173c9505ea952c263e830302eb3c2a77f36a46105bde2c4e8dc176b0c0f8c24aeb65f675b65a6e49ad58e8", 0x9e}, {&(0x7f0000000580)="3123e1134aca92106d3ecd58adb8fa36053b6ca46c7f73ec5c808055e7170609ac7076e25d286e9c54a36450f8efbe7dc250341137f3e487a48319d4e31b9ae451c59f2a98c38853579787296788653757b95334d3b457745dfc09c32ca16ba4a434e33551baa20f58708db4142a9a6fe55c9788df1499b77fb63b8c9d5e0b0d9628df4e8a80cf34ea6c551597af73e72473fe34e82ce4a929a9f6cf8571480c", 0xa0}, {&(0x7f0000000640)="3c51fd2c87c767944c9dcad05425a0eb477c59df6ecdaa288bfd883983895f2405b21cf62e32733a0f745436ccebe073f4ed79b2fe3f370ab30c144800f8921a0bc4de8c5b8f4d903796880d8eb36e86e7684eb2bf9566f4d23f5f9dddc07dff2f05cc010934a8539009f308914f0ac09c496bedf09e01006d9e85af22d3631447dfaf63a2dfaf8dfb650eaccfc2552275fcc89711634e32ec035d6d91ad9ffdbb7044801c129c111e010cc71892d743c7208daa33bce4a0e9f222a8d57c7cf819e5076475900f7ce01cb56e21b39bc2b9f105a705a8016609925bbe", 0xdc}], 0x6, &(0x7f00000007c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, r1, r2]}}], 0x20, 0x8011}, 0x44040)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000840)={'batadv_slave_1\x00'})
clone(0x20000000, &(0x7f0000000100)='2m', &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="7fa8838c7f126aa57ba2eb07dcf220e7720d0c6ef10d1c06552de4a681827a2667442d3280c26d28595b922d72a4870975c966d26f07335659864e2923ad817bdfbb2aae5148f64b2ff786db1595af39c193114173bdabc5c7e6290c924477bb8749ed584de11122605a0e2e7684a5338dcca19b1b869365cba456317ce5ca277f2eb9c2b8ac6364a2683fad80deb967eccf52b2e86640cba70273e0362e0fcabc68")

20:08:02 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000980)={'wg1\x00'})

20:08:02 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x14}, 0x14}}, 0x0)

20:08:02 executing program 0:
mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffd000/0x1000)=nil)

20:08:02 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:02 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
syz_genetlink_get_family_id$tipc(&(0x7f0000000280), r0)

20:08:02 executing program 0:
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001400)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

20:08:02 executing program 1:
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x61}]})

20:08:02 executing program 2:
epoll_pwait(0xffffffffffffffff, &(0x7f0000001100)=[{}], 0x1, 0x0, &(0x7f0000001140), 0x8)

20:08:03 executing program 5:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, 0x0)

20:08:03 executing program 4:
fsopen(&(0x7f0000000000)='proc\x00', 0x0)

20:08:03 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')

20:08:03 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000000)='environ\x00')

20:08:03 executing program 2:
socketpair(0x10, 0x3, 0x0, &(0x7f0000000280))

20:08:03 executing program 5:
syz_usb_connect$cdc_ecm(0x2, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x3ff}}}}}]}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000300)={0xa}, 0x0, 0x0})

20:08:03 executing program 4:
prctl$PR_SET_SECCOMP(0x2, 0x0, 0x0)

20:08:03 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:04 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f00000018c0), 0x0, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
dup3(r1, r0, 0x0)
r2 = dup(r0)
write$FUSE_NOTIFY_DELETE(r2, 0x0, 0x0)

20:08:04 executing program 0:
socket(0x38, 0x0, 0x0)

20:08:04 executing program 1:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8927, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

[ 2978.833630][ T1482] usb 6-1: new full-speed USB device number 26 using dummy_hcd
20:08:04 executing program 4:
fsopen(&(0x7f0000000040)='selinuxfs\x00', 0x0)

20:08:04 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2979.154366][ T1482] usb 6-1: not running at top speed; connect to a high speed hub
20:08:04 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x2)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "881834cd30056b9aa316be67231d58c677ec8b3686c1683812aee8987a061df9644a0793e2ed7c9d7abc5d7c62b94cc61991f80e8cc1ce7a5070a95cc32fef61", "26e4c7679050c1b595b857af0def33c6f88b4f565788151ef92fb4b050babec5a7ce455d344ce8b64c929c9f76c1f075932e75b41218e2629a32b935347577dc", "f58eab7eb5e2203556b67e195c410cb570d4e0bfce12c8661cf5ca8258107061"})

[ 2979.235022][ T1482] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[ 2979.246264][ T1482] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
20:08:04 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')

20:08:04 executing program 1:
r0 = open_tree(0xffffffffffffff9c, 0xffffffffffffffff, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r0, &(0x7f0000000080), 0x0}, 0x20)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x59, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, 0x0, 0x0)
r2 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, 0x0, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000380)={{}, 0x0, 0x0, @inherit={0x0, 0x0}, @devid})
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)

[ 2979.464133][ T1482] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2979.473664][ T1482] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2979.481819][ T1482] usb 6-1: Product: syz
[ 2979.486446][ T1482] usb 6-1: Manufacturer: syz
[ 2979.491151][ T1482] usb 6-1: SerialNumber: syz
20:08:05 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x8993, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0})

[ 2979.655830][ T8211] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 2979.715682][ T1482] cdc_ether: probe of 6-1:1.0 failed with error -22
[ 2979.929346][ T2829] usb 6-1: USB disconnect, device number 26
[ 2980.728396][ T2829] usb 6-1: new full-speed USB device number 27 using dummy_hcd
[ 2981.074863][ T2829] usb 6-1: not running at top speed; connect to a high speed hub
[ 2981.164928][ T2829] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[ 2981.176156][ T2829] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 2981.353209][ T2829] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2981.362385][ T2829] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2981.370693][ T2829] usb 6-1: Product: syz
[ 2981.375175][ T2829] usb 6-1: Manufacturer: syz
[ 2981.379869][ T2829] usb 6-1: SerialNumber: syz
[ 2981.417045][ T8211] raw-gadget gadget: fail, usb_ep_enable returned -22
[ 2981.465331][ T2829] cdc_ether: probe of 6-1:1.0 failed with error -22
20:08:07 executing program 5:
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffb000/0x4000)=nil)

20:08:07 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$hidraw(r0, 0x0, 0x0)

20:08:07 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/sockstat6\x00')
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x52, r0, 0x8000000)

20:08:07 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:07 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x59, 0x0)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, 0x0)

20:08:07 executing program 4:
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0)

[ 2981.532484][ T2829] usb 6-1: USB disconnect, device number 27
20:08:07 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f0, &(0x7f0000000480)={'ip6tnl0\x00', &(0x7f0000000400)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}})

20:08:07 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0x5, &(0x7f0000000480)={@in={{0x2, 0x0, @broadcast}}, 0x0, 0x0, 0x0, 0x0, "785194ce87b9ed4ba1f9bf41d013ccc49ca1cb6d8a42e4e2e8dcf511786a63a2fd14c01496cb90ec92e4b985ea11d301f63399b389aa9ea30443954a2be8e729905fb144372034c4a2c13f51f61d45cb"}, 0xd8)

20:08:07 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast2, @multicast2, @private}, 0xc)

20:08:07 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
ioctl$SG_SET_KEEP_ORPHAN(r0, 0x2287, &(0x7f00000000c0))

20:08:07 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:07 executing program 5:
bpf$MAP_CREATE(0x9, &(0x7f00000004c0), 0x40)

20:08:07 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x218, 0x1}, 0x40)

20:08:07 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000002c0)={0x0, @local, @private}, 0xc)

20:08:08 executing program 4:
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0x9, &(0x7f0000000480)={@in={{0x2, 0x0, @broadcast}}, 0x0, 0x0, 0x0, 0x0, "785194ce87b9ed4ba1f9bf41d013ccc49ca1cb6d8a42e4e2e896cb90ec92e4b985ea11d301f63329905fb144372034c4a2c13f51f61d45cb00"}, 0xfffffffffffffdcd)

20:08:08 executing program 0:
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x28)

20:08:08 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="0abfaf5088483d4de888a8d9", 0xc)

20:08:08 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:08 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x12, &(0x7f00000000c0)='d', 0x1)

20:08:08 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)={0x1}, 0x40)

20:08:08 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x4a, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB, @ANYRES32], 0x1c}}, 0x0)
r0 = gettid()
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r1=>0x0)
ptrace$setopts(0x4206, r1, 0x8000002, 0x6c)
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x5, 0x3f, 0x0, 0x0, 0x0, 0x61002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x8}, 0x0, 0x3ff, 0x7ff, 0x0, 0x0, 0x7f}, r0, 0x5, 0xffffffffffffffff, 0x8)
io_cancel(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xc010000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d2f4655fd2f4655f0100ffff53ef010001000000d0f4655f000000000000000001000000000000000b0000008000000008000000524700", 0x63, 0x400}, {&(0x7f0000010100)="000000000000000011", 0x9, 0x4e0}, {&(0x7f0000010200)="01000000000005000c", 0x9, 0x560}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="020000001200000022", 0x9, 0x800}, {&(0x7f0000003980)="504d4d00504d4dff", 0x8, 0x6000}, {&(0x7f0000000180)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x6800}, {&(0x7f00000001c0)="ffff01", 0x3, 0x9000}, {&(0x7f0000000380)="ed41000000fb0000d0f43b071ff4655fd2f4655f000000000000040004761a1244432db2c8fa8b1d61b6080f515981801f1c61b57e89bdd2ec706c5c011b8eb6ed44c9d2973c3918d7461f07fa88cf31c63681ab15128f21eb24a685968a1566b6c2aa26049016d040ba581ee346811f79d9ec9553b97ee5702be273fc35120c01624625c431090132695347144e33c118172b1fb0078276599abaa641cac6d6a8d64bd313934d316bdf5d4bd3f2474a2b29ca34911b9a8e62d01c9b34d0a6d2ff96fcc32ef009fc7a37eff48a01bb81f0d53eabdb6585df0bcdfe82b0d763521c3a4f46b1a92a7fd88b4d53661b609ac6fc8000"/258, 0x102, 0x11080}, {&(0x7f0000012f00)="8081000000180000d0f465001000005fd0f4655f00000000000001000c00000010000800000000000af30100040000000000000000000000030000000d", 0x3d, 0x11100}, {&(0x7f0000013200)="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", 0x282, 0x11580}], 0x0, &(0x7f00000004c0)={[{@jqfmt_vfsv1}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}]})

20:08:08 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

20:08:08 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCGARP(r0, 0x8916, &(0x7f0000000140)={{}, {}, 0x0, {0x2, 0x0, @multicast2}})

20:08:08 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000100)={@multicast1, @local, @broadcast}, 0xc)

20:08:08 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

[ 2983.424152][ T8327] loop1: detected capacity change from 0 to 264192
20:08:09 executing program 2:
bpf$MAP_CREATE(0x8, &(0x7f00000004c0), 0x40)

20:08:09 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000480)={@in={{0x2, 0x0, @broadcast}}, 0x0, 0x0, 0x1d, 0x0, "785194ce87b9ed4ba1f9bf41d013ccc49ca1cb6d8a42e4e2e8dcf511786a63a2fd14c01496cb90ec92e4b985ea11d301f63399b389aa9ea30443954a2be8e729905fb144372034c4a2c13f51f61d45cb"}, 0xd8)

[ 2983.682207][ T8327] EXT4-fs (loop1): quotafile must be on filesystem root
20:08:09 executing program 2:
bpf$MAP_CREATE(0xd, &(0x7f00000004c0), 0x40)

20:08:09 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r1=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x40)

20:08:09 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @private2={0xfc, 0x2, '\x00', 0x1}}})

20:08:09 executing program 1:
openat$vcsu(0xffffff9c, 0x0, 0x101000, 0x0)
r0 = openat$tcp_congestion(0xffffff9c, 0x0, 0x1, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r1, &(0x7f00000004c0), 0x2bd, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000640)={0xa, 0x1000000000004e24, 0x0, @empty}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)

20:08:09 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0), 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:09 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xa, &(0x7f0000000480)={@in={{0x2, 0x0, @broadcast}}, 0x0, 0x0, 0x0, 0x0, "785194ce87b9ed4ba1f9bf41d013ccc49ca1cb6d8a42e4e2e8dcf511786a63a2fd14c01496cb90ec92e4b985ea11d301f63399b389aa9ea30443954a2be8e729905fb144372034c4a2c13f51f61d45cb"}, 0xd8)

20:08:10 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

20:08:10 executing program 2:
bpf$MAP_CREATE(0xa, &(0x7f00000004c0), 0x40)

20:08:10 executing program 5:
r0 = getpgrp(0x0)
rt_sigqueueinfo(r0, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffffffd})

20:08:10 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0), 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:10 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="ac1414bbac1414bb00000000030000e8"], 0x1c)

20:08:10 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCGARP(r0, 0x8912, &(0x7f0000000140)={{}, {}, 0x0, {0x2, 0x0, @multicast2}})

20:08:10 executing program 2:
syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @broadcast, @val={@void}, {@ipv4={0x800, @tipc={{0x15, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr, @empty, {[@timestamp={0x44, 0x8, 0x0, 0x0, 0x0, [0x0]}, @timestamp_addr={0x44, 0x24, 0x0, 0x1, 0x0, [{@remote}, {@local}, {@local}, {@local}]}, @lsrr={0x83, 0x13, 0x0, [@remote, @multicast1, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}, @payload_direct={{{{0x20, 0x0, 0x0, 0x0, 0x0, 0x8}}}}}}}}, 0x0)

20:08:10 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000140)={&(0x7f0000000300), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_HOP_PENALTY={0x4}, @BATADV_ATTR_ISOLATION_MASK]}, 0x24}}, 0x0)

20:08:11 executing program 1:
openat$vcsu(0xffffff9c, 0x0, 0x101000, 0x0)
r0 = openat$tcp_congestion(0xffffff9c, 0x0, 0x1, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r1, &(0x7f00000004c0), 0x2bd, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000640)={0xa, 0x1000000000004e24, 0x0, @empty}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)

20:08:11 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)="63d61f92a175f2737a757551302c430a", 0x10)

[ 2985.663988][ T8390] netlink: 'syz-executor.5': attribute type 53 has an invalid length.
20:08:11 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0), 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:11 executing program 0:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x8906, 0x0)

20:08:11 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0xf2b}, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r0, &(0x7f00000004c0), 0x2bd, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000640)={0xa, 0x1000000000004e24, 0x0, @empty}, 0x1c)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000240))

[ 2985.736118][ T8391] netlink: 'syz-executor.5': attribute type 53 has an invalid length.
20:08:11 executing program 5:
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

20:08:11 executing program 4:
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000180), &(0x7f0000000240)=0x2f)

20:08:11 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x2, &(0x7f0000000040)="db13c8b7", 0x4)

20:08:12 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:12 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000480)={'sit0\x00', 0x0})

20:08:12 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0x1e, &(0x7f0000000480)={@in={{0x2, 0x0, @broadcast}}, 0x0, 0x0, 0x0, 0x0, "785194ce87b9ed4ba1f9bf41d013ccc49ca1cb6d8a42e4e2e8dcf511786a63a2fd14c01496cb90ec92e4b985ea11d301f63399b389aa9ea30443954a2be8e729905fb144372034c4a2c13f51f61d45cb"}, 0xd8)

20:08:12 executing program 1:
openat$vcsu(0xffffff9c, 0x0, 0x101000, 0x0)
r0 = openat$tcp_congestion(0xffffff9c, 0x0, 0x1, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r1, &(0x7f00000004c0), 0x2bd, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000640)={0xa, 0x1000000000004e24, 0x0, @empty}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)

20:08:12 executing program 0:
socket$inet(0x2, 0xc, 0x0)

20:08:12 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:12 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r1=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000040)={'syztnl1\x00', r1, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback}})

20:08:12 executing program 5:
openat$tun(0xffffff9c, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x16f5, &(0x7f0000000100)={0x0, 0x9670, 0x8}, &(0x7f0000001000/0x3000)=nil, &(0x7f0000001000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000080))
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_POLL_ADD, 0x0)
io_uring_register$IORING_UNREGISTER_FILES(0xffffffffffffffff, 0x3, 0x0, 0x0)

20:08:13 executing program 2:
bpf$MAP_CREATE(0x23, &(0x7f00000004c0), 0x40)

20:08:13 executing program 0:
r0 = epoll_create1(0x0)
r1 = syz_open_dev$vcsu(&(0x7f00000003c0), 0x6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x20000024})
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)

20:08:13 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:13 executing program 4:
bpf$MAP_CREATE(0x22, &(0x7f00000004c0), 0x40)

20:08:13 executing program 5:
bpf$MAP_CREATE(0x6, &(0x7f00000004c0), 0x40)

20:08:13 executing program 1:
openat$vcsu(0xffffff9c, 0x0, 0x101000, 0x0)
r0 = openat$tcp_congestion(0xffffff9c, 0x0, 0x1, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c)
recvmmsg(r1, &(0x7f00000004c0), 0x2bd, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000640)={0xa, 0x1000000000004e24, 0x0, @empty}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
write$tcp_congestion(r0, 0x0, 0x0)

20:08:14 executing program 5:
ioprio_set$uid(0x0, 0xee01, 0x8645628df46b12bd)

20:08:14 executing program 4:
openat$vfio(0xffffff9c, &(0x7f0000000000), 0x400000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000001c40)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x100040}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="0100"/22], 0x1c}}, 0x0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x66379fa061b0e75f}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x38, r1, 0x3741d5499ff30391, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x195}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x4068801}, 0x4004)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6_vti0\x00', 0x0, 0x29, 0x0, 0x7, 0x3, 0x72, @dev={0xfe, 0x80, '\x00', 0x11}, @dev={0xfe, 0x80, '\x00', 0x17}, 0x8, 0x8, 0x9, 0x800}})
r3 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x0, 0x0)
r4 = accept4(r3, &(0x7f0000000280)=@x25={0x9, @remote}, 0x0, 0x0)
ioctl$VFIO_IOMMU_GET_INFO(r3, 0x3b70, &(0x7f0000000380)={0x14, 0x0, 0x0, 0x80000000})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f0, &(0x7f00000003c0)={'syztnl0\x00', &(0x7f0000000400)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @mcast2}})
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x4, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8001}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x235}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x20)

20:08:14 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x22, &(0x7f00000000c0)='d', 0x1)

20:08:14 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:14 executing program 2:
bpf$MAP_CREATE(0x1d, &(0x7f00000004c0), 0x40)

20:08:15 executing program 5:
bpf$MAP_CREATE(0x4, &(0x7f00000004c0), 0x40)

20:08:15 executing program 0:
r0 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x2)

20:08:15 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000080)={'security\x00', 0x2, [{}, {}]}, 0x44)

20:08:15 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:15 executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0xc0045878, 0x0)

20:08:15 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000011c0)={0x0, 0x1, 0x6, @broadcast}, 0x10)

20:08:15 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/config\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:15 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/packet\x00')
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2020)

20:08:15 executing program 1:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config', 0x0, 0x0)
renameat(r0, &(0x7f0000000000)='./file0/file0/../file0\x00', 0xffffffffffffffff, 0x0)

20:08:15 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:15 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='timers\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:16 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:16 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip6_tables_matches\x00')
read$FUSE(r0, &(0x7f0000000380)={0x2020}, 0x2020)

20:08:16 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e00ffff00"/18, @ANYRES32=0x0, @ANYBLOB="000000cb"], 0x1c}}, 0x0)

20:08:16 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/packet\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:16 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/dev_mcast\x00')
read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020)

20:08:16 executing program 4:
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
set_mempolicy(0x0, &(0x7f0000000040), 0x8001)

20:08:16 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:16 executing program 0:
request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)='}%:-^\x00', 0xfffffffffffffffe)

20:08:16 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000100)={'lo\x00', @ifru_addrs=@xdp})

20:08:17 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='cgroup\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:17 executing program 4:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/arp\x00')
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)

20:08:17 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:17 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ipv6_route\x00')
read$FUSE(r0, &(0x7f00000001c0)={0x2020}, 0x2020)

20:08:17 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='attr/current\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:17 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/snmp6\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:17 executing program 2:
socket$inet6(0xa, 0x3, 0x6)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@ipv6_deladdrlabel={0x30, 0x49, 0x1, 0x0, 0x0, {}, [@IFAL_ADDRESS={0xfffffffffffffcc3, 0x1, @private2}]}, 0x30}}, 0x0)

20:08:17 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/packet\x00')
read$FUSE(r0, 0x0, 0x0)
read$FUSE(r0, &(0x7f00000000c0)={0x2020}, 0x2020)

[ 2992.322940][ T8535] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2992.408151][ T8537] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
20:08:18 executing program 0:
io_setup(0x4, &(0x7f0000000700)=<r0=>0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
io_submit(r0, 0x1, &(0x7f0000001480)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f00000001c0)="b3a2433cc1d4d7bd25b036e5582a021fad346773c04a90cd9c517bd5592732a552435c82b96afb596bebd3aba019932126d62aeddc2021a061cda4ba9c115f3cc17f70b69c7a434008da70a76936628076dfb327674cad1e58ddfcc16fc11519ee4ecca4b8c2b9f9701bc818854de1fde7ac6b023c3a5b5601d750b46ccfb289bb3a72ea35194aa2297f545e9c3f2747f893248d5e837d99dbc7c8b826c8ac4eb604b81919b68124600d590249445817defaab94dd918a8014dbfa2ff49a55658bb06833076d92780a4747505af6729d548a3b13282b300b0899f97b0168acf8eeb2725b734da673e34af9c1dae91b03c300d15816b5248069141f0b526acbd1a1650403aec2418699a171577cddffdff7f9c6b8648d084fb749cb4e8a605857afe6789b2bc884f0dd6f5841b3b20ea3e7acffdfc9054af49d6f94b8c5dda8efe281ff2e9c416bc12f93dd69b80df5c8df4d82fdaa796bc4bb9c38ce93eaa9054e3017b8a12a786d35a37bb600de8ad9604b5c46c93b66e1c8b23e57591d50c466ef3607d5b5e09e414add24777dc0b91245cc5a72d51e1e17b2393602ec105d36a99b9d29be6ab9fb5dad749aa34268696d056d90df11ea9375c493458f08010f3ce4e7566c9d4b5033cc9ff477bd42ec7a09addaf701e4cba61ef8300348ad7703f10595a530cc23b60e78f5a42a61f1f2d331c027b959f470a3868a9b320740dfc7bb99563d963b6a8ecdddd09318e2920d9d602954620edeae8008bcbf458938eb8e0888f0c586b99ab379c3954386705312e1eaa4456f8c399efc99fab047fc57ff77a6e63cef085e6feb38d8620fffb1064119b51679ca4574dd75e2a96a228a43d282379174f18191f895095639b5a3d80331f715beb178d5de3384dc1cbdce15b1c595d1cd9c5ede71ed3e779a90dc1227f756416be6057935d6ba823983fb69d4b51627f88759a36c656c873cead102ead6dcc396f71e1d35afbc31b73612be2f4ad882055b8d49e0268cf0ad7b3e2121b1c39e22a0e7386fa600797c5e653ec724992b642005ba38584a41409b904f88133f0b93eb6e3440a2f2e166a90bece7414c1a674e72eccae2b31002ec73a44c23d751723599826832351ec84ac5140af3a25faa552e09777b5913d0c54c13ba3994f95f7f359c1b25bb83f5f9ccc760875d878f684e1488189cbeb118546eb59b2750510e13b0d9b70a79c814035fc883a04eb7ea21c151dc55daa230dbeed0dbd2eedb40400cf251ecb83cb251cfa08822d58517f32c88ecd76b891c9d981afcb93341625423bc19dc20f89abf785393b885d5484fbd862b9f99d0bc80a6e3407ad1c33155ed8d156abab754a2722d6244126611ad1ffbc0881d7d137ddcf9952ca13443b3e76730ebf3dfe48214d6015004e900c55fb6306012be49b8d714e543b0dd9e5608a649b581ea", 0x401}])

20:08:18 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/unix\x00')
read$char_usb(r0, &(0x7f0000000040)=""/74, 0x4a)

20:08:18 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='wchan\x00')
read$char_usb(r0, 0x0, 0x0)
read$char_usb(r0, &(0x7f0000000080)=""/62, 0x3e)

20:08:18 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:18 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000000bddb00", @ANYRES32=r3, @ANYBLOB="0101000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000016c0)=@delchain={0x34, 0x2e, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0xffff}, {0xc, 0xfff2}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x0)

20:08:18 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000380)='net/raw\x00')

[ 2992.920102][ T8554] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2992.944265][ T8554] device veth3 entered promiscuous mode
20:08:18 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='comm\x00')
write$cgroup_int(r0, 0x0, 0x0)

20:08:18 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/arp\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:18 executing program 0:
io_setup(0x4, &(0x7f0000000700)=<r0=>0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
io_submit(r0, 0x1, &(0x7f0000001480)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, r1, 0x0}])

20:08:18 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:18 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:19 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/rt_cache\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:19 executing program 1:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing', 0x0, 0x0)
renameat(r0, &(0x7f0000000200)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00')

20:08:19 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ptype\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:19 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8922, &(0x7f0000000100)={'syz_tun\x00', @ifru_addrs=@xdp})

20:08:19 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname(r0, 0x0, &(0x7f0000000240))

20:08:19 executing program 4:
r0 = getpid()
r1 = syz_open_procfs(r0, &(0x7f0000000000)='children\x00')
read$char_usb(r1, 0x0, 0x0)

20:08:19 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000100)={'syz_tun\x00', @ifru_addrs=@xdp})

[ 2994.101244][ T8583] syz_tun: mtu less than device minimum
20:08:19 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/mcfilter\x00')

20:08:19 executing program 0:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='maps\x00')
syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/4\x00')
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

20:08:19 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040), 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:20 executing program 2:
add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffff8)

20:08:20 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@ipv6_deladdrlabel={0x30, 0x49, 0x1, 0x0, 0x0, {}, [@IFAL_ADDRESS={0xfffffffffffffcc3, 0x1, @private2}]}, 0x30}}, 0x0)

20:08:20 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:20 executing program 0:
openat$rtc(0xffffffffffffff9c, 0x0, 0x410000, 0x0)

20:08:20 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='statm\x00')
read$char_usb(r0, 0x0, 0x0)

[ 2995.009708][ T8604] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
20:08:20 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_ifreq(r0, 0x8915, &(0x7f00000000c0)={'dummy0\x00', @ifru_ivalue})

20:08:20 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_buf(r0, 0x107, 0xd, &(0x7f00000002c0)="000000018000007f0000f51859000000", 0x10)

20:08:20 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040), 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:20 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='schedstat\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:21 executing program 5:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$cgroup_int(r0, 0x0, 0xfffffffffffffdee)

20:08:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=@ipv6_delroute={0x34, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_GATEWAY={0x14, 0x5, @empty}, @RTA_METRICS={0x4}]}, 0x34}}, 0x0)

20:08:21 executing program 2:
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
clock_getres(0x3, &(0x7f0000000000))

20:08:21 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000f00), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)={0x14, r1, 0x1}, 0x14}}, 0x0)

20:08:21 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@bridge_delneigh={0x1c, 0x1d, 0x1, 0x0, 0x0, {0x1c}}, 0x1c}}, 0x0)

20:08:21 executing program 5:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x101041, 0x0)

20:08:21 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040), 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:21 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x5, &(0x7f0000000000)="ecd654c750951ddabd45dbcf115570c1", 0x10)

20:08:21 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000440)='totmaps\x00')

20:08:22 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/dev\x00')
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)

20:08:22 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')

20:08:22 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:22 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40002003)

20:08:22 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='pagemap\x00')
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)

20:08:22 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:22 executing program 4:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x70}}, 0x0)

20:08:22 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='stat\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:22 executing program 5:
openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
read$FUSE(r0, 0x0, 0x0)

20:08:22 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config', 0x0, 0x0)
renameat(r0, &(0x7f0000000200)='./file0\x00', r0, &(0x7f0000000240)='./file0\x00')

20:08:22 executing program 2:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='net/mcfilter6\x00')

20:08:23 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp\x00')
read$FUSE(r0, 0x0, 0x0)

20:08:23 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:23 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
getsockname(r0, 0x0, &(0x7f0000000080))

20:08:23 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:23 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
write$char_usb(r0, &(0x7f0000000080)="0bcadc926d39e82b63796364ee3a53ee715f83592422ef8cfee2271fb7dddeb51fa075856076a6ea03f185c49b043f4ebe8a2d7d1c0c57a35acb8efd8ec3362fb74d75cd42a8bd7536fe642cba198409a07f61a9f96760a870b3b29a4af0080f6493fe09473aeae6d863826f72be0dc4318b2322a8a13495a093f62a7e208c8012bd2c84ca09", 0x86)

20:08:23 executing program 2:
io_setup(0x4, &(0x7f0000000700)=<r0=>0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
io_submit(r0, 0x1, &(0x7f0000001480)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f00000001c0)="b3a2433cc1d4d7bd25b036e5582a021fad346773c04a90cd9c517bd5592732a552435c82b96afb596bebd3aba019932126d62aeddc2021a061cda4ba9c115f3cc17f70b69c7a434008da70a76936628076dfb327674cad1e58ddfcc16fc11519ee4ecca4b8c2b9f9701bc818854de1fde7ac6b023c3a5b5601d750b46ccfb289bb3a72ea35194aa2297f545e9c3f2747f893248d5e837d99dbc7c8b826c8ac4eb604b81919b68124600d590249445817defaab94dd918a8014dbfa2ff49a55658bb06833076d92780a4747505af6729d548a3b13282b300b0899f97b0168acf8eeb2725b734da673e34af9c1dae91b03c300d15816b5248069141f0b526acbd1a1650403aec2418699a171577cddffdff7f9c6b8648d084fb749cb4e8a605857afe6789b2bc884f0dd6f5841b3b20ea3e7acffdfc9054af49d6f94b8c5dda8efe281ff2e9c416bc12f93dd69b80df5c8df4d82fdaa796bc4bb9c38ce93eaa9054e3017b8a12a786d35a37bb600de8ad9604b5c46c93b66e1c8b23e57591d50c466ef3607d5b5e09e414add24777dc0b91245cc5a72d51e1e17b2393602ec105d36a99b9d29be6ab9fb5dad749aa34268696d056d90df11ea9375c493458f08010f3ce4e7566c9d4b5033cc9ff477bd42ec7a09addaf701e4cba61ef8300348ad7703f10595a530cc23b60e78f5a42a61f1f2d331c027b959f470a3868a9b320740dfc7bb99563d963b6a8ecdddd09318e2920d9d602954620edeae8008bcbf458938eb8e0888f0c586b99ab379c3954386705312e1eaa4456f8c399efc99fab047fc57ff77a6e63cef085e6feb38d8620fffb1064119b51679ca4574dd75e2a96a228a43d282379174f18191f895095639b5a3d80331f715beb178d5de3384dc1cbdce15b1c595d1cd9c5ede71ed3e779a90dc1227f756416be6057935d6ba823983fb69d4b51627f88759a36c656c873cead102ead6dcc396f71e1d35afbc31b73612be2f4ad882055b8d49e0268cf0ad7b3e2121b1c39e22a0e7386fa600797c5e653ec7", 0x2e5}])

20:08:23 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x891d, &(0x7f0000000000)={'dummy0\x00', @ifru_mtu})

[ 2998.239201][   T35] audit: type=1400 audit(1631995703.756:677): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=8670 comm="syz-executor.0"
20:08:23 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:23 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_vs\x00')
read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020)

20:08:23 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='uid_map\x00')
write$nbd(r0, 0x0, 0x0)

20:08:24 executing program 5:
syz_open_procfs(0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r0)

20:08:24 executing program 2:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/pciehp', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x0)

20:08:24 executing program 4:
r0 = socket$inet(0x2, 0x3, 0x3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002c80)={'macvlan1\x00'})

20:08:24 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:24 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:24 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x1}, 0x4)

20:08:24 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00')
read$char_usb(r0, 0x0, 0x0)

20:08:24 executing program 5:
pipe(&(0x7f0000001540)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000001540))
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000001540))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000001380)=ANY=[@ANYRESOCT], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000080)={0x4, 0x1}, 0x8, 0x10, 0x0}, 0x78)

20:08:24 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000700), 0x4)

20:08:25 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000006c0)="96", 0x1)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x5421, &(0x7f0000000000))

20:08:25 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:25 executing program 2:
socketpair(0x28, 0x0, 0x0, &(0x7f0000000540))

20:08:25 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
write$nbd(r0, 0x0, 0x0)

20:08:25 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x2, &(0x7f0000000480)=@raw=[@map_val], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:25 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000002a40)={0x0, @can, @qipcrtr, @rc={0x1f, @fixed}})

20:08:25 executing program 0:
socket(0x48, 0x0, 0x0)

20:08:25 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:25 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x890c, 0x0)

20:08:25 executing program 5:
bpf$MAP_CREATE(0x7, 0x0, 0x0)
pipe(&(0x7f0000000000))
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000200)={'veth1_to_hsr\x00'})

20:08:25 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000001480)=ANY=[], 0x48}}, 0x0)

20:08:26 executing program 4:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
sendmsg$nfc_llcp(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x10}, 0x10}, 0x1)

20:08:26 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x40, 0xffffffffffffffff, 0x5a1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x1}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x18, 0x1, &(0x7f0000000080)=@raw=[@exit], &(0x7f00000000c0)='syzkaller\x00', 0x1200, 0x1000, &(0x7f0000000100)=""/4096, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001100)={0x0, 0x2}, 0x8, 0x10, 0x0}, 0x78)
socket$inet6_udp(0xa, 0x2, 0x0)

[ 3000.674896][ T8733] veth1_to_hsr: mtu less than device minimum
20:08:26 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmsg(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000580)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x10040)

20:08:26 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:26 executing program 5:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f0000001c40)="bf", 0x1)

20:08:26 executing program 1:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0)

20:08:26 executing program 4:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SSUBSCRIP(r0, 0x89e1, &(0x7f0000000000))

20:08:26 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x40)

20:08:26 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x6, &(0x7f00000006c0)="96636d56", 0x4)

20:08:27 executing program 1:
mmap$xdp(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x2930, 0xffffffffffffffff, 0x0)

20:08:27 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000006c0)="96", 0x1)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x40086602, &(0x7f0000000000))

20:08:27 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x40002001)

20:08:27 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000b00)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

20:08:27 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x1}, 0x14}}, 0x0)

20:08:27 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_x25_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@null, 0x0, 'tunl0\x00'})

20:08:27 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x894c, 0x0)

20:08:27 executing program 4:
epoll_create1(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x18, 0x1, &(0x7f0000000080)=@raw=[@exit], &(0x7f00000000c0)='syzkaller\x00', 0x1200, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001100), 0x8, 0x10, &(0x7f0000001140)={0x4, 0x0, 0x0, 0x2}, 0x10}, 0x78)

20:08:27 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x16, &(0x7f00000006c0)="96636d56", 0x4)

20:08:28 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x8941, &(0x7f0000000000))

20:08:28 executing program 1:
socketpair(0x28, 0x0, 0x800, &(0x7f0000000540))

20:08:28 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000003c0), r0)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x28, r1, 0x145, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}]}, 0x28}}, 0x0)

20:08:28 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(0x0, 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:28 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080))

20:08:28 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x0, &(0x7f00000006c0)="96636d56", 0x4)

20:08:28 executing program 2:
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040))
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x0)

20:08:28 executing program 1:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)

20:08:29 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(0x0, 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:29 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x4}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x4}, 0x10}, 0x78)

20:08:29 executing program 4:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000440)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@map_val], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0xb7, &(0x7f0000000300)=""/183, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:29 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x801c581f, 0x0)

20:08:29 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000440)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000280)=@raw=[@map], &(0x7f00000002c0)='syzkaller\x00', 0xc4, 0xb7, &(0x7f0000000300)=""/183, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:29 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x14, 0x13, 0x0, 0x5}, 0x14}}, 0x0)

20:08:29 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(0x0, 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:29 executing program 4:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x303940, 0x0)
ioctl$PPPIOCGFLAGS1(r0, 0x8004745a, 0x0)

20:08:29 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000000)=0x3d0cbb57, 0x4)

20:08:29 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x18, 0x1, &(0x7f0000000080)=@raw=[@exit], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001140), 0x10}, 0x78)

20:08:29 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000000)=@raw=[@btf_id], &(0x7f0000000040)='GPL\x00', 0x0, 0x62, &(0x7f0000000080)=""/98, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:30 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ppoll(&(0x7f0000000040)=[{r0}, {r0}, {r1}], 0x3, &(0x7f0000000080)={0x77359400}, 0x0, 0x0)

20:08:30 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:30 executing program 4:
pipe(&(0x7f0000001540)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$pppl2tp(r0, 0x0, 0xa)

20:08:30 executing program 5:
r0 = epoll_create1(0x0)
epoll_wait(r0, &(0x7f0000000000)=[{}], 0x1, 0x7fffffff)
epoll_pwait(r0, &(0x7f0000000080)=[{}], 0x1, 0x2, &(0x7f0000000100)={[0x2]}, 0x8)

20:08:30 executing program 0:
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000001580))

20:08:30 executing program 2:
r0 = socket(0x2c, 0x3, 0x0)
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

20:08:30 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @private1}}, 0x0, 0x0, 0x0, 0x0, "ef9d5a9e4148fd6c3fb85a433e00c12193d49b369822e6d755402a668ecfe47fcfb84c828aab123b83d18aa283d223a86f53117a16efd4cef427a4b04cfd340334e01bcc8e023a8c387427d904cc4abe"}, 0xd8)

20:08:30 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000bc0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYBLOB="01"], 0x28}}, 0x0)

20:08:30 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:30 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, 0x0)

20:08:30 executing program 2:
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0xe72bfb65e70297dc, 0x0)

20:08:31 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x8912, &(0x7f0000000000))

20:08:31 executing program 1:
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r0, &(0x7f0000001ac0)={0xa0000002})

20:08:31 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:31 executing program 2:
pipe(&(0x7f0000001540)={<r0=>0xffffffffffffffff})
getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, 0x0, 0x0)

20:08:31 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000003c0), r0)
sendmsg$NBD_CMD_STATUS(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x20, r1, 0x145, 0x0, 0x0, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}]}, 0x20}}, 0x0)

20:08:31 executing program 0:
syz_genetlink_get_family_id$nbd(&(0x7f00000003c0), 0xffffffffffffffff)

20:08:31 executing program 4:
getsockname$netrom(0xffffffffffffffff, 0x0, 0x0)

20:08:31 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x5452, 0x0)

20:08:31 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:32 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x14}, 0xfffffffffffffc42}}, 0x0)

20:08:32 executing program 5:
sendto$rose(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

20:08:32 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x12, 0xffff, 0x0, 0xffc, 0x0, 0x1}, 0x40)

20:08:32 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f00000006c0)="96636d56984d6737", 0x8)

20:08:32 executing program 1:
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x7, &(0x7f0000000080), 0x8)

20:08:32 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000006c0)="96", 0x1)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x8904, &(0x7f0000000000))

20:08:32 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x1e, &(0x7f00000006c0)="96636d56", 0x4)

20:08:32 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:32 executing program 0:
r0 = socket$pppoe(0x18, 0x1, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xe, 0x10, r0, 0x0)

20:08:32 executing program 4:
socketpair(0x1, 0x0, 0x9, &(0x7f0000000000))

20:08:32 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x18, 0x1, &(0x7f0000000080)=@raw=[@exit], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:33 executing program 5:
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(0xffffffffffffffff, &(0x7f0000001340)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8}, 0xc, 0x0}, 0x90)
r0 = epoll_create(0x9)
pipe(&(0x7f0000001540)={<r1=>0xffffffffffffffff})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000001380)=ANY=[@ANYRESHEX=r1, @ANYRESOCT, @ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x4, 0x1}, 0x8, 0x10, &(0x7f00000000c0)={0x2, 0xf}, 0x10}, 0x78)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000180)={0xc0002000})

20:08:33 executing program 2:
pipe(&(0x7f0000001540))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000001380)=ANY=[@ANYRESOCT], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

20:08:33 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x8914, &(0x7f0000000000))

20:08:33 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:33 executing program 1:
pipe(&(0x7f0000002f80)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, 0x0)

20:08:33 executing program 4:
bpf$MAP_CREATE(0xa, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)

20:08:33 executing program 5:
r0 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000300))

20:08:33 executing program 2:
bpf$MAP_CREATE(0x12, 0x0, 0x0)

20:08:34 executing program 4:
socketpair(0x2, 0x0, 0x8001, &(0x7f0000000140))

20:08:34 executing program 1:
pipe2$9p(&(0x7f0000006000)={<r0=>0xffffffffffffffff}, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)={0x30000022})

20:08:34 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, 0x0, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:34 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$sock_timeval(r0, 0x1, 0x14, 0x0, &(0x7f0000000180))

20:08:34 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)={0x14, 0x453, 0x4, 0x0, 0x0, "ae"}, 0x14}}, 0x0)

20:08:34 executing program 2:
openat$procfs(0xffffffffffffff9c, &(0x7f00000019c0)='/proc/vmallocinfo\x00', 0x0, 0x0)

[ 3009.049556][   T35] audit: type=1107 audit(1631995714.566:678): pid=8927 uid=0 auid=4294967295 ses=4294967295 subj==unconfined msg='®'
20:08:34 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000500)=@buf)

20:08:34 executing program 4:
pipe2$9p(&(0x7f0000006000)={<r0=>0xffffffffffffffff}, 0x0)
fadvise64(r0, 0x0, 0x0, 0x0)

20:08:34 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$AUDIT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x38, 0x3e9, 0x217, 0x0, 0x0, {0x0, 0x0, 0x0, 0xffffffffffffffff}}, 0x38}}, 0x0)

20:08:34 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000000)=@req={0x28, &(0x7f0000000100)={'bridge_slave_0\x00', @ifru_hwaddr=@broadcast}})

20:08:34 executing program 0:
openat$rtc(0xffffffffffffff9c, 0xffffffffffffffff, 0x0, 0x0)

20:08:34 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, 0x0, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:35 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$AUDIT_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x10}, 0x4d}}, 0x0)

20:08:35 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
recvmmsg(r0, &(0x7f00000038c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x12042, 0x0)

20:08:35 executing program 4:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)

20:08:35 executing program 2:
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000002100)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

20:08:35 executing program 0:
pipe(&(0x7f0000000c00)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000500)=@framed, &(0x7f0000000540)='GPL\x00', 0x4, 0xe9, &(0x7f0000000580)=""/233, 0x0, 0x18, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000680), 0x8, 0x10, 0x0}, 0x78)

20:08:35 executing program 1:
bpf$MAP_UPDATE_ELEM(0x10, 0x0, 0x0)

20:08:35 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, 0x0, 0x0)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:35 executing program 4:
r0 = socket(0x2, 0x3, 0x3)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f00000002c0))

20:08:35 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={@loopback, @remote, @private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x642000a})

20:08:36 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/144, 0x1a, 0x90, 0x1}, 0x20)

20:08:36 executing program 0:
r0 = socket$unix(0x1, 0x5, 0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0)

20:08:36 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = gettid()
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee00, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xffffffffffffffff}}}], 0x40}, 0x0)

20:08:36 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f0000001780)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000080)=""/239, 0xef}, {&(0x7f0000000300)=""/190, 0xb7}, {&(0x7f0000000480)=""/163, 0xfffffffffffffff4}, {&(0x7f000001aa80)=""/4099, 0x1000}, {&(0x7f00000001c0)=""/27, 0x18}, {&(0x7f0000001340)=""/184, 0xc7}, {&(0x7f0000001440)}, {&(0x7f0000001480)=""/140, 0x8c}, {&(0x7f00000003c0)=""/190, 0xba}, {&(0x7f0000001940)=""/91, 0x5b}], 0xa, &(0x7f0000001a80)=""/102400, 0x2}, 0x0)

20:08:36 executing program 5:
syz_genetlink_get_family_id$fou(&(0x7f0000002580), 0xffffffffffffffff)

20:08:36 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:36 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000002600)={0x17, 0x0, 0x3, 0x7ff, 0x529}, 0x40)

20:08:36 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1000000}, 0x0)

20:08:36 executing program 0:
r0 = socket$unix(0x1, 0x5, 0x0)
sendmsg$unix(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)

20:08:36 executing program 5:
r0 = socket$inet(0x2, 0x3, 0x1)
bind(r0, &(0x7f0000006b80)=@hci, 0x80)

20:08:37 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000080)=@mangle={'mangle\x00', 0x1f, 0x6, 0x550, 0x3b0, 0xf0, 0xf0, 0x3b0, 0x3b0, 0x480, 0x480, 0x480, 0x480, 0x480, 0x6, 0x0, {[{{@ipv6={@dev, @private0, [], [], 'veth1_virt_wifi\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@empty, @ipv6=@empty}}}, {{@ipv6={@loopback, @ipv4={'\x00', '\xff\xff', @remote}, [], [], 'bond_slave_1\x00', 'vlan1\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@mh={{0x28}, {'iT'}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @HL={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @local, [], [], 'ipvlan0\x00', 'veth1_to_bond\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@mh={{0x28}, {"571e"}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffb}}}}, 0x5b0)

20:08:37 executing program 2:
bpf$MAP_UPDATE_ELEM(0x21, 0x0, 0x0)

20:08:37 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="680000003000ffff00000000000000000000001354000100500001000b0001006d69727265640000240002802000020002"], 0x68}}, 0x0)

20:08:37 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'sit0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @mcast2, @mcast1}})

20:08:37 executing program 5:
socketpair(0x11, 0x2, 0xfd, &(0x7f0000000040))

20:08:37 executing program 4:
add_key$fscrypt_provisioning(&(0x7f00000002c0), 0x0, 0x0, 0x0, 0xfffffffffffffff9)

[ 3012.079220][ T8997] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 3012.089110][ T8997] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
20:08:37 executing program 2:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000440), 0x2542c0, 0x0)

20:08:37 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:37 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='setgroups\x00')
epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0, &(0x7f0000000040), 0x8)

20:08:37 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_SET_CAPACITY(r0, 0x125f)

20:08:38 executing program 5:
bpf$MAP_CREATE(0xa, &(0x7f0000002600), 0x40)

20:08:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, 0x0)

20:08:38 executing program 2:
r0 = inotify_init()
inotify_add_watch(r0, 0x0, 0x2000000)

20:08:38 executing program 1:
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000003840))

20:08:38 executing program 0:
request_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0xfffffffffffffffb)

20:08:38 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:38 executing program 4:
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffb, 0x0, 0x0)
add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffff8)
syz_io_uring_setup(0x22d1, &(0x7f0000000e00), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

20:08:38 executing program 5:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x10200, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='setgroups\x00')

20:08:38 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000200), 0x0, 0x0)
ioctl$LOOP_SET_FD(r0, 0x4c00, 0xffffffffffffffff)

20:08:39 executing program 1:
mq_notify(0xffffffffffffffff, &(0x7f0000000040)={0x20000000, 0x0, 0x2})

20:08:39 executing program 0:
creat(&(0x7f0000000140)='./bus\x00', 0x0)
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x22)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
fallocate(r0, 0x0, 0x20000, 0x1000f4)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$P9_RREMOVE(r2, &(0x7f0000000280)={0x7}, 0x7)
open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0)

20:08:39 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f00000002c0)={0x0, @vsock={0x28, 0x0, 0x0, @my=0x0}, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, @in={0x2, 0x0, @broadcast}})

20:08:39 executing program 4:
io_uring_setup(0x74c, &(0x7f0000000000)={0x0, 0x0, 0x7, 0x0, 0x32f})
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
pipe2(0x0, 0x0)

20:08:39 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:39 executing program 5:
pipe2(0x0, 0x6c2c31edd9c258fc)

20:08:39 executing program 1:
set_mempolicy(0x1, &(0x7f0000000080)=0x81, 0xf4)
syz_read_part_table(0xfffffffffffffffe, 0x0, 0x0)

[ 3014.132290][   T35] audit: type=1800 audit(1631995719.646:679): pid=9039 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=14434 res=0 errno=0
[ 3014.287025][   T35] audit: type=1800 audit(1631995719.676:680): pid=9039 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=14434 res=0 errno=0
20:08:39 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_mr_cache\x00')
ioctl$sock_proto_private(r0, 0x0, 0x0)

[ 3014.405164][ T9053] loop1: detected capacity change from 0 to 264192
20:08:40 executing program 4:
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000240)={0x0, @ax25={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x8}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2c}}, @ethernet={0x301, @link_local}, 0x6, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x80000000, 0x80, 0x8})
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x10180, 0x0)
write$P9_RGETATTR(r0, &(0x7f0000000180)={0xa0, 0x19, 0x2, {0x891, {0x2, 0x4, 0x5}, 0xa2, 0xffffffffffffffff, 0xee00, 0x1f, 0x7fffffff, 0x100, 0x101, 0x8c6, 0x0, 0xffffffff, 0x4, 0x0, 0x8, 0x8000, 0x1, 0x9, 0xf800000000000000, 0x400}}, 0xa0)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000300), r0)
recvmmsg(r0, &(0x7f0000003300)=[{{&(0x7f0000000400)=@can, 0x80, &(0x7f0000001800)=[{&(0x7f0000000480)=""/80, 0x50}, {&(0x7f0000000500)=""/197, 0xc5}, {&(0x7f0000000600)=""/105, 0x69}, {&(0x7f0000000680)=""/108, 0x6c}, {&(0x7f0000000700)=""/102, 0x66}, {&(0x7f0000000780)=""/48, 0x30}, {&(0x7f00000007c0)=""/49, 0x31}, {&(0x7f0000000800)=""/4096, 0x1000}], 0x8, &(0x7f0000001880)=""/215, 0xd7}, 0x5}, {{&(0x7f0000001980)=@ll={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000001a00)=""/50, 0x32}, {&(0x7f0000001a40)=""/56, 0x38}, {&(0x7f0000001a80)=""/55, 0x37}, {&(0x7f0000001ac0)=""/138, 0x8a}, {&(0x7f0000001b80)=""/189, 0xbd}, {&(0x7f0000001c40)=""/152, 0x98}, {&(0x7f0000001d00)=""/182, 0xb6}, {&(0x7f0000001dc0)=""/4096, 0x1000}, {&(0x7f0000002dc0)=""/28, 0x1c}, {&(0x7f0000002e00)=""/172, 0xac}], 0xa, &(0x7f0000002f80)=""/25, 0x19}}, {{&(0x7f0000002fc0)=@ethernet={0x0, @broadcast}, 0x80, &(0x7f0000003280)=[{&(0x7f0000003040)=""/180, 0xb4}, {&(0x7f0000003100)=""/108, 0x6c}, {&(0x7f0000003180)=""/170, 0xaa}, {&(0x7f0000003240)=""/21, 0x15}], 0x4, &(0x7f00000032c0)=""/44, 0x2c}, 0xcf9e}], 0x3, 0x40000100, &(0x7f00000033c0)={0x77359400})
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000003400)={{{@in6=@private1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@remote}, 0x0, @in=@remote}}, &(0x7f0000003500)=0xe8)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000003900)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000038c0)={&(0x7f0000003540)={0x374, r1, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [{{0x8}, {0x12c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x0, 0xae, 0xf1, 0x20}]}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x10000}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}]}}, {{0x8, 0x1, r3}, {0x224, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7f}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}]}}]}, 0x374}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
msgsnd(0x0, &(0x7f0000000040)={0x1}, 0x8, 0x0)

20:08:40 executing program 0:
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0)

20:08:40 executing program 5:
prctl$PR_CAP_AMBIENT(0x2f, 0x4, 0xa)

20:08:40 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(0xffffffffffffffff, 0x200002)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:40 executing program 1:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f00000001c0)=0x81)

20:08:40 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

20:08:40 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={@dev, @mcast1, @loopback, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x68a404f5cb2a30fe})

20:08:40 executing program 5:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]})
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0)

20:08:40 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x0)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:40 executing program 0:
mq_open(&(0x7f0000000040)='\x00', 0x0, 0x0, 0x0)

20:08:40 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x0, @tipc=@id, @hci, @in={0x2, 0x0, @private}})

20:08:40 executing program 1:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3015.521359][   T35] audit: type=1326 audit(1631995721.036:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9076 comm="syz-executor.5" exe="/root/syz-executor.5" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6ef7549 code=0x0
20:08:41 executing program 4:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000200000006000000000008000080000020000000e2f4655fe2f4655f0100ffff53ef010001000000e2f4655f000000000000000001000000000000000b0000000001000008000000d24201001283", 0x66, 0x400}, {&(0x7f0000010100)="0000000000000000000000009b94b11e46934f5489a26265ae170793010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000e2f4655fe2f4655fe2f4655f000000000000040080", 0x1d, 0x4100}], 0x0, &(0x7f0000014d00))

20:08:41 executing program 0:
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x312784aae16953b4)

20:08:41 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x0)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:41 executing program 2:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), 0x0, 0x0, 0x3)

20:08:41 executing program 1:
request_key(&(0x7f0000000080)='asymmetric\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0)

20:08:41 executing program 4:
clock_gettime(0x0, &(0x7f00000037c0))

20:08:41 executing program 0:
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4004}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[ 3016.306484][   T35] audit: type=1326 audit(1631995721.826:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9076 comm="syz-executor.5" exe="/root/syz-executor.5" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6ef7549 code=0x0
20:08:42 executing program 5:
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r0, 0xffff, 0x1004, 0x0, 0x0)

20:08:42 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x0)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)

20:08:42 executing program 2:
r0 = socket$unix(0x1, 0x5, 0x0)
recvmsg(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)

20:08:42 executing program 1:
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

20:08:42 executing program 4:
clock_settime(0xffffffffffffffff, &(0x7f0000000180))

20:08:42 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
setsockopt(r0, 0x0, 0x0, &(0x7f0000000080)="058b30773433c13864954dde7fc4f5dd01161325322ddb0b4aaa8979f9d5493ece6ff669e23e1bf60b72e91172739d1ac515a2d445351c840bed650d9c3e05f7eada8634612d59ea6342878f7b6f169bbdfb9cd01ba8e8c75e948d04bd795aa39b3d3d726a1a5484ffde059d33e27488e57bd685e36f292755ee1f3b586f2db16d4b26169bd6b04d4ed4b40f50683fe31d222ef30f4fc17af67b2ce8859aca7eda0697622a7d78bbbf31f5b4afa298ee060c9eda1e147966c6a18b4b149c2d2a6e58e58970504b54f71f607c8a325791a95d185b976392b179cf2878dae97f6b7f", 0xe1)

20:08:42 executing program 2:
open$dir(&(0x7f00000009c0)='\x00', 0x0, 0x0)

20:08:42 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0)

20:08:42 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r0, 0xffff, 0x1006, 0x0, 0x0)

20:08:42 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0xffff, 0x1022, &(0x7f00000006c0), 0x0)

20:08:42 executing program 4:
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r0, 0xffff, 0x1001, 0x0, 0x0)

20:08:42 executing program 0:
madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)

20:08:43 executing program 2:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCCONS(r0, 0x80047462)

20:08:43 executing program 5:
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_cred(r0, 0xffff, 0x1025, 0x0, 0x0)

20:08:43 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0)

20:08:43 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000002580)={0x0, 0x0, 0x0}, 0x40010100)
sendmsg$unix(r1, &(0x7f0000006000)={0x0, 0x0, 0x0}, 0x0)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000008380)={&(0x7f0000007c80)=@abs, 0x6e, &(0x7f0000008280)=[{0x0}, {0x0}], 0x2}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000008c00)='./cgroup.net/syz0\x00', 0x200002, 0x0)

20:08:43 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001840)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x20)
sendmsg$unix(r1, &(0x7f0000002280)={0x0, 0x0, 0x0}, 0x0)

20:08:43 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x22162)

20:08:43 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001840)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000001f00)={0x0, 0x0, 0x0}, 0x0)
r2 = getpid()
sendmsg$unix(r1, &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002240)=[@cred={{0x1c, 0x1, 0x2, {r2}}}], 0x20}, 0x0)

20:08:43 executing program 5:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000200)=0x1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000380)='FROZEN\x00', 0xfdef)
socket$kcm(0x10, 0x0, 0x4)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
socket$kcm(0xa, 0x0, 0x73)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

20:08:43 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0)

20:08:43 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001840)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = getpid()
r2 = getpid()
sendmsg$unix(r0, &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, &(0x7f00000062c0)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}], 0x40}, 0x0)

20:08:43 executing program 4:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$revoke(0x3, r0)

20:08:44 executing program 0:
clock_getres(0x0, &(0x7f0000000180))

[ 3018.569931][ T9151] device syzkaller1 entered promiscuous mode
20:08:44 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:08:44 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

20:08:44 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f00000007c0)=@req3={0x1, 0x3}, 0x1c)

20:08:44 executing program 0:
r0 = shmget(0x1, 0x2000, 0x0, &(0x7f0000ffa000/0x2000)=nil)
shmctl$SHM_LOCK(r0, 0xb)

20:08:44 executing program 5:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000200)=0x1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000380)='FROZEN\x00', 0xfdef)
socket$kcm(0x10, 0x0, 0x4)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
socket$kcm(0xa, 0x0, 0x73)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

20:08:45 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:08:45 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCDELRT(r0, 0x8903, &(0x7f0000000180)={0x0, @l2tp={0x2, 0x0, @private}, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x0, @multicast1}})

20:08:45 executing program 1:
r0 = socket(0x26, 0x5, 0x0)
getsockname$unix(r0, 0x0, 0x0)

20:08:45 executing program 0:
shmget$private(0x0, 0x3000, 0x54001ea8, &(0x7f0000ffc000/0x3000)=nil)

[ 3019.732416][ T9190] device syzkaller1 entered promiscuous mode
20:08:45 executing program 4:
syz_mount_image$tmpfs(&(0x7f0000002780), &(0x7f00000027c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000003940))
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80440, 0x0, 0x1}, 0x18)

20:08:45 executing program 2:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$kcm(0xa, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x100002, 0x0)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000600)=""/233, 0xe9}], 0x2}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40305839, &(0x7f0000000000))
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000080)='memory.events\x00')
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x6612, 0x0)

20:08:45 executing program 1:
clock_gettime(0x2, 0xffffffffffffffff)

20:08:45 executing program 5:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000200)=0x1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000380)='FROZEN\x00', 0xfdef)
socket$kcm(0x10, 0x0, 0x4)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
socket$kcm(0xa, 0x0, 0x73)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

20:08:45 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)

20:08:45 executing program 0:
creat(&(0x7f0000006480)='./file0\x00', 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000480)='./file0\x00', 0x90000804)
unlink(&(0x7f0000001540)='./file0\x00')

20:08:45 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_VL_CLR(r0, 0x7014)

[ 3020.695386][ T9223] device syzkaller1 entered promiscuous mode
20:08:46 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, 0x0)

20:08:46 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x6}, {0x6}]})

20:08:46 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x0)

20:08:46 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000002f80)={0x0}}, 0x0)

20:08:46 executing program 4:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x2000)

[ 3021.158534][   T35] audit: type=1326 audit(1631995726.676:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9239 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6f0a549 code=0x0
20:08:46 executing program 5:
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000200)=0x1)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_freezer_state(r0, &(0x7f0000000380)='FROZEN\x00', 0xfdef)
socket$kcm(0x10, 0x0, 0x4)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
socket$kcm(0xa, 0x0, 0x73)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

20:08:46 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x88, 0x65, &(0x7f0000000340)={0x0, {{0x2, 0x0, @multicast1}}}, 0x90)

20:08:47 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x0, 0x30}, 0xc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={0x0, 0x800}, 0x8)
ftruncate(r2, 0x200002)
sendfile(r0, r2, 0x0, 0x0)

20:08:47 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x1)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

20:08:47 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x6)
sendmsg$netlink(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f000000b1c0)=[{&(0x7f0000004e40)={0x18, 0x24, 0x1, 0x0, 0x0, "", [@generic="ea", @generic="d0408d0a"]}, 0x18}], 0x1}, 0x0)

[ 3021.674007][ T9250] device syzkaller1 entered promiscuous mode
20:08:47 executing program 1:
r0 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$link(0xe, r0, 0x0)

[ 3021.995310][   T35] audit: type=1326 audit(1631995727.516:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9239 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf6f0a549 code=0x0
[ 3022.086065][ T9266] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 3022.095642][ T9266] =====================================================
[ 3022.102708][ T9266] BUG: KMSAN: uninit-value in xfrm_user_rcv_msg_compat+0x8bc/0x1e90
[ 3022.106937][ T9266]  xfrm_user_rcv_msg_compat+0x8bc/0x1e90
[ 3022.106937][ T9266]  xfrm_user_rcv_msg+0x4a2/0xfa0
[ 3022.106937][ T9266]  netlink_rcv_skb+0x447/0x800
[ 3022.106937][ T9266]  xfrm_netlink_rcv+0xb2/0xf0
[ 3022.106937][ T9266]  netlink_unicast+0x107b/0x1350
[ 3022.106937][ T9266]  netlink_sendmsg+0x1734/0x17c0
[ 3022.106937][ T9266]  ____sys_sendmsg+0xe11/0x12c0
[ 3022.106937][ T9266]  __sys_sendmsg+0x704/0x840
[ 3022.106937][ T9266]  __ia32_compat_sys_sendmsg+0xed/0x130
[ 3022.106937][ T9266]  __do_fast_syscall_32+0x96/0xe0
[ 3022.106937][ T9266]  do_fast_syscall_32+0x3c/0x80
[ 3022.106937][ T9266]  do_SYSENTER_32+0x1b/0x20
[ 3022.106937][ T9266]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 3022.106937][ T9266] 
[ 3022.106937][ T9266] Local variable ----attrs@xfrm_user_rcv_msg_compat created at:
[ 3022.180635][ T9266]  xfrm_user_rcv_msg_compat+0xf0/0x1e90
[ 3022.180635][ T9266]  xfrm_user_rcv_msg+0x4a2/0xfa0
[ 3022.180635][ T9266] =====================================================
[ 3022.180635][ T9266] Disabling lock debugging due to kernel taint
[ 3022.180635][ T9266] Kernel panic - not syncing: panic_on_kmsan set ...
[ 3022.180635][ T9266] CPU: 0 PID: 9266 Comm: syz-executor.4 Tainted: G    B             5.13.0-syzkaller #0
[ 3022.180635][ T9266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 3022.180635][ T9266] Call Trace:
[ 3022.180635][ T9266]  dump_stack+0x25a/0x2f6
[ 3022.243727][ T9266]  panic+0x4c7/0xe98
[ 3022.243727][ T9266]  ? add_taint+0x187/0x210
[ 3022.243727][ T9266]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 3022.243727][ T9266]  kmsan_report+0x2ee/0x300
[ 3022.243727][ T9266]  ? __msan_warning+0xd7/0x150
[ 3022.243727][ T9266]  ? xfrm_user_rcv_msg_compat+0x8bc/0x1e90
[ 3022.243727][ T9266]  ? xfrm_user_rcv_msg+0x4a2/0xfa0
[ 3022.243727][ T9266]  ? netlink_rcv_skb+0x447/0x800
[ 3022.243727][ T9266]  ? xfrm_netlink_rcv+0xb2/0xf0
[ 3022.243727][ T9266]  ? netlink_unicast+0x107b/0x1350
[ 3022.243727][ T9266]  ? netlink_sendmsg+0x1734/0x17c0
[ 3022.243727][ T9266]  ? ____sys_sendmsg+0xe11/0x12c0
[ 3022.243727][ T9266]  ? __sys_sendmsg+0x704/0x840
[ 3022.243727][ T9266]  ? __ia32_compat_sys_sendmsg+0xed/0x130
[ 3022.243727][ T9266]  ? __do_fast_syscall_32+0x96/0xe0
[ 3022.243727][ T9266]  ? do_fast_syscall_32+0x3c/0x80
[ 3022.243727][ T9266]  ? do_SYSENTER_32+0x1b/0x20
[ 3022.243727][ T9266]  ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 3022.243727][ T9266]  __msan_warning+0xd7/0x150
[ 3022.243727][ T9266]  xfrm_user_rcv_msg_compat+0x8bc/0x1e90
[ 3022.243727][ T9266]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 3022.243727][ T9266]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 3022.243727][ T9266]  ? ns_capable+0x19a/0x240
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? try_module_get+0x19/0x280
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  xfrm_user_rcv_msg+0x4a2/0xfa0
[ 3022.243727][ T9266]  ? xfrm_alloc_compat+0x1f60/0x1f60
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  netlink_rcv_skb+0x447/0x800
[ 3022.243727][ T9266]  ? xfrm_netlink_rcv+0xf0/0xf0
[ 3022.243727][ T9266]  ? kmsan_internal_set_shadow_origin+0x52/0xc0
[ 3022.243727][ T9266]  xfrm_netlink_rcv+0xb2/0xf0
[ 3022.243727][ T9266]  ? xfrm_user_net_exit+0x190/0x190
[ 3022.243727][ T9266]  netlink_unicast+0x107b/0x1350
[ 3022.243727][ T9266]  netlink_sendmsg+0x1734/0x17c0
[ 3022.243727][ T9266]  ____sys_sendmsg+0xe11/0x12c0
[ 3022.243727][ T9266]  ? netlink_getsockopt+0x11d0/0x11d0
[ 3022.243727][ T9266]  __sys_sendmsg+0x704/0x840
[ 3022.243727][ T9266]  ? kmsan_copy_to_user+0xb7/0xc0
[ 3022.243727][ T9266]  ? _copy_to_user+0x1ef/0x270
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 3022.243727][ T9266]  ? kmsan_get_metadata+0x11b/0x180
[ 3022.243727][ T9266]  ? kmsan_get_shadow_origin_ptr+0x90/0xc0
[ 3022.243727][ T9266]  __ia32_compat_sys_sendmsg+0xed/0x130
[ 3022.243727][ T9266]  __do_fast_syscall_32+0x96/0xe0
[ 3022.243727][ T9266]  do_fast_syscall_32+0x3c/0x80
[ 3022.243727][ T9266]  do_SYSENTER_32+0x1b/0x20
[ 3022.243727][ T9266]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 3022.243727][ T9266] RIP: 0023:0xf6e83549
[ 3022.243727][ T9266] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 3022.243727][ T9266] RSP: 002b:00000000f447d5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 3022.243727][ T9266] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200014c0
[ 3022.243727][ T9266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 3022.243727][ T9266] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 3022.243727][ T9266] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 3022.243727][ T9266] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 3022.243727][ T9266] Kernel Offset: disabled
[ 3022.243727][ T9266] Rebooting in 86400 seconds..