xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(0xffffffffffffffff, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:16 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:16 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x4800}}, &(0x7f0000000140)='syzkaller\x00', 0x3, 0xbc, &(0x7f00000004c0)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:34:16 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x6}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:34:16 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:17 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:17 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:17 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:17 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:34:17 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x8, 0x4, &(0x7f0000000480)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:34:17 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:17 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:17 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:17 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:17 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000001600)={&(0x7f0000000040)=@tipc=@id, 0x80, 0x0}, 0x0)

04:34:17 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x15, 0x8, 0x1c00}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r0}, 0x20)

[  224.698332][ T4576] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.4'.
04:34:17 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:17 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:18 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:18 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:18 executing program 3:
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000640)={&(0x7f0000000600)='./file0\x00'}, 0x10)

04:34:18 executing program 0:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000040), 0xfffffffffffffdef)

04:34:18 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

[  225.157660][ T4589] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.4'.
04:34:18 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:18 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:18 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:18 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:34:18 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

04:34:18 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x10, 0x0, 0x0, 0x4b97b637, 0x0, 0x1}, 0x48)

[  225.609345][ T4602] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.4'.
04:34:18 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:18 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(0xffffffffffffffff, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:18 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:19 executing program 3:
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
unlink(&(0x7f0000000000)='./file0\x00')

04:34:19 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

04:34:19 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x9, 0x10000, 0x7f, 0x4dd}, 0x48)

04:34:19 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(0xffffffffffffffff, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:19 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:19 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:19 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x4020940d, &(0x7f0000000080)={'team_slave_0\x00'})

04:34:19 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:19 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(0xffffffffffffffff, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

04:34:19 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:19 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:19 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:19 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x800454cf, 0x0)

04:34:20 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:20 executing program 0:
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)

04:34:20 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:20 executing program 3:
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xa)

04:34:20 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:20 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:20 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:21 executing program 3:
pselect6(0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000280), &(0x7f0000000300)={0x0})

04:34:21 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

04:34:21 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:21 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:21 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
fchmod(r0, 0x2)

04:34:21 executing program 0:
openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x349441396d8651bd, 0x0)

04:34:21 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:21 executing program 2:
openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x343081, 0x0)

04:34:21 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:21 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, 0x0, 0x0)

04:34:21 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWSET={0x2c, 0x9, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x401}], {0x14}}, 0x68}}, 0x0)

04:34:21 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000cc0)={{0x14}, [@NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x5}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x301, 0x0, 0x0, {}, @NFT_OBJECT_TUNNEL=@NFTA_OBJ_DATA={0xc, 0x4, 0x0, 0x1, [@NFTA_TUNNEL_KEY_FLAGS={0x8}]}}, @NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x3}], {0x14}}, 0xac}}, 0x0)

04:34:21 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:22 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:22 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

04:34:22 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r0)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r1, 0x927e1563993de7e5}, 0x14}}, 0x0)

04:34:22 executing program 3:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x18, 0x0, &(0x7f0000000bc0))

04:34:22 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000001040)=0x6, 0x4)

04:34:22 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b0009008000", 0x2c}], 0x1)

04:34:22 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1, 0x0, 0x0, 0x0)

04:34:22 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_STATUS(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r1, 0x27, 0x0, 0x0, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}}, 0x0)

04:34:22 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
bind(r0, 0x0, 0x13)

04:34:22 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, @l2tp={0x2, 0x0, @loopback}, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, @in={0x2, 0x0, @private}})

04:34:22 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

04:34:22 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b0009008000", 0x2c}], 0x1)

04:34:22 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:22 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=[@ip_retopts={{0x10, 0x11}}], 0x10}, 0x0)

04:34:22 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x8934, &(0x7f0000000100)={0x0, @tipc, @llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, @in={0x2, 0x0, @private}})

04:34:22 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200), 0x0)

04:34:23 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x28, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x28}}, 0x0)

04:34:23 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b0009008000", 0x2c}], 0x1)

04:34:23 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:23 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000005680)=[{{&(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=[@ip_tos_int={{0x14}}], 0x18}}], 0x1, 0x0)

04:34:23 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:23 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

04:34:23 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000040)={0x0, 0x4}, 0x8)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="df", 0x1a000, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

04:34:23 executing program 2:
pipe(&(0x7f0000000240))
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000000)=0x8000, 0x4)
mmap$xdp(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)

04:34:23 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:23 executing program 0:
r0 = socket$inet(0x2, 0x80001, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'bridge_slave_0\x00', 0x1}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000100)={'wg1\x00'})

04:34:23 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x40086602, &(0x7f00000000c0)={'macvlan1\x00', @ifru_settings={0x0, 0x0, @fr_pvc_info=0x0}})

04:34:23 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

[  231.107121][ T4739] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 1, id = 0
04:34:24 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, &(0x7f0000000000)="816a", 0x2, 0x6, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)

04:34:24 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8917, &(0x7f00000000c0)={'macvlan1\x00', @ifru_settings={0x2, 0x0, @fr_pvc_info=0x0}})

04:34:24 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{0x0}], 0x1)

04:34:24 executing program 3:
r0 = socket$inet6(0xa, 0x3, 0x1)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private2, @private2, 0x7}})

04:34:24 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

04:34:24 executing program 5:
r0 = openat$binderfs(0xffffff9c, &(0x7f0000000000)='./binderfs/custom0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0)

04:34:24 executing program 0:
mq_open(&(0x7f00000013c0)='\xd4\xf1\xd5\xf4\x14\'\xd5\x8fmn\t\x8b\x86\x03\xcd\xb9\x02\xe6\xfcce5R\xc2\xbcyxJ1Ee}\a\x00\x00\x00\x00\x00\x00\x00\xf3D\a\xaa\x0e\xac\xbb?1y\xf0\xc7\xc3\xa2\xb0\x18\x10\xb6<\xe3][\xfcu\x15z\x19\xefR\xca\'\x00\x13\x06f&\xf1P\xd6\xfeM\xf0\xf6<V\x0f\xd9{\x06\x00\x00\x00\x00\x00\x00\x00\x85\x19\x8c\xdd10\x1e[e`\x0f\xbb\xb1T\xe9\xe2\x85\x18\xfdR\x00\xef\xbf\x0e. I\xf5\xb5P\x9c\xf1\xa3\xee\x92p3\x99\x9f\xcamv\x18\x8b{6\v\x1eY\xe4\\\x1cN!\f.t\xbc\xe1?S\xfc5\x80N\xb8\x84}\xc0\xf1\xb1z\xbegF\x1d\xfd\xcb\xd2uE:\x9e\xb6\xce\x8c7\x8c\xee\xa0\xcfCx\x8b\xd1m\xdc\xd8\x89\xf1\xa1\xf0\x14\xb7w@\xdf2\xc6\xe6\xa9\x80\x87\xe3\xb3f\x16\xeb~\xd5Z\xd4\x16\x02\x7f\x00\x83\xc4R\xbd\xe9`\x03\xbe|\xbf\x87\xdaQ\xfd=\xeb\x1c\x11q\xda\xe0\x9cP\x8c\xbf\xb4|M13\xda\x98qP\x0f\xfcF-\x01`\xe1Q9\xc8#\x90\xe3\xce\x17\x1f\xd2\xb5v\x9f\xb7\xda(\xef2\xca\xf9\xa7\xaf\x06\xdeU\aC\xc3\xab\x99\xa3\xb4\x85\xf6\x03\x10\xf9P\xff\xd6\x9a\x86b\xc7\xc2`\x85\xd7\xab\x10\xba\xd2[\xb2\xe7\x98\xde\f\xeb\xc1:\xe9\x9bH,\xc5\x98\x87,\x0e-\xd2\x0e\x13\x06-\xfe4x\xbcT\x9b\xed\xa5}\xba\x19\xb9\xcd\xb8M\xa1|\xc8>', 0x0, 0x0, 0x0)

04:34:24 executing program 2:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/key-users\x00', 0x0, 0x0)
read$watch_queue(r0, 0x0, 0x0)

04:34:24 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:24 executing program 3:
prctl$PR_SET_SECUREBITS(0x1c, 0x22)
prctl$PR_SET_SECUREBITS(0x1c, 0x0)

04:34:25 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:25 executing program 5:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0)
read$watch_queue(r0, 0x0, 0x0)

04:34:25 executing program 0:
r0 = openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/diskstats\x00', 0x0, 0x0)
read$watch_queue(r0, 0x0, 0x0)

04:34:25 executing program 2:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/schedstat\x00', 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x100000d, 0x13, r0, 0x10000000)

04:34:25 executing program 3:
ioctl$HIDIOCSFLAG(0xffffffffffffffff, 0x4004480f, &(0x7f0000000000))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))

04:34:25 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:25 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:25 executing program 5:
pipe2$9p(&(0x7f0000000440)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4000)
write$P9_ROPEN(r0, &(0x7f0000000480)={0x18}, 0x18)

04:34:25 executing program 0:
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000200))

04:34:25 executing program 3:
prlimit64(0x0, 0x0, &(0x7f0000000040)={0x80000001}, 0x0)

04:34:25 executing program 2:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x105000, 0x0)

04:34:25 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)

04:34:25 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:26 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_udp_int(r0, 0x11, 0x0, 0x0, &(0x7f0000000340))

04:34:26 executing program 3:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x60}}]}}, 0x0)

04:34:26 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b0009008000", 0x2c}], 0x1)

04:34:26 executing program 0:
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0)

04:34:26 executing program 2:
clock_adjtime(0x0, &(0x7f0000000000)={0x1000})

04:34:26 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x3d, 0x0, &(0x7f0000000300))

04:34:26 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:26 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b0009008000", 0x2c}], 0x1)

04:34:26 executing program 0:
syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x69, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x0, {0x9}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xe}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x1, 0x7f}}]}}}]}}]}}, &(0x7f0000000380)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x300, 0xf7, 0x7f, 0x0, 0xff, 0x4}, 0x5, &(0x7f0000000180)={0x5, 0xf, 0x5}, 0x2, [{0xd3, &(0x7f00000001c0)=@string={0xd3, 0x3, "cc9a420cdb978e0f6108def77b9a2b30a7ef1dff8e866875aaa12f6aadc442800a69b838ffaaea63ef468098f5c1fb0cc2c8eecafbcc0a9bae03f78be0dd1fd5d8ca7f8d2d1dd9dd898183e257c2405258615e00cf9bb5b7f0a77f57db7df550df90308a4fdf0e2d5ce6752f93a674c8d6b163d88ec20842501ac2ade360d3b65ee60c84ca1dca848af2db8ae4805c538fea2b8cfe720f41841569034bfe3754b003bef31fc3cbce7bba9128234902a2c69b6ebe737863ea840ae1d291e9b08e2dcb3c7dfcd042db4f6f9352411121637f"}}, {0x9a, &(0x7f00000002c0)=@string={0x9a, 0x3, "09a8c76c054cc634fa34db05663ba85a4513146133b54db64436dae70a20764d606e1711c0d8a72855f43c2eb6dfc65feff9ff07c5b9fe7780c6e0a448e99953efc5ed3dcadf1c273a331e724527ef01e9c2373d347912370ddaaa1b6f21106d3617ae7101a1411221b1a00a7e0f8f0763e63133ffcf2085a959150e917d580707ae04c6f5e00f55645e7cfe1b62c1cec578427af2335b34"}}]})

04:34:26 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_provisioning(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)=ANY=[@ANYBLOB="02"], 0x48, r0)
keyctl$describe(0xf, r1, 0x0, 0x0)

[  233.694334][ T3565] usb 4-1: new high-speed USB device number 2 using dummy_hcd
04:34:26 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:26 executing program 5:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000a40)='./cgroup/syz1\x00', 0x200002, 0x0)
syz_open_procfs(0x0, 0x0)

[  233.933552][ T3565] usb 4-1: Using ep0 maxpacket: 16
04:34:27 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b0009008000", 0x2c}], 0x1)

[  234.054138][ T3565] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  234.183694][   T34] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  234.223869][ T3565] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  234.233470][ T3565] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.241611][ T3565] usb 4-1: Product: syz
[  234.246212][ T3565] usb 4-1: Manufacturer: syz
[  234.250955][ T3565] usb 4-1: SerialNumber: syz
[  234.433426][   T34] usb 1-1: Using ep0 maxpacket: 32
[  234.584367][   T34] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.594350][   T34] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  234.607807][ T3565] usb 4-1: USB disconnect, device number 2
[  234.773587][   T34] usb 1-1: New USB device found, idVendor=056a, idProduct=0069, bcdDevice= 0.40
[  234.782799][   T34] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.791217][   T34] usb 1-1: Product: syz
[  234.795593][   T34] usb 1-1: Manufacturer: ꠉ泇䰅㓆㓺כ㭦媨ፅ愔딳뙍㙄 䵶湠ᄗ⢧⸼忆璘߿맅矾욀ꓠ厙엯㷭✜㌺爞❅ǯ싩㴷礴㜒᮪Ⅿ洐᜶熮ꄁቁ넡ઠཾޏ㌱쿿蔠妩ต綑ݘ긇옄唏幤ﹼ戛컁磅穂㏲㑛
[  234.822450][   T34] usb 1-1: SerialNumber: syz
[  235.104573][   T34] usbhid 1-1:1.0: can't add hid device: -22
[  235.110863][   T34] usbhid: probe of 1-1:1.0 failed with error -22
[  235.173580][   T34] usb 1-1: USB disconnect, device number 2
04:34:28 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/softnet_stat\x00')
read$hidraw(r0, 0x0, 0x7ffffffff000)

04:34:28 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/arp\x00')
read$hidraw(r0, &(0x7f0000000180)=""/136, 0x88)

04:34:28 executing program 5:
syz_genetlink_get_family_id$ipvs(&(0x7f0000000180), 0xffffffffffffffff)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000740), 0xa0400, 0x0)

04:34:28 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:28 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

04:34:28 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

04:34:28 executing program 0:
r0 = add_key(&(0x7f0000000280)='user\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)="df", 0x1, 0xfffffffffffffffe)
add_key$fscrypt_provisioning(&(0x7f00000001c0), 0x0, 0x0, 0x0, r0)

04:34:28 executing program 2:
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)

04:34:28 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:28 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f00000002c0), 0x4)

04:34:29 executing program 3:
syz_open_dev$dri(&(0x7f0000000040), 0x9000000, 0x440)

04:34:29 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffff", 0x42}], 0x1)

04:34:29 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x100, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4})

04:34:29 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:29 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x40086602, 0x0)

04:34:29 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/tcp\x00')
read$fb(r0, 0x0, 0x0)

04:34:29 executing program 3:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000)
shmctl$IPC_RMID(r0, 0x0)

04:34:30 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:30 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:30 executing program 2:
pselect6(0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})

04:34:30 executing program 5:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x301000, 0x0)
connect$rxrpc(r0, 0x0, 0x0)

04:34:30 executing program 0:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x8200, 0x0)

04:34:30 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)

04:34:30 executing program 2:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0)

04:34:31 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:31 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000023c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000380)="b9800000c03500400000665c8239fbc4237d0923062e35c5e17de74bc402793350f8f800c4635765f766400fc774a666baf80cb8623a8480ef66bafc0cc422a58c010fbcf726660f38807769653626400fc7bb00000000360f7955f49af342d8868680000049b8206bc3c3220d2d4f5d2e66420fc73366bab6203e65650f06", 0x7f}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000002400)={{0x0, 0x0, 0x80}, "be77f645fa0faab4173328e03e0e9f020bbc798c84be65bf762199e269b6d15af3d542e5a531a895866fbf13910d95e922d6aa84d68924efe5e444b34d9df08a868ae23c677546798d6ec2c17d6e3f87f0d757c2078c9325c641fea9938ba4f20ebb2577f51ba467d973398c7fa94be4e2abd427b7ad4385c63e630090759c2a6c768a973d0b1e7244e494d5925d9d9f40afd544b84d1fdb8de7af279d8700739c11327a76f8bc32743c959d8858b276c211222f40206257be84ddd07b20d8b1de9b5390ba5eaa289c0bfdf6b5636b7acfac5159e2e7759338e06ae00e4b7cf162e45442e3c8395858847e3e28da4ed237027cd849991ab91e6e5dc61b9936de574c3b26a2b0e303386c02ed1bb6a5acaf8a9271e196bc59fb3d7d6a88383d53302680fd8ebd0e75fa67333a6fda0333d6f87b3f628136a4b9ec1c2f4cf3d5ec900ec17d48e3f741860d963ec6e629243d06b547374ec3f5a0a8e71cdd67e8f591d68711ba4df1f2fc62d9f54c6f7b8844c8ce569fb7f983a631250e77374780413ab37235afdefb70572e79f35d36406aded61bcf76711aacf325b2ac1f78b4ede1239e36d5d644c7a81cdf6b95a1e3aa6c2f70d889654572d1f88f05e5b2c5f5c37d6570102c2525a9b3fa28a88c83ded573a896239900bd365dc0323d4921c3c96a3dae810479a1ac83b64f0f9b2008eb51832bce90105dab379b3d99f6761d4cf438d92356c563c982938fe83026258aad0a7d9f5eacfa359c68ec271d3ecf9a57d3eec56cb0bcf1bb0adc6c297d6e5b101640d3c5b50bcb54faebed4f850e737b5a2837054bccbecfd1c28e70a967a350d21867ea95b2cdfe55fd3edc6e1f4db06a5e6b77a333af48e92899e074794f3b4687dce6d45cb33433e922b1602e767164dc0e760d14b4c70f304de2cb56ca5ea35719f492480e48b9007e4073a8e02450a93d3932971b32aca283773bbb7974486478d380d8524c0eee27ba19d9c51196494bc3f2c41c1ddc72b0b9d97ca307022baf742cb69b45de669e3224c1eaf4e6ec7bb76f921ad3fd01e1138eda10e945ca95302c1729adf6526041169700a783f767632e99b55eac5e4ebc25b63e11649a31e1dba33445a36b40c7cc7ab6450cb4853c69a9f1eb00d466f6c98f297d3e4882fd4d1a9dff0786cece0dd1b03fd84f982b493349f32e49be255102e7bd1475e25574a992da6907a0e6bce48d4601b51ca05798a0e8b5faa9ed6700902e4626a466b4219e3880277bca07f577def954fdd64e089622ed0eec558759a9b6d3e512b330fa30e31403053a73da1747a7874f5b7a9fde4c0f9f29a27e795e275c9f6c33d9db7f370f148a790811428b2f96566bd0e2b148997e69b0ffe1a81cb04d43ce6a24ea2a9414b930fa1330153cb20aaae484e515393b9ddf9d029806c35d5e956462b7cc7f1c7995006ffeae1f1ba1daf8d43309198bf44482c670800d5dacd600924564931014b1e834a38274c6560784572e6d4bf8c4a5a1ee5edb2f4ea5fa9f07b11d3d1d88b993fa662bc04dfb9ffa9e534f1622efd7f823346aa7e0a988f56be531c73f34439df61f9737cca8b93d2c25695138c70c469298c3a114c89a8c3409d4dc18e7bd0158631d0b936823a6dda814ed50f83862058d1ecc19b2e1195c910edb5e7164fbd403de0beb5d7feec901a5a373afa1162be95f0e71e50d479e33494d7c98c1cb2ac886c81610678923685fa9f5fff2584c89130b7d2ac78317e531bb2fcade76520cf8bec450e31eebfa5ae2f78587c572d36d56a69cf3f2cc9e15b77c11877d27e8af0196902d7f94646f0294b4507ae4461397ef21b24a2142f740460e1eb1935cbaccd14f71f21d6fb7144de99154f037cf31e9f30da3c935950c7d1c859096d44b57e7bd37147304b2fe51ab63ca7c4031c1f07913c8a894a6b0573886d7a0a62cd20a0f433e541a43808465eb82af5bb9c819a74bed83cf91aa180442c28b9f4d69dd7e728c7734dd3bd3e277e67e96ab9f09e083c0a6e42fe2bc5dcae9a2deddb7f763e62b0d8adacc00af734bb9e978c160600611c83309468a2f942f5d2c9f7cafc97dae2f542ef33be39952fa70ee3e2ecb3105c1a490db73fcf46a3645de10e1cb335ea604f41d10b723872c26f20a71f44b1301fffd601c6a609e0d195bbcb1203cd23fdb3e3f59fa8ae5a484881c34706bacb6a479fa7c9cc6920613dd6903bf046493bac060f046efc6ce43aafe9a3b735c1cb283714548fdc16a2ce9d9dccd77f3b8037132ec1b1f1d965932a9ec4b20efe1f2212c94511b61799b5bd29be84e47d1c1209af544bb4c4820b4897fe00fd583b8ae5394354d1f2ba31bf01a896ebea5302167cf9b0ed71e793d9572fac48d75724caa57f99ba9db2113f5fa52d19356ed1d0c85bd60805952113e521a01444d6a6a502144691a9d32363284410e967626c720cdb3444a56b1b7043047dbf8e5f1b5177c82a651710eaed591e1d4ac5ffaf85411f7c3c3e58fefb5e0528f74b3f78a0b31de68f1e31415a7a37010be818b886c28cca1bf68db068929bad71bc6b4ae2a4c9f2c9bf98f15164e6ef96ef4121c191e5a94ca431b49c475f02acebc42d2c6026e4f7d595e5677947bf6cc0d6f95d7838f76cfc04492cebaed4374984706465ac83a1acbb55450f5b5e1e4cc00a88c334af44d337089c80167a813f54fa903ec85d8f1d22c443bcdfb3d268a3e57f563b9732cc3f5d8b1fd98a6f44e3b056cbeb65946ec917ef093c3a62757f2b27e6b4873ae7183b5b9a6528a576af69449df90cda4bfad6c54bed67fecc6fdc624183aecb5072002c8dc9d45505901c61489ab31b7d6cde6943f042953df648861b68663291117f3deb74d3f9e9501d9d50b095baaeef21aca82e00203c06ce103cc923e6f02ab481eed2da0a4eedeb827e9d7961f6d972f347c649e706dc0259d697a6a5ea1ba33a6f2c16beed92b58fa290026c728e91f3de285a74e56e968c5d174639a915b5e53d7b1e5566b1a89f09434afb2a2ff1fd00d13e7ce5a3dcb8e628f39a6c6825acd4b7152a777d21485f6360af8b1c62a4a29f2ad98d9c393530187c14b4defdfc8ac12433be7f56a40ce4087eb1f7cf949e4e9b3c612e4953716ab027a36ce839f1d2815c289d08e0e500630c2f54344d6541b9645a4b31648d25f71dc7a43651aa8530ccd0cec2f96a4385b185823111c514b5beb817a98824f301462598f03919ec52c0fdf5a522f00000000ed3089e0958bb20e5f936c8ab4fc00316ce483254f6e2abc024835acdba239decc60fcc316cbb5fe85db2e22ecd1259c607b575d836222d7a21f0fccdc6d4f90c487c66dcbe9d17f6af2edc30b57189f009072fa5b46e1f49aa33a6546aea60202c4e77066e2f487b2bd36f3178ea888488ae52fad830868172d8f2b3335db98a83c45e047ba93eb32e08a014d13fb8b9f3b54c16adaac8a95c250051baaa3667343a3df51ab7dccedcf4410482fb24ab337285d4c0d182bf00050c5cd2f8a1f7954fe0ce1c2ae8c944db603ceab504409be7e3316e679960b63e1935018641f0d30d40fb4f83faa2786e7284b0adf6fe0ae04f61c362be89177aa7a27cd00a1c101deb33fbae04b8b20fceeef601049626954f0436470eb4d344fd53c34eab4fca401bb6aa64c1d1891ca88300ce5f8b9b7badb64a5aa3ce8ea848e288239def4602e4812c66503ccc2a68b734d97b2fe71e321e09275bbc727e4c02ce1a967f2f7c5f02f658c5e449a1c718a535561afbddd05ad28559c6ea8a5d19298eeccee69818b69a833b972128e153306522a3733396e25e3a2175443715b0926ea967609f73e2529fa4b6c346e32543431d11f57f557c71ff6b789d9a78e8039f78c5089586aeba7a584b3d6b753f8633d062b5cca3639eb95885027a1b78a90f79d33e8872b455a21618b76a4afd3d704849b067ab8f968bf528fbdbdfdd34e84163d644e211e32f9b5b91f86fb815890f6e405d7324fd6ff84fea268cf4d613d8b8cc784fd434f317dd77ccaf40d974c43d70ec15306c691ce9782267b20b35c150c1c104adff5c08403024e5ed1f35bf1b6db213af8fd0293b230ddc7a405e1e3e584292cf6d9bd4ca1d0c325ecf37c57134320f79fac3f26874b1d595d0aacb7bf454bc4e15f755c1c7e2d0951d7731d8bf27c8002e611a942d633c9e0203ee9f848de15966e6c993d790bbc26958fdc3ff4e62b971697855ad0980d3cf6cd79c0f2f0d41eab6d2c67e83295afcbee60179e0997ddf9b15002b7fc058afa567034dabc640790aba2419a5ccbce25abccde586373f4e31f3436e5bab2e156b4cd6abaadbd4e991cb4a15cdea2202b13bce716e1df40d6bcc275f14c152ffe6294d2b5a5377a9da546490a0ff9ec3f27a0a6070f1b0d72b75a74ac1e764c4670b9547faa728500233dc410132d800bddd4e81272e1ace1fa8186e1b68e06000000000000009b094764fd0720212c14f12f1835596660e08dbaf1a28c2ecb391094e8decb500484a4f9de412781fe084695a243d474471a106abd4ac640cfb7da40e0327defce9aa8101a25f7145b55db0510dd090af63fd65f9003693b21b2f3d4775c65707fed78474238d6453592933b2265c3836d0c775b95e9739b3de3856072a5b43c9e3024e8843b2522e92d12aab4a636c68af12722ab38d881f4c97118014db986f3ec966783b93d81d1d70e11482df745256c3ef9c6c949c6afc6929f69d9427d6c2fc7713ad92ed13640f4051e72b38568e3f211f75261ee6517de0b980076127d7dc00a1660a11232325f7ac097f46e0ef4493cd7de875d14056419373d887a821672d894d32c810464705e92c9abe32967fead2464c8b2f693f45d07a8160f59ec046019b016ee8b07764278af8c6b22b4cc079f406c0ba898332aa8911b026c75edd02d5a40f8ed9c1a3d39c1893a0affe4b38c77305429562e9d0907179753051cbf13ff936091334fe24a53816d2aa5e2e26993da1152ee26b633afd966bfb704054227160bf292bbcc35f78a649bb7f4fe1783a6b10de778519c8a71f1381cc67a779e51ce3097e666d964728d55708e76953826c7659c3647d3f3cedf9f1b45b27f5735bb8d78d874bf73147b738b9c0566a0d2fdcb17f85dc712462e381ba1466d92d903ba24d0cc17ddbeb7bd80b5525d7236a8add54d4eca06fe4cd0d3724403c7ad09f22eb2fcb4181eddde271be821579b7382bbfe36dab5079811e62842da65165c27c181dfed279d5ec12a1c0c13541760c2fe5cce95c6892622229ac24a7211ba43e513077f34342b61611a1ab10b6c51f6e3a06be0716d7d1abc82f5903e32f1e6e3e85789c1b8f140bbe1903b9677ec9655e171bf1f4d27dda003c27d4ef0e043d0def451dbc0f48cb6cb605b1e2d27e9fc9db10c0b571b6805f316b00b581d0d7358f83e14d1b4290e61fc0d0bd97334f31a547350c00877c90bcb591b98986c19d9d477f7dc521ac43d2edf9201ea61c43e6365e795bfb44b0d90ced7b9d34a849dec495d79cae7769c721d7cd17f1503df3d113c49fcb18449ff180d39c94717ae8fcba7ee1d8cf75873098a7a697d5f5d7a6eeef14daf146710ee40c94ff8ea9ff048d108688776fd074e72658d6ea43f42ea03883f70f45c7b86d3eb0bced0f3a60b6da510833728ffdb82af9a34c5fc86e0130861ac66c68b784300", "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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

04:34:31 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000006300)=[{{&(0x7f0000000140)={0xa, 0x4e23, 0x0, @mcast1}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000180)="04cd0143b299b01e361e75ca5eff7c2f5f2febdc020a397ce93d62768ec826bea3d232a830386d1163181b93c05b67958b49d26bdd869079fbe30211dfda891059ead95dfba00a4884cb4b26dcfcd3", 0x4f}, {&(0x7f0000000240)="b734c09ba859d3ced1eacf3de4895c4bd2a57d3ec6f60fcf81286ef69a158bf3199de8106e502a472113a379523ab50c261d94488f4798aa58b30e4de5f44bf053eb", 0x42}, {&(0x7f00000002c0)="bc5e7930e7a2da880ac27e7e4644fb63e6de163176e81ca79624db58319e3e70aa817b91388869f626b4ebe80a9762e232c0926f629a68398a135ee4f32aa90efd08428cdf4897c85cafbf9a4f80b546caaad9d91a6d1bd8ee3039e9660b5e2e8e5da8a67dca3d7008d2a7897caf31e576a6a16ba92d8333a464e7dffe1134b6219530493dae254da59404352161217aed", 0x91}, {&(0x7f0000000380)="2e30a57aa21006f9688035d3ba6df3940779bbed5a9fecaaf8c6714820", 0x1d}, {&(0x7f0000000400)="5079855bec90c90e62849d6bdc74236278cfefb0a1418b2fbef94bbf591f62024cf1009c89be44684abc575b012e234e3343e5a46d970ba6d065939c5763a1aadbc92571d25fabc2421b684fd223a1c7609d7c11c5482de316268d99a2a2c45c34e439e861f2267d5b66b26cec3f1d6d7753cf85463ee0", 0x77}, {&(0x7f0000000480)="cd1ee2de27b8168b9a9e55380ccf5303b6283a23482302e97910b27ba02da5ad32c553e98a504104f337242de967e4242c24da3275627ee318ea97e5cd8a0dcce9", 0x41}, {&(0x7f0000000500)="06c5909719100e0c9fa8cc2e48e204acc51635082c00620393d3bb011c6e330bd393c0cb774c0c496737dd529a8e8b51b136b0ee8b0d0f2e59d8644607c64db651f5a5e75344feb38ac607f4667c91a5eea59e2d7559fbe668d8db4dbc00f6935cf05640db6f1359222fcf9de01975969c6ea20066109b50330015d3d8a98331cfc0fb6221e0ff34a412fcb1ecb730d828f111e9b23ac735935c00748c566385fdb2022a9f4872080061a3b2cee76c7173af2b71c8c345acc4ccfb992da87bbbc045dc6e", 0xc4}, {&(0x7f0000000a80)="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", 0x2f2}], 0x8}}], 0x1, 0x0)

04:34:31 executing program 3:
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f511, &(0x7f0000000040))
syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  238.562342][ T4876] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
04:34:31 executing program 2:
syz_clone(0x102100, 0x0, 0x0, 0x0, 0x0, 0x0)

04:34:31 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:31 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000", 0x4d}], 0x1)

04:34:32 executing program 5:
syz_emit_ethernet(0x7e, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffbfff00000000000086dd603b218400482f00fe880000000000000000000000000001fe8000000000000000000000000000aa4e21"], 0x0)

04:34:32 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:32 executing program 3:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x8, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:32 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f020001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:32 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:32 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @dev}}}, 0x9c)

04:34:32 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x11, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:33 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0xd, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:33 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8901, 0x0)

04:34:33 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0xffffffff, 0xfffffff9], [0x4000]})

04:34:33 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:33 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:33 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0xffffffff], [0x4000], [0x0, 0x0, 0x3]})

04:34:33 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r1=>0x0})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f0000000040)={'syztnl1\x00', r1, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}})

04:34:33 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a2, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:34 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x3, 0x0, "f1dfab2f9c96bd16cf1fffc1a7f04428ef31ed1152398ef6ad1759e452bc1efb"})

04:34:34 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:34 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000", 0x53}], 0x1)

04:34:34 executing program 5:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bind$qrtr(0xffffffffffffffff, 0x0, 0x0)

04:34:34 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc0189436, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1000000})

04:34:34 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8970, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:34 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:34 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:34 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891b, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:35 executing program 5:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)

04:34:35 executing program 3:
bpf$BPF_BTF_LOAD(0x10, &(0x7f0000001280)={0x0, &(0x7f0000000280)=""/4096, 0x0, 0x1000}, 0x20)

04:34:35 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:35 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x894c, 0x0)

04:34:35 executing program 0:
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

04:34:35 executing program 2:
r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0x4020940d, &(0x7f0000000040)={0x0})

04:34:35 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8912, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:35 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8921, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:35 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}], 0x1)

04:34:35 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x541b, 0x0)

04:34:35 executing program 0:
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

04:34:35 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8955, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:35 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'nr0\x00'})

04:34:36 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

04:34:36 executing program 0:
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

04:34:36 executing program 1:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x4000000000000000}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={[0x1]}, 0x8})

04:34:36 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:36 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8946, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:36 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:36 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:36 executing program 1:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, "", {{}, [{}]}}}]}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x2, &(0x7f00000000c0)=@string={0x2}}, {0x4, &(0x7f0000000280)=@string={0x4, 0x3, "5cf6"}}, {0x0, 0x0}]})

04:34:36 executing program 2:
bpf$BPF_BTF_LOAD(0x14, &(0x7f0000001280)={0x0, &(0x7f0000000280)=""/4096, 0x0, 0x1000}, 0x20)

[  243.524790][ T3565] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  243.763471][ T3565] usb 6-1: Using ep0 maxpacket: 32
04:34:36 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0xffffffff, 0x0, 0x0, 0x1], [0x4200]})

04:34:37 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000000", 0x57}], 0x1)

04:34:37 executing program 2:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000200), 0x2)
r1 = memfd_create(&(0x7f0000000240)='syztnl0\x00', 0x5)
ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000280)={r1, 0x0, 0x0, 0x4000})

[  243.925657][ T3565] usb 6-1: unable to get BOS descriptor or descriptor too short
[  244.014016][ T3565] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  244.103424][   T34] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  244.263920][ T3565] usb 6-1: string descriptor 0 read error: -22
[  244.270410][ T3565] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  244.279796][ T3565] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.364061][   T34] usb 2-1: Using ep0 maxpacket: 8
[  244.419378][ T3565] cdc_ether: probe of 6-1:1.0 failed with error -22
[  244.503733][   T34] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  244.556741][   T34] usb 2-1: language id specifier not provided by device, defaulting to English
[  244.620086][ T3557] usb 6-1: USB disconnect, device number 2
[  244.886371][   T34] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  244.895703][   T34] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.903975][   T34] usb 2-1: Manufacturer: 
[  244.908744][   T34] usb 2-1: SerialNumber: syz
04:34:38 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x29, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:38 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:38 executing program 2:
r0 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$revoke(0x3, r1)
keyctl$unlink(0x4, r0, 0x0)

04:34:38 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8919, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:38 executing program 4:
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb0806000186dd06"], 0x0)

[  245.224073][ T3565] usb 2-1: USB disconnect, device number 2
04:34:38 executing program 4:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{}, [{}]}}}]}}]}}, 0x0)

04:34:38 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891e, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:38 executing program 1:
ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304)
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(r0, &(0x7f0000000340)="ac21d58ecc6e1b746a30", 0xa)
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)

04:34:38 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8910, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:38 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:38 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8946, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}})

04:34:38 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x1000000})

[  245.913079][ T3565] usb 5-1: new high-speed USB device number 2 using dummy_hcd
04:34:39 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:39 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8990, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  246.165028][ T3565] usb 5-1: Using ep0 maxpacket: 8
04:34:39 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000000)={0x0, 0x4, 0x0, 0x8000000000000000})

[  246.283924][ T3565] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  246.293856][ T3565] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  246.303833][ T3565] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  246.313815][ T3565] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
04:34:39 executing program 2:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(r0, &(0x7f0000000340)="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", 0x62d)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001340)={@remote, @remote}, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x0)
bind$qrtr(0xffffffffffffffff, 0x0, 0x0)

04:34:39 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x53, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x2, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

[  246.614336][ T3565] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  246.623850][ T3565] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.631989][ T3565] usb 5-1: Product: syz
[  246.636508][ T3565] usb 5-1: Manufacturer: syz
[  246.641222][ T3565] usb 5-1: SerialNumber: syz
[  247.026949][ T3565] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  247.072607][ T3565] usb 5-1: USB disconnect, device number 2
[  247.141883][ T3565] usblp0: removed
04:34:40 executing program 4:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{}, [{}]}}}]}}]}}, 0x0)

04:34:40 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:40 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8903, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:40 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{0xa}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:40 executing program 5:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000080))

04:34:40 executing program 2:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(r0, &(0x7f0000000340)="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", 0x62d)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001340)={@remote, @remote}, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x0)
bind$qrtr(0xffffffffffffffff, 0x0, 0x0)

04:34:40 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x894a, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:40 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8917, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:40 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:40 executing program 3:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x1c, &(0x7f00000004c0)={0x5, 0xf, 0x1c, 0x2, [@generic={0x14, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93"}, @ptm_cap={0x3}]}, 0x2, [{0x4, &(0x7f0000000600)=@lang_id={0x4}}, {0x0, 0x0}]})
ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010)

04:34:41 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x5, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:41 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  248.233585][   T34] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  248.483480][   T34] usb 5-1: Using ep0 maxpacket: 8
[  248.503459][  T122] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  248.616074][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  248.628789][   T34] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  248.639361][   T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  248.649336][   T34] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  248.753938][  T122] usb 4-1: Using ep0 maxpacket: 32
[  248.853412][   T34] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  248.862768][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.871027][   T34] usb 5-1: Product: syz
[  248.875621][   T34] usb 5-1: Manufacturer: syz
[  248.880350][   T34] usb 5-1: SerialNumber: syz
[  248.953398][  T122] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  249.146492][   T34] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  249.161849][   T34] usb 5-1: USB disconnect, device number 3
[  249.179672][   T34] usblp0: removed
[  249.323266][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  249.332578][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.343357][  T122] usb 4-1: Product: syz
[  249.347645][  T122] usb 4-1: SerialNumber: syz
[  249.395693][  T122] cdc_ether: probe of 4-1:1.0 failed with error -22
[  249.597525][   T34] usb 4-1: USB disconnect, device number 3
04:34:42 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x16, 0x20203852, 0x2, [0xffffffff], [0x4000], [0x0, 0xfffffff8]})

04:34:42 executing program 5:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x3, 0xc0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x0, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x0, 0x0, 0xff}}}}}]}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x2, [{0x8, &(0x7f0000000280)=@string={0x8, 0x3, "5cf656cda572"}}, {0x0, 0x0}]})

04:34:42 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc058560f, &(0x7f0000000040)={0x0, 0x8, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:42 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a0, 0x0)

04:34:42 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:42 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:42 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8915, 0x0)

04:34:42 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8943, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:43 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x10, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

[  250.053262][ T3557] usb 6-1: new high-speed USB device number 3 using dummy_hcd
04:34:43 executing program 3:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0xe, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:43 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  250.303577][ T3557] usb 6-1: Using ep0 maxpacket: 8
04:34:43 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x8, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:43 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x9, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

[  250.424149][ T3557] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x1 has invalid wMaxPacketSize 0
[  250.434066][ T3557] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 0
[  250.444032][ T3557] usb 6-1: config 1 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  250.457105][ T3557] usb 6-1: config 1 interface 0 has no altsetting 0
[  250.985171][ T3557] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  250.994502][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.002640][ T3557] usb 6-1: Product: syz
[  251.007090][ T3557] usb 6-1: SerialNumber: syz
[  251.324018][ T3557] usb 6-1: USB disconnect, device number 3
04:34:44 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8948, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:44 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:44 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x10000000})

04:34:44 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8992, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:44 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8947, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:44 executing program 1:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f00000013c0), 0x0, 0x0)

04:34:45 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x541b, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:45 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:45 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, 0x0, 0x0)

04:34:45 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0xd}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:34:45 executing program 3:
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)
syz_usb_connect$printer(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0)

04:34:45 executing program 5:
syz_open_dev$dri(&(0x7f0000000080), 0xffffffffffffffff, 0x240040)

04:34:45 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x9af, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x1)

04:34:45 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x2, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:45 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:45 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8927, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:45 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8912, 0x0)

04:34:45 executing program 1:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x8, &(0x7f00000004c0)={0x5, 0xf, 0x8, 0x1, [@generic={0x3, 0x10, 0xa}]}})

04:34:46 executing program 3:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x4, &(0x7f0000000600)=@lang_id={0x4}}, {0x0, 0x0}]})

04:34:46 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:46 executing program 2:
syz_open_dev$sndpcmp(&(0x7f00000013c0), 0x0, 0x0)

04:34:46 executing program 5:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x80}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

04:34:46 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  253.383714][  T122] usb 2-1: new high-speed USB device number 3 using dummy_hcd
04:34:46 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[@ANYBLOB="67724cc242009440370663c0041c6130307d01b5bbd869"]})

[  253.543738][   T34] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  253.673274][  T122] usb 2-1: Using ep0 maxpacket: 32
[  253.683981][ T3557] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  253.793643][   T34] usb 4-1: Using ep0 maxpacket: 32
[  253.896353][  T122] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  253.914315][   T34] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  253.928434][ T3557] usb 6-1: Using ep0 maxpacket: 8
[  254.057438][ T3557] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  254.073786][  T122] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  254.083443][  T122] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.091578][  T122] usb 2-1: Product: syz
[  254.096064][  T122] usb 2-1: Manufacturer: syz
[  254.100791][  T122] usb 2-1: SerialNumber: syz
[  254.264726][  T122] cdc_ether: probe of 2-1:1.0 failed with error -22
[  254.284962][   T34] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  254.294410][   T34] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.302558][   T34] usb 4-1: Product: syz
[  254.307235][   T34] usb 4-1: SerialNumber: syz
[  254.314716][ T3557] usb 6-1: string descriptor 0 read error: -22
[  254.321183][ T3557] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  254.330893][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.396030][   T34] cdc_ether: probe of 4-1:1.0 failed with error -22
[  254.462245][  T122] usb 2-1: USB disconnect, device number 3
[  254.600944][ T3557] usb 6-1: USB disconnect, device number 4
[  254.611751][   T34] usb 4-1: USB disconnect, device number 4
04:34:47 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x7, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:47 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:47 executing program 2:
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000140)={0x6, @vbi})

04:34:47 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xa7, 0xd8, 0xb, [@struct={0x0, 0x8, 0x0, 0x4, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}, @int, @const, @array, @int, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}, @int]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000280)=""/4096, 0xfb, 0x1000, 0x1}, 0x20)

04:34:47 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:48 executing program 1:
bpf$BPF_BTF_LOAD(0xa, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

04:34:48 executing program 3:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x6, 0x7, 0x47, 0x0, @broadcast}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$bt_bnep(0x1f, 0x3, 0x4)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d40)=[{0x10, 0x0, 0x3}, {0x10}, {0x10}], 0x30}, 0x0)
ioctl$KVM_SIGNAL_MSI(0xffffffffffffffff, 0x4020aea5, &(0x7f0000003280)={0x0, 0x3000})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, &(0x7f00000036c0)={0x34, 0x0, &(0x7f00000034c0)={0x0, 0xa, 0x1, 0x7}, 0x0, 0x0, &(0x7f0000003640)={0x20, 0x1, 0x1}, &(0x7f0000003680)={0x20, 0x0, 0x1}})

04:34:48 executing program 4:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x40}}}}}]}}]}}, 0x0)

04:34:48 executing program 5:
syz_usb_connect$cdc_ecm(0x3, 0x69, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x57, 0x1, 0x1, 0x7, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x0, "4cb0a2"}, {0x5, 0x24, 0x0, 0x1000}, {0xd, 0x24, 0xf, 0x1, 0x4}, [@mbim_extended={0x8}, @obex={0x5}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0xff, 0x1, 0x4}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x0, 0x7f, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x0, 0x2, 0x8}}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x6e, &(0x7f00000004c0)={0x5, 0xf, 0x6e, 0x4, [@generic={0x5c, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93004f27b3284a8488da6174776c9d8cb5c4c6c5af4624fb3d9283543e4aece39d117a163faf1f9ece7121ea0ed8e8e70469ae41fa000eb55b4ae26d5c207281a88de6529c22e7a595"}, @ptm_cap={0x3}, @generic={0x3, 0x10, 0xb}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x0, 0xd}]}, 0x3, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x445}}, {0x0, 0x0}, {0x0, 0x0}]})
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, &(0x7f0000000c40)={0x1c, &(0x7f0000000ac0)={0x0, 0x0, 0xca, "7b9bffd9d97ad77f9727cb22398677cb7d758589c56ce3eed299dcc5827c91d10bb7f69bb92c1c255ad6daaa61409465582bbb6fb08967888cc7d3f0b6b5e67346b7b4bdbf91356770f9af759acb45d305977ad19ed7ecc5ea440d76d1c0e99f5401318ad2b244850aa7e85b945e1d7a2e2d317b2be0f23d95895c378ef839c1f0762de01df7243b12385bfe21d67e112949323850983226b2647e4b50fc10160e79706c0021ac2f8c0d623131569d4ca7e1c6bae1ec05283032cc44fdc54271814794ae78f986b601d7"}, &(0x7f0000000bc0)={0x0, 0xa, 0x1, 0x20}, &(0x7f0000000c00)={0x0, 0x8, 0x1, 0x1}})
ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(0xffffffffffffffff, 0x5421, 0x0)
ioctl$SIOCAX25NOUID(0xffffffffffffffff, 0x89e3, &(0x7f0000000080)=0x1)

04:34:48 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:48 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100}}}})

04:34:48 executing program 1:
bpf$BPF_BTF_LOAD(0x1c, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

04:34:48 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  255.609269][   T34] usb 5-1: new high-speed USB device number 4 using dummy_hcd
04:34:48 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x890b, 0x0)

[  255.700797][ T3557] usb 6-1: new high-speed USB device number 5 using dummy_hcd
04:34:48 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8982, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  255.853289][   T34] usb 5-1: Using ep0 maxpacket: 32
[  255.947342][ T3557] usb 6-1: Using ep0 maxpacket: 32
04:34:49 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  255.973985][   T34] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  255.984388][   T34] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
04:34:49 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x2, 0x2, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:49 executing program 3:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0xc0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x0, 0x0, 0xff}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x7f, 0x81}}]}}}]}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x0, 0x0, 0x89, 0x0, 0x8}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x3, [{0xbc, &(0x7f00000000c0)=@string={0xbc, 0x3, "90a6616649364a34554f7dbde11ec6fef590d408e178984c0d53205a45ad78a3a7ea126e745ccdb4005a58e9a1edc390a20c71044c39599006b5f021d68ba0baa9224dd1ef1b3cf6689e8feb04b31899d26c1777ec21773f60f8a2ad7d271331ac855ae0b3aef7d90c924d6c9395a89b91ef55ec75c556ce8a8059e22f002f6b67c9ffd83584b746f02f3eb853f118b5cccce425717824f586e7c158030d1a749b9368cdad413175c6468305310ed453a6fc543de2fe890c86a6"}}, {0xf7, &(0x7f0000000180)=@string={0xf7, 0x3, "ef5f8daca86a91c8021d1d7f02330c580f6a0f4974b5bf2a97d2b6a5088df3fda8965b6f0df6aa5534993ebaa479180ffc79fd60a76ba35d066bd4412eaefbec3bcc010e888a2d77141a6fc3144dfad9d975caf82d220b9bfab7b6b8d941afc36c716b21a0de419ee6d9460297c13d264a9e05c1367b52f0be7cde6597e2ec392c1007113628fd076f85b0f99eee751f7113891ef239c041c7e31aff811a944238dabcbb0e73c7a06ae5be6dd7e5b47c3543e3f7ca414a22150df7b291457f63efb23825c5da8cc7befa16b86470c4991113af188ab8612e652cad28d11c68fc6067cde9dfacc3512b704b86652a04faced5cb706e"}}, {0x0, 0x0}]})

[  256.167017][ T3557] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  256.177101][ T3557] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  256.187399][ T3557] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  256.197571][ T3557] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  256.264200][   T34] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  256.273870][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.282017][   T34] usb 5-1: Product: syz
[  256.286487][   T34] usb 5-1: Manufacturer: syz
[  256.291262][   T34] usb 5-1: SerialNumber: syz
04:34:49 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  256.354895][ T5148] raw-gadget gadget: fail, usb_ep_enable returned -22
[  256.604703][   T34] cdc_ether: probe of 5-1:1.0 failed with error -71
[  256.659566][   T34] usb 5-1: USB disconnect, device number 4
[  256.803872][ T3559] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  256.863907][ T3557] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  256.873794][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.881940][ T3557] usb 6-1: SerialNumber: syz
[  256.914498][ T5152] raw-gadget gadget: fail, usb_ep_enable returned -22
[  257.043324][ T3559] usb 4-1: Using ep0 maxpacket: 8
04:34:50 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}, {0x0, [], 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

[  257.175877][ T3557] cdc_ether: probe of 6-1:1.0 failed with error -22
[  257.243740][ T3559] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 16
[  257.254096][ T3559] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1024
[  257.264583][ T3559] usb 4-1: config 1 interface 0 has no altsetting 0
[  257.274595][ T3557] usb 6-1: USB disconnect, device number 5
[  257.663454][ T3559] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  257.672690][ T3559] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
04:34:50 executing program 5:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000280), 0xfdc805a6fd1798d, 0x0)

[  257.681091][ T3559] usb 4-1: Manufacturer: 忯겍檨좑ᴂ缝㌂堌樏䤏땴⪿튗ꖶ贈ﷳ隨潛喪餴먾禤༘秼惽殧嶣欆䇔긮찻ก誈眭ᨔ썯䴔痙∭鬋럺뢶䇙쎯煬Ⅻ鹁Ɇ솗☽鹊섅笶精旞㧬ာᄇ⠶߽蕯聆ή፱ẉ㧲䇀：᪁䊔뮼猎ꃇ涾粴䌵䇊≊ക닷䖑捿닯┸잌諭렖灤駄጑᢯뢊⹡ⱥ⢭᳑ﱨ杠곟凃瀫虋⩥宅헎烋
[  257.718785][ T3559] usb 4-1: SerialNumber: syz
04:34:50 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0xd, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:50 executing program 2:
syz_clone3(&(0x7f00000002c0)={0x0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0), {}, &(0x7f0000000100)=""/96, 0x60, &(0x7f0000000180)=""/213, &(0x7f0000000280)=[0x0], 0x1}, 0x90)

04:34:50 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:50 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8941, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  257.763446][ T5173] raw-gadget gadget: fail, usb_ep_enable returned -22
[  257.770629][ T5173] raw-gadget gadget: fail, usb_ep_enable returned -22
04:34:51 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:51 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8911, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:51 executing program 1:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x0, 0x0, 0xff}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x7f, 0x81}}]}}}]}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x0, 0x4, 0x89, 0x0, 0x8}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x4, [{0xbc, &(0x7f00000000c0)=@string={0xbc, 0x3, "90a6616649364a34554f7dbde11ec6fef590d408e178984c0d53205a45ad78a3a7ea126e745ccdb4005a58e9a1edc390a20c71044c39599006b5f021d68ba0baa9224dd1ef1b3cf6689e8feb04b31899d26c1777ec21773f60f8a2ad7d271331ac855ae0b3aef7d90c924d6c9395a89b91ef55ec75c556ce8a8059e22f002f6b67c9ffd83584b746f02f3eb853f118b5cccce425717824f586e7c158030d1a749b9368cdad413175c6468305310ed453a6fc543de2fe890c86a6"}}, {0xbb, &(0x7f0000000180)=@string={0xbb, 0x3, "ef5f8daca86a91c8021d1d7f02330c580f6a0f4974b5bf2a97d2b6a5088df3fda8965b6f0df6aa5534993ebaa479180ffc79fd60a76ba35d066bd4412eaefbec3bcc010e888a2d77141a6fc3144dfad9d975caf82d220b9bfab7b6b8d941afc36c716b21a0de419ee6d9460297c13d264a9e05c1367b52f0be7cde6597e2ec392c1007113628fd076f85b0f99eee751f7113891ef239c041c7e31aff811a944238dabcbb0e73c7a06ae5be6dd7e5b47c3543e3f7ca414a2215"}}, {0x21, &(0x7f0000000280)=@string={0x21, 0x3, "5cf656cda57209d474b3aaac78a4259aef766b3d4ad6150487da2913332ed3"}}, {0x0, 0x0}]})

[  258.108594][ T3559] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8
04:34:51 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x1c, &(0x7f00000004c0)={0x5, 0xf, 0x1c, 0x2, [@generic={0x14, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93"}, @ptm_cap={0x3}]}})

[  258.192808][ T3559] usb 4-1: USB disconnect, device number 5
[  258.247972][ T3559] usblp0: removed
[  258.533402][ T3557] usb 2-1: new high-speed USB device number 4 using dummy_hcd
04:34:51 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, 0x0, 0x0)

04:34:51 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000600)=@lang_id={0x4}}, {0x0, 0x0}, {0x0, 0x0}]})

04:34:51 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:51 executing program 4:
syz_mount_image$ufs(&(0x7f0000000300), &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001900))

[  258.765927][   T34] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  258.774323][ T3557] usb 2-1: Using ep0 maxpacket: 8
04:34:52 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:52 executing program 4:
r0 = syz_usb_connect$cdc_ecm(0x3, 0x74, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x62, 0x1, 0x1, 0x7, 0x0, 0x20, [{{0x9, 0x4, 0x0, 0xef, 0x3, 0x2, 0x6, 0x0, 0x6, {{0xa, 0x24, 0x6, 0x0, 0x0, "4cb0a285c5"}, {0x5, 0x24, 0x0, 0x1000}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x9, 0xc1d4, 0x80}, [@mbim_extended={0x8, 0x24, 0x1c, 0x847, 0x8, 0x1}, @obex={0x5}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0xff, 0x1, 0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x10, 0x3, 0xbf, 0x81}}], {{0x9, 0x5, 0x82, 0x2, 0x200, 0x1, 0x7f, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0x0, 0x2, 0x8}}}}}]}}]}}, &(0x7f0000000900)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x250, 0xff, 0xd9, 0x2, 0x40, 0x6}, 0x134, &(0x7f00000004c0)={0x5, 0xf, 0x134, 0x5, [@generic={0xa5, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93004f27b3284a8488da6174776c9d8cb5c4c6c5af4624fb3d9283543e4aece39d117a163faf1f9ece7121ea0ed8e8e70469ae41fa000eb55b4ae26d5c207281a88de6529c22e7a595e0b33859782a568b18aae406369b66b5c8b50748f6a141f1dfe7f7ee228cd5a8abfc7dc653d9e70e062b18c1c8765414664250da357cdbe6156b63c9571df96d1d21da75ef333928c2"}, @ptm_cap={0x3}, @generic={0x75, 0x10, 0xb, "dc59ac76f07ca06a9028e482925c1e41298f95ec5c617e5668d79e860d49fcd2effbf590e97024625c17b26c1c3edcb9efd71535874fa5d43ef276dc9b45da5e68f5ad8891a3824740554ce02fd922ef5b1e63889bbde033208806d3a3b52cafd5427453fa214ae8628a83d885370c3c2de8"}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x0, 0xd, 0xb934}, @wireless={0xb, 0x10, 0x1, 0x6, 0x18, 0x16, 0x0, 0x80, 0x5}]}, 0x6, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x445}}, {0x57, &(0x7f00000006c0)=@string={0x57, 0x3, "0dc96925ff4a44cd8b49eb0229e74ea9d3000b9f1d4bd2dccbab1427f79a2b021ab79152e77d73c09dfb127bf52700dc7eed5ea1e4e2a8626bb4356dc081c241f46d85024203023bd3bb624e729a2b3a6789f50597"}}, {0xab, &(0x7f0000000740)=@string={0xab, 0x3, "85a0015b4adcdfe326fd3be13664f8bff69a74ce2238b104bb6f6c9f8761d44da50ba1d5acaf531091ec41486fb694f37d8547557a9f6ca9c5e440076d7a9b22f8acbbb28509c9a3e5e2de2d70b9860ecb54d10852242f1b99b92ebee5612cf728d9bc228c10e007c4c4b4e9b5713a4f4b6c27434f1de9c12f86e9b7c82635cc3d23e702b505da48044feece2433848d006e0855a7f4fc8eccf68ff608b9452e299d08767764eafdc8"}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x410}}, {0xab, &(0x7f0000000800)=@string={0xab, 0x3, "3a2ec8f9ad07367961837daae7b9734ad15d82bce71009cc8dcddcda607071da0787228c383ae0cecf0fe384a1a85ba95f5a54a944eaba8ec6af99071bea3575890a3796af76e12afaf05d5f910bf96e17f28d4170040bc2fe1f8ffad9b5679d9ab6156001e3504c9a2e50ddf00792effcada137f5982e1d2b7296b57805b589880800878269e1b3ffde79760fe26596a32e01962146be5ed55139a805f6b8857504be33ce520390cc"}}, {0x4, &(0x7f00000008c0)=@lang_id={0x4, 0x3, 0x438}}]})
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000a80)={0x14, &(0x7f0000000980)={0x20, 0x21, 0xb3, {0xb3, 0x11, "f4068d9055683630f6c7872f7b464933ab3c4c4aca44caeae8ae3c9fe1d814b18a484f9cfe7039b787bd076586a51492d4dd73b15f12c20e1a0f8141fe496d3021856e8467e3c1ec631811230cadf32d4c49e983495986f9c0d03f492fa098715edd76cb12c7d1a3a3315e3ca71d4e74f37a9e1e81f1cc71d3ae286420b697ce3a8a3c370956f6c1a34c2393eacbd025f396d3a1bbaec025f886394861baf24818ebf399e08e50dd9ec9cba322d150929f"}}, &(0x7f0000000a40)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000c40)={0x1c, &(0x7f0000000ac0)={0x0, 0x30, 0xca, "7b9bffd9d97ad77f9727cb22398677cb7d758589c56ce3eed299dcc5827c91d10bb7f69bb92c1c255ad6daaa61409465582bbb6fb08967888cc7d3f0b6b5e67346b7b4bdbf91356770f9af759acb45d305977ad19ed7ecc5ea440d76d1c0e99f5401318ad2b244850aa7e85b945e1d7a2e2d317b2be0f23d95895c378ef839c1f0762de01df7243b12385bfe21d67e112949323850983226b2647e4b50fc10160e79706c0021ac2f8c0d623131569d4ca7e1c6bae1ec05283032cc44fdc54271814794ae78f986b601d7"}, &(0x7f0000000bc0)={0x0, 0xa, 0x1, 0x20}, &(0x7f0000000c00)={0x0, 0x8, 0x1, 0x1}})
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000680)='/proc/cpuinfo\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
ioctl$RTC_WIE_OFF(r1, 0x7010)
pipe2(&(0x7f0000002c00)={<r2=>0xffffffffffffffff}, 0x0)
ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000000)={0x0, 0x0, {0x9, 0x0, 0x14, 0x1a, 0x1, 0x9, 0x0, 0x85, 0xfffffffffffffffc}})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r2, 0x5421, 0x0)
socket(0x1e, 0x4, 0xe)
ioctl$SIOCAX25NOUID(r1, 0x89e3, 0x0)

[  258.974162][ T3557] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 16
[  258.984440][ T3557] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1024
[  258.994973][ T3557] usb 2-1: config 1 interface 0 has no altsetting 0
[  259.023846][   T34] usb 3-1: Using ep0 maxpacket: 32
[  259.033856][ T3565] usb 6-1: new high-speed USB device number 6 using dummy_hcd
04:34:52 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x29, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

[  259.223443][   T34] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  259.277708][ T3565] usb 6-1: Using ep0 maxpacket: 32
04:34:52 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  259.394207][   T34] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  259.403889][   T34] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.412025][   T34] usb 3-1: Product: syz
[  259.416711][   T34] usb 3-1: Manufacturer: syz
[  259.421426][   T34] usb 3-1: SerialNumber: syz
[  259.424543][ T3565] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  259.464148][ T3557] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  259.473692][ T3557] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.483977][ T3557] usb 2-1: Product: 쵖犥퐉덴겪ꑸ騥盯㵫홊Еጩ⸳
[  259.492004][ T3557] usb 2-1: Manufacturer: 忯겍檨좑ᴂ缝㌂堌樏䤏땴⪿튗ꖶ贈ﷳ隨潛喪餴먾禤༘秼惽殧嶣欆䇔긮찻ก誈眭ᨔ썯䴔痙∭鬋럺뢶䇙쎯煬Ⅻ鹁Ɇ솗☽鹊섅笶精旞㧬ာᄇ⠶߽蕯聆ή፱ẉ㧲䇀：᪁䊔뮼猎ꃇ涾粴䌵䇊≊
04:34:52 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8930, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  259.545903][ T5194] raw-gadget gadget: fail, usb_ep_enable returned -22
[  259.553465][  T122] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  259.566268][ T5194] raw-gadget gadget: fail, usb_ep_enable returned -22
[  259.568402][   T34] cdc_ether: probe of 3-1:1.0 failed with error -22
04:34:52 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

[  259.774039][   T34] usb 3-1: USB disconnect, device number 2
[  259.813256][  T122] usb 5-1: Using ep0 maxpacket: 32
[  259.928119][ T3557] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8
[  259.992746][ T3557] usb 2-1: USB disconnect, device number 4
[  260.033455][ T3557] usblp0: removed
[  260.045212][  T122] usb 5-1: config 1 interface 0 altsetting 239 endpoint 0x3 has invalid wMaxPacketSize 0
[  260.055562][  T122] usb 5-1: config 1 interface 0 altsetting 239 bulk endpoint 0x3 has invalid maxpacket 0
[  260.065816][  T122] usb 5-1: config 1 interface 0 has no altsetting 0
[  260.114093][ T3565] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  260.123700][ T3565] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.131850][ T3565] usb 6-1: SerialNumber: syz
[  260.217101][ T3565] cdc_ether: probe of 6-1:1.0 failed with error -22
[  260.311589][  T122] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  260.321024][  T122] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.329490][  T122] usb 5-1: Product: ꂅ嬁ﴦ搶뿸髶카㠢ұ澻齬憇䷔஥햡꾬ၓ䡁뙯蕽啇齺ꥬ݀穭⊛곸늻অꏉⷞ륰ຆ哋࣑⑒ᬯ릙븮懥⊼ႌߠ쓄熵伺汋䌧ᵏ쇩蘯럩⛈찵⌽˧ֵ䣚伄컮㌤趄渀唈軼뤈⹅鴩瘈摷﷪
04:34:53 executing program 1:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x0, 0x0, 0xff}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x7f, 0x81}}]}}}]}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x0, 0x4, 0x89, 0x0, 0x8}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x4, [{0xbc, &(0x7f00000000c0)=@string={0xbc, 0x3, "90a6616649364a34554f7dbde11ec6fef590d408e178984c0d53205a45ad78a3a7ea126e745ccdb4005a58e9a1edc390a20c71044c39599006b5f021d68ba0baa9224dd1ef1b3cf6689e8feb04b31899d26c1777ec21773f60f8a2ad7d271331ac855ae0b3aef7d90c924d6c9395a89b91ef55ec75c556ce8a8059e22f002f6b67c9ffd83584b746f02f3eb853f118b5cccce425717824f586e7c158030d1a749b9368cdad413175c6468305310ed453a6fc543de2fe890c86a6"}}, {0xbb, &(0x7f0000000180)=@string={0xbb, 0x3, "ef5f8daca86a91c8021d1d7f02330c580f6a0f4974b5bf2a97d2b6a5088df3fda8965b6f0df6aa5534993ebaa479180ffc79fd60a76ba35d066bd4412eaefbec3bcc010e888a2d77141a6fc3144dfad9d975caf82d220b9bfab7b6b8d941afc36c716b21a0de419ee6d9460297c13d264a9e05c1367b52f0be7cde6597e2ec392c1007113628fd076f85b0f99eee751f7113891ef239c041c7e31aff811a944238dabcbb0e73c7a06ae5be6dd7e5b47c3543e3f7ca414a2215"}}, {0x21, &(0x7f0000000280)=@string={0x21, 0x3, "5cf656cda57209d474b3aaac78a4259aef766b3d4ad6150487da2913332ed3"}}, {0x0, 0x0}]})

[  260.354681][  T122] usb 5-1: Manufacturer: 줍╩䫿쵄䦋˫ꥎÓ鼋䬝ꯋ✔髷ȫ뜚劑緧쁳ﮝ笒⟵ꅞ抨둫洵臀䇂淴ʅ͂㬂믓乢驲㨫襧׵
[  260.369259][  T122] usb 5-1: SerialNumber: А
[  260.441745][ T3565] usb 6-1: USB disconnect, device number 6
04:34:53 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:53 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203843})

[  260.833861][    T5] usb 2-1: new high-speed USB device number 5 using dummy_hcd
04:34:54 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891c, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:54 executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x7, 0x2, &(0x7f0000000000)=@raw=[@map_idx], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80)

04:34:54 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:54 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8915, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  261.025449][  T122] cdc_ether: probe of 5-1:1.0 failed with error -22
[  261.090292][  T122] usb 5-1: USB disconnect, device number 5
[  261.105105][    T5] usb 2-1: Using ep0 maxpacket: 8
[  261.335634][    T5] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 16
[  261.345741][    T5] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1024
[  261.356094][    T5] usb 2-1: config 1 interface 0 has no altsetting 0
04:34:54 executing program 4:
syz_genetlink_get_family_id$net_dm(0x0, 0xffffffffffffffff)

04:34:54 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x5f5e0ff, 0x1000}, 0x20)

04:34:54 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8934, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:54 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r0, 0x1, 0x26}, 0x90)

04:34:54 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000000000300000000050000000200000000000000000000000000000300000000020000000100000000000000002c"], &(0x7f00000000c0)=""/234, 0x4a, 0xea, 0x1}, 0x20)

[  261.813935][    T5] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  261.823337][    T5] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.831540][    T5] usb 2-1: Product: 쵖犥퐉덴겪ꑸ騥盯㵫홊Еጩ⸳
[  261.841417][    T5] usb 2-1: Manufacturer: 忯겍檨좑ᴂ缝㌂堌樏䤏땴⪿튗ꖶ贈ﷳ隨潛喪餴먾禤༘秼惽殧嶣欆䇔긮찻ก誈眭ᨔ썯䴔痙∭鬋럺뢶䇙쎯煬Ⅻ鹁Ɇ솗☽鹊섅笶精旞㧬ာᄇ⠶߽蕯聆ή፱ẉ㧲䇀：᪁䊔뮼猎ꃇ涾粴䌵䇊≊
[  261.974127][ T5223] raw-gadget gadget: fail, usb_ep_enable returned -22
[  261.981442][ T5223] raw-gadget gadget: fail, usb_ep_enable returned -22
[  262.338152][    T5] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8
[  262.369164][    T5] usb 2-1: USB disconnect, device number 5
[  262.383602][    T5] usblp0: removed
04:34:55 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x3, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:34:55 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'syztnl0\x00', 0x0})

04:34:55 executing program 1:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x10)

04:34:55 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

04:34:55 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x5, &(0x7f00000004c0)={0x5, 0xf, 0x5}})

04:34:55 executing program 4:
syz_emit_ethernet(0xe, &(0x7f00000002c0)={@broadcast, @remote, @val, {@generic={0x8847}}}, 0x0)

04:34:56 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

04:34:56 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8982, 0x0)

04:34:56 executing program 5:
bpf$BPF_BTF_LOAD(0x15, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)

[  263.175184][    T5] usb 3-1: new high-speed USB device number 3 using dummy_hcd
04:34:56 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  263.433166][    T5] usb 3-1: Using ep0 maxpacket: 32
04:34:56 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

04:34:56 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0xffffffff], [0x4000, 0x0, 0xfffffffc], [], [0x8000000000000000]})

04:34:56 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:34:56 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8949, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  263.633513][    T5] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
04:34:56 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  263.814076][    T5] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  263.823520][    T5] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.831712][    T5] usb 3-1: Product: syz
[  263.836557][    T5] usb 3-1: Manufacturer: syz
[  263.841326][    T5] usb 3-1: SerialNumber: syz
04:34:56 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

[  264.007513][    T5] cdc_ether: probe of 3-1:1.0 failed with error -22
[  264.210253][    T5] usb 3-1: USB disconnect, device number 3
04:34:57 executing program 3:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x6, 0x1, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:57 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b0, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:57 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

04:34:57 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

04:34:57 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x9, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:57 executing program 5:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0205647, &(0x7f0000000040)={0x0, 0x2, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:58 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:58 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0xc, &(0x7f00000004c0)={0x5, 0xf, 0xc, 0x2, [@generic={0x4, 0x10, 0x0, "a4"}, @ptm_cap={0x3}]}, 0x2, [{0x0, 0x0}, {0x0, 0x0}]})
ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010)

04:34:58 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8937, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:34:58 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000d50000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x1, 0x26}, 0x90)

04:34:58 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

04:34:58 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0585611, &(0x7f0000000040)={0x0, 0x8, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:34:58 executing program 0:
ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SIGNAL_MSI(0xffffffffffffffff, 0x4020aea5, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_PPC_GET_PVINFO(0xffffffffffffffff, 0x4080aea1, 0x0)

04:34:58 executing program 3:
ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304)
r0 = openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$vcsu(&(0x7f0000000180), 0x3, 0x100c2)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r0, 0x3312, 0x0)
syz_open_dev$sndpcmp(0x0, 0x100000001, 0x0)

04:34:58 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000000c0), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @loopback}]}, 0x2c}}, 0x0)

04:34:58 executing program 1:
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  265.484358][ T3557] usb 6-1: new high-speed USB device number 7 using dummy_hcd
04:34:58 executing program 2:
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)

[  265.730295][ T3557] usb 6-1: Using ep0 maxpacket: 32
04:34:58 executing program 3:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
write$fb(r0, &(0x7f0000000040)="b3", 0x1)

04:34:58 executing program 1:
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  265.933829][ T3557] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  266.183691][ T3557] usb 6-1: string descriptor 0 read error: -22
[  266.190196][ T3557] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  266.199764][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.328768][ T3557] cdc_ether: probe of 6-1:1.0 failed with error -22
[  266.530657][ T3557] usb 6-1: USB disconnect, device number 7
04:35:00 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x0, 0x0, 0x200}, 0x48)

04:35:00 executing program 1:
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

04:35:00 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000600)=@lang_id={0x4}}, {0x0, 0x0}, {0x0, 0x0}]})

04:35:00 executing program 4:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001100)=ANY=[@ANYBLOB="101000005304"], 0x1010}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)

04:35:00 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xb, [@struct={0x4, 0x1, 0x0, 0x4, 0x1, 0x0, [{0xa}]}]}, {0x0, [0x0, 0x0, 0x0, 0x5f, 0x30, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000280)=""/4096, 0x3b, 0x1000, 0x1}, 0x20)

04:35:00 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x6}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

[  267.164929][   T24] audit: type=1107 audit(1649046900.226:2): pid=5317 uid=0 auid=4294967295 ses=4294967295 subj==unconfined msg=''
04:35:00 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8942, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:00 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}, {0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:35:00 executing program 3:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@obex={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x0, 0x0}, {0x0, 0x0}]})

04:35:00 executing program 1:
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

04:35:00 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x8, &(0x7f00000004c0)={0x5, 0xf, 0x8, 0x1, [@generic={0x3}]}})

[  267.483360][   T34] usb 3-1: new high-speed USB device number 4 using dummy_hcd
04:35:00 executing program 4:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$vcsu(&(0x7f0000000180), 0x0, 0x100c2)

[  267.723695][   T34] usb 3-1: Using ep0 maxpacket: 32
04:35:00 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8918, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:00 executing program 1:
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  267.844176][   T34] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  267.884036][  T122] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  268.023393][    T5] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  268.143237][  T122] usb 4-1: Using ep0 maxpacket: 32
[  268.274288][  T122] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  268.287810][    T5] usb 6-1: Using ep0 maxpacket: 32
[  268.413660][   T34] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  268.423174][   T34] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.431369][   T34] usb 3-1: SerialNumber: syz
[  268.475761][   T34] cdc_ether: probe of 3-1:1.0 failed with error -22
[  268.504041][    T5] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  268.554145][  T122] usb 4-1: string descriptor 0 read error: -22
[  268.560634][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  268.570408][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.625771][  T122] cdc_ether: probe of 4-1:1.0 failed with error -22
[  268.676750][    T5] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  268.686247][    T5] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.696622][    T5] usb 6-1: Product: syz
[  268.700975][    T5] usb 6-1: Manufacturer: syz
[  268.706313][    T5] usb 6-1: SerialNumber: syz
[  268.718135][  T122] usb 3-1: USB disconnect, device number 4
[  268.773027][    T5] cdc_ether: probe of 6-1:1.0 failed with error -22
[  268.840831][    T5] usb 4-1: USB disconnect, device number 6
[  268.969523][ T3565] usb 6-1: USB disconnect, device number 8
04:35:02 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x8, &(0x7f00000004c0)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}})

04:35:02 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a1, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:02 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:35:02 executing program 1:
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f00000012c0)=ANY=[]})

[  269.209783][ T1197] ieee802154 phy0 wpan0: encryption failed: -22
[  269.217792][ T1197] ieee802154 phy1 wpan1: encryption failed: -22
04:35:02 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0x60, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

04:35:02 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203843, 0x0, [0x7], [0x900]})

04:35:02 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)

04:35:02 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x11}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:35:02 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8924, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  269.763615][   T34] usb 3-1: new high-speed USB device number 5 using dummy_hcd
04:35:02 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0x60, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

04:35:02 executing program 4:
syz_usb_connect$cdc_ecm(0x3, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x7, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x6, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x0, 0x0, 0x8}}}}}]}}]}}, 0x0)

04:35:02 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203843, 0x0, [0x7], [0x900]})

[  270.005965][   T34] usb 3-1: Using ep0 maxpacket: 32
[  270.204108][   T34] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  270.364208][   T34] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  270.373678][   T34] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.381875][   T34] usb 3-1: Product: syz
[  270.386472][   T34] usb 3-1: Manufacturer: syz
[  270.391197][   T34] usb 3-1: SerialNumber: syz
[  270.403278][ T3565] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  270.488949][   T34] cdc_ether: probe of 3-1:1.0 failed with error -22
[  270.653152][ T3565] usb 5-1: Using ep0 maxpacket: 32
[  270.693785][   T34] usb 3-1: USB disconnect, device number 5
[  270.783598][ T3565] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  270.993754][ T3565] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  271.003325][ T3565] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.011463][ T3565] usb 5-1: Product: syz
[  271.015930][ T3565] usb 5-1: Manufacturer: syz
[  271.020631][ T3565] usb 5-1: SerialNumber: syz
04:35:04 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a3, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:04 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8932, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:04 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)

04:35:04 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f3, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}})

04:35:04 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b1, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  271.385530][ T3565] cdc_ether: probe of 5-1:1.0 failed with error -22
04:35:04 executing program 3:
syz_usb_connect$cdc_ecm(0x3, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@obex={0x5}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x40}}}}}]}}]}}, 0x0)

04:35:04 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891f, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  271.476217][ T3565] usb 5-1: USB disconnect, device number 6
04:35:04 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)

04:35:04 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'ip_vti0\x00', &(0x7f0000000040)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}})

04:35:04 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x75, &(0x7f00000004c0)={0x5, 0xf, 0x75, 0x1, [@generic={0x70, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93004f27b3284a8488da6174776c9d8cb5c4c6c5af4624fb3d9283543e4aece39d117a163faf1f9ece7121ea0ed8e8e70469ae41fa000eb55b4ae26d5c207281a88de6529c22e7a595e0b33859782a568b18aae406369b66b5c8b50748"}]}})

04:35:04 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891a, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:05 executing program 0:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x200040, 0x0)

04:35:05 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x52, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x40, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@call_mgmt={0x5}]}}}]}}]}}, 0x0)

04:35:05 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', 0x0})

[  272.113780][ T3557] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  272.140580][  T122] usb 4-1: new high-speed USB device number 7 using dummy_hcd
04:35:05 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203843, 0x0, [0x7]})

[  272.353687][ T3557] usb 3-1: Using ep0 maxpacket: 32
[  272.393682][  T122] usb 4-1: Using ep0 maxpacket: 32
04:35:05 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', 0x0})

04:35:05 executing program 0:
syz_open_dev$dri(&(0x7f0000000000), 0x80000003, 0x8d202)

[  272.534057][  T122] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  272.544053][  T122] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  272.557670][ T3557] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  272.573836][ T3565] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  272.725291][ T3557] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  272.734788][ T3557] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.743080][ T3557] usb 3-1: Product: syz
[  272.747366][ T3557] usb 3-1: Manufacturer: syz
[  272.752254][ T3557] usb 3-1: SerialNumber: syz
[  272.803499][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  272.812731][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.820993][  T122] usb 4-1: Product: syz
[  272.825421][  T122] usb 4-1: Manufacturer: syz
[  272.830136][  T122] usb 4-1: SerialNumber: syz
[  272.838130][ T3565] usb 6-1: Using ep0 maxpacket: 32
[  272.866578][ T3557] cdc_ether: probe of 3-1:1.0 failed with error -22
[  272.965114][ T3565] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  273.069303][ T3557] usb 3-1: USB disconnect, device number 6
[  273.094470][ T5389] raw-gadget gadget: fail, usb_ep_enable returned -22
[  273.146613][ T3565] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  273.156335][ T3565] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.164700][ T3565] usb 6-1: Product: syz
[  273.168987][ T3565] usb 6-1: Manufacturer: syz
[  273.173797][ T3565] usb 6-1: SerialNumber: syz
[  273.276119][ T3565] cdc_ether: probe of 6-1:1.0 failed with error -22
[  273.356376][  T122] cdc_ether: probe of 4-1:1.0 failed with error -71
[  273.374573][  T122] usb 4-1: USB disconnect, device number 7
[  273.477635][ T3565] usb 6-1: USB disconnect, device number 9
04:35:06 executing program 3:
bind$llc(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SIGNAL_MSI(0xffffffffffffffff, 0x4020aea5, &(0x7f0000003280)={0x0, 0x0, 0x2})

04:35:06 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip_vti0\x00', 0x0})

04:35:06 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x30313050})

04:35:06 executing program 0:
r0 = memfd_create(&(0x7f00000001c0)='/proc\xcc\x1aM\xf5|\x8d\x8b\x96]5\x1c\xb5\xa7/ca[N\xed\xfd\xad<\xcc\xd1V\xee\x01\xf1\x17\x926\xfe\xbf\xbb\xa4\xcen>>x\xb4\xf1)*\xf6\xc1\"\x14\xde\xed\xb39z\x04\xe7\xdb\xb0\x94,>zS\x82\xb2\xef\"EAx/O*\xd6\x12\xc2\\\xe9q\x12.\x03\xaa\x9e\xe1@\x92\xe6\xfb8\\\r<\xe6\xd5\xf4uV\x91(^\x8dt\xa1\xfe\xdcpR~\x83\x00\xff}\r}\xae3?B\xe7\xc3@\n\xe7\xc2\xe2\'q\x13n\xa0\xa0\x8a\xe6\xc8\x11c\x85\x826\x92\"bB%D\x8b\xcclk\xc3\x1e\r\xff\xe0i\'\x8d\xb8\x87\x02\xccT\xaf\x95\xff\xec\x0f\xab\n\xd6@', 0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0)

04:35:06 executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0xa, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:35:07 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0xc, &(0x7f00000004c0)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7}]}})

04:35:07 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8983, 0x0)

04:35:07 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8923, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:07 executing program 2:
bind$qrtr(0xffffffffffffffff, 0x0, 0x0)

04:35:07 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc0189436, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, [0x7]})

04:35:07 executing program 3:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x2, &(0x7f0000000180)=@string={0x2}}, {0x0, 0x0}]})

04:35:07 executing program 2:
syz_usb_connect$printer(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x2}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x7f, 0x81}}]}}}]}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x200, 0x0, 0x89}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x4, [{0xbc, &(0x7f00000000c0)=@string={0xbc, 0x3, "90a6616649364a34554f7dbde11ec6fef590d408e178984c0d53205a45ad78a3a7ea126e745ccdb4005a58e9a1edc390a20c71044c39599006b5f021d68ba0baa9224dd1ef1b3cf6689e8feb04b31899d26c1777ec21773f60f8a2ad7d271331ac855ae0b3aef7d90c924d6c9395a89b91ef55ec75c556ce8a8059e22f002f6b67c9ffd83584b746f02f3eb853f118b5cccce425717824f586e7c158030d1a749b9368cdad413175c6468305310ed453a6fc543de2fe890c86a6"}}, {0xf7, &(0x7f0000000180)=@string={0xf7, 0x3, "ef5f8daca86a91c8021d1d7f02330c580f6a0f4974b5bf2a97d2b6a5088df3fda8965b6f0df6aa5534993ebaa479180ffc79fd60a76ba35d066bd4412eaefbec3bcc010e888a2d77141a6fc3144dfad9d975caf82d220b9bfab7b6b8d941afc36c716b21a0de419ee6d9460297c13d264a9e05c1367b52f0be7cde6597e2ec392c1007113628fd076f85b0f99eee751f7113891ef239c041c7e31aff811a944238dabcbb0e73c7a06ae5be6dd7e5b47c3543e3f7ca414a22150df7b291457f63efb23825c5da8cc7befa16b86470c4991113af188ab8612e652cad28d11c68fc6067cde9dfacc3512b704b86652a04faced5cb706e"}}, {0x10, &(0x7f0000000280)=@string={0x10, 0x3, "5cf656cda57209d474b3aaac78a4"}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x427}}]})
socket(0x2c, 0x4, 0x2)

04:35:07 executing program 5:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0xa, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:35:07 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8995, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:07 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852})

[  274.663301][ T3565] usb 1-1: new high-speed USB device number 3 using dummy_hcd
04:35:07 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002"], &(0x7f00000000c0)=""/234, 0x4a, 0xea, 0x1}, 0x20)

[  274.854132][  T122] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  274.910971][ T3565] usb 1-1: Using ep0 maxpacket: 32
04:35:08 executing program 5:
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)

[  275.034177][ T3557] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  275.114220][  T122] usb 4-1: Using ep0 maxpacket: 8
[  275.141239][ T3565] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  275.283282][ T3557] usb 3-1: Using ep0 maxpacket: 8
[  275.284532][  T122] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  275.342494][  T122] usb 4-1: language id specifier not provided by device, defaulting to English
[  275.359533][ T3565] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  275.369212][ T3565] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.377898][ T3565] usb 1-1: Product: syz
[  275.382213][ T3565] usb 1-1: Manufacturer: syz
[  275.387059][ T3565] usb 1-1: SerialNumber: syz
[  275.484316][ T3557] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 16
[  275.494451][ T3557] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1024
[  275.504880][ T3557] usb 3-1: config 1 interface 0 has no altsetting 0
[  275.536251][ T3565] cdc_ether: probe of 1-1:1.0 failed with error -22
[  275.723924][ T3557] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  275.733601][ T3557] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.740591][ T3565] usb 1-1: USB disconnect, device number 3
[  275.741723][ T3557] usb 3-1: Product: 쵖犥퐉덴겪ꑸ
[  275.741814][ T3557] usb 3-1: Manufacturer: 忯겍檨좑ᴂ缝㌂堌樏䤏땴⪿튗ꖶ贈ﷳ隨潛喪餴먾禤༘秼惽殧嶣欆䇔긮찻ก誈眭ᨔ썯䴔痙∭鬋럺뢶䇙쎯煬Ⅻ鹁Ɇ솗☽鹊섅笶精旞㧬ာᄇ⠶߽蕯聆ή፱ẉ㧲䇀：᪁䊔뮼猎ꃇ涾粴䌵䇊≊ക닷䖑捿닯┸잌諭렖灤駄጑᢯뢊⹡ⱥ⢭᳑ﱨ杠곟凃瀫虋⩥宅헎烋
[  275.752253][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  275.753697][ T3557] usb 3-1: SerialNumber: Ч
[  275.788430][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.790624][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.790731][  T122] usb 4-1: Product: syz
[  275.790808][  T122] usb 4-1: SerialNumber: syz
[  275.864798][ T5427] raw-gadget gadget: fail, usb_ep_enable returned -22
[  275.871971][ T5427] raw-gadget gadget: fail, usb_ep_enable returned -22
[  276.092175][ T3565] usb 4-1: USB disconnect, device number 8
[  276.188171][ T3557] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8
[  276.204188][ T3557] usb 3-1: USB disconnect, device number 7
[  276.218719][ T3557] usblp0: removed
04:35:09 executing program 0:
r0 = syz_open_dev$vcsu(&(0x7f0000000180), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, 0x0)

04:35:09 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852})

04:35:09 executing program 1:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)

04:35:09 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @multicast2}}}})

04:35:09 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x80108906, 0x0)

04:35:09 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0xa, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:35:09 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x6, 0x1}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:35:09 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000010c0))

04:35:09 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852})

04:35:09 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x34324241})

04:35:10 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852})

04:35:10 executing program 5:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)

04:35:10 executing program 3:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)

04:35:10 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x890c, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:10 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x19, &(0x7f00000004c0)={0x5, 0xf, 0x19, 0x1, [@generic={0x14, 0x10, 0xa, "a4784472eab65cdca889ea16f87559df93"}]}})

04:35:10 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0x10, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:35:10 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x2, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:35:10 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000340), 0x0, 0x2)
ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000380)={0x7, @raw_data="bef7f225929788090082b0fc90ab4a6cd9dc90d8855d704bcdfc32ad58f7f0c0ce05b056ab42864ba16e5b64b543bba7c6b15de78bc32026656a748e3ae576a530064dccf9648237edc50ab5a8f89305a03952399bce38294936d0b7d5e6626ba9df63277e2a175348a9a8cdb806115c18bd02faebd1e94352cf3acd50a9cf044d69dda5958dddd2d0679fb1f53b7b616e19a313ccd2aa22e7442033ecd2305f8ab3dbc8d836293f3eb8949c7cd2623b89b12dac28ade67b17b3021c48634fd29d54c20f6997efd9"})

04:35:10 executing program 3:
syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0xc0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x7, 0x1, 0x1, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10, 0x0, 0x0, 0xff}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x7f, 0x81}}]}}}]}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x0, 0x4, 0x89, 0x0, 0x8}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x4, [{0xbc, &(0x7f00000000c0)=@string={0xbc, 0x3, "90a6616649364a34554f7dbde11ec6fef590d408e178984c0d53205a45ad78a3a7ea126e745ccdb4005a58e9a1edc390a20c71044c39599006b5f021d68ba0baa9224dd1ef1b3cf6689e8feb04b31899d26c1777ec21773f60f8a2ad7d271331ac855ae0b3aef7d90c924d6c9395a89b91ef55ec75c556ce8a8059e22f002f6b67c9ffd83584b746f02f3eb853f118b5cccce425717824f586e7c158030d1a749b9368cdad413175c6468305310ed453a6fc543de2fe890c86a6"}}, {0xf0, &(0x7f0000000180)=@string={0xf0, 0x3, "ef5f8daca86a91c8021d1d7f02330c580f6a0f4974b5bf2a97d2b6a5088df3fda8965b6f0df6aa5534993ebaa479180ffc79fd60a76ba35d066bd4412eaefbec3bcc010e888a2d77141a6fc3144dfad9d975caf82d220b9bfab7b6b8d941afc36c716b21a0de419ee6d9460297c13d264a9e05c1367b52f0be7cde6597e2ec392c1007113628fd076f85b0f99eee751f7113891ef239c041c7e31aff811a944238dabcbb0e73c7a06ae5be6dd7e5b47c3543e3f7ca414a22150df7b291457f63efb23825c5da8cc7befa16b86470c4991113af188ab8612e652cad28d11c68fc6067cde9dfacc3512b704b86652a"}}, {0x23, &(0x7f0000000280)=@string={0x23, 0x3, "5cf656cda57209d474b3aaac78a4259aef766b3d4ad6150487da2913332ed3cf7a"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x801}}]})

04:35:10 executing program 2:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000400)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0xb, &(0x7f00000004c0)={0x5, 0xf, 0xb, 0x2, [@generic={0x3}, @ptm_cap={0x3}]}})

04:35:10 executing program 1:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2}}]}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x2, &(0x7f00000000c0)=@string={0x2}}, {0x4, &(0x7f0000000280)=@string={0x4, 0x3, "5cf6"}}, {0x0, 0x0}]})

04:35:10 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x891d, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:11 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8904, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  277.943607][ T3565] usb 1-1: new high-speed USB device number 4 using dummy_hcd
04:35:11 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x890a, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  278.153409][  T122] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  278.205380][ T3565] usb 1-1: Using ep0 maxpacket: 32
[  278.253700][ T3557] usb 3-1: new high-speed USB device number 8 using dummy_hcd
04:35:11 executing program 4:
getitimer(0x2, &(0x7f0000000280))

04:35:11 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x1a, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

[  278.343326][   T34] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  278.403965][  T122] usb 4-1: Using ep0 maxpacket: 8
[  278.444717][ T3565] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  278.493243][ T3557] usb 3-1: Using ep0 maxpacket: 32
[  278.583422][   T34] usb 2-1: Using ep0 maxpacket: 8
[  278.641428][  T122] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x1 has invalid maxpacket 16
[  278.651885][  T122] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1024
[  278.662262][  T122] usb 4-1: config 1 interface 0 has no altsetting 0
[  278.669994][ T3565] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  278.679556][ T3565] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.688169][ T3565] usb 1-1: Product: syz
[  278.692465][ T3565] usb 1-1: Manufacturer: syz
[  278.694567][ T3557] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  278.697354][ T3565] usb 1-1: SerialNumber: syz
[  278.712669][   T34] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  278.725337][   T34] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  278.737468][   T34] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  278.837857][ T3565] cdc_ether: probe of 1-1:1.0 failed with error -22
[  278.893903][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  278.894072][   T34] usb 2-1: language id specifier not provided by device, defaulting to English
[  278.903250][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.903359][  T122] usb 4-1: Product: 쵖犥퐉덴겪ꑸ騥盯㵫홊Еጩ⸳쿓
[  278.903457][  T122] usb 4-1: Manufacturer: 忯겍檨좑ᴂ缝㌂堌樏䤏땴⪿튗ꖶ贈ﷳ隨潛喪餴먾禤༘秼惽殧嶣欆䇔긮찻ก誈眭ᨔ썯䴔痙∭鬋럺뢶䇙쎯煬Ⅻ鹁Ɇ솗☽鹊섅笶精旞㧬ာᄇ⠶߽蕯聆ή፱ẉ㧲䇀：᪁䊔뮼猎ꃇ涾粴䌵䇊≊ക닷䖑捿닯┸잌諭렖灤駄጑᢯뢊⹡ⱥ⢭᳑ﱨ杠곟凃瀫虋⩥
[  278.903641][  T122] usb 4-1: SerialNumber: ࠁ
[  278.925189][ T3557] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  278.962738][    C1] vkms_vblank_simulate: vblank timer overrun
[  278.986912][ T3557] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.995225][ T3557] usb 3-1: Product: syz
[  278.999576][ T3557] usb 3-1: Manufacturer: syz
[  279.004457][ T3557] usb 3-1: SerialNumber: syz
[  279.005459][ T5479] raw-gadget gadget: fail, usb_ep_enable returned -22
[  279.020786][ T5479] raw-gadget gadget: fail, usb_ep_enable returned -22
[  279.051110][    T5] usb 1-1: USB disconnect, device number 4
[  279.316295][ T3557] cdc_ether: probe of 3-1:1.0 failed with error -22
[  279.361740][  T122] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 3 proto 1 vid 0x0525 pid 0xA4A8
[  279.384543][   T34] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  279.393881][   T34] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.396023][  T122] usb 4-1: USB disconnect, device number 9
[  279.402053][   T34] usb 2-1: Manufacturer: 
[  279.402142][   T34] usb 2-1: SerialNumber: syz
[  279.447717][  T122] usblp0: removed
[  279.563747][ T3557] usb 3-1: USB disconnect, device number 8
04:35:12 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x1000000, 0x0, 0x0, 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:35:12 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8916, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:12 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0xd, 0x1, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

[  279.743946][ T3559] usb 2-1: USB disconnect, device number 6
04:35:12 executing program 5:
syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[{}]}}}]}}]}}, 0x0)

04:35:13 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203843, 0x0, [0x7], [0x600]})

04:35:13 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8913, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:13 executing program 4:
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0xc9, 0x0, 0xc})
ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f00000000c0))
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r0, 0x4080aea1, 0x0)
r1 = socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), 0xffffffffffffffff)
syz_usb_control_io$printer(0xffffffffffffffff, &(0x7f0000000580)={0x14, &(0x7f0000000500)={0x60, 0x0, 0x2, {0x2}}, &(0x7f0000000540)={0x0, 0x3, 0x4, @lang_id={0x4}}}, &(0x7f0000000800)={0x34, &(0x7f00000005c0)={0x40, 0x6, 0x5a, "e2cbc164c1045a78bdbb79a428706e4f851278db7ad63a926ae98f8966979f265c523905da6e824db5b2a730cd4df8120fa695107ec6c472f1d1bfb532d4b3db5405bb5eb4d09f1700f3212afd0820a4e4749f6379fa5a3a0f0b"}, &(0x7f0000000680)={0x0, 0xa, 0x1}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000700)={0x20, 0x0, 0x77, {0x75, "38c1b30e1419906ad488ed186c64a1e85aa6d3b232e9144bba0fd4560d0612c1fae662e5246a61f1caa082d31030237ab1dc0a57cede156554131f88d2eb1086ae0887042932673258ee3048ef9ca8a4858ab718a07be0b9b8508573a984bd71d65a1bd0aef7c1d49d29fc5ed9960a020f19999599"}}, &(0x7f0000000780)={0x20, 0x1, 0x1, 0xff}, 0x0})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f0000001cc0)=[{&(0x7f0000000840)}, {&(0x7f0000000880)=',', 0x1}, {&(0x7f0000000980)="06007458faddc6e19ce9e075583c6c85bc217f0416ca23f68d58169feb3986b1370fb030107b3140b95586beaf36f7475ba3df2c6537e5520866b7a051d158dbab6a470cf395e195920c0fa1491a3b234111f44b2e2f5ca832a133088f64bfa78c94cf5a87ef0f6695", 0x69}, {&(0x7f0000000a00)="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", 0xff0}, {0x0}, {&(0x7f0000001bc0)="927ec0da8603c412615404d2c0785f3d5c25a3e4f78f3d7a17d47a8934264a896e0d4ed1306ce60d3340270f44286dbe29ae2974514a8af28187d3c7e2ddb24322dd45a4ad2ed8b411789673c53dde4a7e3078aaffbb935f6a4f1f4ea4f8a299fe48b210e561acfd78a90f1e00a312da22192c62", 0x74}, {&(0x7f0000001c40)="617702349186d3541704d5ade2082f4c36d95a6cd666307dc7ca6d60e0c507b7514ee862efe918437a4e4ede0b21fc137f4ed7e02ec23da1bca561be7d52d17800f3072812f471dc99e78d57d18c18024868221cd0395d2a57b56ecc74e4a67a785003b45b25b0d6e2caebea95f72e05c3", 0x71}], 0x7, &(0x7f0000001d40)=[{0x5f0, 0x109, 0xa30, "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"}, {0xb0, 0x0, 0x3, "13cbfa8b307350312e85181114ebb3d1c31894814fe173740ad2d2a8c4b03cae555c5134890629c0ac63179c7b723d34eb291f05601992f4098c119b51eca1b1cf36b1aec30f10273b4a9ad3398b820f3718fad0782707c35a280e9ad256d3791289b1c02287ea897c6c61fbee22809e63ff700396588227e3cba17e8aa00136afc351fdca2f44acd2f59622985f927a3eb6a42d4c66fdd55822"}, {0x10, 0x29a4679e7dfc807a, 0x10000}, {0x38, 0x118, 0x8, "46a887aeeec062014a908878298c8fd8d8a1bd33b6955ec61ffe36cc14a0a6d0a91778db4cbf4fc6"}, {0x110, 0x110, 0x0, "312145898f530bb395c60c194dee7297a32a49741a6beed1076e0d68a98182a6a1149ccefbf46412ca8280de1d72db6520ad660ec3741496f35d87ed76399214dbb5c19bbccdab75583beebfa0a02264ecc7ee869ab8c074f14e6c4802e90d4d480cc6dfa34eec6e0963d4b73df971e494faf6d7d9c2de3b5645f22702d8ac3a3340571c4d7fb4148de898e7eb280d174e404d7a38939609f4d2b7cb58aa8c58d320024daf338c12c8dcdd410a658a8a27134a1ae325b1a93a848ee85066aeb0e198bdee95ad44dd06acd3566bd63ebdacfcbe8bdec1d49d6a48480ebd3ab113bf89114ea2fc5fbf29d74f9ee8ffdd08ce8acfea482e354fc7"}, {0x90, 0x6, 0x3ff, "1401ce75573371b05d2d0f680a2db60a23985c649b75d13d3922b4ea75501ab12205393cac5553773dc3adfb6075331bb7f8cfe7dbf2cbfec69ae4187d8ad1779e03c520f2cd71c94b3a380ce5aafa49519fd08e1688b9b124205f371736595dd87d6cd50b143affae7629dfeed0dc1c08abf2ec5456119cd47a537ce5af26"}, {0x78, 0x29, 0xc0b, "b984ad7bd7239bfa6cd6d1a115742607c6191495095e51842d55db346a4e25f4fa7a1ee5a70cf5fdf95bf25b5e44d6ebd77f154da6e64c8d4e82b3493dad5380b4db5b414869d4df2def3a5775aeef9acb24084750e6390b40daa48d540efb94c8e9cab06cf79184"}, {0x28, 0x0, 0x4, "f0fa46197d0a31f1c32911e2ec63a68a9a64fa06b6c5"}], 0x928}, 0x2c000004)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, 0x0)
ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, 0x0)

04:35:13 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x0, 0x2})

04:35:13 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x8000000000000000]})

04:35:13 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0xe, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

[  280.513239][ T3557] usb 6-1: new high-speed USB device number 10 using dummy_hcd
04:35:13 executing program 3:
syz_usb_connect$cdc_ecm(0x0, 0x57, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x45, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@obex={0x5}, @call_mgmt={0x5}]}}}]}}]}}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x4, &(0x7f0000000600)=@lang_id={0x4}}, {0x0, 0x0}, {0x0, 0x0}]})

04:35:13 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8971, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  280.753233][ T3557] usb 6-1: Using ep0 maxpacket: 32
04:35:13 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macvtap0\x00'})

[  280.887067][ T3557] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.898366][ T3557] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.908514][ T3557] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  280.918588][ T3557] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  280.928692][ T3557] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  280.938898][ T3557] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
04:35:14 executing program 2:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000000)={0x1a, 0x338, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x10)

04:35:14 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8935, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  281.214211][   T34] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  281.284061][ T3557] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  281.295826][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  281.304887][ T3557] usb 6-1: Product: syz
[  281.309188][ T3557] usb 6-1: Manufacturer: syz
[  281.314010][ T3557] usb 6-1: SerialNumber: syz
[  281.456440][ T3557] cdc_ether: probe of 6-1:1.0 failed with error -22
[  281.472504][   T34] usb 4-1: Using ep0 maxpacket: 32
[  281.594174][   T34] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  281.660945][ T3557] usb 6-1: USB disconnect, device number 10
04:35:15 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8954, 0x0)

04:35:15 executing program 4:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x2, &(0x7f00000000c0)=@string={0x2}}]})

04:35:15 executing program 5:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000003000000030000000020000000000000000000003000000000500000002"], &(0x7f00000000c0)=""/234, 0x4a, 0xea, 0x1}, 0x20)

04:35:15 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}})

04:35:15 executing program 0:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x0, 0x80, 0x4, {0x2, @raw_data="5950e8329e500f39a64b1bef50ea051e2835553c8a67d39630308f426393c2bab07c9d1d614a4475f2627c16ffbebfc99313c546d6f4e6d8acb803849e732f729e5dc23063ef9358c66220da3e8202966db67e54f29ce4b7b11c056bf1b72b249154d2c3ef4fd59ad7a082474f97a1289d3d8869f25304ef83c5dc39e5a6838330408ca3fb25ee1c443afad6ece4b32db4100a265a1c55fc2a6244c37287f076be181c7ec8b0fc9a5cabea07aca92f967b60f6fe3daebbc5cea22ccc56b200d550e1184c9169e9b2"}})

[  282.163747][   T34] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  282.173361][   T34] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.181574][   T34] usb 4-1: SerialNumber: syz
[  282.244896][   T34] cdc_ether: probe of 4-1:1.0 failed with error -22
04:35:15 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x1000000}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:35:15 executing program 2:
bpf$BPF_BTF_LOAD(0x2, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)

[  282.465589][ T3557] usb 4-1: USB disconnect, device number 10
[  282.563633][   T34] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  282.803925][   T34] usb 5-1: Using ep0 maxpacket: 8
[  282.925299][   T34] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  282.979540][   T34] usb 5-1: language id specifier not provided by device, defaulting to English
04:35:16 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8991, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:16 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x5411, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:16 executing program 5:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000200), 0x2)
r1 = memfd_create(&(0x7f0000000240)='syztnl0\x00', 0x0)
ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000280)={r1, 0x0, 0x0, 0x4000})

04:35:16 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x17, 0x20203843, 0x0, [0xfffffffc], [0xfffffffd]})

04:35:16 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8907, 0x0)

[  283.114110][   T34] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  283.123513][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.131708][   T34] usb 5-1: Product: syz
[  283.136157][   T34] usb 5-1: Manufacturer: syz
[  283.140869][   T34] usb 5-1: SerialNumber: syz
04:35:16 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb01001800000000aadd2b06d8e75771ed"], &(0x7f0000000240)=""/135, 0xbb, 0x87, 0x1}, 0x20)

[  283.557834][   T34] usb 5-1: USB disconnect, device number 7
04:35:17 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b0, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}})

04:35:17 executing program 5:
socket$bt_bnep(0x1f, 0x3, 0x4)

04:35:17 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8929, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:17 executing program 2:
ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304)
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x244000, 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304)
r1 = syz_open_dev$vcsu(&(0x7f0000000180), 0x3, 0x100c2)
read$snapshot(r1, &(0x7f00000001c0)=""/39, 0x27)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0x6)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x29, 0x1f, 0x20, 0x9, 0xa, @dev, @remote, 0x1, 0x0, 0xc00}})
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(r2, &(0x7f0000000340)="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", 0x1000)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r0, 0x3312, 0x0)
syz_open_dev$sndpcmp(0x0, 0x100000001, 0x0)
bind$qrtr(r1, &(0x7f0000001400)={0x2a, 0x0, 0x3}, 0xc)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000001440), 0x2000, 0x0)

04:35:17 executing program 3:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000480)='ns/time_for_children\x00')

04:35:17 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140))

04:35:17 executing program 5:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0xc, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:35:17 executing program 1:
socketpair(0x25, 0x1, 0x6, &(0x7f0000000000))

04:35:17 executing program 3:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0xc6080, 0x0)

04:35:17 executing program 0:
socketpair(0x0, 0x40008, 0x0, 0x0)

04:35:17 executing program 4:
syz_clone(0x92028000, 0x0, 0x0, 0x0, 0x0, 0x0)

04:35:18 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0x2], [0x4000, 0x3]})

04:35:18 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8902, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:18 executing program 0:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
write$snapshot(r0, &(0x7f0000000340)="ac21d58e", 0x4)

04:35:18 executing program 3:
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
ioctl$KVM_PPC_GET_PVINFO(0xffffffffffffffff, 0x4080aea1, 0x0)
syz_genetlink_get_family_id$net_dm(0x0, 0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x2c000004)

04:35:18 executing program 2:
openat$snapshot(0xffffffffffffff9c, 0x0, 0x0, 0x0)

04:35:18 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}}}})

04:35:18 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x0}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:35:18 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x2, [0xffffffff], [0x4000]})

04:35:18 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x30315559})

04:35:18 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8993, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:19 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0xa3, 0x0, 0x200}, 0x48)

04:35:19 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8931, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:19 executing program 5:
bpf$BPF_GET_PROG_INFO(0xf, 0xfffffffffffffffe, 0x0)

04:35:19 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={0x0, &(0x7f0000000280)=""/4096, 0x0, 0x1000, 0x8}, 0x20)

04:35:19 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8914, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:19 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000, 0x1000000})

04:35:19 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x1000000}]}]}}, &(0x7f0000000280)=""/4096, 0x32, 0x1000, 0x1}, 0x20)

04:35:19 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:19 executing program 3:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x244000, 0x0)

04:35:19 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0xfff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0585609, &(0x7f0000000040)={0x0, 0x8, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

[  286.643095][  T122] Bluetooth: hci0: command 0x0406 tx timeout
04:35:19 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20303152})

04:35:19 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8994, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:20 executing program 3:
syz_usb_connect$printer(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x3, 0x0, 0x80, [{{0x9, 0x4, 0x0, 0x3, 0x0, 0x7, 0x1, 0x0, 0x50, "", {{{0x9, 0x5, 0x1, 0x2, 0x10}}, [{{0x9, 0x5, 0x82, 0x2, 0x400, 0x0, 0x0, 0x6}}]}}}]}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x5, &(0x7f0000000080)={0x5, 0xf, 0x5}, 0x3, [{0x2, &(0x7f00000000c0)=@string={0x2}}, {0x0, 0x0}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x427}}]})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)

04:35:20 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:20 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x53, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x0, 0x80, 0x4, {0x2, @raw_data="5950e8329e500f39a64b1bef50ea051e2835553c8a67d39630308f426393c2bab07c9d1d614a4475f2627c16ffbebfc99313c546d6f4e6d8acb803849e732f729e5dc23063ef9358c66220da3e8202966db67e54f29ce4b7b11c056bf1b72b249154d2c3ef4fd59ad7a082474f97a1289d3d8869f25304ef83c5dc39e5a6838330408ca3fb25ee1c443afad6ece4b32db4100a265a1c55fc2a6244c37287f076be181c7ec8b0fc9a5cabea07aca92f967b60f6fe3daebbc5cea22ccc56b200d550e1184c9169e9b2"}})

04:35:20 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'ip_vti0\x00', &(0x7f0000000000)={'tunl0\x00', 0x0, 0x7800, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @loopback}}}})

04:35:20 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:20 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x2}]}}, &(0x7f0000000280)=""/4096, 0x26, 0x1000, 0x1}, 0x20)

04:35:20 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8920, &(0x7f00000000c0)={'tunl0\x00', 0x0})

04:35:20 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:20 executing program 0:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$vcsu(&(0x7f0000000180), 0x0, 0x0)

04:35:20 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

[  287.684573][  T122] usb 4-1: new high-speed USB device number 11 using dummy_hcd
04:35:20 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x1000000, 0x1000, 0x1}, 0x20)

[  287.933396][  T122] usb 4-1: Using ep0 maxpacket: 8
04:35:21 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a0, &(0x7f00000000c0)={'tunl0\x00', 0x0})

[  288.193764][  T122] usb 4-1: config 1 interface 0 altsetting 3 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  288.206917][  T122] usb 4-1: config 1 interface 0 has no altsetting 0
[  288.280129][  T122] usb 4-1: language id specifier not provided by device, defaulting to English
[  288.659840][  T122] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  288.671327][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.680146][  T122] usb 4-1: Product: Ч
[  288.684423][  T122] usb 4-1: SerialNumber: syz
[  288.733920][ T5623] raw-gadget gadget: fail, usb_ep_enable returned -22
[  288.744030][ T5623] raw-gadget gadget: fail, usb_ep_enable returned -22
[  289.055584][  T122] usb 4-1: USB disconnect, device number 11
04:35:22 executing program 3:
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x0, 0x9, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:35:22 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:22 executing program 0:
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0xc0001, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

04:35:22 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:22 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x4}]}]}}, &(0x7f0000000400)=""/184, 0x32, 0xb8, 0x1}, 0x20)

04:35:22 executing program 4:
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x2, 0x2, 0x0, "0d626bac212a263f38e70c6a711542df6e262a8cd07329d3af679dd61f5a7fe2"})

04:35:22 executing program 5:
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:22 executing program 1:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x2, &(0x7f0000000180)=@string={0x2}}]})

04:35:22 executing program 4:
syz_open_dev$sndpcmp(&(0x7f00000013c0), 0x100000001, 0x0)

04:35:22 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:23 executing program 0:
ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304)

04:35:23 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x2, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000280)=""/4096, 0x1a, 0x1000, 0x1}, 0x20)

04:35:23 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x50, 0x2, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x3c, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0)

04:35:23 executing program 5:
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:23 executing program 2:
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:23 executing program 3:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1b)
ioctl$TCSETSW(0xffffffffffffffff, 0x5401, 0x0)

[  290.424856][    T5] usb 2-1: new high-speed USB device number 7 using dummy_hcd
04:35:23 executing program 0:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x19)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))

[  290.509613][ T5673] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  290.518387][ T5673] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
04:35:23 executing program 2:
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:23 executing program 5:
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

[  290.673299][    T5] usb 2-1: Using ep0 maxpacket: 8
[  290.806542][    T5] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  290.892648][    T5] usb 2-1: language id specifier not provided by device, defaulting to English
[  291.084087][    T5] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  291.093571][    T5] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.101755][    T5] usb 2-1: Product: syz
[  291.106413][    T5] usb 2-1: Manufacturer: syz
[  291.111197][    T5] usb 2-1: SerialNumber: syz
[  291.398251][    T5] usb 2-1: USB disconnect, device number 7
[  291.763171][    T5] Bluetooth: hci2: command 0x0406 tx timeout
[  291.763230][   T34] Bluetooth: hci1: command 0x0406 tx timeout
[  291.763424][   T34] Bluetooth: hci5: command 0x0406 tx timeout
[  291.769351][    T5] Bluetooth: hci3: command 0x0406 tx timeout
[  291.769428][    T5] Bluetooth: hci4: command 0x0406 tx timeout
04:35:24 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000057700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=@newqdisc={0x38, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8}]}}]}, 0x38}}, 0x0)

04:35:24 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001280)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{}]}]}}, &(0x7f0000000280)=""/4096, 0x1000000, 0x1000, 0x1}, 0x20)

04:35:24 executing program 3:
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xa8, 0xae, 0xb8, 0x40, 0xe41, 0x414b, 0xe34a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa6, 0x54, 0xa2}}]}}]}}, 0x0)

04:35:24 executing program 2:
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:24 executing program 0:
syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x4102)

04:35:24 executing program 5:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:25 executing program 5:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:25 executing program 2:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:25 executing program 0:
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000001340), 0x0, &(0x7f0000001540)={[{@fat=@quiet}]})

[  292.323698][   T34] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  292.354392][ T5696] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  292.499579][ T5700] sch_fq: defrate 0 ignored.
[  292.557723][ T5701] FAT-fs (loop0): bogus number of reserved sectors
[  292.564665][ T5701] FAT-fs (loop0): Can't find a valid FAT filesystem
04:35:25 executing program 5:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:25 executing program 1:
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@loopback=0x7f000006}, {@dev}, {@multicast1}, {@local}]}]}}}}}}}, 0x0)

04:35:25 executing program 2:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:25 executing program 0:
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@loopback=0x7f000006}, {@multicast2}, {@dev}, {@empty}]}]}}}}}}}, 0x0)

[  292.844010][   T34] usb 4-1: New USB device found, idVendor=0e41, idProduct=414b, bcdDevice=e3.4a
[  292.853828][   T34] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.861981][   T34] usb 4-1: Product: syz
[  292.866442][   T34] usb 4-1: Manufacturer: syz
[  292.871152][   T34] usb 4-1: SerialNumber: syz
[  293.000817][   T34] usb 4-1: config 0 descriptor??
[  293.056374][   T34] snd_usb_podhd 4-1:0.0: Line 6 POD X3 LIVE found
[  293.063253][   T34] usb 4-1: selecting invalid altsetting 1
[  293.069160][   T34] snd_usb_podhd 4-1:0.0: set_interface failed
[  293.075586][   T34] snd_usb_podhd 4-1:0.0: Line 6 POD X3 LIVE now disconnected
[  293.083867][   T34] snd_usb_podhd: probe of 4-1:0.0 failed with error -22
04:35:26 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000040)={0x10, 0x2}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x10, 0x2}, 0x10)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x108, &(0x7f00000003c0), &(0x7f0000000400)=0x18)

[  293.253545][   T34] usb 4-1: USB disconnect, device number 12
04:35:26 executing program 3:
syz_mount_image$xfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000200)={[{@noattr2}, {@logbsize={'logbsize', 0x3d, [0x70]}}]})

04:35:26 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:26 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
fremovexattr(r0, &(0x7f0000000080)=@known='security.selinux\x00')

04:35:26 executing program 2:
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:26 executing program 0:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = dup(r0)
sendmsg$inet_sctp(r1, &(0x7f0000000480)={&(0x7f00000002c0)=@in6={0x1c, 0x1c, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000000400)=[@dstaddrv6={0x1c, 0x84, 0xa, @mcast2}, @init={0x14}], 0x30}, 0x0)

04:35:26 executing program 4:
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW(r0, 0x5401, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r1, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0), &(0x7f00000003c0), 0x8001, r2}, 0x38)
bpf$ITER_CREATE(0x21, 0x0, 0x0)

04:35:27 executing program 1:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1b)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)

04:35:27 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:27 executing program 0:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='\x00', 0x0, 0x7, &(0x7f0000000640)=[{&(0x7f0000000140)="f52fab5bf19628acf7d06a602bd8dbeae6e95f6cb086a48e538ebbd2aaa32605dda0fafd026fbe445091212c7b3b0cb2aacd495404b5562a4597f2d0b23ec76d8e5d1bc2da161c58939dd8b8c7908bd204bfaf1c8bc2c9db5145f85fffc458a9265238eadf762058fef191284d2945c895ddf39333123f486dfe9a2e4b567b1776a8511b0d4739fc3ecba2cebb652a7ba31d5b2a99a24aa7084c7a083f6d1a494743a4baa1cf8b1c7c0e51c477ee32c139f495015fc608732cc5cf819b35f00145", 0xc1}, {&(0x7f0000000240)="311871861e3b555651757f425f67b470f8d299916c43d473571ed1fa2aa8ff03efc720227ea7101462cd8438bfaf5d512bd38c2c5ebd0773dd57c8e6aaf7c615bb8c475997f11a12ea62f91efb18967da60a", 0x52, 0x7}, {&(0x7f00000002c0)="a3ae848ee3fa1d33d8e1fa51ffb3d176588270d05f01aa72f66456e034fc8904be9de18f0fc880fbb77961ad3b73f057568ba9fdd062ccb6a71ffd717f5b65d5031937c58aa83dbd01301a731f6bf1ac29bf43102b68ddc128e012b004902495e1dc8c442d3d01c1a906d94efa0ba411a78368354f79a2ad6418e2cbaff12a32042d7317b3888eab9b901ed5326f965b12dcb80bf84c03743299c9fe1ce753c01b2497d4cc15ba7b7cf06f730d17f57e16d57f3b90d255a3e90dfa8a76d641d610970b9cf39d9eda2f3fefbf6fd1", 0xce}, {&(0x7f00000003c0)="afcb19fd416330860380d57d686b3e0024604855b47f3f6e55255bb5bfba73823144d8b73957be42d22f43dcbc6379a4e7364a1b3ab464c4f2dd64b4bd3936075048b0d2a9d1b60ef03e3a41130c7fb9414776d6e5bc690293bfbeae9e6b365320db72053e24c66efd681f02b17c3f26", 0x70, 0xff}, {&(0x7f0000000700)="414f3570cabe6a19fccb79d4dabe99244892a627c2b3ce6fb96ee3545b4dbdb73bf2df36e0429b578398b379b81715689a012c6a5d7e51a80c40861ddf725682f6e9e120b836e18edad4a4fa8fe32edb96e993fdbb2f2b504af4055be6f343e47d30b4ae57aa141582b9", 0x6a}, {&(0x7f0000000840)="9dcf31e2c6748d102046b8c85fb4f2795f323b30aee69ba6ea54377f5dd9b8185ba003a9b1c78c2cd96bc2b95162473d756a7ec7324773512517d74fb430709bbc0b33ca25fcd4625c493e5793139924a5c21f1cca2e15df08e4ada6f838374afc35aee8e2350b3f10d1f42878c722530bbe7ad3bcdd0b6d1a020244797075711686944963fd69db67b95ed516b22ee76b89dc555178f4c73166c9a2bf5a5995ee838fdc6bad8aa578070d9e6c93649f7fb6b8da4c57c191179bd9fa47c8069e45dc34721049eb3d0a563c8d6359a728f2883af148bf06ba592803bab7e7bd08f1ac68a9c9bb0677514e398359c4bde27451e3e80771be0432a37dc1e3b4a26f6d7ca3aaacc8b2e5bdda", 0xfffffffffffffe53, 0x6}, {&(0x7f0000000580)="95d5a3236574ce84648a5038e5feb9feadb9874cd4ad7326d9716b9aa11416f821b479e1afd33935904a46bbfa90c0c5f00b1b533b111427f48b05bff08cd6682ee11d5fb35f838e5fcebc58f90319e643df1f4bdb04bf6eae4e2087bfa8d60ee698091173d5180ceb84687a5f0d41f385e715d62bbff0f836d29237352137663240173b743828837851de247e8ca553e3367546427a730db1cd6f132b37590ea1fdcb015e7335c0d539b608", 0xac, 0x8}], 0x0, &(0x7f0000000780)={[{@nr_inodes={'nr_inodes', 0x3d, [0x33, 0x34, 0x67, 0x0, 0x6b, 0x30, 0x70, 0x2d, 0x38]}}, {@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '.log\x00'}}, {@smackfshat={'smackfshat', 0x3d, '!*.-\'[$})!))&:-]\'{'}}, {@subj_type}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '})){'}}]})

04:35:27 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

[  294.154487][ T5726] XFS: noattr2 mount option is deprecated.
04:35:27 executing program 3:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xd)

04:35:27 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:27 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:27 executing program 1:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000600)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000080)="ab79634c0ec894aacfd97b27595b2e8cf6729d08fea1b7b921ebff5cf6d0f6a91d8a4741aeb288889ca39cfd51f807137f557a29b56d0721784f", 0x3a}, {&(0x7f00000000c0)="0a999860b383426523f9036e56136a940ca1ae68845f85ba74aeb73a62d273918757e118f501792c80d7684bcefaafc8fe9174f305df5911cdb7280d63c746eaf7d62f7cccb0db4af44e70dbe52802994525c4eacdceb68c80b5ea2b8afc1a378d941ca0a80dc8686bcd5c7d68b960c7b25ac4370e1c18cd197e7a4179698bab6235a4f95e9647767caaf7c58f95f57c9595f20308a37715361bc10f63b67aa2f7414cdef7c74cbab65fba394243d4bea53d56f659ad6b751eeaaf0e26522c2465d46d039b76f3b20ce32047a8234b93dd753320f8", 0xd5}, {&(0x7f00000001c0)="439064f3c9880d7ec2357c9e19a925e1c51a4b8bce6ede8c5422df074d00a5e70cff19bf17f1a0c80f78000e338b57e90d129fe7dae827624f3691bf342dd8925437fd55c3383c226fceaa54070c411f5a7052a324f656dd2a794e8ce1f10f06a78ce7e99d9f232f92ae115bdffbcb52782fe6de46d2d5575972cbd94db77182c7275d565b67ef419ffcba0749665bd7d1bcaf900840d84da944d5148c557fc602998c138bc6658962bf208557d895895565e01e99d53902c91ff9ab451beb36487f4cfd218723dfab81a2ce471dba0a753a00648427317084d709e9", 0xdc}, {&(0x7f00000002c0)="631f36c8802505fc24536300f71d7d8f5e5ed6661d02501354a22f45e1f994f07d5cc47329d846c0b4b8151def9ee4fd490096b8fa24d8d9ec46bc440de644c599ffeaa85b9aed7817bea3b0a4ba452b5cad88dabdc8dfd693d3ebed9c6b8b2d2c664c662581b2be854e89e10a22", 0x6e}, {&(0x7f0000000340)="27ff07d6d1eb929851fcc51df2100ae3d714913da280ed26d4d396d8d3239fc18e2f288b869bf11b36a52e66d509b1385a9aa83599a0a7e0f1f1d27f5c8f1d957ccb96b46ac6fcfbe34d653f67ce21cf8589f611637bd15fa58b5dcb160582ff9e6be45a0e3a8e631ad7b32664b0e963417d7243e6dfbf31d9f99bc65c2166df85b85a312523216905706b6f9cfda93ac05f658a619f5fbe04a177b1f7e56cda31", 0xa1}, {&(0x7f0000000400)="3986ccaf7f189a0f14354ba8ddd918e0868efb76894629a477400b6d27538a03becec2554aab19259215f93465c1a61cb1", 0x31}, {&(0x7f0000000700)="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", 0xa51}, {&(0x7f0000000440)="a0", 0x1}], 0x8}, 0x0)

04:35:27 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8}, @IFLA_BR_VLAN_DEFAULT_PVID={0x6}]}}}]}, 0x44}}, 0x0)

04:35:28 executing program 5:
syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:28 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:29 executing program 4:
syz_mount_image$msdos(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f00000038c0)={[{@fat=@discard}]})

04:35:29 executing program 1:
syz_mount_image$iso9660(&(0x7f0000008280), &(0x7f00000082c0)='./file0\x00', 0x0, 0x0, &(0x7f0000008640), 0x0, &(0x7f0000008680)={[{@cruft}]})

04:35:29 executing program 3:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

04:35:29 executing program 5:
syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:29 executing program 2:
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:29 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x0, 0x0, 0x52})

04:35:29 executing program 2:
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

04:35:29 executing program 5:
syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:29 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x0, 0x0, 0x52})

04:35:29 executing program 3:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000040)=0x1b)

[  296.394155][ T5760] FAT-fs (loop4): bogus number of reserved sectors
[  296.400967][ T5760] FAT-fs (loop4): Can't find a valid FAT filesystem
[  296.551737][ T5758] ISOFS: Unable to identify CD-ROM format.
04:35:29 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, 0x0)

04:35:29 executing program 2:
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000140)={0x4000000})

[  296.645011][ T5765] [U] ^[
04:35:29 executing program 4:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000180)={{0x1, 0x0, 0x0, 0x2}, 0x0, 0x0, 'id0\x00', 'timer1\x00'})

04:35:29 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000140)='GPL\x00', 0x0, 0x33, &(0x7f0000000180)=""/51, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:35:29 executing program 0:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000040))

04:35:29 executing program 3:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_NRMIDIS(r0, 0x8004510b, &(0x7f0000000000))

04:35:30 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, 0x0)

04:35:30 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, 0x0)

[  297.100119][ T5776] [U] ^@
04:35:30 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:30 executing program 0:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendto$llc(r0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x10)

04:35:30 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='syz_tun\x00', 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)

04:35:30 executing program 1:
syslog(0x4, &(0x7f0000000100)=""/15, 0xf)

04:35:30 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, 0x0)

04:35:30 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, 0x0)

04:35:30 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:31 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, 0x0)

04:35:31 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x0, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:31 executing program 1:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x5)
ioctl$TCSETSW(0xffffffffffffffff, 0x5401, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r1, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000010c0), 0x8)

04:35:31 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:31 executing program 3:
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback=0xac1414aa, @local}}}}}}, 0x0)

[  298.475140][ T5803] mkiss: ax0: crc mode is auto.
04:35:31 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140))

04:35:31 executing program 0:
r0 = socket(0x1c, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x10, 0x2}, 0x10)

04:35:31 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x0, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:31 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:31 executing program 1:
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@loopback=0x7f000006}, {@multicast2}, {@dev}, {@multicast1}]}]}}}}}}}, 0x0)

04:35:32 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140))

04:35:32 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x0, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:32 executing program 3:
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@multicast2}, {@dev}, {@multicast1}, {@local}]}]}}}}}}}, 0x0)

04:35:32 executing program 0:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000000)=[0x0], 0x1})

04:35:32 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:32 executing program 1:
socketpair(0x2c, 0x3, 0x0, &(0x7f0000000340))

04:35:32 executing program 3:
syz_emit_ethernet(0x76, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x13, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@loopback=0x7f000006}, {@multicast2}, {@dev}, {@multicast1}, {@empty}]}]}}}}}}}, 0x0)

04:35:32 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140))

04:35:32 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x0, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:32 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:32 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:32 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1fc8}}, 0x0)

04:35:32 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x4, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x4, 0xf8, &(0x7f0000000140)=""/248, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000280)=[0x0], 0x0, 0x0, 0x8, &(0x7f0000000380)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)

04:35:33 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x0, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:33 executing program 3:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000580)={&(0x7f0000000100)=@in={0x10, 0x2}, 0x10, 0x0}, 0x0)
setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0xb)

04:35:33 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:33 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:33 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x2b, &(0x7f0000000080)=@security={'security\x00', 0xe, 0x4, 0x340, 0xffffffff, 0x348, 0x348, 0x118, 0xffffffff, 0xffffffff, 0x490, 0x490, 0x490, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@loopback, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'wlan0\x00', 'bond0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28}}, {{@ipv6={@private2, @local, [], [], 'macvlan1\x00', 'wg2\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE1={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0)

04:35:33 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x0, 0x20203852, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000100)={0x0})

04:35:33 executing program 3:
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x5)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1b)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSW(r1, 0x5401, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x101040, 0x806000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0x806000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d80)={0xffffffffffffffff, 0xe0, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000ac0)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, &(0x7f0000000b00)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000b80)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000bc0), &(0x7f0000000c00), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000c40)}}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={&(0x7f0000000040), 0x0, &(0x7f00000002c0)="af413f3ad31bbb41680994e2cd410b8a8d85bd3d8fcd51e5b6ae0625a41bb083f6e91c971ecf3c26a2b09f6a17d0a38758633d6fdba8ad64af121f2173c5941ce3e781e134991a12fe82b2583a0b7900b9aad5212dd6a916e17df91f1625a62e3f590cfdb17caffbe44126484405318e551d4a71c316104a51984e8d9e816b843fb237af0c84034cafa67c40c0108c2b89", &(0x7f00000003c0), 0x8001, r3}, 0x38)
bpf$ITER_CREATE(0x21, &(0x7f00000010c0)={r2}, 0x8)

04:35:33 executing program 4:
getpgrp(0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:33 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:33 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1a, &(0x7f0000000080)=@security={'security\x00', 0xe, 0x4, 0x344, 0xffffffff, 0x0, 0x274, 0xe4, 0xffffffff, 0xffffffff, 0x36c, 0x36c, 0x36c, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xa4, 0xcc}, @common=@inet=@SET1={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @private}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'ip6erspan0\x00', 'gre0\x00'}, 0x0, 0xa4, 0xcc}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3a0)

04:35:33 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x0, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

[  300.833762][ T5866] mkiss: ax0: crc mode is auto.
04:35:33 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "209200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2}}}}}}}, 0x0)

04:35:33 executing program 4:
getpgrp(0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:34 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)

04:35:34 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:34 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x0, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000c00)={0x54, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x3}, {0xc, 0x90, 0xffffffff}}]}, 0x54}}, 0x0)

[  301.277032][ T5877] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
04:35:34 executing program 4:
getpgrp(0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:34 executing program 2:
open$dir(&(0x7f0000000100)='./file0\x00', 0x612, 0x0)

04:35:34 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "209200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2}}}}}}}, 0x0)

04:35:34 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:34 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x0, 0x0, [0xffffffff], [0x4000], [], [0x0, 0x5]})

04:35:34 executing program 3:
r0 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000200)="87", 0x1, r1)
keyctl$unlink(0x16, r2, r0)

04:35:34 executing program 4:
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:34 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
write$binfmt_elf32(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34}, [{}]}, 0x54)

[  301.829932][ T5892] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
04:35:35 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [], [0x4000], [], [0x0, 0x5]})

04:35:35 executing program 1:
syz_mount_image$xfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f00000002c0), 0x80, &(0x7f0000000340))

04:35:35 executing program 3:
r0 = openat$hwrng(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$eventfd(r0, 0x0, 0x0)

04:35:35 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:35 executing program 4:
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000023c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000002400)={{0x0, 0x0, 0x80}, "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", "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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

04:35:35 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [], [0x4000], [], [0x0, 0x5]})

04:35:35 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x0, @dev}], 0x10)

[  302.566830][ T5910] XFS (loop1): Invalid superblock magic number
04:35:35 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:35 executing program 4:
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:35 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4)

04:35:35 executing program 3:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x800)
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, 0x0)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x2, &(0x7f0000ff4000/0x1000)=nil)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000440)={&(0x7f0000fea000/0x4000)=nil, 0x4000})
syz_io_uring_setup(0xa42, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x16e}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:35 executing program 1:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000ff4000/0x1000)=nil)
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:35 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [], [0x4000], [], [0x0, 0x5]})

04:35:36 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x2)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, 0x0, 0x0)

04:35:36 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:36 executing program 4:
getpgrp(0x0)
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:36 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [], [], [0x0, 0x5]})

04:35:36 executing program 1:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000200)="87", 0x1, r0)
keyctl$unlink(0x9, r0, r0)

04:35:36 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x8983, &(0x7f0000000140)={'ip6tnl0\x00', 0x0})

04:35:36 executing program 2:
syz_mount_image$ufs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x1, &(0x7f00000002c0)={[], [{@uid_gt}]})

04:35:36 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:36 executing program 4:
getpgrp(0x0)
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:36 executing program 3:
syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, 0x0)
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x6d76, &(0x7f0000000580), &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, 0x0, 0x0)
mremap(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)

04:35:36 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [], [], [0x0, 0x5]})

04:35:36 executing program 1:
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)

[  303.885899][ T5955] ufs: Invalid option: "uid>00000000000000000000" or missing value
[  303.894469][ T5955] ufs: wrong mount options
04:35:37 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:37 executing program 4:
getpgrp(0x0)
pidfd_open(0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:37 executing program 2:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000023c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)

04:35:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)

04:35:37 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [], [], [0x0, 0x5]})

04:35:37 executing program 1:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, 0x0}], 0x1, 0x10, &(0x7f00000000c0)=[@vmwrite={0x8, 0x0, 0x2, 0x0, 0x3}, @cstype3], 0x2)
ioctl$DRM_IOCTL_GET_MAP(0xffffffffffffffff, 0xc0286404, &(0x7f0000000140)={&(0x7f0000ffd000/0x3000)=nil})
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000300)={&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, &(0x7f0000000180)=""/180, 0xb4, 0x0, &(0x7f0000000240)=""/140, 0x8c}, &(0x7f0000000340)=0x40)
syz_open_dev$dri(&(0x7f00000003c0), 0xfffffffffffff800, 0x22982)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, 0x0)
syz_io_uring_setup(0xa42, &(0x7f0000000480)={0x0, 0xcb98, 0x0, 0x0, 0x16e}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:37 executing program 0:
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:37 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:37 executing program 3:
syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, 0x0)
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x6d76, &(0x7f0000000580), &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, 0x0, 0x0)
mremap(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, 0x0, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)

04:35:37 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000]})

04:35:38 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f0000000140)={&(0x7f0000ffd000/0x3000)=nil})

04:35:38 executing program 0:
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:38 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:38 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000]})

04:35:38 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@func={0x4, 0x0, 0x0, 0xc, 0x4}]}, {0x0, [0x0, 0x0, 0x0, 0x61, 0x30, 0x61]}}, &(0x7f0000000180)=""/4096, 0x2c, 0x1000, 0x1}, 0x20)

04:35:38 executing program 1:
syz_io_uring_setup(0x6d76, &(0x7f0000000580)={0x0, 0x0, 0x20}, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, &(0x7f0000000600), &(0x7f0000000640))

04:35:38 executing program 0:
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:38 executing program 3:
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, 0x0)

04:35:38 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000000c0)={0x0, 0x400, 0x14, 0x20203852, 0x0, [0xffffffff], [0x4000]})

04:35:39 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000500)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x5, [@var={0x3, 0x0, 0x0, 0xe, 0x5}]}, {0x0, [0x0, 0x0, 0x61]}}, &(0x7f0000000680)=""/176, 0x2d, 0xb0, 0x1}, 0x20)

04:35:39 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x0, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:39 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:39 executing program 3:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x4, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xe6d}, {0x6, 0x24, 0x1a, 0x40, 0x4}}, {{0x9, 0x5, 0x81, 0x3, 0xf48d0be17cd0e708}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{}, {{0x9, 0x5, 0x3, 0x2, 0x10}}}}}}}]}}, 0x0)

04:35:39 executing program 2:
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, 0x0)

04:35:39 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x10, 0x2}, 0x10)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x900, &(0x7f0000000180), 0x8)

04:35:39 executing program 1:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000037c0), 0x60001, 0x0)
pipe(0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='dctcp\x00', 0x6)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

04:35:39 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x0, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:39 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:39 executing program 2:
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x6d76, &(0x7f0000000580), &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, 0x0, 0x0)
mremap(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)

[  306.693589][   T34] usb 4-1: new high-speed USB device number 13 using dummy_hcd
04:35:39 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1b, 0x0, 0x0, 0x2000000, 0x4}, 0x48)

04:35:39 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x0, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:39 executing program 1:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000037c0), 0x60001, 0x0)
pipe(0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='dctcp\x00', 0x6)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

04:35:40 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

[  306.935298][   T34] usb 4-1: Using ep0 maxpacket: 32
04:35:40 executing program 2:
syz_mount_image$cramfs(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={[{'(!'}]})

[  307.054575][   T34] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  307.065988][   T34] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59144, setting to 1024
[  307.077683][   T34] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  307.087686][   T34] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  307.099878][   T34] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  307.564006][   T34] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  307.573471][   T34] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.581664][   T34] usb 4-1: Product: syz
[  307.586265][   T34] usb 4-1: Manufacturer: syz
[  307.590983][   T34] usb 4-1: SerialNumber: syz
[  307.763501][    C1] vkms_vblank_simulate: vblank timer overrun
[  307.774269][ T6014] raw-gadget gadget: fail, usb_ep_enable returned -22
[  308.083370][   T34] cdc_ncm 4-1:1.0: bind() failure
[  308.098344][   T34] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  308.105826][   T34] cdc_ncm 4-1:1.1: bind() failure
[  308.166237][   T34] usb 4-1: USB disconnect, device number 13
04:35:41 executing program 3:
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, 0x0, 0x0)
mremap(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)

04:35:41 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x0, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:41 executing program 2:
openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x100000)

04:35:41 executing program 1:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000037c0), 0x60001, 0x0)
pipe(0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='dctcp\x00', 0x6)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

04:35:41 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:41 executing program 5:
syz_mount_image$cramfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x0, 0x1, &(0x7f00000004c0)=[{&(0x7f0000000340), 0x0, 0x4}], 0x0, &(0x7f0000000500)={[{'/dev/input/mice\x00'}, {'(!'}]})
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f00000005c0)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
bind(0xffffffffffffffff, &(0x7f0000000640)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x0, @rand_addr=0x64010102}}, 0x80)
getuid()
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000940)={0x18, 0x7, 0x0, {{0xb, 'smackfsroot'}, 0x2}}, 0x18)

[  308.791060][ T6044] cramfs: Unknown parameter '/dev/input/mice'
04:35:41 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x3c, &(0x7f0000000080)=@security={'security\x00', 0xe, 0x4, 0x340, 0xffffffff, 0x348, 0x348, 0x118, 0xffffffff, 0xffffffff, 0x490, 0x490, 0x490, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@loopback, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, [], [], 'wlan0\x00', 'bond0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28}}, {{@ipv6={@private2, @local, [], [], 'macvlan1\x00', 'wg2\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE1={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0)

04:35:42 executing program 1:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000037c0), 0x60001, 0x0)
pipe(0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='dctcp\x00', 0x6)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)

04:35:42 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, 0x0, 0x0, 0x0, 0x0)

04:35:42 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x0, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:42 executing program 5:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000ff4000/0x1000)=nil)

04:35:42 executing program 3:
syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x0)

04:35:42 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, 0x0, 0x0, 0x0, 0x0)

04:35:42 executing program 2:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000380)="b9800000c03500400000665c8239fbc4237d0923062e35c5e17de74bc402793350f8f800c4635765f766400fc774a666baf80cb8623a8480ef66bafc0cc422a58c010fbcf726660f38807769653626400fc7bb00000000360f7955f49af342d8868680000049b8206bc3c3220d2d4f5d2e66420fc73366bab6203e65650f06", 0x7f}], 0x1, 0x0, 0x0, 0x0)

04:35:42 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x0, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:42 executing program 5:
syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000003c0), 0xfffffffffffff800, 0x22982)

04:35:42 executing program 1:
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
syz_mount_image$cramfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000500)={[{'/dev/input/mice\x00'}]})
getuid()

04:35:42 executing program 3:
syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:42 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, 0x0, 0x0, 0x0, 0x0)

04:35:42 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x0, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:43 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, 0x0)

[  310.009607][ T6076] cramfs: Unknown parameter '/dev/input/mice'
04:35:43 executing program 5:
syz_mount_image$cramfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000500)={[{'/dev/input/mice\x00'}, {'(!'}]})

04:35:43 executing program 3:
syz_usb_connect$hid(0x5, 0x3f, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x458, 0x5013, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}, {{{0x9, 0x5, 0x81, 0x3, 0x20}}, [{{0x9, 0x5, 0x2, 0x3, 0x20}}]}}}]}}]}}, 0x0)

04:35:43 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
utime(&(0x7f0000000040)='./file0/file0\x00', 0x0)

04:35:43 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400), 0x0, 0x0, 0x0)

04:35:43 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000000)=0x200, 0x4)
bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23, @multicast2}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000480)={@in={{0x2, 0x0, @local}}, 0x0, 0x40, 0x8, 0x0, "000000000000000000000000000000225f15d80700000000000000000003008000000000080000000000000003080000e7ffffff000000000000000000000000002000"}, 0xd8)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='hybla\x00', 0x6)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x31, 0x4ccbc}, 0x100)
write$binfmt_elf64(r0, &(0x7f0000001900)=ANY=[@ANYBLOB, @ANYRES32], 0x100000530)

04:35:43 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x0, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:43 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x11, 0x4, &(0x7f0000000000)=@framed={{}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0xbc03}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x1000, &(0x7f00000000c0)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:35:43 executing program 5:
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000400), 0x0, 0x0)

[  311.003093][  T122] usb 4-1: new high-speed USB device number 14 using dummy_hcd
04:35:44 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400), 0x0, 0x0, 0x0)

04:35:44 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x0, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:44 executing program 5:
syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)

04:35:44 executing program 1:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff3000/0x1000)=nil)
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000400), 0x0, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, 0x0)
r1 = syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x6d76, &(0x7f0000000580)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r1}, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, &(0x7f0000000600), &(0x7f0000000640))

[  311.253965][  T122] usb 4-1: Using ep0 maxpacket: 8
[  311.373526][  T122] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
04:35:44 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400), 0x0, 0x0, 0x0)

[  311.573586][  T122] usb 4-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.40
[  311.583145][  T122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.591341][  T122] usb 4-1: Product: syz
[  311.595836][  T122] usb 4-1: Manufacturer: syz
[  311.602610][  T122] usb 4-1: SerialNumber: syz
[  311.781376][  T122] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  311.978751][ T3557] usb 4-1: USB disconnect, device number 14
04:35:45 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x2, [@func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0xe}, {}]}]}}, &(0x7f0000000180)=""/146, 0x36, 0x92, 0x1}, 0x20)

04:35:45 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:45 executing program 1:
r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
write$P9_RREMOVE(r0, 0x0, 0x0)

04:35:45 executing program 5:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x300, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x4, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x1f1}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x5, 0x0, 0x1}}}}}]}}]}}, &(0x7f0000000540)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x0, 0x9, 0xfe}, 0x13, &(0x7f00000000c0)={0x5, 0xf, 0x13, 0x2, [@ext_cap={0x7, 0x10, 0x2, 0x0, 0x9}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x0, 0x0, 0xfd9e}]}, 0x6, [{0x6, &(0x7f0000000100)=@string={0x6, 0x3, "7337c276"}}, {0x0, 0x0}, {0x7, &(0x7f00000001c0)=@string={0x7, 0x3, "87d9525a54"}}, {0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}]})

04:35:45 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:45 executing program 2:
r0 = syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x703, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0})

04:35:46 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:46 executing program 2:
sched_setattr(0x0, &(0x7f0000000000)={0x38}, 0x0)

[  313.035213][ T3557] usb 6-1: new high-speed USB device number 11 using dummy_hcd
04:35:46 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:46 executing program 1:
gettid()
r0 = syz_clone(0x61004000, &(0x7f00000002c0)="7449785f9f0cbc97db72ef2207193bfc07b97daffc42bac4ba4f8c60592f0791774b810e00e6c774ba987d9fea129f1b7bf35d8d05e96c0a7a8e6bf43298559432ffc7aa8caaacfefd79d3b205192e740e87ec66e655dc7eb30e74dd7ffed3dd37731a870d5da964d28601308f2094582c213ce514d4a9079e6e4c2d46d8360dbc7220b70174be0ceb", 0x89, &(0x7f0000000000), &(0x7f0000000280), &(0x7f0000000180))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={r0, 0xffffffffffffffff, 0x0, 0x2, &(0x7f00000001c0)='[\x00', <r1=>0x0}, 0x30)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={0xffffffffffffffff, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000140)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f0000000040)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
close(0xffffffffffffffff)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000240)={r1}, 0x4)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)

04:35:46 executing program 3:
syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, 0x0, 0x0)

[  313.283472][ T3557] usb 6-1: Using ep0 maxpacket: 8
[  313.503875][ T3557] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
04:35:46 executing program 2:
r0 = syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0})

04:35:46 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:46 executing program 4:
r0 = getpgrp(0x0)
pidfd_open(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:46 executing program 3:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000180)=""/15, 0xf}], 0x1}, 0x0)

[  314.115443][ T3557] usb 6-1: New USB device found, idVendor=056a, idProduct=0300, bcdDevice= 0.40
[  314.124959][ T3557] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.133312][ T3557] usb 6-1: Product: 婒
[  314.583876][ T3557] usbhid 6-1:1.0: couldn't find an input interrupt endpoint
[  314.630812][ T3557] usb 6-1: USB disconnect, device number 11
04:35:48 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$sock(r0, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000012c0)=[@timestamping={{0x14}}], 0x18}, 0x0)

04:35:48 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="00010000280001"], 0x100}}, 0x0)

04:35:48 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:48 executing program 4:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)

04:35:48 executing program 1:
syz_mount_image$cramfs(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x1, &(0x7f00000004c0)=[{0x0, 0x0, 0x4}], 0x0, &(0x7f0000000500)={[{'/dev/input/mice\x00'}]})

04:35:48 executing program 3:
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)

[  315.208158][ T6153] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.2'.
04:35:48 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@broadcast, @broadcast, @val, {@ipv6}}, 0x0)

04:35:48 executing program 2:
openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)

04:35:48 executing program 4:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
r0 = syz_open_dev$dri(&(0x7f0000000100), 0x7fffffff, 0x800)
ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000440)={&(0x7f0000fea000/0x4000)=nil, 0x4000})
syz_io_uring_setup(0xa42, &(0x7f0000000480)={0x0, 0x0, 0x10, 0x0, 0x16e}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:48 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:48 executing program 5:
syz_mount_image$cramfs(&(0x7f00000002c0), 0x0, 0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000500))

04:35:48 executing program 3:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)

04:35:49 executing program 2:
r0 = add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000400)={'fscrypt:', @desc1}, &(0x7f0000000440)={0x0, "242f50d33b2d27044b46444a88e67de16e989e602e817af64a868c69084db25bcda67da33aa34d985abfb01c6a0d7a8700f6799361788f31aa79a1bdb310f5cf", 0xfffffffe}, 0x48, 0xfffffffffffffffc)
request_key(&(0x7f0000000680)='user\x00', &(0x7f00000006c0)={'syz', 0x1}, &(0x7f0000000700)=' hash=', r0)

04:35:49 executing program 1:
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000ff4000/0x1000)=nil)

04:35:49 executing program 4:
syz_mount_image$befs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x4f1, 0x0, &(0x7f0000000800), 0x0, &(0x7f0000000840)={[], [{@fsmagic}]})

04:35:49 executing program 5:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000100)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "9fb014757d08e08beb3c076de00d71c4afd366e0605f2ad31cbbf4e1d5f9a14ae8790c07b580d6529b827ff156565667d417457eb1e090276e250b24ae9eb528"}, 0x48, 0xfffffffffffffffb)
add_key$keyring(&(0x7f0000000140), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
add_key$fscrypt_v1(&(0x7f0000000000), 0x0, 0x0, 0x0, r0)

04:35:49 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, 0x0)
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:49 executing program 3:
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ff3000/0x1000)=nil)

[  316.387969][ T6177] loop4: detected capacity change from 0 to 2
04:35:49 executing program 1:
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x0)
pselect6(0x40, &(0x7f0000000580)={0xd61d}, 0x0, 0x0, 0x0, 0x0)

[  316.458481][ T6177] befs: Unrecognized mount option "fsmagic=0x0000000000000000" or missing value
[  316.467815][ T6177] befs: (loop4): cannot parse mount options
04:35:49 executing program 2:
r0 = syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x8, &(0x7f00000000c0)={0x21, "4730e750595e2e425db9f365cc8816354871630e9261e0f814ff631e8383a55f4c"}})

04:35:49 executing program 5:
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000001880)={{0x3, 0xee01}})

04:35:49 executing program 4:
r0 = syz_io_uring_setup(0xa42, &(0x7f0000000480), &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))
syz_io_uring_setup(0x6d76, &(0x7f0000000580)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, &(0x7f0000fea000/0x4000)=nil, &(0x7f0000fec000/0x2000)=nil, &(0x7f0000000600), &(0x7f0000000640))

04:35:49 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @hsr={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8}]}}}]}, 0x38}}, 0x0)

04:35:49 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

[  316.938092][ T6190] i2c i2c-0: Invalid block write size 33
04:35:50 executing program 5:
syz_mount_image$cramfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000500)={[{'/dev/input/mice\x00'}]})

04:35:50 executing program 2:
syz_emit_ethernet(0x76, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x0, 0x0, 0xe000, {0x13, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback=0xac1414aa, @local, {[@rr={0x7, 0x3}, @timestamp_addr={0x44, 0x34, 0x0, 0x1, 0x0, [{@multicast1=0xe000002f}, {@loopback=0x7f000006}, {@multicast2}, {@dev}, {@multicast1}, {@local}]}]}}}}}}}, 0x0)

04:35:50 executing program 4:
madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x10)
syz_open_dev$dri(0x0, 0x7fffffff, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, &(0x7f0000000340))
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, &(0x7f0000000440)={&(0x7f0000fea000/0x4000)=nil, 0x4000})
syz_io_uring_setup(0xa42, &(0x7f0000000480)={0x0, 0x0, 0x10, 0x0, 0x16e}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000500), &(0x7f0000000540))

04:35:50 executing program 3:
r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, 0x0)

04:35:50 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

[  317.461549][ T6200] cramfs: Unknown parameter '/dev/input/mice'
04:35:50 executing program 2:
r0 = socket$inet(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)

04:35:50 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(0xffffffffffffffff)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000023c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)

04:35:50 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000000)={{{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}, {{@in=@empty}, 0x0, @in6=@loopback}}, 0xe8)

04:35:50 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x19, 0x0, 0x0, 0xfffffffd}, 0x48)

04:35:51 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getroute={0x1c}, 0x1c}}, 0x0)

04:35:51 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)

04:35:51 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x5414}}, 0x0)

04:35:51 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x6, 0x8, 0x0, &(0x7f0000000340))

04:35:51 executing program 4:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000200)="87", 0x1, r0)
keyctl$unlink(0x5, r1, 0x0)

04:35:51 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0xe2)

04:35:51 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x2, 0x0, 0x0, 0x9eaa}, 0x48)

04:35:51 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, 0x0, 0x0, 0x0, 0x0)

04:35:51 executing program 2:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000027c0), 0x1, 0x0)

04:35:51 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040))

04:35:51 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, 0x0)

04:35:52 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

04:35:52 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, 0x0, 0x0, 0x0, 0x0)

04:35:52 executing program 2:
socket$inet6_udp(0x10, 0x2, 0x0)

04:35:52 executing program 3:
ioctl$DRM_IOCTL_AGP_RELEASE(0xffffffffffffffff, 0x6431)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000700), r0)
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000c00}, 0xc, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000428bd7000ffdbdf251300000008000300", @ANYRES32=0x0], 0x54}, 0x1, 0x0, 0x0, 0x4040054}, 0x880)
syz_open_dev$audion(0x0, 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

04:35:52 executing program 4:
socketpair(0x18, 0x0, 0x7f, &(0x7f0000000180))

04:35:52 executing program 2:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x3}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x3}, 0x18)

04:35:52 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, 0x0, 0x0, 0x0, 0x0)

04:35:52 executing program 5:
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder-control\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, 0x0)

04:35:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f00000005c0)={&(0x7f0000000400), 0xc, &(0x7f0000000580)={&(0x7f0000001a40)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fedbdf250200000008"], 0x48}}, 0x0)

04:35:52 executing program 4:
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='./binderfs/binder-control\x00', 0x2, 0x0)

04:35:53 executing program 2:
clock_gettime(0x2, &(0x7f0000000240))

[  320.054097][ T6261] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.1'.
04:35:53 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400), 0x0, 0x0, 0x0)

04:35:53 executing program 3:
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, 0x0)

04:35:53 executing program 5:
syz_open_dev$audion(&(0x7f0000000080), 0x0, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

04:35:53 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)={0x4, 0x0, 0x0, {0x77359400}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "f10ba8a52f565bba"}}, 0x48}}, 0x0)

04:35:53 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[], 0x33fe0}}, 0x0)

04:35:53 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000f00)=@bloom_filter={0x1e, 0x0, 0xfffff800, 0xdcb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3}, 0x48)

04:35:53 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400), 0x0, 0x0, 0x0)

04:35:53 executing program 3:
r0 = syz_open_dev$audion(&(0x7f0000000340), 0x0, 0x0)
landlock_restrict_self(r0, 0x0)

04:35:53 executing program 5:
openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x10000, 0x0)
ioctl$SNDCTL_DSP_GETCAPS(0xffffffffffffffff, 0x8004500f, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000280), 0xffffffffffffffff)

04:35:53 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x541b, 0x0)

04:35:53 executing program 4:
socket$inet6_udp(0xa, 0x3, 0x0)

04:35:54 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockname$inet6(r0, 0x0, &(0x7f0000000280))

04:35:54 executing program 3:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r0, 0xc0385720, 0x0)

04:35:54 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400), 0x0, 0x0, 0x0)

04:35:54 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200004003", 0x58}], 0x1)

04:35:54 executing program 1:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f00000000c0))

04:35:54 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r0)

04:35:54 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETBLKSIZE(r0, 0xc0045004, &(0x7f0000000000))

04:35:54 executing program 4:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private0, 0x0, 0x1}, &(0x7f0000000080)=0x20)

04:35:54 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:54 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f00000000c0)={0x0})

04:35:55 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f00000003c0)=0x8)

04:35:55 executing program 2:
r0 = openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
write$khugepaged_scan(r0, 0x0, 0x0)

04:35:55 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000180)=0x1)

04:35:55 executing program 4:
r0 = socket$kcm(0x29, 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000000)={r1})

04:35:55 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000040))

04:35:55 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:55 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x80086601, 0x0)

04:35:55 executing program 3:
write$khugepaged_scan(0xffffffffffffffff, 0x0, 0x0)

04:35:55 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000040)={{{@in6=@mcast1}}, {{@in6=@private0}, 0x0, @in=@dev}}, 0xe8)

04:35:55 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)={0x3c, r1, 0x1, 0x0, 0x0, {0x27}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}}, 0x0)

04:35:55 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x3, 0x5, 0x1001}, 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0)

04:35:55 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_PAN_ID(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x28}}, 0x0)

04:35:56 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0xc0045878, 0x0)

04:35:56 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0xb, 0x0, &(0x7f0000000040))

04:35:56 executing program 1:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000300)=@security={'security\x00', 0xe, 0x4, 0x3d8, 0xffffffff, 0x158, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x3d0, 0x3d0, 0x3d0, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@empty, @private0, [], [], 'ipvlan0\x00', 'veth1_vlan\x00'}, 0x0, 0xd8, 0x110, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@inet=@SET3={0x38}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@ipv4}}}, {{@ipv6={@private2, @empty, [], [], 'ip6tnl0\x00', 'veth0_vlan\x00'}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@rand_addr=' \x01\x00', 'batadv_slave_0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x438)

04:35:56 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5015, 0x0)

04:35:56 executing program 5:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040), 0xe00, 0x0)

04:35:56 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000001900)=[{0x1f}]})

04:35:56 executing program 2:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x20401)
write$qrtrtun(r0, &(0x7f0000000140)="f3", 0x1)

04:35:56 executing program 1:
bpf$MAP_CREATE(0x6, &(0x7f0000000480), 0x48)

04:35:56 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_128={{}, "e7cc2f186a6b5e4a", "a9abb2a9b87f70fbf1408d3bb6be38c0", "0ad312cb", "000000000400"}, 0x28)

04:35:56 executing program 5:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x3}, 0x18)

04:35:56 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x60002, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)

04:35:56 executing program 0:
bpf$MAP_CREATE(0x13, &(0x7f0000000480), 0x48)

04:35:56 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xa, 0x0, 0x0, 0x0, 0xc}, 0x48)

04:35:57 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5016, 0x0)

04:35:57 executing program 3:
bpf$MAP_CREATE(0x4, &(0x7f0000000480), 0x48)

04:35:57 executing program 5:
r0 = eventfd2(0x0, 0x0)
write$eventfd(r0, &(0x7f0000000040), 0x8)

04:35:57 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xa, 0x78, 0x318000, 0xffffffff, 0x42, 0x1}, 0x48)

04:35:57 executing program 2:
r0 = socket(0x2, 0xa, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)

04:35:57 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x1}, 0x14}}, 0x0)

04:35:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000240), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc0189436, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x300})

04:35:57 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

04:35:57 executing program 1:
bpf$MAP_CREATE(0x21, &(0x7f0000000480), 0x48)

04:35:57 executing program 0:
socket$inet6_icmp(0xa, 0x2, 0x3a)
bpf$MAP_CREATE(0x0, &(0x7f0000000f00)=@bloom_filter={0x1e, 0x5, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x4}, 0x48)

04:35:57 executing program 2:
r0 = syz_open_dev$audion(&(0x7f0000000000), 0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, 0x0)

04:35:58 executing program 3:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r1=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', r1}, 0x48)

04:35:58 executing program 4:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockname$inet6(r0, 0x0, &(0x7f0000000240))

04:35:58 executing program 5:
syz_open_dev$usbfs(&(0x7f0000000000), 0x7, 0x0)

04:35:58 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000f00)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1}, 0x48)

04:35:58 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, &(0x7f00000000c0)="e1", 0x1, 0x48cc0, &(0x7f0000000180)={0xa, 0x4e23, 0xffff0001, @local, 0x3c}, 0x1c)

04:35:58 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x4b47, 0x0)

04:35:58 executing program 4:
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x20080)

04:35:58 executing program 3:
syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

04:35:58 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETFMTS(r0, 0x8004500b, &(0x7f0000000000))

04:35:58 executing program 0:
request_key(&(0x7f0000000080)='rxrpc\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0xffffffffffffffff)
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000180), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000000)='\b', 0x1, r0)

04:35:58 executing program 1:
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x2a, 0x37, 0x1, {0x1, 0x1712, 0x96, 0xffffffffffffffff, 0xc, '(\'[)@(%@#,[.'}}, 0x2a)
pipe2$9p(&(0x7f0000000040), 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SCALLUSERDATA(r0, 0x89e5, &(0x7f0000000380)={0x50, "0e938bbe148325d2501603c01e88c04f8099bf1d1c93958c400a54bfeb3140b14005ef561fb2c13754ddfa1bcaf474fde523e6bfd633ca893d1d1cadf4839a4427df272421e2cb6159e5f92c623083fa44c2dd59f3de469ee1cb77326a5500537d0c46a629dee8b60e9eaa1b24ae299c08ace28e564a7cd1a4f289e0ca220451"})

04:35:58 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040))

04:35:58 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x0, 0x0, @private1}}, 0x0, 0x0, 0x0, 0x0, "36fa81d400b77e2afd21275f81a6f5893ddc6ab674cdc3d3f828e9375efea20f1acc3363dfc638bd82c50b8d98c766da4de4c5ae408ccee047249c7b2422e35c3aaa8947a82c7ec15fab7d34875ce92d"}, 0xd8)

04:35:58 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001440)={'sit0\x00'})

04:35:59 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x30}}, 0x0)

04:35:59 executing program 1:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000480)={'veth0\x00', <r1=>0x0})
connect$can_j1939(r0, &(0x7f0000000540)={0x1d, r1}, 0x18)

04:35:59 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$audio(0xffffffffffffff9c, 0x0, 0x501041, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000280))

04:35:59 executing program 2:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00'})

04:35:59 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETBLKSIZE(r0, 0xc0045004, 0x0)

04:35:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f00000005c0)={&(0x7f0000000400), 0xc, &(0x7f0000000580)={&(0x7f0000001a40)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fedbdf2502000000080008"], 0x48}}, 0x200041d0)

04:35:59 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x11}, 0x48)

04:35:59 executing program 0:
socketpair(0x0, 0x0, 0x0, &(0x7f0000000040))
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000000))

[  326.589306][ T6426] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
04:35:59 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

04:35:59 executing program 2:
socket(0x22, 0x0, 0x4c71)

04:35:59 executing program 1:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x20401)
write$qrtrtun(r0, &(0x7f0000000140)="f3b98664", 0x4)

04:35:59 executing program 3:
bpf$MAP_CREATE(0x7, &(0x7f0000000480), 0x48)

04:35:59 executing program 4:
bpf$MAP_CREATE(0x8, &(0x7f0000000480), 0x48)

04:36:00 executing program 0:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

04:36:00 executing program 2:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100), 0x440, 0x0)

[  327.086553][ T6442] qrtr: Invalid version 243
04:36:00 executing program 5:
socket(0x2, 0xa, 0x400)

04:36:00 executing program 1:
r0 = eventfd(0xffffffc1)
read$eventfd(r0, &(0x7f0000000380), 0x8)

04:36:00 executing program 4:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)="1f", 0x1}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000080)=""/165, 0xa5}], 0x2}, 0x0)

04:36:00 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x5414}}, 0x0)

04:36:00 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x24}}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)

04:36:00 executing program 1:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r0)
keyctl$link(0x8, r0, r1)

04:36:00 executing program 5:
io_uring_setup(0x5d45, &(0x7f0000000140)={0x0, 0x0, 0x4})

04:36:00 executing program 3:
clock_gettime(0x3, &(0x7f0000000540))

04:36:00 executing program 4:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r0, &(0x7f0000000d00)={0x2}, 0x18)

04:36:00 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)

04:36:01 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x0, 0xc8e, 0x1}, 0x48)

04:36:01 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000280))

04:36:01 executing program 3:
pipe2$9p(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RFLUSH(r0, &(0x7f0000000040)={0x7}, 0xfd0c)

04:36:01 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000280))

04:36:01 executing program 5:
pipe2$9p(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RLINK(r0, 0x0, 0x0)

04:36:01 executing program 0:
socket$inet6_udp(0x11, 0x2, 0x0)

04:36:01 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0xfffffdef}}, 0x0)

04:36:01 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5000, 0x0)

04:36:01 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[], 0x7ffffffff000}}, 0x0)

04:36:01 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x40049409, 0x0)

04:36:01 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @local}, 0x1c)

04:36:01 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x14}, 0x14}}, 0x0)

04:36:01 executing program 2:
syz_open_dev$audion(&(0x7f0000000440), 0x0, 0x801)

04:36:02 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)

04:36:02 executing program 3:
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000540), 0x0)
timerfd_gettime(r0, &(0x7f0000000080))

04:36:02 executing program 2:
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000080)={0x10, 0x17, 0x0, {0x7, './file0'}}, 0x10)
write$P9_RGETATTR(r0, &(0x7f0000000140)={0xa0, 0x19, 0x0, {0x0, {}, 0x0, 0xee01, 0xee01}}, 0xa0)

04:36:02 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5450, 0x0)

04:36:02 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[@ANYBLOB="14"], 0x33fe0}}, 0x0)

04:36:02 executing program 4:
socketpair(0x2, 0x3, 0x1f, &(0x7f00000000c0))

04:36:02 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0xa}, 0x48)

04:36:02 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f00000003c0))

04:36:02 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x500b, 0x0)

04:36:02 executing program 4:
syz_clone(0xc088000, 0x0, 0x0, 0x0, 0x0, 0x0)

04:36:02 executing program 0:
openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0), 0x40001, 0x0)

04:36:02 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockname$inet6(r0, 0x0, &(0x7f0000001480))

04:36:03 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)

04:36:03 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, r0)

04:36:03 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$sequencer(r0, 0x0, 0x39)

04:36:03 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

04:36:03 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000200))

04:36:03 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000080)=@gcm_256={{}, "092b4211022cf16c", "948fcefc1343cdb2b84d2a54f80a10e0ae021e180c17dda4a3c68545b6f2fd28", "40dd40ef", "d58363034665b8f8"}, 0x38)

04:36:03 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000300)=@security={'security\x00', 0xe, 0x4, 0x420, 0xffffffff, 0x158, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x3d0, 0x3d0, 0x3d0, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@empty, @private0, [], [], 'ipvlan0\x00', 'veth1_vlan\x00'}, 0x0, 0x120, 0x158, 0x0, {}, [@common=@ah={{0x30}}, @common=@hbh={{0x48}}]}, @common=@inet=@SET3={0x38}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@ipv4}}}, {{@ipv6={@private2, @empty, [], [], 'ip6tnl0\x00', 'veth0_vlan\x00'}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@rand_addr=' \x01\x00', 'batadv_slave_0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x480)

04:36:03 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[], 0x14}, 0x8}, 0x0)

04:36:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x20000000000005)

[  330.649726][ T1197] ieee802154 phy0 wpan0: encryption failed: -22
[  330.656329][ T1197] ieee802154 phy1 wpan1: encryption failed: -22
04:36:03 executing program 0:
landlock_create_ruleset(&(0x7f0000000000)={0x45}, 0x8, 0x0)

04:36:03 executing program 4:
socketpair(0x28, 0x0, 0x7fff, &(0x7f0000000200))

04:36:03 executing program 1:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x0, {0x0, 0x0, 0x0, 0x7}}, 0x18)

04:36:03 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vcan0\x00'})
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bind(r2, 0x0, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r3)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r4=>r1, {0x2}}, './file0\x00'})
sendmsg$can_bcm(r4, &(0x7f0000000540)={&(0x7f00000003c0), 0x10, &(0x7f00000004c0)={&(0x7f0000000400)={0x3, 0x28, 0x9, {0x0, 0x2710}, {0x77359400}, {0x0, 0x1, 0x0, 0x1}, 0x1, @canfd={{0x1, 0x0, 0x0, 0x1}, 0x22, 0x3, 0x0, 0x0, "8660a8b88cad9056ad672845d82e6ad5853aaae8de822a9cd1838ce60f09beb584d747bf65223227f0f54226e74a9bc58c046020894e4e9e012c69c54417b7f4"}}, 0x80}, 0x1, 0x0, 0x0, 0x40800}, 0x4000804)
getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[@ANYBLOB="380000001000390600"/20, @ANYRES32=r5, @ANYBLOB="03000000000000001800128008000100736974000c00028008000100", @ANYRES32], 0x38}}, 0x0)
sendmsg$can_bcm(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x1d, r5}, 0x10, &(0x7f0000000180)={&(0x7f0000000100)={0x5, 0x0, 0x9, {0x0, 0x2710}, {}, {0x3, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x3, 0x0, 0x0, "12f5d10672460784"}}, 0x48}, 0x1, 0x0, 0x0, 0x48814}, 0x80)

04:36:04 executing program 5:
r0 = landlock_create_ruleset(&(0x7f0000000000)={0x45}, 0x8, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000040), 0x0)

04:36:04 executing program 2:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netpci0\x00'})

04:36:04 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0xc020660b, 0x0)

04:36:04 executing program 0:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, 0x0)

04:36:04 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200880000", 0x58}], 0x1)

04:36:04 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000040))

04:36:04 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000100)=0x7, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002000e0000", 0x58}], 0x1)

04:36:04 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, 0x0)

04:36:04 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r0)

04:36:05 executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffff07000000ffe7ee00000000000000000200000000", 0x58}], 0x1)

04:36:05 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x28}}, 0x0)

04:36:05 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @local, 0x3c}, 0x1c)

04:36:05 executing program 1:
syz_open_dev$usbfs(&(0x7f0000000180), 0x3, 0x20840)

04:36:05 executing program 0:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000840)='ns/net\x00')

04:36:05 executing program 4:
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000340), 0x2)

04:36:05 executing program 5:
bpf$MAP_CREATE(0xa, &(0x7f0000000480), 0x48)

04:36:05 executing program 2:
openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0)

04:36:05 executing program 1:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x3, {0x0, 0xff}}, 0x18)

04:36:05 executing program 5:
pipe2$9p(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000080)={0x14}, 0xffffffd8)

04:36:05 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc}]}, 0x20}}, 0x0)

04:36:05 executing program 0:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)

04:36:05 executing program 4:
openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x8cc01, 0x0)

04:36:05 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5421, 0x0)

04:36:06 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000140), 0x4)

04:36:06 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000280))

04:36:06 executing program 4:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$usbfs(r0, &(0x7f0000000040)=""/242, 0xf2)

04:36:06 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000180)={'tunl0\x00', &(0x7f0000000140)=ANY=[]})

04:36:06 executing program 0:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0}}, 0x48)

04:36:06 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x28}}, 0x0)

04:36:06 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14}, 0x14}}, 0x0)

04:36:07 executing program 5:
r0 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000440)={'batadv_slave_1\x00'})

04:36:07 executing program 0:
syz_open_dev$usbfs(&(0x7f0000000000), 0x0, 0x311042)

04:36:07 executing program 2:
bpf$MAP_CREATE(0x3, &(0x7f0000000480), 0x48)

04:36:07 executing program 3:
bpf$MAP_CREATE(0x23, &(0x7f0000000480), 0x48)

04:36:07 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETCAPS(r0, 0x8004500f, &(0x7f0000000140))

04:36:07 executing program 4:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000017c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001780)={&(0x7f0000000400)={0xec4, 0x12, 0x0, 0x0, 0x0, {}, [@INET_DIAG_REQ_BYTECODE={0xf9, 0x1, "05a30bea682e76eb39b529a5d9ac64790f3c952bdf2b87d8fea82f7ea15516da2fc68849201f880a4ddd69b88c0c9a2f4fc5236872f3cdb63442492af18985773c872173f2cabc1d63c7ea099cd4d1ab7ca28e85ba428909a7fb0d6ea51144a706e26e02e8e604c22d997b5e76f9641ff6618ea21589c3de2e1798b161df3e94dcffbc9872e46810dd2a1cb3d50a2de57c3337d4db18fc7d2798038fa800220d566b54043c33202bdddff135065b62047e4aef184253484367688e8a48ab0f4e9e181e6c33b661f2c1ad2df602afdd299faa17df4eb2bff1cfdb705eea83bdbc9deba48cea2267faabdba0450310c47124f8153d14"}, @INET_DIAG_REQ_BYTECODE={0x39, 0x1, "eb8a5552335f566ed59cdc40c8a55072dfa4377cc92f081169fe49d828f34941e577e6d4fb620ceb3eb6d8a30c95da372e91552ec7"}, @INET_DIAG_REQ_BYTECODE={0x6d, 0x1, "7d3eeb528a82e901f22361bfb053db9b7db8f246ab38219584573712214e34b964b9d1d43075585e918bf26d2f40e9b83620f38b1e9b37fe44f79f56b6a44cda9e6cf2147fe94a1874ad18b5cff8bf276a57913faf5de6c7ccdf1f908623aa8e20216e6d3d1c5231f6"}, @INET_DIAG_REQ_BYTECODE={0xccd, 0x1, "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"}]}, 0xec4}}, 0x0)

04:36:07 executing program 0:
socketpair(0x672c569bbed22aa1, 0x0, 0x0, &(0x7f0000000040))

04:36:07 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[], 0x5414}}, 0x0)

04:36:07 executing program 5:
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x20401)

04:36:07 executing program 3:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x10d, 0xa, &(0x7f0000000280), 0x4a)

04:36:07 executing program 4:
openat$audio(0xffffffffffffff9c, &(0x7f00000001c0), 0x20002, 0x0)

04:36:07 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)

04:36:07 executing program 0:
r0 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0))

04:36:07 executing program 2:
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000540), 0x0)

04:36:08 executing program 5:
pipe2$9p(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RLINK(r0, &(0x7f0000000500)={0x7}, 0x7)
write$P9_RFLUSH(r0, &(0x7f0000000040)={0x7}, 0xfd0c)

04:36:08 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r1, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe63d4c0d1629efc0f73eb", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="9b42072ebb"], 0x20000600}}, 0x0)

04:36:08 executing program 4:
bpf$MAP_CREATE(0x22, &(0x7f0000000480), 0x48)

04:36:08 executing program 0:
syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000a00), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

04:36:08 executing program 1:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
accept4$x25(r0, 0x0, 0x0, 0x1c0000)

04:36:08 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x0, 0x3, &(0x7f0000000a80)=@framed, &(0x7f0000000b00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:36:08 executing program 5:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DESTROY(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000080)={0x14}, 0x14}}, 0x0)

04:36:08 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0xc0189436, 0x0)

04:36:08 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SNDCTL_DSP_GETCAPS(0xffffffffffffffff, 0x8004500f, &(0x7f0000000140))
openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETCAPS(r1, 0x8004500f, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, &(0x7f0000000280))
r2 = openat$khugepaged_scan(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$khugepaged_scan(r2, &(0x7f0000000180), 0x8)
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETCAPS(r3, 0x8004500f, &(0x7f0000000140))
ioctl$SNDCTL_DSP_GETCAPS(r3, 0x8004500f, 0x0)

04:36:08 executing program 1:
write$evdev(0xffffffffffffffff, 0x0, 0x0)
clock_gettime(0x0, 0x0)
openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000002c0), 0x840, 0x0)
pipe2$9p(0x0, 0x0)

04:36:08 executing program 3:
read$midi(0xffffffffffffffff, 0x0, 0x0)

04:36:08 executing program 0:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x60002, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)
ioctl$SOUND_PCM_READ_BITS(r0, 0x80045005, &(0x7f00000000c0))

04:36:08 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f00000003c0))

04:36:09 executing program 3:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x20401)
write$qrtrtun(r0, 0x0, 0x0)

04:36:09 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x19}, 0x48)

04:36:09 executing program 4:
pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4000)
write$P9_RLINK(r0, &(0x7f0000000500)={0x7}, 0x7)
write$P9_RATTACH(r0, &(0x7f0000000000)={0x14}, 0x14)

04:36:09 executing program 5:
syz_open_dev$audion(&(0x7f0000000340), 0x2000009, 0x40040)

04:36:09 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r1)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x20}}, 0x0)

04:36:09 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x28}}, 0x0)

04:36:09 executing program 0:
sendmsg$AUDIT_SIGNAL_INFO(0xffffffffffffffff, 0x0, 0x40)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000004c0)={'wpan3\x00'})
sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r1, &(0x7f0000000880)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000840)={&(0x7f0000000680)={0x14, r2}, 0x14}, 0x1, 0x0, 0x0, 0x100}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

04:36:09 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f00000005c0)={&(0x7f0000000400), 0xc, &(0x7f0000000580)={&(0x7f0000001a40)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fedbdf2502"], 0x48}, 0x1, 0x0, 0x0, 0x2400c050}, 0x0)

04:36:09 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@remote})

04:36:10 executing program 1:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000d00)={0x1d, r1}, 0x18)

04:36:10 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=ANY=[], 0xf}}, 0x0)

04:36:10 executing program 5:
openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x456002, 0x0)

[  337.077921][ T6686] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.2'.
04:36:10 executing program 4:
syz_open_dev$audion(&(0x7f0000000340), 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

04:36:10 executing program 2:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4)

04:36:10 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

04:36:10 executing program 1:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000d00)={0x1d, r1}, 0x18)

04:36:10 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000600), 0x0, 0x0)
ioctl$EVIOCGABS3F(r0, 0x8018457f, 0x0)

04:36:10 executing program 3:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r3=>0x0})
connect$can_j1939(r0, &(0x7f00000000c0)={0x1d, r3}, 0x18)

04:36:10 executing program 2:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5451, 0x0)

04:36:10 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SOUND_PCM_READ_BITS(r0, 0x80045005, &(0x7f0000000040))

04:36:10 executing program 1:
syz_open_dev$audion(&(0x7f0000001380), 0x1, 0xa0900)

04:36:10 executing program 0:
socket$inet6_udp(0x2d, 0x2, 0x0)

04:36:10 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0)

04:36:11 executing program 3:
r0 = syz_open_dev$audion(&(0x7f0000000080), 0x1, 0x0)
write$khugepaged_scan(r0, 0x0, 0x0)

04:36:11 executing program 4:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$inet6_buf(r0, 0x29, 0x0, 0x0, &(0x7f0000001480))

04:36:11 executing program 1:
r0 = shmget(0x1, 0x4000, 0x0, &(0x7f0000ff7000/0x4000)=nil)
shmctl$SHM_STAT_ANY(r0, 0xf, &(0x7f0000000000)=""/119)

04:36:11 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={&(0x7f0000000480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x1}}]}}, &(0x7f0000000500)=""/138, 0x32, 0x8a, 0x1}, 0x20)

04:36:11 executing program 0:
socket$inet6(0xa, 0x6, 0x9)

04:36:11 executing program 5:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0)

04:36:11 executing program 3:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000f80)='ns/pid_for_children\x00')

04:36:11 executing program 4:
r0 = fsopen(&(0x7f00000004c0)='binder\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000500)='silent\x00', 0x0, 0x0)

04:36:11 executing program 2:
syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x0, 0x0)

04:36:11 executing program 1:
r0 = syz_open_dev$video(&(0x7f0000000200), 0x0, 0x0)
ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000240))

04:36:12 executing program 3:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x5ab}, &(0x7f0000000080), 0x0, 0x0)

04:36:12 executing program 4:
openat$vga_arbiter(0xffffff9c, &(0x7f0000000080), 0x18da81, 0x0)

04:36:12 executing program 5:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000014c0), 0x0, 0x0)
ioctl$IMSETDEVNAME(r0, 0x80184947, 0x0)

04:36:12 executing program 0:
r0 = fsopen(&(0x7f00000000c0)='tmpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000100)='lazytime\x00', 0x0, 0x0)

04:36:12 executing program 1:
syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x2908c0)

04:36:12 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x9d}}, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)

04:36:12 executing program 5:
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2000080001, 0x84)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
sendmsg(r1, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x2004, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0xfffc}], 0x1, 0x0, 0x1f4, 0x24}}], 0xffffff1f, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
listen(0xffffffffffffffff, 0x933)

04:36:12 executing program 2:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
r1 = getpid()
openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = pidfd_open(r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})

04:36:12 executing program 0:
syz_usb_connect$cdc_ncm(0x5, 0x8d, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7b, 0x2, 0x1, 0x7, 0x80, 0x40, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x8, 0x24, 0x6, 0x0, 0x1, "29b1ca"}, {0x5, 0x24, 0x0, 0x3f}, {0xd, 0x24, 0xf, 0x1, 0x9, 0x200, 0x0, 0xa0}, {0x6, 0x24, 0x1a, 0x3145, 0x24}, [@dmm={0x7, 0x24, 0x14, 0x1000, 0xffff}, @mdlm={0x15}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x3f, 0xaf}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0xa, 0xf7}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x13, 0xf7}}}}}}}]}}, &(0x7f0000000340)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x0, 0x4, 0xff, 0x0, 0x20, 0x8a}, 0x0, 0x0, 0x2, [{0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x140c}}, {0xf8, &(0x7f0000000180)=@string={0xf8, 0x3, "3cc4c6de4d89faf7c40bd6d1ef55e0ce5869a571657fa0c86e994de122ab652acc975d46a238de6ae885e8a605f13528991ce9e14c25ba49c15e5cb1cd3b5189b19e8e5fd59acbb1717c6d280918038cd42a329a4e18bbbeb861edf4bab51e3c00cc246a01399bd78dd932969d6335920cd060f3ba88ba47d2e5c4c8dc2054c3ac5b5a31800e79c2d5996d71825e40e8f3b5d08e0c9582ebb9974f778adc26868e4485bcc3758feaf7a5392c1b2fe37175399ee62a6174e92eceb8b11cb9ed9634ec68196f4505a664d6a3628c05e77af350a19dda9b777c0f8b0adba4ddf7c4964993b4768dda44ab5fb09e2b004573f2cafb8bba2e"}}]})

04:36:12 executing program 1:
shmget$private(0x0, 0x1000, 0x1000, &(0x7f0000ffc000/0x1000)=nil)
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/168)
shmget$private(0x0, 0x2000, 0x1, &(0x7f0000ffb000/0x2000)=nil)
shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)

[  340.151832][ T6752] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
04:36:13 executing program 1:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18}, './file0\x00'})

04:36:13 executing program 3:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x80901, 0x0)

[  340.413962][ T3557] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  340.540948][ T6752] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.834377][ T3557] usb 1-1: unable to get BOS descriptor or descriptor too short
[  340.860920][ T6752] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
04:36:14 executing program 3:
shmget$private(0x0, 0x4000, 0x6800, &(0x7f0000ffa000/0x4000)=nil)

04:36:14 executing program 1:
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x0, 0x0, 0x0, 0x4)
dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, 0x0, &(0x7f0000000140)=0xfe)
getpid()
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x7, 0x10, r0, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000000)=0x2)

[  340.913984][ T3557] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 63, changing to 9
[  340.925414][ T3557] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  340.935640][ T3557] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
04:36:14 executing program 2:
syz_open_dev$video(&(0x7f0000000080), 0x53, 0x0)

[  341.140484][ T6752] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.196473][ T3557] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  341.206124][ T3557] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  341.214478][ T3557] usb 1-1: Product: syz
[  341.218765][ T3557] usb 1-1: Manufacturer: 쐼襍௄퇖嗯컠楘熥罥좠饮ꬢ⩥韌䙝㢢櫞藨ꛨ⠵Კ╌䦺廁녜㯍襑麱徎髕뇋籱⡭᠉调⫔騲ᡎ뺻憸떺㰞찀樤㤁힛防掝鈵퀌袺䞺죄⃜썔宬ㅚ຀쉹駕煭庂뗳軐锌鞹睏蘦䒎벅痃ꗷⰹ⼛燣㥵愪츮놸뤜雭ᥨ䕯ꘅ홤抣֌竧僳鶡鯚籷謏󒦤쓷䦖뒓赶䓚徫麰+獅쫲读⺺
[  341.254258][    C1] vkms_vblank_simulate: vblank timer overrun
[  341.260586][ T3557] usb 1-1: SerialNumber: syz
[  341.354168][ T6774] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  341.446368][ T6752] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  341.476292][ T6752] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
04:36:14 executing program 3:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000740), 0x26040, 0x0)

[  341.496622][ T6752] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  341.516980][ T6752] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
04:36:14 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x4e20, @empty}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x40800, 0x0)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
sendfile(r2, r3, 0x0, 0x101000003)

04:36:14 executing program 1:
r0 = socket$inet(0x2, 0x2000080001, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2004, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0xfffc}], 0x1, 0x0, 0x1f4, 0x24}}], 0xffffff1f, 0x0, 0x0)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)={@multicast2, @empty, 0x0, 0x1, [@remote]}, 0x14)

[  341.874531][ T6761] not chained 10000 origins
[  341.879173][ T6761] CPU: 0 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  341.887543][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  341.897627][ T6761] Call Trace:
[  341.900921][ T6761]  <TASK>
[  341.903863][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  341.908657][ T6761]  dump_stack+0x25/0x28
[  341.912863][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  341.918702][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  341.923913][ T6761]  ? release_sock+0x2b5/0x2e0
[  341.928653][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  341.933614][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  341.938824][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  341.944701][ T6761]  ? should_fail+0x75/0x9c0
[  341.949283][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  341.955146][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  341.960308][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  341.966605][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  341.972726][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  341.977882][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  341.983738][ T6761]  __msan_chain_origin+0xbf/0x140
[  341.988818][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  341.994054][ T6761]  get_compat_msghdr+0x108/0x2c0
[  341.999030][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  342.003944][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.008507][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  342.013673][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  342.018855][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  342.025159][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  342.030356][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  342.036655][ T6761]  ? fput+0x82/0x320
[  342.040625][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.047172][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.051904][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.058285][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.063360][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.068257][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.072802][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.079192][ T6761] RIP: 0023:0xf6ee2549
[  342.083276][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  342.102915][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  342.111362][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  342.119351][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  342.127349][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  342.135340][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  342.143329][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  342.151341][ T6761]  </TASK>
[  342.160717][ T6761] Uninit was stored to memory at:
[  342.178224][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.183494][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.188478][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.193126][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.197853][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.204342][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.209428][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.214427][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.219011][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.225501][ T6761] 
[  342.227831][ T6761] Uninit was stored to memory at:
[  342.233024][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.238177][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.243254][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.247809][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.252535][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.259017][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.264205][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.269109][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.273754][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.280137][ T6761] 
[  342.282463][ T6761] Uninit was stored to memory at:
[  342.287693][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.292848][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.293957][ T3557] cdc_ncm 1-1:1.0: bind() failure
[  342.297926][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.307565][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.312291][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.312609][ T3557] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  342.318766][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.318831][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.318888][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.318942][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.319013][ T6761] 
[  342.319021][ T6761] Uninit was stored to memory at:
[  342.319088][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.319133][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.319180][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.319237][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.319291][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.319344][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.319402][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.319458][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.319513][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.319576][ T6761] 
[  342.319582][ T6761] Uninit was stored to memory at:
[  342.319646][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.319694][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.319741][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.319795][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.319848][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.319901][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.319958][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.320021][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.320075][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.320139][ T6761] 
[  342.320146][ T6761] Uninit was stored to memory at:
[  342.320214][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.320259][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.320304][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.320356][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.320409][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.320462][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.320520][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.320575][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.320632][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.320698][ T6761] 
[  342.320705][ T6761] Uninit was stored to memory at:
[  342.320769][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  342.320814][ T6761]  get_compat_msghdr+0x108/0x2c0
[  342.320859][ T6761]  do_recvmmsg+0xd77/0x2120
[  342.320911][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.320965][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  342.321023][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  342.321082][ T6761]  do_fast_syscall_32+0x34/0x70
[  342.321142][ T6761]  do_SYSENTER_32+0x1b/0x20
[  342.321198][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  342.321260][ T6761] 
[  342.321268][ T6761] Local variable msg_sys created at:
[  342.321281][ T6761]  do_recvmmsg+0xbb/0x2120
[  342.321332][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  342.586044][ T3557] cdc_ncm 1-1:1.1: bind() failure
[  342.925083][ T6785] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  343.425228][ T6784] not chained 20000 origins
[  343.429921][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  343.438290][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.448364][ T6784] Call Trace:
[  343.451647][ T6784]  <TASK>
[  343.454585][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  343.459319][ T6784]  dump_stack+0x25/0x28
[  343.463511][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  343.469285][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  343.474436][ T6784]  ? release_sock+0x2b5/0x2e0
[  343.479145][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  343.484039][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  343.489194][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  343.495054][ T6784]  ? should_fail+0x75/0x9c0
[  343.499584][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  343.506045][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  343.511202][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  343.517491][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  343.523613][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  343.528776][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  343.534634][ T6784]  __msan_chain_origin+0xbf/0x140
[  343.539707][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.544874][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.549850][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  343.554751][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.559315][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  343.564472][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  343.569641][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  343.575931][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  343.581101][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  343.587393][ T6784]  ? fput+0x82/0x320
[  343.591313][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.597858][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.602596][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.608975][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.614054][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.618955][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.623509][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.629894][ T6784] RIP: 0023:0xf6e6e549
[  343.633977][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  343.653618][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  343.662059][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  343.670049][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  343.678036][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  343.686022][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  343.694009][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  343.702012][ T6784]  </TASK>
[  343.705244][    C1] vkms_vblank_simulate: vblank timer overrun
[  343.714867][ T6784] Uninit was stored to memory at:
[  343.719975][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.726094][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.731143][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.735826][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.740551][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.747096][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.752378][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.757406][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.762011][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.768533][ T6784] 
[  343.770863][ T6784] Uninit was stored to memory at:
[  343.776084][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.781299][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.786400][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.790981][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.795921][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.802316][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.807585][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.812564][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.817305][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.823818][ T6784] 
[  343.826146][ T6784] Uninit was stored to memory at:
[  343.831294][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.836639][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.841636][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.846427][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.851162][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.857729][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.862860][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.867878][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.872434][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.879036][ T6784] 
[  343.881367][ T6784] Uninit was stored to memory at:
[  343.886637][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.891803][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.897013][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.901569][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.906494][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.913027][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.918114][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.923158][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.927788][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.934378][ T6784] 
[  343.936804][ T6784] Uninit was stored to memory at:
[  343.941901][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  343.947291][ T6784]  get_compat_msghdr+0x108/0x2c0
[  343.952294][ T6784]  do_recvmmsg+0xd77/0x2120
[  343.957033][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  343.961818][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  343.968388][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  343.973611][ T6784]  do_fast_syscall_32+0x34/0x70
[  343.978587][ T6784]  do_SYSENTER_32+0x1b/0x20
[  343.983319][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  343.989713][ T6784] 
[  343.992043][ T6784] Uninit was stored to memory at:
[  343.997397][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  344.002572][ T6784]  get_compat_msghdr+0x108/0x2c0
[  344.007888][ T6784]  do_recvmmsg+0xd77/0x2120
[  344.012527][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  344.017484][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  344.024080][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  344.029236][ T6784]  do_fast_syscall_32+0x34/0x70
[  344.034342][ T6784]  do_SYSENTER_32+0x1b/0x20
[  344.038903][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  344.045533][ T6784] 
[  344.047875][ T6784] Uninit was stored to memory at:
[  344.053167][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  344.058323][ T6784]  get_compat_msghdr+0x108/0x2c0
[  344.063523][ T6784]  do_recvmmsg+0xd77/0x2120
[  344.068084][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  344.072818][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  344.079474][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  344.084733][ T6784]  do_fast_syscall_32+0x34/0x70
[  344.089643][ T6784]  do_SYSENTER_32+0x1b/0x20
[  344.094408][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  344.100809][ T6784] 
[  344.103331][ T6784] Local variable msg_sys created at:
[  344.108623][ T6784]  do_recvmmsg+0xbb/0x2120
[  344.113325][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  344.410717][ T3557] usb 1-1: USB disconnect, device number 5
[  344.790027][ T6784] not chained 30000 origins
[  344.794885][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  344.803266][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  344.813363][ T6784] Call Trace:
[  344.816663][ T6784]  <TASK>
[  344.819610][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  344.824349][ T6784]  dump_stack+0x25/0x28
[  344.828556][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  344.834340][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  344.839508][ T6784]  ? release_sock+0x2b5/0x2e0
[  344.844234][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  344.849147][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  344.854320][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  344.860190][ T6784]  ? should_fail+0x75/0x9c0
[  344.864740][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  344.870612][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  344.875788][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  344.882114][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  344.888330][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  344.893508][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  344.899467][ T6784]  __msan_chain_origin+0xbf/0x140
[  344.904553][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  344.909729][ T6784]  get_compat_msghdr+0x108/0x2c0
[  344.914714][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  344.919627][ T6784]  do_recvmmsg+0xd77/0x2120
[  344.924205][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  344.929375][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  344.935678][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  344.941987][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  344.947163][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  344.953467][ T6784]  ? fput+0x82/0x320
[  344.957399][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  344.963958][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  344.968705][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  344.975100][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  344.980187][ T6784]  do_fast_syscall_32+0x34/0x70
[  344.985101][ T6784]  do_SYSENTER_32+0x1b/0x20
[  344.989667][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  344.996064][ T6784] RIP: 0023:0xf6e6e549
[  345.000164][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  345.019818][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  345.028285][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  345.036294][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  345.044302][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.052306][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  345.060311][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.068330][ T6784]  </TASK>
[  345.078669][ T6784] Uninit was stored to memory at:
[  345.098046][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.103702][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.108702][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.113394][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.118139][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.124634][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.129818][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.134851][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.139416][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.146047][ T6784] 
[  345.148385][ T6784] Uninit was stored to memory at:
[  345.153601][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.158760][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.163855][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.168414][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.173240][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.179617][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.184807][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.189745][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.194401][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.200799][ T6784] 
[  345.203227][ T6784] Uninit was stored to memory at:
[  345.208322][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.213581][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.218565][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.223219][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.227953][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.234500][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.239604][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.244680][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.249240][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.255834][ T6784] 
[  345.258175][ T6784] Uninit was stored to memory at:
[  345.263454][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.268706][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.273876][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.278447][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.283328][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.289709][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.294971][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.299882][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.304607][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.311002][ T6784] 
[  345.313489][ T6784] Uninit was stored to memory at:
[  345.318589][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.323898][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.328897][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.333608][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.338341][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.344872][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.349965][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.355046][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.359610][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.366165][ T6784] 
[  345.368505][ T6784] Uninit was stored to memory at:
[  345.373763][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.378920][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.384071][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.388633][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.393515][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.399898][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.405143][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.410067][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.414789][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.421185][ T6784] 
[  345.423678][ T6784] Uninit was stored to memory at:
[  345.428776][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  345.434094][ T6784]  get_compat_msghdr+0x108/0x2c0
[  345.439077][ T6784]  do_recvmmsg+0xd77/0x2120
[  345.443780][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.448506][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.455055][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  345.460136][ T6784]  do_fast_syscall_32+0x34/0x70
[  345.465214][ T6784]  do_SYSENTER_32+0x1b/0x20
[  345.469777][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.476329][ T6784] 
[  345.478677][ T6784] Local variable msg_sys created at:
[  345.484070][ T6784]  do_recvmmsg+0xbb/0x2120
[  345.488540][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  345.787391][ T6761] not chained 40000 origins
[  345.791947][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  345.800317][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  345.810405][ T6761] Call Trace:
[  345.813717][ T6761]  <TASK>
[  345.816664][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  345.821407][ T6761]  dump_stack+0x25/0x28
[  345.825623][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  345.831409][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  345.836573][ T6761]  ? release_sock+0x2b5/0x2e0
[  345.841292][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  345.846197][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  345.851364][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  345.857247][ T6761]  ? should_fail+0x75/0x9c0
[  345.861786][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  345.867651][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  345.872821][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  345.879128][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  345.885266][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  345.890437][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  345.896312][ T6761]  __msan_chain_origin+0xbf/0x140
[  345.901436][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  345.906616][ T6761]  get_compat_msghdr+0x108/0x2c0
[  345.911610][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  345.916519][ T6761]  do_recvmmsg+0xd77/0x2120
[  345.921096][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  345.926271][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  345.931453][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  345.937758][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  345.942935][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  345.949244][ T6761]  ? fput+0x82/0x320
[  345.953179][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.959745][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  345.964500][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  345.970893][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  345.975984][ T6761]  do_fast_syscall_32+0x34/0x70
[  345.980897][ T6761]  do_SYSENTER_32+0x1b/0x20
[  345.985457][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  345.991934][ T6761] RIP: 0023:0xf6ee2549
[  345.996028][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  346.015679][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  346.024149][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  346.032162][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  346.040166][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  346.048346][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  346.056352][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  346.064380][ T6761]  </TASK>
[  346.067622][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.076524][ T6761] Uninit was stored to memory at:
[  346.085784][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.090969][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.096105][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.100658][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.105511][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.111950][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.117152][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.122055][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.126743][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.133286][ T6761] 
[  346.135634][ T6761] Uninit was stored to memory at:
[  346.140727][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.146044][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.151028][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.155733][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.160528][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.167031][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.172248][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.177419][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.181978][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.188514][ T6761] 
[  346.190851][ T6761] Uninit was stored to memory at:
[  346.196112][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.201392][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.206513][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.211127][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.215993][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.222378][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.227726][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.232665][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.237345][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.243893][ T6761] 
[  346.246226][ T6761] Uninit was stored to memory at:
[  346.251412][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.256686][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.261814][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.266495][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.271226][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.277772][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.282861][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.287889][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.292445][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.298994][ T6761] 
[  346.301331][ T6761] Uninit was stored to memory at:
[  346.306568][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.311783][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.316890][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.321443][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.326292][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.332738][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.338036][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.343063][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.347678][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.354193][ T6761] 
[  346.356524][ T6761] Uninit was stored to memory at:
[  346.361675][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.366955][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.371948][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.376626][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.381425][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.387927][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.393121][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.398089][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.402656][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.409222][ T6761] 
[  346.411606][ T6761] Uninit was stored to memory at:
[  346.416790][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  346.421951][ T6761]  get_compat_msghdr+0x108/0x2c0
[  346.427101][ T6761]  do_recvmmsg+0xd77/0x2120
[  346.431671][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  346.436527][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  346.443023][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  346.448165][ T6761]  do_fast_syscall_32+0x34/0x70
[  346.453191][ T6761]  do_SYSENTER_32+0x1b/0x20
[  346.457759][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  346.464319][ T6761] 
[  346.466690][ T6761] Local variable msg_sys created at:
[  346.471981][ T6761]  do_recvmmsg+0xbb/0x2120
[  346.476570][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.024639][ T6761] not chained 50000 origins
[  347.031736][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  347.040118][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  347.050210][ T6761] Call Trace:
[  347.053508][ T6761]  <TASK>
[  347.056460][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  347.061200][ T6761]  dump_stack+0x25/0x28
[  347.065405][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  347.071198][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  347.076367][ T6761]  ? release_sock+0x2b5/0x2e0
[  347.081100][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  347.086012][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  347.091182][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.097054][ T6761]  ? should_fail+0x75/0x9c0
[  347.102767][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.108640][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  347.113818][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  347.120135][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  347.126271][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  347.131450][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.137323][ T6761]  __msan_chain_origin+0xbf/0x140
[  347.142413][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.147598][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.152592][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  347.157509][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.162091][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  347.167269][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  347.172446][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  347.178748][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  347.183927][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  347.190240][ T6761]  ? fput+0x82/0x320
[  347.194305][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.200883][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.205643][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.212090][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.217185][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.222103][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.226670][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.233059][ T6761] RIP: 0023:0xf6ee2549
[  347.237148][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  347.256802][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  347.265262][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  347.273266][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  347.281273][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.289276][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  347.297316][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.305419][ T6761]  </TASK>
[  347.308674][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.319684][ T6761] Uninit was stored to memory at:
[  347.326012][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.331243][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.336364][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.340923][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.345830][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.352216][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.357434][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.362404][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.367095][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.373617][ T6761] 
[  347.375954][ T6761] Uninit was stored to memory at:
[  347.381115][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.386409][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.391396][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.396119][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.400852][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.407483][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.412639][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.417748][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.422316][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.428963][ T6761] 
[  347.431299][ T6761] Uninit was stored to memory at:
[  347.436582][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.441733][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.446890][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.451448][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.456459][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.463013][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.468102][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.473195][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.477823][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.484412][ T6761] 
[  347.486749][ T6761] Uninit was stored to memory at:
[  347.491841][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.497317][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.502305][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.507063][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.511857][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.518421][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.523636][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.528608][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.533322][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.539726][ T6761] 
[  347.542054][ T6761] Uninit was stored to memory at:
[  347.547367][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.552523][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.557715][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.562331][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.567264][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.573890][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.579038][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.584131][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.588692][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.595302][ T6761] 
[  347.597636][ T6761] Uninit was stored to memory at:
[  347.602740][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.608096][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.613241][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.617801][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.622535][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.629170][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.634466][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.639378][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.644140][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.650532][ T6761] 
[  347.653043][ T6761] Uninit was stored to memory at:
[  347.658136][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  347.663524][ T6761]  get_compat_msghdr+0x108/0x2c0
[  347.668517][ T6761]  do_recvmmsg+0xd77/0x2120
[  347.673248][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.678033][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  347.684539][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  347.689629][ T6761]  do_fast_syscall_32+0x34/0x70
[  347.694763][ T6761]  do_SYSENTER_32+0x1b/0x20
[  347.699325][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  347.705901][ T6761] 
[  347.708235][ T6761] Local variable msg_sys created at:
[  347.713740][ T6761]  do_recvmmsg+0xbb/0x2120
[  347.718206][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  347.838168][ T6784] not chained 60000 origins
[  347.842719][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  347.851089][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  347.861181][ T6784] Call Trace:
[  347.864478][ T6784]  <TASK>
[  347.867431][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  347.872172][ T6784]  dump_stack+0x25/0x28
[  347.876382][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  347.882168][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  347.887330][ T6784]  ? release_sock+0x2b5/0x2e0
[  347.892051][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  347.896966][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  347.902139][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.908015][ T6784]  ? should_fail+0x75/0x9c0
[  347.912568][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.918523][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  347.923711][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  347.930016][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  347.936149][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  347.941319][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  347.947187][ T6784]  __msan_chain_origin+0xbf/0x140
[  347.952270][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  347.957446][ T6784]  get_compat_msghdr+0x108/0x2c0
[  347.962437][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  347.967355][ T6784]  do_recvmmsg+0xd77/0x2120
[  347.971939][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  347.977230][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  347.982415][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  347.988721][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  347.993890][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  348.000192][ T6784]  ? fput+0x82/0x320
[  348.004121][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.010770][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.015528][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.021936][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.027025][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.031954][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.036522][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.042916][ T6784] RIP: 0023:0xf6e6e549
[  348.047007][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  348.066748][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  348.075205][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  348.083214][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  348.091215][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  348.099215][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  348.107214][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  348.115311][ T6784]  </TASK>
[  348.118555][    C1] vkms_vblank_simulate: vblank timer overrun
[  348.128160][ T6784] Uninit was stored to memory at:
[  348.133910][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.139069][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.144219][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.148774][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.153700][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.160243][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.165512][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.170417][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.175169][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.181621][ T6784] 
[  348.184117][ T6784] Uninit was stored to memory at:
[  348.189211][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.194588][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.199567][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.204297][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.209025][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.215611][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.220725][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.225806][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.230421][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.236993][ T6784] 
[  348.239324][ T6784] Uninit was stored to memory at:
[  348.244609][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.249759][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.254845][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.259416][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.264345][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.270814][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.276071][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.281038][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.285766][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.292153][ T6784] 
[  348.294689][ T6784] Uninit was stored to memory at:
[  348.299779][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.305097][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.310071][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.314846][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.319579][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.326138][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.331273][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.336344][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.340899][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.347501][ T6784] 
[  348.349830][ T6784] Uninit was stored to memory at:
[  348.355090][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.360290][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.365421][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.369973][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.374808][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.381243][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.386499][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.391398][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.396155][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.402545][ T6784] 
[  348.405048][ T6784] Uninit was stored to memory at:
[  348.410248][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.415575][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.420565][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.425284][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.430065][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.436617][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.441693][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.446799][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.451349][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.457916][ T6784] 
[  348.460298][ T6784] Uninit was stored to memory at:
[  348.465545][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  348.470697][ T6784]  get_compat_msghdr+0x108/0x2c0
[  348.475851][ T6784]  do_recvmmsg+0xd77/0x2120
[  348.478793][ T6761] not chained 70000 origins
[  348.480454][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.485278][ T6761] CPU: 0 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  348.489715][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.498022][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  348.498047][ T6761] Call Trace:
[  348.498062][ T6761]  <TASK>
[  348.498077][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  348.498148][ T6761]  dump_stack+0x25/0x28
[  348.504566][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  348.514513][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  348.514586][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  348.514643][ T6761]  ? release_sock+0x2b5/0x2e0
[  348.517906][ T6784]  do_fast_syscall_32+0x34/0x70
[  348.520838][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  348.525591][ T6784]  do_SYSENTER_32+0x1b/0x20
[  348.529630][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  348.534771][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.540377][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  348.545589][ T6784] 
[  348.550127][ T6761]  ? should_fail+0x75/0x9c0
[  348.555050][ T6784] Local variable msg_sys created at:
[  348.559780][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  348.564385][ T6784]  do_recvmmsg+0xbb/0x2120
[  348.569357][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  348.575763][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  348.581455][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  348.619772][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  348.625911][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  348.631079][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  348.636946][ T6761]  __msan_chain_origin+0xbf/0x140
[  348.642023][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  348.647194][ T6761]  get_compat_msghdr+0x108/0x2c0
[  348.652178][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  348.657078][ T6761]  do_recvmmsg+0xd77/0x2120
[  348.661648][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  348.666811][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  348.671991][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  348.678291][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  348.683475][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  348.689788][ T6761]  ? fput+0x82/0x320
[  348.693724][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.700283][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  348.705030][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.711418][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  348.716499][ T6761]  do_fast_syscall_32+0x34/0x70
[  348.721401][ T6761]  do_SYSENTER_32+0x1b/0x20
[  348.725976][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.732358][ T6761] RIP: 0023:0xf6ee2549
[  348.736444][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  348.756095][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  348.764548][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  348.772547][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  348.780541][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  348.788537][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  348.796531][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  348.804538][ T6761]  </TASK>
[  348.810747][ T6761] Uninit was stored to memory at:
[  348.816679][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  348.821829][ T6761]  get_compat_msghdr+0x108/0x2c0
[  348.826978][ T6761]  do_recvmmsg+0xd77/0x2120
[  348.831531][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  348.836413][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.842790][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  348.848031][ T6761]  do_fast_syscall_32+0x34/0x70
[  348.852405][ T6784] not chained 80000 origins
[  348.853069][ T6761]  do_SYSENTER_32+0x1b/0x20
[  348.853129][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.857639][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  348.862125][ T6761] 
[  348.862132][ T6761] Uninit was stored to memory at:
[  348.862207][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  348.868434][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  348.868460][ T6784] Call Trace:
[  348.868474][ T6784]  <TASK>
[  348.868489][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  348.876914][ T6761]  get_compat_msghdr+0x108/0x2c0
[  348.879153][ T6784]  dump_stack+0x25/0x28
[  348.884221][ T6761]  do_recvmmsg+0xd77/0x2120
[  348.889242][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  348.899359][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  348.902558][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  348.905545][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  348.910131][ T6784]  ? release_sock+0x2b5/0x2e0
[  348.915118][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  348.919187][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  348.923735][ T6761]  do_fast_syscall_32+0x34/0x70
[  348.929365][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  348.934092][ T6761]  do_SYSENTER_32+0x1b/0x20
[  348.939112][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  348.945492][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  348.950082][ T6784]  ? should_fail+0x75/0x9c0
[  348.955150][ T6761] 
[  348.959910][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  348.964812][ T6761] Uninit was stored to memory at:
[  348.969831][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  348.974446][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  348.980100][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  348.986482][ T6761]  get_compat_msghdr+0x108/0x2c0
[  348.990894][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  348.993280][ T6761]  do_recvmmsg+0xd77/0x2120
[  348.998999][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  349.004071][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.009091][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  349.014257][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.020412][ T6784]  __msan_chain_origin+0xbf/0x140
[  349.025399][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  349.031377][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.035941][ T6761]  do_fast_syscall_32+0x34/0x70
[  349.040984][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.045695][ T6761]  do_SYSENTER_32+0x1b/0x20
[  349.051415][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  349.057792][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.062730][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.067802][ T6761] 
[  349.072841][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  349.077725][ T6761] Uninit was stored to memory at:
[  349.082570][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  349.087186][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  349.091895][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  349.098270][ T6761]  get_compat_msghdr+0x108/0x2c0
[  349.102684][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  349.105066][ T6761]  do_recvmmsg+0xd77/0x2120
[  349.110090][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  349.115163][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.120188][ T6784]  ? fput+0x82/0x320
[  349.125354][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.131497][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.136490][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  349.141511][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.146061][ T6761]  do_fast_syscall_32+0x34/0x70
[  349.152225][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.156945][ T6761]  do_SYSENTER_32+0x1b/0x20
[  349.160757][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.167124][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.173541][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.173608][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.178617][ T6761] 
[  349.178626][ T6761] Uninit was stored to memory at:
[  349.178701][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  349.183285][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.183356][ T6784] RIP: 0023:0xf6e6e549
[  349.183388][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  349.188206][ T6761]  get_compat_msghdr+0x108/0x2c0
[  349.194512][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  349.194559][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  349.194592][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  349.199078][ T6761]  do_recvmmsg+0xd77/0x2120
[  349.204081][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  349.204110][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  349.204138][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  349.204180][ T6784]  </TASK>
[  349.210464][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.215316][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.218431][ T6784] Uninit was stored to memory at:
[  349.219852][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.222230][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.227251][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  349.227315][ T6761]  do_fast_syscall_32+0x34/0x70
[  349.227372][ T6761]  do_SYSENTER_32+0x1b/0x20
[  349.227428][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.227495][ T6761] 
[  349.227502][ T6761] Uninit was stored to memory at:
[  349.227569][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  349.227616][ T6761]  get_compat_msghdr+0x108/0x2c0
[  349.227663][ T6761]  do_recvmmsg+0xd77/0x2120
[  349.232760][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.239151][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.243310][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.262982][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.263043][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  349.267960][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.276429][ T6761]  do_fast_syscall_32+0x34/0x70
[  349.284541][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.292453][ T6761]  do_SYSENTER_32+0x1b/0x20
[  349.297062][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.305050][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.313194][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.321111][ T6761] 
[  349.321123][ T6761] Uninit was stored to memory at:
[  349.321201][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  349.324232][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.328892][ T6761]  get_compat_msghdr+0x108/0x2c0
[  349.328951][ T6761]  do_recvmmsg+0xd77/0x2120
[  349.335037][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.340044][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.346497][ T6784] 
[  349.351538][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.356679][ T6784] Uninit was stored to memory at:
[  349.361504][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  349.361578][ T6761]  do_fast_syscall_32+0x34/0x70
[  349.366242][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.372483][ T6761]  do_SYSENTER_32+0x1b/0x20
[  349.374934][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.379935][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.380008][ T6761] 
[  349.385188][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.390096][ T6761] Local variable msg_sys created at:
[  349.390112][ T6761]  do_recvmmsg+0xbb/0x2120
[  349.394705][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.399583][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  349.404340][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.572786][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.578068][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.583111][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.587667][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.594215][ T6784] 
[  349.596550][ T6784] Uninit was stored to memory at:
[  349.601640][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.606931][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.611973][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.616658][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.621389][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.627996][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.633201][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.638110][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.642658][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.649265][ T6784] 
[  349.651595][ T6784] Uninit was stored to memory at:
[  349.656854][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.662068][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.667237][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.671791][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.676752][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.683248][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.688329][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.693448][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.698003][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.704587][ T6784] 
[  349.706916][ T6784] Uninit was stored to memory at:
[  349.712072][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.717415][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.722417][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.727193][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.731919][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.738499][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.743741][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.748650][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.753371][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.759765][ T6784] 
[  349.762147][ T6784] Uninit was stored to memory at:
[  349.767431][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.772579][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.777785][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.782339][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.787250][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.793782][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.798864][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.803965][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.808520][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.815121][ T6784] 
[  349.817448][ T6784] Uninit was stored to memory at:
[  349.822541][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  349.827925][ T6784]  get_compat_msghdr+0x108/0x2c0
[  349.833017][ T6784]  do_recvmmsg+0xd77/0x2120
[  349.837567][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.842289][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  349.848885][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  349.854148][ T6784]  do_fast_syscall_32+0x34/0x70
[  349.859052][ T6784]  do_SYSENTER_32+0x1b/0x20
[  349.863811][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  349.870197][ T6784] 
[  349.872526][ T6784] Local variable msg_sys created at:
[  349.878031][ T6784]  do_recvmmsg+0xbb/0x2120
[  349.882494][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  349.908562][ T6761] not chained 90000 origins
[  349.913324][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  349.921692][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  349.931767][ T6761] Call Trace:
[  349.935062][ T6761]  <TASK>
[  349.938005][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  349.942744][ T6761]  dump_stack+0x25/0x28
[  349.946943][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  349.952724][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  349.957885][ T6761]  ? release_sock+0x2b5/0x2e0
[  349.962600][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  349.967502][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  349.972669][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  349.978544][ T6761]  ? should_fail+0x75/0x9c0
[  349.983076][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  349.988936][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  349.994098][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.000392][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  350.006519][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  350.011692][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  350.017556][ T6761]  __msan_chain_origin+0xbf/0x140
[  350.022640][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.027811][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.032803][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  350.037708][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.042275][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  350.047446][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  350.052616][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.058918][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  350.064083][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.070383][ T6761]  ? fput+0x82/0x320
[  350.074311][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.080865][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.085696][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.092081][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.097162][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.102063][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.106614][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.113042][ T6761] RIP: 0023:0xf6ee2549
[  350.117129][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  350.127735][ T6784] not chained 100000 origins
[  350.136772][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  350.136819][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  350.136853][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  350.165746][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  350.173820][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  350.181812][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  350.189817][ T6761]  </TASK>
[  350.192845][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  350.192989][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.201223][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  350.201254][ T6784] Call Trace:
[  350.201271][ T6784]  <TASK>
[  350.201286][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  350.201362][ T6784]  dump_stack+0x25/0x28
[  350.210926][ T6761] Uninit was stored to memory at:
[  350.217376][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  350.217456][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  350.217513][ T6784]  ? release_sock+0x2b5/0x2e0
[  350.217563][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  350.217623][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  350.217684][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  350.217755][ T6784]  ? should_fail+0x75/0x9c0
[  350.217799][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  350.217867][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  350.217932][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.218001][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  350.218070][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  350.218132][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  350.218201][ T6784]  __msan_chain_origin+0xbf/0x140
[  350.218264][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.218336][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.218399][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  350.218465][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.218541][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  350.218604][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  350.218675][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.218740][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  350.218805][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  350.218874][ T6784]  ? fput+0x82/0x320
[  350.218917][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.218980][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.219053][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.222401][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.225278][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.225349][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.230089][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.234179][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.234244][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.239288][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.244988][ T6784] RIP: 0023:0xf6e6e549
[  350.245022][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  350.245067][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  350.245112][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  350.250213][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.254872][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  350.254902][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  350.254931][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  350.254959][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  350.255001][ T6784]  </TASK>
[  350.259936][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.267991][ T6784] Uninit was stored to memory at:
[  350.270944][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.275951][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.281384][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.286500][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.292744][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.299259][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.304487][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.310298][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.315435][ T6761] 
[  350.320513][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.325538][ T6761] Uninit was stored to memory at:
[  350.325612][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.330448][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.330513][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.335081][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.340155][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.345378][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.351548][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.356764][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.363043][ T6784] 
[  350.363052][ T6784] Uninit was stored to memory at:
[  350.363124][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.366970][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.373531][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.378259][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.384596][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.389706][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.394785][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.394843][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.399667][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.404661][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.409200][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.415547][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.415608][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.420098][ T6761] 
[  350.420107][ T6761] Uninit was stored to memory at:
[  350.420180][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.424222][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.443855][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.444012][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.452308][ T6784] 
[  350.452315][ T6784] Uninit was stored to memory at:
[  350.452387][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.460401][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.465087][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.473149][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.481083][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.481140][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.489183][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.497194][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.500231][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.506618][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.511687][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.516723][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.521837][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.526741][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.526800][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.531708][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.536264][ T6784] 
[  350.536273][ T6784] Uninit was stored to memory at:
[  350.536346][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.540768][ T6761] 
[  350.540776][ T6761] Uninit was stored to memory at:
[  350.540845][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.547148][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.547197][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.551857][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.554240][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.560609][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.565648][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.570760][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.575846][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.580750][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.585702][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.590207][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.594766][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.594826][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.601129][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.605861][ T6784] 
[  350.605870][ T6784] Uninit was stored to memory at:
[  350.605942][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.608197][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.613274][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.613323][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.618429][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.624817][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.629801][ T6761] 
[  350.634840][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.639341][ T6761] Uninit was stored to memory at:
[  350.639413][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.644245][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.644308][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.648951][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.655331][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.659839][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.664913][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.664982][ T6784] 
[  350.671269][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.676170][ T6784] Uninit was stored to memory at:
[  350.676242][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.680720][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.683070][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.688092][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.693258][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.693317][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.699619][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.705653][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.710634][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.712976][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.718004][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.723168][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.727714][ T6761] 
[  350.732594][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.737344][ T6761] Uninit was stored to memory at:
[  350.741807][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.746652][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  350.752845][ T6784] 
[  350.752853][ T6784] Uninit was stored to memory at:
[  350.753003][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  350.759254][ T6761]  get_compat_msghdr+0x108/0x2c0
[  350.764237][ T6784]  get_compat_msghdr+0x108/0x2c0
[  350.769268][ T6761]  do_recvmmsg+0xd77/0x2120
[  350.774171][ T6784]  do_recvmmsg+0xd77/0x2120
[  350.779068][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  350.783585][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.788087][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.794465][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  350.794523][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  350.800824][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  350.803213][ T6784]  do_fast_syscall_32+0x34/0x70
[  350.808240][ T6761]  do_fast_syscall_32+0x34/0x70
[  350.813404][ T6784]  do_SYSENTER_32+0x1b/0x20
[  350.813463][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.815766][ T6761]  do_SYSENTER_32+0x1b/0x20
[  350.820769][ T6784] 
[  350.820778][ T6784] Local variable msg_sys created at:
[  350.825957][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  350.830850][ T6784]  do_recvmmsg+0xbb/0x2120
[  350.830906][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  350.835470][ T6761] 
[  351.199637][ T6761] Uninit was stored to memory at:
[  351.204915][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  351.210124][ T6761]  get_compat_msghdr+0x108/0x2c0
[  351.215292][ T6761]  do_recvmmsg+0xd77/0x2120
[  351.219853][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  351.224760][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.231187][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  351.236392][ T6761]  do_fast_syscall_32+0x34/0x70
[  351.241297][ T6761]  do_SYSENTER_32+0x1b/0x20
[  351.246059][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.252445][ T6761] 
[  351.254950][ T6761] Local variable msg_sys created at:
[  351.260298][ T6761]  do_recvmmsg+0xbb/0x2120
[  351.264942][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  351.402674][ T6784] not chained 110000 origins
[  351.407884][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  351.416257][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.426335][ T6784] Call Trace:
[  351.429623][ T6784]  <TASK>
[  351.432562][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  351.437301][ T6784]  dump_stack+0x25/0x28
[  351.441511][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  351.447288][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  351.452450][ T6784]  ? release_sock+0x2b5/0x2e0
[  351.457165][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  351.462067][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  351.467230][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.473102][ T6784]  ? should_fail+0x75/0x9c0
[  351.477641][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.483504][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  351.488667][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  351.494964][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  351.501089][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  351.506252][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.512113][ T6784]  __msan_chain_origin+0xbf/0x140
[  351.517192][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  351.522367][ T6784]  get_compat_msghdr+0x108/0x2c0
[  351.527352][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  351.532256][ T6784]  do_recvmmsg+0xd77/0x2120
[  351.536829][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  351.542004][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  351.547181][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  351.553476][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  351.558643][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  351.564943][ T6784]  ? fput+0x82/0x320
[  351.568876][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.575433][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  351.580175][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.586560][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  351.591645][ T6784]  do_fast_syscall_32+0x34/0x70
[  351.596549][ T6784]  do_SYSENTER_32+0x1b/0x20
[  351.601108][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.607491][ T6784] RIP: 0023:0xf6e6e549
[  351.611579][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  351.631226][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  351.639681][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  351.647681][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  351.655685][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  351.663683][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  351.671677][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  351.679687][ T6784]  </TASK>
[  351.685417][ T6784] Uninit was stored to memory at:
[  351.690521][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  351.696179][ T6784]  get_compat_msghdr+0x108/0x2c0
[  351.701166][ T6784]  do_recvmmsg+0xd77/0x2120
[  351.705822][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  351.710554][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.717180][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  351.722260][ T6784]  do_fast_syscall_32+0x34/0x70
[  351.727266][ T6784]  do_SYSENTER_32+0x1b/0x20
[  351.727805][ T6761] not chained 120000 origins
[  351.731820][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.737131][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  351.743324][ T6784] 
[  351.751554][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.753947][ T6784] Uninit was stored to memory at:
[  351.763912][ T6761] Call Trace:
[  351.763927][ T6761]  <TASK>
[  351.763943][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  351.769056][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  351.772266][ T6761]  dump_stack+0x25/0x28
[  351.775247][ T6784]  get_compat_msghdr+0x108/0x2c0
[  351.779833][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  351.784999][ T6784]  do_recvmmsg+0xd77/0x2120
[  351.789066][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  351.794051][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  351.799682][ T6761]  ? release_sock+0x2b5/0x2e0
[  351.804238][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.809263][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  351.813983][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  351.818573][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  351.824958][ T6784]  do_fast_syscall_32+0x34/0x70
[  351.829716][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.834792][ T6784]  do_SYSENTER_32+0x1b/0x20
[  351.839822][ T6761]  ? should_fail+0x75/0x9c0
[  351.844724][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.850436][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.854993][ T6784] 
[  351.859406][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  351.865788][ T6784] Uninit was stored to memory at:
[  351.871502][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  351.873950][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  351.878907][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  351.883981][ T6784]  get_compat_msghdr+0x108/0x2c0
[  351.890135][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  351.895293][ T6784]  do_recvmmsg+0xd77/0x2120
[  351.901270][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  351.906265][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  351.911283][ T6761]  __msan_chain_origin+0xbf/0x140
[  351.915840][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  351.921558][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  351.926284][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  351.931234][ T6761]  get_compat_msghdr+0x108/0x2c0
[  351.937593][ T6784]  do_fast_syscall_32+0x34/0x70
[  351.942619][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  351.947687][ T6784]  do_SYSENTER_32+0x1b/0x20
[  351.952540][ T6761]  do_recvmmsg+0xd77/0x2120
[  351.957440][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.962221][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  351.966759][ T6784] 
[  351.971174][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  351.977551][ T6784] Uninit was stored to memory at:
[  351.982579][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  351.985017][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  351.989975][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  351.995188][ T6784]  get_compat_msghdr+0x108/0x2c0
[  352.001320][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  352.006491][ T6784]  do_recvmmsg+0xd77/0x2120
[  352.011508][ T6761]  ? fput+0x82/0x320
[  352.016505][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  352.022659][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.027217][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.031021][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.035749][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  352.042172][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.048535][ T6784]  do_fast_syscall_32+0x34/0x70
[  352.053130][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.053200][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.058197][ T6784]  do_SYSENTER_32+0x1b/0x20
[  352.064512][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.064576][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.069415][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.074419][ T6761] RIP: 0023:0xf6ee2549
[  352.074453][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  352.074498][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296
[  352.079321][ T6784] 
[  352.079329][ T6784] Uninit was stored to memory at:
[  352.083804][ T6761]  ORIG_RAX: 0000000000000151
[  352.083821][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  352.083855][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  352.083884][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  352.088426][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  352.094671][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  352.094700][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.094743][ T6761]  </TASK>
[  352.094890][    C1] vkms_vblank_simulate: vblank timer overrun
[  352.101052][ T6784]  get_compat_msghdr+0x108/0x2c0
[  352.101101][ T6784]  do_recvmmsg+0xd77/0x2120
[  352.109697][ T6761] Uninit was stored to memory at:
[  352.124915][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  352.124982][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.125045][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  352.125106][ T6784]  do_fast_syscall_32+0x34/0x70
[  352.125163][ T6784]  do_SYSENTER_32+0x1b/0x20
[  352.125219][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.125284][ T6784] 
[  352.125290][ T6784] Uninit was stored to memory at:
[  352.125359][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  352.125405][ T6784]  get_compat_msghdr+0x108/0x2c0
[  352.125450][ T6784]  do_recvmmsg+0xd77/0x2120
[  352.125505][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  352.125561][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.125616][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  352.125676][ T6784]  do_fast_syscall_32+0x34/0x70
[  352.125734][ T6784]  do_SYSENTER_32+0x1b/0x20
[  352.131902][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.134193][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.139211][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.143944][ T6784] 
[  352.143952][ T6784] Uninit was stored to memory at:
[  352.144026][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  352.151973][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.159990][ T6784]  get_compat_msghdr+0x108/0x2c0
[  352.160044][ T6784]  do_recvmmsg+0xd77/0x2120
[  352.168069][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.173234][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  352.181260][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.189251][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.192283][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.198315][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  352.203359][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.207817][ T6784]  do_fast_syscall_32+0x34/0x70
[  352.212862][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.217549][ T6784]  do_SYSENTER_32+0x1b/0x20
[  352.223883][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.228861][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.233826][ T6761] 
[  352.238288][ T6784] 
[  352.238297][ T6784] Local variable msg_sys created at:
[  352.244718][ T6761] Uninit was stored to memory at:
[  352.246979][ T6784]  do_recvmmsg+0xbb/0x2120
[  352.252045][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.257154][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  352.262135][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.434263][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.438820][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.443695][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.450074][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.455271][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.460228][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.464911][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.471299][ T6761] 
[  352.473803][ T6761] Uninit was stored to memory at:
[  352.478957][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.484287][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.489265][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.494019][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.498745][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.505305][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.510440][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.515532][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.520098][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.526701][ T6761] 
[  352.529029][ T6761] Uninit was stored to memory at:
[  352.534290][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.539435][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.544565][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.549113][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.553991][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.560421][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.565685][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.570587][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.575313][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.581753][ T6761] 
[  352.584244][ T6761] Uninit was stored to memory at:
[  352.589336][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.594695][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.599672][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.604403][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.609130][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.615735][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.620815][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.625899][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.630512][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.637074][ T6761] 
[  352.639403][ T6761] Uninit was stored to memory at:
[  352.644697][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.649849][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.655007][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.659555][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.664424][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.670804][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.676068][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.681027][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.685758][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.692145][ T6761] 
[  352.694684][ T6761] Uninit was stored to memory at:
[  352.699778][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.705100][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.710133][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.714863][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.719585][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.726143][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.731280][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.736357][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.740909][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.747514][ T6761] 
[  352.749844][ T6761] Local variable msg_sys created at:
[  352.755310][ T6761]  do_recvmmsg+0xbb/0x2120
[  352.759772][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.771825][ T6761] not chained 130000 origins
[  352.776662][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  352.785021][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  352.795093][ T6761] Call Trace:
[  352.798382][ T6761]  <TASK>
[  352.801321][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  352.806055][ T6761]  dump_stack+0x25/0x28
[  352.810256][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  352.816036][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  352.821190][ T6761]  ? release_sock+0x2b5/0x2e0
[  352.825906][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  352.830804][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  352.835968][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  352.841834][ T6761]  ? should_fail+0x75/0x9c0
[  352.846367][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  352.852229][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  352.857389][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  352.863684][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  352.869808][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  352.874980][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  352.880850][ T6761]  __msan_chain_origin+0xbf/0x140
[  352.885927][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  352.891099][ T6761]  get_compat_msghdr+0x108/0x2c0
[  352.896083][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  352.900985][ T6761]  do_recvmmsg+0xd77/0x2120
[  352.905552][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  352.910713][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  352.915880][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  352.922182][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  352.927344][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  352.933641][ T6761]  ? fput+0x82/0x320
[  352.937565][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.944120][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  352.948861][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  352.955255][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  352.960337][ T6761]  do_fast_syscall_32+0x34/0x70
[  352.965240][ T6761]  do_SYSENTER_32+0x1b/0x20
[  352.969792][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.973038][ T6784] not chained 140000 origins
[  352.976167][ T6761] RIP: 0023:0xf6ee2549
[  352.984791][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  353.004423][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  353.012860][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  353.020854][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  353.028837][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  353.036816][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  353.044795][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  353.052790][ T6761]  </TASK>
[  353.055810][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  353.055947][    C1] vkms_vblank_simulate: vblank timer overrun
[  353.064165][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  353.064191][ T6784] Call Trace:
[  353.064206][ T6784]  <TASK>
[  353.064220][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  353.064294][ T6784]  dump_stack+0x25/0x28
[  353.073133][ T6761] Uninit was stored to memory at:
[  353.080292][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  353.080366][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  353.080422][ T6784]  ? release_sock+0x2b5/0x2e0
[  353.080474][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  353.080536][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  353.080600][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  353.080672][ T6784]  ? should_fail+0x75/0x9c0
[  353.084116][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.086882][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  353.091536][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.095675][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  353.095753][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  353.095823][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  353.100831][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.106535][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  353.106601][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  353.111767][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.116384][ T6784]  __msan_chain_origin+0xbf/0x140
[  353.116450][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.121314][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.126442][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.126501][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  353.126566][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.132351][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.136860][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  353.136926][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  353.142031][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.147832][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  353.147908][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  353.147979][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  353.153028][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.158027][ T6784]  ? fput+0x82/0x320
[  353.164375][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.170296][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.174893][ T6761] 
[  353.179877][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.185809][ T6761] Uninit was stored to memory at:
[  353.190380][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.195566][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.200474][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.206873][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.211698][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.216664][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.221054][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.226152][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.231146][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.236374][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.241110][ T6784] RIP: 0023:0xf6e6e549
[  353.247457][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.252420][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  353.258741][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.263127][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  353.263174][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  353.263207][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  353.263237][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  353.263264][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  353.267130][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.273442][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  353.273493][ T6784]  </TASK>
[  353.276703][ T6784] Uninit was stored to memory at:
[  353.280117][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.282449][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.287150][ T6761] 
[  353.287160][ T6761] Uninit was stored to memory at:
[  353.287229][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.287277][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.287324][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.287386][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.287441][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.287497][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.287558][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.287614][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.287671][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.287734][ T6761] 
[  353.287741][ T6761] Uninit was stored to memory at:
[  353.287810][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.287857][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.287902][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.287956][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.288010][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.288065][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.288122][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.288182][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.288239][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.288303][ T6761] 
[  353.288310][ T6761] Uninit was stored to memory at:
[  353.288385][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.293497][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.299780][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.304964][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.310038][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.314988][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.319844][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.324410][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.328967][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.333653][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.339979][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.346362][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.346423][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.350464][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.355544][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.375298][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.380101][ T6784] 
[  353.380109][ T6784] Uninit was stored to memory at:
[  353.380184][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.388657][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.396668][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.396718][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.404772][ T6761] 
[  353.412709][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.412767][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.420857][ T6761] Uninit was stored to memory at:
[  353.425394][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.433555][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.436444][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.441448][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.447830][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.447895][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.453069][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.455359][ T6784] 
[  353.455366][ T6784] Uninit was stored to memory at:
[  353.455438][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.460414][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.465535][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.470479][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.475039][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.479759][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.486098][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.491122][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.496028][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.496086][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.500557][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.506939][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.509272][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.514355][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.514415][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.519494][ T6761] 
[  353.519502][ T6761] Uninit was stored to memory at:
[  353.519575][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  353.524487][ T6784] 
[  353.524494][ T6784] Uninit was stored to memory at:
[  353.524564][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.529042][ T6761]  get_compat_msghdr+0x108/0x2c0
[  353.533732][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.540058][ T6761]  do_recvmmsg+0xd77/0x2120
[  353.545135][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.545192][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.550014][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.554574][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.560949][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.563292][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.568315][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  353.573482][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.578465][ T6761]  do_fast_syscall_32+0x34/0x70
[  353.583417][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.587923][ T6761]  do_SYSENTER_32+0x1b/0x20
[  353.592411][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.597191][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.601810][ T6784] 
[  353.601818][ T6784] Uninit was stored to memory at:
[  353.601898][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  353.608216][ T6761] 
[  353.614574][ T6784]  get_compat_msghdr+0x108/0x2c0
[  353.614624][ T6784]  do_recvmmsg+0xd77/0x2120
[  353.619634][ T6761] Local variable msg_sys created at:
[  353.619648][ T6761]  do_recvmmsg+0xbb/0x2120
[  353.624710][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  353.629605][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  353.634120][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  353.976031][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  353.981115][ T6784]  do_fast_syscall_32+0x34/0x70
[  353.986168][ T6784]  do_SYSENTER_32+0x1b/0x20
[  353.990728][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  353.997273][ T6784] 
[  353.999604][ T6784] Uninit was stored to memory at:
[  354.004839][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.010003][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.015129][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.019681][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.024552][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.030929][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.036168][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.041074][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.045783][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.052178][ T6784] 
[  354.054654][ T6784] Uninit was stored to memory at:
[  354.059745][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.065038][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.070014][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.072314][ T6761] not chained 150000 origins
[  354.074708][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.074767][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.074825][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.079452][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  354.084134][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.090360][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  354.095441][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.103675][ T6761] Call Trace:
[  354.103691][ T6761]  <TASK>
[  354.103707][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  354.108584][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.118638][ T6761]  dump_stack+0x25/0x28
[  354.118698][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  354.123264][ T6784] 
[  354.126464][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  354.129381][ T6784] Local variable msg_sys created at:
[  354.129395][ T6784]  do_recvmmsg+0xbb/0x2120
[  354.134038][ T6761]  ? release_sock+0x2b5/0x2e0
[  354.134089][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  354.140416][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.144555][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  354.144623][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.192439][ T6761]  ? should_fail+0x75/0x9c0
[  354.196985][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.202852][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  354.208017][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.214316][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  354.220444][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  354.225607][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.231468][ T6761]  __msan_chain_origin+0xbf/0x140
[  354.236545][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.241718][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.246702][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  354.251604][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.256172][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  354.261339][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  354.266515][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.272808][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  354.277971][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.284269][ T6761]  ? fput+0x82/0x320
[  354.288194][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.294748][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.299494][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.305895][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.311087][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.315998][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.320557][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.326947][ T6761] RIP: 0023:0xf6ee2549
[  354.331037][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  354.347454][ T6784] not chained 160000 origins
[  354.350679][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  354.363674][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  354.371660][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  354.379644][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  354.387625][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  354.395606][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.403618][ T6761]  </TASK>
[  354.406643][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  354.406773][    C1] vkms_vblank_simulate: vblank timer overrun
[  354.415002][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  354.415029][ T6784] Call Trace:
[  354.415043][ T6784]  <TASK>
[  354.415059][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  354.415135][ T6784]  dump_stack+0x25/0x28
[  354.425984][ T6761] Uninit was stored to memory at:
[  354.431146][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  354.431224][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  354.431280][ T6784]  ? release_sock+0x2b5/0x2e0
[  354.431329][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  354.431390][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  354.431452][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.431522][ T6784]  ? should_fail+0x75/0x9c0
[  354.431564][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.431629][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  354.431692][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.431761][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  354.431830][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  354.431894][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  354.431962][ T6784]  __msan_chain_origin+0xbf/0x140
[  354.435381][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.438146][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.442801][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.446955][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.447022][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  354.447087][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.452080][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.457802][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  354.457869][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  354.463104][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.467653][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.472474][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.477568][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  354.477635][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  354.477705][ T6784]  ? fput+0x82/0x320
[  354.483589][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.487978][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.493887][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.498860][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.505176][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.511139][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.516354][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.522056][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.527173][ T6761] 
[  354.532146][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.537332][ T6761] Uninit was stored to memory at:
[  354.542156][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.547262][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.551906][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.556503][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.560879][ T6784] RIP: 0023:0xf6e6e549
[  354.560911][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  354.566109][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.571103][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296
[  354.575861][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.581987][ T6784]  ORIG_RAX: 0000000000000151
[  354.582003][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  354.582037][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  354.588431][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.593430][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  354.593459][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  354.593487][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.593531][ T6784]  </TASK>
[  354.596717][ T6784] Uninit was stored to memory at:
[  354.599779][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.604109][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.608766][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.615341][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.615390][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.620232][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.624964][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.629520][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.635856][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.642178][ T6761] 
[  354.642187][ T6761] Uninit was stored to memory at:
[  354.642259][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.647255][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.647318][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.649614][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.654518][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.659547][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.664108][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.664176][ T6784] 
[  354.669250][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.675644][ T6784] Uninit was stored to memory at:
[  354.675714][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.680627][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.684709][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.704445][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.708886][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.715053][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.719673][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.724426][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.732360][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.732418][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.740456][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.746816][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.754898][ T6761] 
[  354.762833][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.762970][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.770921][ T6761] Uninit was stored to memory at:
[  354.770994][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.774005][ T6784] 
[  354.774012][ T6784] Uninit was stored to memory at:
[  354.774081][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.779072][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.784112][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.789221][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.794124][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.794182][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.799092][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.803654][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.808161][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.812820][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.812971][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.819264][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.825734][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.828110][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.833149][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.838263][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.843342][ T6784] 
[  354.843350][ T6784] Uninit was stored to memory at:
[  354.843420][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.848215][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.853202][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.857707][ T6761] 
[  354.857714][ T6761] Uninit was stored to memory at:
[  354.857785][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.862189][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.862248][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.868633][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.870930][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.875696][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.880677][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.885906][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.892195][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.897234][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.902192][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.906775][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.911584][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.916377][ T6761]  do_fast_syscall_32+0x34/0x70
[  354.920838][ T6784] 
[  354.920845][ T6784] Uninit was stored to memory at:
[  354.920918][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.927268][ T6761]  do_SYSENTER_32+0x1b/0x20
[  354.932222][ T6784]  get_compat_msghdr+0x108/0x2c0
[  354.938973][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.943861][ T6784]  do_recvmmsg+0xd77/0x2120
[  354.943920][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  354.946225][ T6761] 
[  354.946232][ T6761] Uninit was stored to memory at:
[  354.946303][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  354.950711][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.957117][ T6761]  get_compat_msghdr+0x108/0x2c0
[  354.962097][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  354.967325][ T6761]  do_recvmmsg+0xd77/0x2120
[  354.969619][ T6784]  do_fast_syscall_32+0x34/0x70
[  354.974720][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  354.979789][ T6784]  do_SYSENTER_32+0x1b/0x20
[  354.979848][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  354.984844][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  354.989744][ T6784] 
[  354.989752][ T6784] Uninit was stored to memory at:
[  354.989823][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  354.994349][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  354.998785][ T6784]  get_compat_msghdr+0x108/0x2c0
[  355.003563][ T6761]  do_fast_syscall_32+0x34/0x70
[  355.008212][ T6784]  do_recvmmsg+0xd77/0x2120
[  355.014656][ T6761]  do_SYSENTER_32+0x1b/0x20
[  355.020908][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  355.026015][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.030840][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.035989][ T6761] 
[  355.040458][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  355.045420][ T6761] Uninit was stored to memory at:
[  355.051677][ T6784]  do_fast_syscall_32+0x34/0x70
[  355.056325][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  355.058552][ T6784]  do_SYSENTER_32+0x1b/0x20
[  355.063680][ T6761]  get_compat_msghdr+0x108/0x2c0
[  355.068726][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.075129][ T6761]  do_recvmmsg+0xd77/0x2120
[  355.080027][ T6784] 
[  355.080034][ T6784] Uninit was stored to memory at:
[  355.080104][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  355.082395][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  355.087474][ T6784]  get_compat_msghdr+0x108/0x2c0
[  355.092583][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.097138][ T6784]  do_recvmmsg+0xd77/0x2120
[  355.097195][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  355.101846][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  355.106840][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.113292][ T6761]  do_fast_syscall_32+0x34/0x70
[  355.117729][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  355.122732][ T6761]  do_SYSENTER_32+0x1b/0x20
[  355.127464][ T6784]  do_fast_syscall_32+0x34/0x70
[  355.127525][ T6784]  do_SYSENTER_32+0x1b/0x20
[  355.132346][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.138730][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.143363][ T6761] 
[  355.148322][ T6784] 
[  355.148331][ T6784] Local variable msg_sys created at:
[  355.154728][ T6761] Local variable msg_sys created at:
[  355.159535][ T6784]  do_recvmmsg+0xbb/0x2120
[  355.161893][ T6761]  do_recvmmsg+0xbb/0x2120
[  355.166941][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  355.172044][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  355.584315][ T6761] not chained 170000 origins
[  355.588948][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  355.597313][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  355.607391][ T6761] Call Trace:
[  355.610684][ T6761]  <TASK>
[  355.613625][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  355.618360][ T6761]  dump_stack+0x25/0x28
[  355.622558][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  355.628334][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  355.633489][ T6761]  ? release_sock+0x2b5/0x2e0
[  355.638208][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  355.643112][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  355.648276][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.654140][ T6761]  ? should_fail+0x75/0x9c0
[  355.658672][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.664533][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  355.669695][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  355.675990][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  355.682113][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  355.687276][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.693138][ T6761]  __msan_chain_origin+0xbf/0x140
[  355.698211][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  355.703380][ T6761]  get_compat_msghdr+0x108/0x2c0
[  355.708363][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  355.713264][ T6761]  do_recvmmsg+0xd77/0x2120
[  355.717829][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  355.722997][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  355.728167][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  355.734461][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  355.739627][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  355.745930][ T6761]  ? fput+0x82/0x320
[  355.749863][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.756425][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  355.761175][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.767561][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  355.772646][ T6761]  do_fast_syscall_32+0x34/0x70
[  355.777549][ T6761]  do_SYSENTER_32+0x1b/0x20
[  355.780151][ T6784] not chained 180000 origins
[  355.782096][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.792987][ T6761] RIP: 0023:0xf6ee2549
[  355.797066][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  355.816705][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  355.825137][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  355.833121][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  355.841105][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  355.849087][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  355.857066][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  355.865077][ T6761]  </TASK>
[  355.868097][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  355.868235][    C1] vkms_vblank_simulate: vblank timer overrun
[  355.876455][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  355.876482][ T6784] Call Trace:
[  355.876496][ T6784]  <TASK>
[  355.876510][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  355.876585][ T6784]  dump_stack+0x25/0x28
[  355.886031][ T6761] Uninit was stored to memory at:
[  355.892584][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  355.896577][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  355.898777][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  355.903535][ T6761]  get_compat_msghdr+0x108/0x2c0
[  355.907563][ T6784]  ? release_sock+0x2b5/0x2e0
[  355.912609][ T6761]  do_recvmmsg+0xd77/0x2120
[  355.918268][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  355.918332][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  355.923556][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  355.928554][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.933607][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  355.938179][ T6784]  ? should_fail+0x75/0x9c0
[  355.942672][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  355.947504][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.947573][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  355.947638][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  355.952726][ T6761]  do_fast_syscall_32+0x34/0x70
[  355.957391][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  355.957463][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  355.963392][ T6761]  do_SYSENTER_32+0x1b/0x20
[  355.969580][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  355.974157][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  355.979066][ T6784]  __msan_chain_origin+0xbf/0x140
[  355.984991][ T6761] 
[  355.989989][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  355.996328][ T6761] Uninit was stored to memory at:
[  356.001054][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.007249][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.012183][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  356.016806][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.022502][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.029090][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.033956][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  356.034029][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  356.036352][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.041456][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  356.046595][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.051374][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  356.056578][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.061313][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  356.066371][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.070757][ T6784]  ? fput+0x82/0x320
[  356.075335][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.080330][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.080397][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.085565][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.090141][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.096474][ T6761] 
[  356.102661][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.107843][ T6761] Uninit was stored to memory at:
[  356.112758][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.119177][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.123848][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.123917][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.127846][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.132288][ T6784] RIP: 0023:0xf6e6e549
[  356.138868][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.143424][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  356.143472][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  356.143518][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  356.143551][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  356.149855][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.156169][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  356.156203][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  356.156230][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  356.156274][ T6784]  </TASK>
[  356.156487][ T6784] Uninit was stored to memory at:
[  356.158625][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.163776][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.168777][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.173685][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.178842][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.183359][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.189694][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.194689][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.194747][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.198784][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.203340][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.223086][ T6761] 
[  356.231432][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.231494][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.239529][ T6761] Uninit was stored to memory at:
[  356.247539][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.252288][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.260255][ T6784] 
[  356.260262][ T6784] Uninit was stored to memory at:
[  356.260330][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.268339][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.276369][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.276418][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.279434][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.284545][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.290866][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.296051][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.296113][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.301110][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.306117][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.311008][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.315522][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.320030][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.324761][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.331135][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.337476][ T6784] 
[  356.337485][ T6784] Uninit was stored to memory at:
[  356.337560][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.342500][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.344889][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.344938][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.349773][ T6761] 
[  356.349780][ T6761] Uninit was stored to memory at:
[  356.349852][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.354331][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.359362][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.365750][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.365809][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.370895][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.373282][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.378355][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.383479][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.388415][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.393411][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.397940][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.402423][ T6784] 
[  356.402431][ T6784] Uninit was stored to memory at:
[  356.402504][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.407178][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.411814][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.411863][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.418268][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.423327][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.429700][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.434561][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.439585][ T6761] 
[  356.439592][ T6761] Uninit was stored to memory at:
[  356.439665][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.444143][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.444206][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.449019][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.455408][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.459951][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.462221][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.467320][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.472398][ T6784] 
[  356.472405][ T6784] Uninit was stored to memory at:
[  356.472477][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.478864][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.483777][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.488282][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.490597][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.495739][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.500787][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.505550][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.510450][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.510510][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.516910][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.521893][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.526501][ T6761] 
[  356.531286][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.536040][ T6761] Uninit was stored to memory at:
[  356.540502][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.547001][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  356.553266][ T6784] 
[  356.553273][ T6784] Uninit was stored to memory at:
[  356.553342][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.558294][ T6761]  get_compat_msghdr+0x108/0x2c0
[  356.560608][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.560657][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.565754][ T6761]  do_recvmmsg+0xd77/0x2120
[  356.570829][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.575758][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.580669][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.580727][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.585288][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.589756][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.594536][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  356.600798][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.607214][ T6761]  do_fast_syscall_32+0x34/0x70
[  356.609509][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.614646][ T6761]  do_SYSENTER_32+0x1b/0x20
[  356.619682][ T6784] 
[  356.619690][ T6784] Uninit was stored to memory at:
[  356.619765][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  356.624787][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.629597][ T6784]  get_compat_msghdr+0x108/0x2c0
[  356.629646][ T6784]  do_recvmmsg+0xd77/0x2120
[  356.634654][ T6761] 
[  356.639117][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.643723][ T6761] Local variable msg_sys created at:
[  356.649985][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  356.654739][ T6761]  do_recvmmsg+0xbb/0x2120
[  356.657028][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  356.662076][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  356.667199][ T6784]  do_fast_syscall_32+0x34/0x70
[  356.904159][ T6784]  do_SYSENTER_32+0x1b/0x20
[  356.908718][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  356.915269][ T6784] 
[  356.917600][ T6784] Local variable msg_sys created at:
[  356.923054][ T6784]  do_recvmmsg+0xbb/0x2120
[  356.927521][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  356.991138][ T6761] not chained 190000 origins
[  356.995936][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  357.004300][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  357.014371][ T6761] Call Trace:
[  357.017661][ T6761]  <TASK>
[  357.020602][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  357.025337][ T6761]  dump_stack+0x25/0x28
[  357.029538][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  357.035313][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  357.040467][ T6761]  ? release_sock+0x2b5/0x2e0
[  357.045180][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  357.050077][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  357.055238][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.061107][ T6761]  ? should_fail+0x75/0x9c0
[  357.065643][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.071504][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  357.076666][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.082960][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  357.089081][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  357.094243][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.100104][ T6761]  __msan_chain_origin+0xbf/0x140
[  357.105177][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.110347][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.115328][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  357.120249][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.124815][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  357.129980][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  357.135150][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.141443][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  357.146609][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.152910][ T6761]  ? fput+0x82/0x320
[  357.156836][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.163395][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.168132][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.174514][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.175158][ T6784] not chained 200000 origins
[  357.179599][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.189012][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.193555][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.199932][ T6761] RIP: 0023:0xf6ee2549
[  357.204018][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  357.223659][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  357.232097][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  357.240082][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  357.248065][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  357.256047][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  357.264028][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  357.272023][ T6761]  </TASK>
[  357.275046][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  357.275181][    C1] vkms_vblank_simulate: vblank timer overrun
[  357.283402][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  357.283429][ T6784] Call Trace:
[  357.283443][ T6784]  <TASK>
[  357.283458][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  357.283533][ T6784]  dump_stack+0x25/0x28
[  357.292056][ T6761] Uninit was stored to memory at:
[  357.299531][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  357.299606][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  357.299664][ T6784]  ? release_sock+0x2b5/0x2e0
[  357.299714][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  357.299776][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  357.299841][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.299912][ T6784]  ? should_fail+0x75/0x9c0
[  357.299955][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.303399][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.306192][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  357.310902][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.314989][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.315060][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  357.320102][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.325811][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  357.325878][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  357.331049][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.335668][ T6784]  __msan_chain_origin+0xbf/0x140
[  357.335736][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.340596][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.345713][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.345772][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  357.345837][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.351607][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.356110][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  357.356175][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  357.362022][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.367082][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.367150][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  357.372279][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.377184][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  357.377257][ T6784]  ? fput+0x82/0x320
[  357.377300][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.383620][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.389579][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.394180][ T6761] 
[  357.399165][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.405055][ T6761] Uninit was stored to memory at:
[  357.409622][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.414818][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.419751][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.426152][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.430976][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.435914][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.440296][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.445422][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.450392][ T6784] RIP: 0023:0xf6e6e549
[  357.455581][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.460317][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  357.460370][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296
[  357.466671][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.471668][ T6784]  ORIG_RAX: 0000000000000151
[  357.471684][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  357.476327][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.482373][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  357.486405][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.492735][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  357.492765][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  357.492793][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  357.492836][ T6784]  </TASK>
[  357.492950][ T6784] Uninit was stored to memory at:
[  357.493026][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.499256][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.503996][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.506326][ T6761] 
[  357.506334][ T6761] Uninit was stored to memory at:
[  357.506404][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.512634][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.512692][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.517779][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.522769][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.527986][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.532765][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.537780][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.542242][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.546845][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.553181][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.557867][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.561914][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.568358][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.588018][ T6784] 
[  357.588026][ T6784] Uninit was stored to memory at:
[  357.588097][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.594235][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.599194][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.603954][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.611883][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.611942][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.616851][ T6761] 
[  357.624870][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.629425][ T6761] Uninit was stored to memory at:
[  357.637417][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.645575][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.653493][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.656523][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.661527][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.661587][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.666759][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.673118][ T6784] 
[  357.673126][ T6784] Uninit was stored to memory at:
[  357.673196][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.678100][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.680374][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.685477][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.690549][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.695158][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.699765][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.704781][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.711066][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.711124][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.715699][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.720686][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.725439][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.730252][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.730311][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.736696][ T6761] 
[  357.741157][ T6784] 
[  357.741165][ T6784] Uninit was stored to memory at:
[  357.741237][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.746284][ T6761] Uninit was stored to memory at:
[  357.752543][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.757532][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.759762][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.759819][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.764906][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.769973][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.774549][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.779448][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.785899][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.790354][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.795138][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.797403][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.803807][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.808790][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.813921][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.818962][ T6784] 
[  357.818970][ T6784] Uninit was stored to memory at:
[  357.819043][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.823895][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.828790][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.828838][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.833415][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.839715][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.844325][ T6761] 
[  357.846592][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.851597][ T6761] Uninit was stored to memory at:
[  357.851668][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.856761][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.861481][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.866435][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.872770][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.877328][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.877392][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.882379][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.887111][ T6784] 
[  357.887119][ T6784] Uninit was stored to memory at:
[  357.887190][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.891962][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.898342][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.898396][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.903489][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.907951][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.912823][ T6761]  do_fast_syscall_32+0x34/0x70
[  357.919160][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.923667][ T6761]  do_SYSENTER_32+0x1b/0x20
[  357.929954][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.932310][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.934698][ T6784]  do_fast_syscall_32+0x34/0x70
[  357.939724][ T6761] 
[  357.939732][ T6761] Uninit was stored to memory at:
[  357.939804][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  357.944891][ T6784]  do_SYSENTER_32+0x1b/0x20
[  357.944951][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  357.949951][ T6761]  get_compat_msghdr+0x108/0x2c0
[  357.954941][ T6784] 
[  357.954949][ T6784] Uninit was stored to memory at:
[  357.955019][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  357.960100][ T6761]  do_recvmmsg+0xd77/0x2120
[  357.964618][ T6784]  get_compat_msghdr+0x108/0x2c0
[  357.969296][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  357.974286][ T6784]  do_recvmmsg+0xd77/0x2120
[  357.980660][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.985178][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  357.990203][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  357.994933][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  357.994991][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  357.999817][ T6761]  do_fast_syscall_32+0x34/0x70
[  358.006201][ T6784]  do_fast_syscall_32+0x34/0x70
[  358.010750][ T6761]  do_SYSENTER_32+0x1b/0x20
[  358.015790][ T6784]  do_SYSENTER_32+0x1b/0x20
[  358.022120][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.027028][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.029388][ T6761] 
[  358.029397][ T6761] Local variable msg_sys created at:
[  358.034464][ T6784] 
[  358.034473][ T6784] Local variable msg_sys created at:
[  358.034487][ T6784]  do_recvmmsg+0xbb/0x2120
[  358.039576][ T6761]  do_recvmmsg+0xbb/0x2120
[  358.044132][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  358.338148][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  358.437154][ T6784] not chained 210000 origins
[  358.441788][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  358.450149][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  358.460223][ T6784] Call Trace:
[  358.463511][ T6784]  <TASK>
[  358.466454][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  358.471189][ T6784]  dump_stack+0x25/0x28
[  358.475388][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  358.481166][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  358.486327][ T6784]  ? release_sock+0x2b5/0x2e0
[  358.491050][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  358.495961][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  358.501129][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.507002][ T6784]  ? should_fail+0x75/0x9c0
[  358.511538][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.517398][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  358.522563][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.528858][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  358.534984][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  358.540494][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.546356][ T6784]  __msan_chain_origin+0xbf/0x140
[  358.551437][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  358.556606][ T6784]  get_compat_msghdr+0x108/0x2c0
[  358.561588][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  358.566492][ T6784]  do_recvmmsg+0xd77/0x2120
[  358.571061][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  358.576223][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  358.581393][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.587688][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  358.592858][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.599158][ T6784]  ? fput+0x82/0x320
[  358.603085][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.609642][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  358.614388][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.620778][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  358.625862][ T6784]  do_fast_syscall_32+0x34/0x70
[  358.630635][ T6761] not chained 220000 origins
[  358.630762][ T6784]  do_SYSENTER_32+0x1b/0x20
[  358.639829][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.646204][ T6784] RIP: 0023:0xf6e6e549
[  358.650281][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  358.669917][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  358.678349][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  358.686339][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  358.694325][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  358.702308][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  358.710295][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  358.718294][ T6784]  </TASK>
[  358.721319][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  358.724200][ T6784] Uninit was stored to memory at:
[  358.729680][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  358.735189][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  358.744737][ T6761] Call Trace:
[  358.744751][ T6761]  <TASK>
[  358.744766][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  358.744836][ T6761]  dump_stack+0x25/0x28
[  358.749913][ T6784]  get_compat_msghdr+0x108/0x2c0
[  358.753182][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  358.753251][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  358.753308][ T6761]  ? release_sock+0x2b5/0x2e0
[  358.753360][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  358.756288][ T6784]  do_recvmmsg+0xd77/0x2120
[  358.760948][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  358.765158][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  358.770001][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.775772][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.780797][ T6761]  ? should_fail+0x75/0x9c0
[  358.785522][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  358.790280][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.794877][ T6784]  do_fast_syscall_32+0x34/0x70
[  358.799878][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  358.804650][ T6784]  do_SYSENTER_32+0x1b/0x20
[  358.810345][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.816775][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.821171][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  358.826261][ T6784] 
[  358.831973][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  358.837345][ T6784] Uninit was stored to memory at:
[  358.842358][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  358.846988][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  358.853066][ T6761]  __msan_chain_origin+0xbf/0x140
[  358.853134][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  358.859447][ T6784]  get_compat_msghdr+0x108/0x2c0
[  358.865516][ T6761]  get_compat_msghdr+0x108/0x2c0
[  358.865575][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  358.867895][ T6784]  do_recvmmsg+0xd77/0x2120
[  358.872992][ T6761]  do_recvmmsg+0xd77/0x2120
[  358.873072][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  358.878072][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  358.883863][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  358.883938][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.889035][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.894041][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  358.894110][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  358.899210][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  358.904153][ T6761]  ? fput+0x82/0x320
[  358.904205][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.904271][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  358.909183][ T6784]  do_fast_syscall_32+0x34/0x70
[  358.914033][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.914107][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  358.918595][ T6784]  do_SYSENTER_32+0x1b/0x20
[  358.923084][ T6761]  do_fast_syscall_32+0x34/0x70
[  358.923151][ T6761]  do_SYSENTER_32+0x1b/0x20
[  358.928251][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.932912][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  358.932983][ T6761] RIP: 0023:0xf6ee2549
[  358.938442][ T6784] 
[  358.938451][ T6784] Uninit was stored to memory at:
[  358.938526][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  358.944663][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  358.944708][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  358.944754][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  358.951050][ T6784]  get_compat_msghdr+0x108/0x2c0
[  358.956142][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  358.956173][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  358.956201][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  358.956229][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  358.962440][ T6784]  do_recvmmsg+0xd77/0x2120
[  358.967460][ T6761]  </TASK>
[  358.967604][    C1] vkms_vblank_simulate: vblank timer overrun
[  358.971414][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  358.978094][ T6761] Uninit was stored to memory at:
[  358.982671][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  358.987642][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  358.993958][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  358.994023][ T6784]  do_fast_syscall_32+0x34/0x70
[  358.999018][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.003576][ T6784]  do_SYSENTER_32+0x1b/0x20
[  359.008431][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.012985][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.013054][ T6784] 
[  359.019345][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.025733][ T6784] Uninit was stored to memory at:
[  359.025807][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  359.029853][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.032124][ T6784]  get_compat_msghdr+0x108/0x2c0
[  359.037658][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.042731][ T6784]  do_recvmmsg+0xd77/0x2120
[  359.042788][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  359.062498][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.070921][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.079043][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.084024][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  359.092013][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.100062][ T6784]  do_fast_syscall_32+0x34/0x70
[  359.100126][ T6784]  do_SYSENTER_32+0x1b/0x20
[  359.108152][ T6761] 
[  359.108160][ T6761] Uninit was stored to memory at:
[  359.116183][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.116252][ T6784] 
[  359.120791][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.123809][ T6784] Uninit was stored to memory at:
[  359.123885][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  359.129838][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.134525][ T6784]  get_compat_msghdr+0x108/0x2c0
[  359.139559][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.146012][ T6784]  do_recvmmsg+0xd77/0x2120
[  359.151158][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.156256][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  359.161178][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.166143][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.170642][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.175216][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  359.181600][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.183944][ T6784]  do_fast_syscall_32+0x34/0x70
[  359.188628][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.193708][ T6784]  do_SYSENTER_32+0x1b/0x20
[  359.193768][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.198850][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.205238][ T6784] 
[  359.205247][ T6784] Uninit was stored to memory at:
[  359.205320][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  359.210225][ T6761] 
[  359.215260][ T6784]  get_compat_msghdr+0x108/0x2c0
[  359.219768][ T6761] Uninit was stored to memory at:
[  359.219839][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.224502][ T6784]  do_recvmmsg+0xd77/0x2120
[  359.229405][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.235745][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  359.240252][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.245328][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.245387][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  359.251690][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.256598][ T6784]  do_fast_syscall_32+0x34/0x70
[  359.261149][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.263494][ T6784]  do_SYSENTER_32+0x1b/0x20
[  359.268528][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.274938][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.277295][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.282347][ T6784] 
[  359.282355][ T6784] Uninit was stored to memory at:
[  359.282430][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  359.287477][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.292551][ T6784]  get_compat_msghdr+0x108/0x2c0
[  359.297633][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.302505][ T6784]  do_recvmmsg+0xd77/0x2120
[  359.307088][ T6761] 
[  359.311550][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  359.311612][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.316355][ T6761] Uninit was stored to memory at:
[  359.320998][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  359.327502][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.333770][ T6784]  do_fast_syscall_32+0x34/0x70
[  359.338797][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.343878][ T6784]  do_SYSENTER_32+0x1b/0x20
[  359.343943][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.348758][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.353665][ T6784] 
[  359.353674][ T6784] Local variable msg_sys created at:
[  359.353689][ T6784]  do_recvmmsg+0xbb/0x2120
[  359.358171][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.362652][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  359.582100][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.588663][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.593894][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.598801][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.603526][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.609971][ T6761] 
[  359.612308][ T6761] Uninit was stored to memory at:
[  359.617590][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.622746][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.627928][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.632482][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.637393][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.643928][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.649008][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.654076][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.658628][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.665209][ T6761] 
[  359.667537][ T6761] Uninit was stored to memory at:
[  359.672629][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.677995][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.683082][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.687634][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.692352][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.698945][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.704232][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.709136][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.713875][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.720259][ T6761] 
[  359.722588][ T6761] Uninit was stored to memory at:
[  359.727869][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.733132][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.738460][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.743193][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.747914][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  359.754401][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  359.759542][ T6761]  do_fast_syscall_32+0x34/0x70
[  359.764613][ T6761]  do_SYSENTER_32+0x1b/0x20
[  359.769168][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  359.775757][ T6761] 
[  359.778141][ T6761] Local variable msg_sys created at:
[  359.783593][ T6761]  do_recvmmsg+0xbb/0x2120
[  359.788060][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  359.840452][ T6761] not chained 230000 origins
[  359.845301][ T6761] CPU: 1 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  359.853665][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  359.863743][ T6761] Call Trace:
[  359.867035][ T6761]  <TASK>
[  359.869979][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  359.874717][ T6761]  dump_stack+0x25/0x28
[  359.878917][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  359.884698][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  359.889853][ T6761]  ? release_sock+0x2b5/0x2e0
[  359.894569][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  359.899471][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  359.904638][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  359.910503][ T6761]  ? should_fail+0x75/0x9c0
[  359.915039][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  359.920899][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  359.926060][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  359.932358][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  359.938485][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  359.943659][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  359.949524][ T6761]  __msan_chain_origin+0xbf/0x140
[  359.954597][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  359.959770][ T6761]  get_compat_msghdr+0x108/0x2c0
[  359.964750][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  359.969657][ T6761]  do_recvmmsg+0xd77/0x2120
[  359.974224][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  359.979387][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  359.984563][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  359.990856][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  359.996020][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  360.002320][ T6761]  ? fput+0x82/0x320
[  360.006244][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.012798][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.017536][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.023918][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.029000][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.031947][ T6784] not chained 240000 origins
[  360.033896][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.033961][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.034029][ T6761] RIP: 0023:0xf6ee2549
[  360.034059][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  360.034104][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  360.034146][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  360.034178][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  360.034206][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  360.034234][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  360.034263][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.034303][ T6761]  </TASK>
[  360.034527][    C1] vkms_vblank_simulate: vblank timer overrun
[  360.037045][ T6761] Uninit was stored to memory at:
[  360.040767][ T6784] CPU: 0 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  360.045888][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.051559][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  360.055739][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.075222][ T6784] Call Trace:
[  360.075239][ T6784]  <TASK>
[  360.075254][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  360.075326][ T6784]  dump_stack+0x25/0x28
[  360.083883][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.091717][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  360.099803][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.107634][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  360.107694][ T6784]  ? release_sock+0x2b5/0x2e0
[  360.115793][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.123635][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  360.123700][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  360.126785][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.132706][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  360.137813][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.146023][ T6784]  ? should_fail+0x75/0x9c0
[  360.146069][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  360.146138][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  360.151235][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.161277][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  360.161349][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  360.161419][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  360.166401][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.169592][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  360.172510][ T6761] 
[  360.172517][ T6761] Uninit was stored to memory at:
[  360.177166][ T6784]  __msan_chain_origin+0xbf/0x140
[  360.177232][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.177305][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.181490][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.185925][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  360.185992][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.191721][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.196407][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  360.196472][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  360.196545][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  360.201609][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.206265][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  360.206332][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  360.212716][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.217514][ T6784]  ? fput+0x82/0x320
[  360.217559][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.217624][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.222697][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.227728][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.227799][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.233722][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.238461][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.243060][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.248726][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.253911][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.258296][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.264644][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.270561][ T6784] RIP: 0023:0xf6e6e549
[  360.275750][ T6761] 
[  360.281960][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  360.282007][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296
[  360.287890][ T6761] Uninit was stored to memory at:
[  360.290107][ T6784]  ORIG_RAX: 0000000000000151
[  360.290123][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  360.295302][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.300115][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  360.305303][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.310123][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  360.310151][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  360.310179][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.315354][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.320103][ T6784]  </TASK>
[  360.324670][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.332851][ T6784] Uninit was stored to memory at:
[  360.334731][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.334795][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.334858][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.334918][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.334975][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.340124][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.346423][ T6761] 
[  360.350848][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.356038][ T6761] Uninit was stored to memory at:
[  360.362235][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.362294][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.367093][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.370883][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.377492][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.382093][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.388503][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.394857][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.394924][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.399913][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.405001][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.409895][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.414759][ T6784] 
[  360.414767][ T6784] Uninit was stored to memory at:
[  360.414838][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.419260][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.423820][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.430194][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.436532][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.440601][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.442993][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.443051][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.462755][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.468836][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.473940][ T6761] 
[  360.478579][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.478640][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.486719][ T6761] Uninit was stored to memory at:
[  360.491796][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.499948][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.504825][ T6784] 
[  360.504834][ T6784] Uninit was stored to memory at:
[  360.504903][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.512831][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.520820][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.528837][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.533341][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.536371][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.541026][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.546161][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.552418][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.557522][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.562330][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.566947][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.573313][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.578469][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.580741][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.585756][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.590756][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.595361][ T6761] 
[  360.599969][ T6784] 
[  360.599977][ T6784] Uninit was stored to memory at:
[  360.600052][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.605184][ T6761] Uninit was stored to memory at:
[  360.611469][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.611518][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.616595][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.621518][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.626127][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.630908][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.635495][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.640126][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.646557][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.652816][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.655238][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.660147][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.660206][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.665379][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.670365][ T6784] 
[  360.670373][ T6784] Uninit was stored to memory at:
[  360.670445][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.675378][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.680190][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.680238][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.684815][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.689277][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.694059][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.700320][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.706733][ T6761] 
[  360.711716][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.714168][ T6761] Uninit was stored to memory at:
[  360.718974][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.723622][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  360.728538][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.728598][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.735004][ T6761]  get_compat_msghdr+0x108/0x2c0
[  360.740080][ T6784] 
[  360.740087][ T6784] Uninit was stored to memory at:
[  360.742392][ T6761]  do_recvmmsg+0xd77/0x2120
[  360.747527][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.752622][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.757620][ T6784]  get_compat_msghdr+0x108/0x2c0
[  360.762604][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.767116][ T6784]  do_recvmmsg+0xd77/0x2120
[  360.771624][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  360.776354][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  360.776413][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  360.781064][ T6761]  do_fast_syscall_32+0x34/0x70
[  360.787443][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  360.793899][ T6761]  do_SYSENTER_32+0x1b/0x20
[  360.798855][ T6784]  do_fast_syscall_32+0x34/0x70
[  360.803955][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.808769][ T6784]  do_SYSENTER_32+0x1b/0x20
[  360.813720][ T6761] 
[  360.818156][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  360.822644][ T6761] Local variable msg_sys created at:
[  360.822658][ T6761]  do_recvmmsg+0xbb/0x2120
[  360.829026][ T6784] 
[  360.829035][ T6784] Uninit was stored to memory at:
[  360.829107][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  360.835466][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  360.837770][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.141825][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.146542][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.151271][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.157739][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  361.162818][ T6784]  do_fast_syscall_32+0x34/0x70
[  361.167831][ T6784]  do_SYSENTER_32+0x1b/0x20
[  361.172384][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.178858][ T6784] 
[  361.181187][ T6784] Local variable msg_sys created at:
[  361.186568][ T6784]  do_recvmmsg+0xbb/0x2120
[  361.191040][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.273461][ T6784] not chained 250000 origins
[  361.278183][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  361.286548][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  361.296625][ T6784] Call Trace:
[  361.299915][ T6784]  <TASK>
[  361.302857][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  361.307595][ T6784]  dump_stack+0x25/0x28
[  361.311796][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  361.317573][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  361.322729][ T6784]  ? release_sock+0x2b5/0x2e0
[  361.327441][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  361.332342][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  361.337510][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.343376][ T6784]  ? should_fail+0x75/0x9c0
[  361.347922][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.353785][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  361.358948][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.365246][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  361.371376][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  361.376543][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.382409][ T6784]  __msan_chain_origin+0xbf/0x140
[  361.387493][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  361.392664][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.397648][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  361.402552][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.407119][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  361.412285][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  361.417463][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.423760][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  361.428929][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.435228][ T6784]  ? fput+0x82/0x320
[  361.439154][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.445710][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.450447][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.455172][ T6761] not chained 260000 origins
[  361.456824][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  361.466406][ T6784]  do_fast_syscall_32+0x34/0x70
[  361.471295][ T6784]  do_SYSENTER_32+0x1b/0x20
[  361.475843][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.482215][ T6784] RIP: 0023:0xf6e6e549
[  361.486290][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  361.505927][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  361.514363][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  361.522347][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  361.530334][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.538319][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  361.546306][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.554305][ T6784]  </TASK>
[  361.557327][ T6761] CPU: 0 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  361.557468][    C1] vkms_vblank_simulate: vblank timer overrun
[  361.565686][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  361.565713][ T6761] Call Trace:
[  361.565727][ T6761]  <TASK>
[  361.565742][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  361.565818][ T6761]  dump_stack+0x25/0x28
[  361.574623][ T6784] Uninit was stored to memory at:
[  361.581818][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  361.581899][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  361.581955][ T6761]  ? release_sock+0x2b5/0x2e0
[  361.582006][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  361.582068][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  361.582133][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.582205][ T6761]  ? should_fail+0x75/0x9c0
[  361.582248][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.585673][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  361.588432][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  361.593216][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.597225][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.602228][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.607935][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  361.608007][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  361.613258][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.617793][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  361.622622][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.627714][ T6761]  __msan_chain_origin+0xbf/0x140
[  361.627780][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  361.627851][ T6761]  get_compat_msghdr+0x108/0x2c0
[  361.633832][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  361.638120][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  361.644026][ T6784]  do_fast_syscall_32+0x34/0x70
[  361.648998][ T6761]  do_recvmmsg+0xd77/0x2120
[  361.654183][ T6784]  do_SYSENTER_32+0x1b/0x20
[  361.659019][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  361.665346][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.669708][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  361.675852][ T6784] 
[  361.680858][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.685642][ T6784] Uninit was stored to memory at:
[  361.691331][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  361.697831][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  361.702657][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  361.707840][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.712667][ T6761]  ? fput+0x82/0x320
[  361.712712][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.717805][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.722548][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  361.727510][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.731880][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.736446][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.741448][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  361.747866][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  361.752841][ T6761]  do_fast_syscall_32+0x34/0x70
[  361.755245][ T6784]  do_fast_syscall_32+0x34/0x70
[  361.761375][ T6761]  do_SYSENTER_32+0x1b/0x20
[  361.766510][ T6784]  do_SYSENTER_32+0x1b/0x20
[  361.771511][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.776722][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.782823][ T6761] RIP: 0023:0xf6ee2549
[  361.787838][ T6784] 
[  361.791623][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  361.798224][ T6784] Uninit was stored to memory at:
[  361.802581][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296
[  361.807403][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  361.811891][ T6761]  ORIG_RAX: 0000000000000151
[  361.811909][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  361.811942][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  361.818338][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.824549][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.824579][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  361.824608][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.824651][ T6761]  </TASK>
[  361.824762][ T6761] Uninit was stored to memory at:
[  361.829696][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.834793][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  361.839584][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.844497][ T6761]  get_compat_msghdr+0x108/0x2c0
[  361.844546][ T6761]  do_recvmmsg+0xd77/0x2120
[  361.849029][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.853587][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  361.859960][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  361.866338][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.870412][ T6784]  do_fast_syscall_32+0x34/0x70
[  361.872725][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  361.892472][ T6784]  do_SYSENTER_32+0x1b/0x20
[  361.897507][ T6761]  do_fast_syscall_32+0x34/0x70
[  361.903677][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.908746][ T6761]  do_SYSENTER_32+0x1b/0x20
[  361.913527][ T6784] 
[  361.921440][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  361.929523][ T6784] Uninit was stored to memory at:
[  361.934466][ T6761] 
[  361.934473][ T6761] Uninit was stored to memory at:
[  361.934549][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  361.942483][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  361.950459][ T6761]  get_compat_msghdr+0x108/0x2c0
[  361.950508][ T6761]  do_recvmmsg+0xd77/0x2120
[  361.958550][ T6784]  get_compat_msghdr+0x108/0x2c0
[  361.961556][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  361.961614][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.966698][ T6784]  do_recvmmsg+0xd77/0x2120
[  361.971162][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  361.976377][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  361.980983][ T6761]  do_fast_syscall_32+0x34/0x70
[  361.985995][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  361.990458][ T6761]  do_SYSENTER_32+0x1b/0x20
[  361.996889][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  362.001504][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.006604][ T6784]  do_fast_syscall_32+0x34/0x70
[  362.012961][ T6761] 
[  362.012969][ T6761] Uninit was stored to memory at:
[  362.013042][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.017837][ T6784]  do_SYSENTER_32+0x1b/0x20
[  362.022846][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.027516][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.032181][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.038584][ T6784] 
[  362.038593][ T6784] Uninit was stored to memory at:
[  362.043146][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.043208][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.045579][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  362.051826][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.056936][ T6784]  get_compat_msghdr+0x108/0x2c0
[  362.059247][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.059309][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.064397][ T6784]  do_recvmmsg+0xd77/0x2120
[  362.069468][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.074652][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  362.079551][ T6761] 
[  362.079558][ T6761] Uninit was stored to memory at:
[  362.079629][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.084176][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.089071][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.093849][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  362.100111][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.104694][ T6784]  do_fast_syscall_32+0x34/0x70
[  362.109679][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.109736][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.114484][ T6784]  do_SYSENTER_32+0x1b/0x20
[  362.119290][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.125709][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.130159][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.130220][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.135307][ T6784] 
[  362.141597][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.146554][ T6784] Uninit was stored to memory at:
[  362.148819][ T6761] 
[  362.148826][ T6761] Uninit was stored to memory at:
[  362.148902][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.153979][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  362.158996][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.163602][ T6784]  get_compat_msghdr+0x108/0x2c0
[  362.168524][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.174963][ T6784]  do_recvmmsg+0xd77/0x2120
[  362.179443][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.179504][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.181812][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  362.186897][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.191579][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.197969][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.198031][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.203205][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  362.208190][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.213229][ T6784]  do_fast_syscall_32+0x34/0x70
[  362.218030][ T6761] 
[  362.218038][ T6761] Uninit was stored to memory at:
[  362.218112][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.222512][ T6784]  do_SYSENTER_32+0x1b/0x20
[  362.227074][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.227122][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.233522][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.238163][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.240473][ T6784] 
[  362.240481][ T6784] Uninit was stored to memory at:
[  362.240553][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  362.245554][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.245613][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.250694][ T6784]  get_compat_msghdr+0x108/0x2c0
[  362.257080][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.262061][ T6784]  do_recvmmsg+0xd77/0x2120
[  362.267102][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.271607][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  362.276510][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.281224][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.287609][ T6761] 
[  362.287617][ T6761] Uninit was stored to memory at:
[  362.287688][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.292115][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  362.297193][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.297243][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.303646][ T6784]  do_fast_syscall_32+0x34/0x70
[  362.308456][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.313058][ T6784]  do_SYSENTER_32+0x1b/0x20
[  362.315322][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.321628][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.326710][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.326772][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.329070][ T6784] 
[  362.329079][ T6784] Local variable msg_sys created at:
[  362.334148][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.339259][ T6784]  do_recvmmsg+0xbb/0x2120
[  362.344429][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.349390][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  362.354392][ T6761] 
[  362.354401][ T6761] Local variable msg_sys created at:
[  362.354415][ T6761]  do_recvmmsg+0xbb/0x2120
[  362.617981][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.721821][ T6761] not chained 270000 origins
[  362.726581][ T6761] CPU: 0 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  362.734949][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  362.745029][ T6761] Call Trace:
[  362.748319][ T6761]  <TASK>
[  362.751261][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  362.755999][ T6761]  dump_stack+0x25/0x28
[  362.760205][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  362.765984][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  362.771150][ T6761]  ? release_sock+0x2b5/0x2e0
[  362.775874][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  362.780773][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  362.785939][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  362.791805][ T6761]  ? should_fail+0x75/0x9c0
[  362.796340][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  362.802211][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  362.807383][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  362.813684][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  362.819807][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  362.824970][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  362.830833][ T6761]  __msan_chain_origin+0xbf/0x140
[  362.835910][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  362.841082][ T6761]  get_compat_msghdr+0x108/0x2c0
[  362.846066][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  362.850970][ T6761]  do_recvmmsg+0xd77/0x2120
[  362.855541][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  362.860727][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  362.865899][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  362.872194][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  362.877359][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  362.883662][ T6761]  ? fput+0x82/0x320
[  362.887585][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.894144][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  362.898887][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  362.905275][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  362.910363][ T6761]  do_fast_syscall_32+0x34/0x70
[  362.915273][ T6761]  do_SYSENTER_32+0x1b/0x20
[  362.919831][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  362.926216][ T6761] RIP: 0023:0xf6ee2549
[  362.930305][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  362.949956][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  362.958403][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  362.966404][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  362.974402][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.982396][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  362.990390][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.998405][ T6761]  </TASK>
[  363.004224][ T6761] Uninit was stored to memory at:
[  363.009336][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.016182][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.021172][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.026092][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.030833][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.037382][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.042467][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.047535][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.052092][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.058642][ T6761] 
[  363.060977][ T6761] Uninit was stored to memory at:
[  363.066311][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.071464][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.076603][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.081158][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.086047][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.092429][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.097665][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.102569][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.107277][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.113751][ T6761] 
[  363.116083][ T6761] Uninit was stored to memory at:
[  363.120753][ T6784] not chained 280000 origins
[  363.121166][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.126074][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  363.131001][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.139311][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  363.139337][ T6784] Call Trace:
[  363.139352][ T6784]  <TASK>
[  363.139368][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  363.144394][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.154370][ T6784]  dump_stack+0x25/0x28
[  363.154436][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  363.157703][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.160631][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  363.165360][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.169949][ T6784]  ? release_sock+0x2b5/0x2e0
[  363.174157][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.179796][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  363.184520][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.189540][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  363.195959][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.200522][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  363.205614][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.210369][ T6784]  ? should_fail+0x75/0x9c0
[  363.215284][ T6761] 
[  363.220310][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  363.224864][ T6761] Uninit was stored to memory at:
[  363.230572][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  363.237025][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.241364][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  363.243750][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.249470][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  363.254544][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.259570][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  363.264730][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.270882][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  363.275874][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.281851][ T6784]  __msan_chain_origin+0xbf/0x140
[  363.286407][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.291433][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.296159][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.301892][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.308251][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.313188][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  363.313254][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.318263][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.323373][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  363.323438][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  363.328259][ T6761] 
[  363.328267][ T6761] Uninit was stored to memory at:
[  363.333185][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  363.333254][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  363.337799][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.342571][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  363.347126][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.353362][ T6784]  ? fput+0x82/0x320
[  363.353406][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.358524][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.363622][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.363698][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.366007][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.371021][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.377305][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.382327][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.387488][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.393637][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.393702][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.398623][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.402498][ T6784] RIP: 0023:0xf6e6e549
[  363.409056][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.413460][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  363.413510][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  363.418188][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.424498][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  363.424532][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  363.424562][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  363.424589][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  363.429232][ T6761] 
[  363.429240][ T6761] Uninit was stored to memory at:
[  363.429313][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.434235][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  363.434279][ T6784]  </TASK>
[  363.434430][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.440620][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.440669][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.448515][ T6784] Uninit was stored to memory at:
[  363.450585][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.455571][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.461465][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.461524][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.466461][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.470490][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.475078][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.494670][    C1] vkms_vblank_simulate: vblank timer overrun
[  363.494734][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.494795][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.494861][ T6761] 
[  363.494868][ T6761] Uninit was stored to memory at:
[  363.494937][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  363.503376][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.509921][ T6761]  get_compat_msghdr+0x108/0x2c0
[  363.509969][ T6761]  do_recvmmsg+0xd77/0x2120
[  363.518020][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.526044][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.526102][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.534141][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.542099][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  363.544543][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.549493][ T6761]  do_fast_syscall_32+0x34/0x70
[  363.554683][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.562622][ T6761]  do_SYSENTER_32+0x1b/0x20
[  363.562681][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.565770][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.571708][ T6761] 
[  363.571716][ T6761] Local variable msg_sys created at:
[  363.576747][ T6784] 
[  363.581184][ T6761]  do_recvmmsg+0xbb/0x2120
[  363.586294][ T6784] Uninit was stored to memory at:
[  363.590928][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  363.596205][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.754845][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.759888][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.764554][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.769279][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.775818][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.780897][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.785925][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.790483][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.797083][ T6784] 
[  363.799412][ T6784] Uninit was stored to memory at:
[  363.804628][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.809834][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.814919][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.819485][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.824317][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.830746][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.835950][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.840852][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.845551][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.851940][ T6784] 
[  363.854445][ T6784] Uninit was stored to memory at:
[  363.859596][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.864864][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.869844][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.874574][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.879354][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.885903][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.890980][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.896122][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.900679][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.907251][ T6784] 
[  363.909633][ T6784] Uninit was stored to memory at:
[  363.914896][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.920049][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.925194][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.929801][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.934703][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.941084][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  363.946382][ T6784]  do_fast_syscall_32+0x34/0x70
[  363.951288][ T6784]  do_SYSENTER_32+0x1b/0x20
[  363.956037][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  363.962490][ T6784] 
[  363.965013][ T6784] Uninit was stored to memory at:
[  363.970106][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  363.975425][ T6784]  get_compat_msghdr+0x108/0x2c0
[  363.980460][ T6784]  do_recvmmsg+0xd77/0x2120
[  363.985134][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  363.989859][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  363.996452][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.001706][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.006794][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.011406][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.017979][ T6784] 
[  364.020309][ T6784] Uninit was stored to memory at:
[  364.025576][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.030781][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.035951][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.040507][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.045449][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.051827][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.057097][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.062060][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.066804][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.073312][ T6784] 
[  364.075642][ T6784] Local variable msg_sys created at:
[  364.080985][ T6784]  do_recvmmsg+0xbb/0x2120
[  364.085628][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.107646][ T6784] not chained 290000 origins
[  364.112322][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  364.120688][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  364.130768][ T6784] Call Trace:
[  364.134058][ T6784]  <TASK>
[  364.136998][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  364.141738][ T6784]  dump_stack+0x25/0x28
[  364.145935][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  364.151717][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  364.156875][ T6784]  ? release_sock+0x2b5/0x2e0
[  364.161593][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  364.166492][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  364.171661][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.177534][ T6784]  ? should_fail+0x75/0x9c0
[  364.182070][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.187936][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  364.193106][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.199402][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  364.205529][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  364.210698][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.216560][ T6784]  __msan_chain_origin+0xbf/0x140
[  364.221640][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.226817][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.231803][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  364.236711][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.241288][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  364.246453][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  364.251623][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.257922][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  364.263094][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.269396][ T6784]  ? fput+0x82/0x320
[  364.273325][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.279883][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.284697][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.291097][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.296189][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.301099][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.305656][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.312048][ T6784] RIP: 0023:0xf6e6e549
[  364.313959][ T6761] not chained 300000 origins
[  364.316137][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  364.316187][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  364.316234][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  364.356752][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  364.364741][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.372727][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  364.380708][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.388704][ T6784]  </TASK>
[  364.391725][ T6761] CPU: 0 PID: 6761 Comm: syz-executor.5 Not tainted 5.17.0-syzkaller #0
[  364.391861][    C1] vkms_vblank_simulate: vblank timer overrun
[  364.400084][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  364.400110][ T6761] Call Trace:
[  364.400124][ T6761]  <TASK>
[  364.400139][ T6761]  dump_stack_lvl+0x1ff/0x28e
[  364.400213][ T6761]  dump_stack+0x25/0x28
[  364.410891][ T6784] Uninit was stored to memory at:
[  364.416217][ T6761]  kmsan_internal_chain_origin+0x78/0x110
[  364.416295][ T6761]  ? _raw_spin_unlock_bh+0x4b/0x60
[  364.416352][ T6761]  ? release_sock+0x2b5/0x2e0
[  364.416407][ T6761]  ? sctp_recvmsg+0x100e/0x1430
[  364.416467][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  364.416530][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.416600][ T6761]  ? should_fail+0x75/0x9c0
[  364.416642][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.416707][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  364.416767][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.416836][ T6761]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  364.416906][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  364.416970][ T6761]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  364.417038][ T6761]  __msan_chain_origin+0xbf/0x140
[  364.420390][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.423251][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.423322][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.428053][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.432145][ T6761]  ? __sys_recvmmsg+0x51c/0x6f0
[  364.437249][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.442848][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.442929][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  364.442994][ T6761]  ? kmsan_get_metadata+0x33/0x220
[  364.448089][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.452754][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.457678][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.462672][ T6761]  ? __stack_depot_save+0x21/0x4d0
[  364.462739][ T6761]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  364.468598][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.472991][ T6761]  ? fput+0x82/0x320
[  364.473035][ T6761]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.473100][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.478954][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.483980][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.484053][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.490291][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.496343][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.496415][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.496478][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.501556][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.507343][ T6761] RIP: 0023:0xf6ee2549
[  364.507376][ T6761] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  364.507428][ T6761] RSP: 002b:00000000f58bb5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  364.512488][ T6784] 
[  364.517542][ T6761] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  364.517577][ T6761] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  364.517607][ T6761] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.517634][ T6761] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  364.517662][ T6761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.522735][ T6784] Uninit was stored to memory at:
[  364.522809][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.527665][ T6761]  </TASK>
[  364.527773][ T6761] Uninit was stored to memory at:
[  364.527844][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.532694][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.537607][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.542108][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.546665][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.546722][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.551807][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.556973][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.561703][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.567965][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.574390][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.579462][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.579522][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.585823][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.590811][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.594811][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.601245][ T6761] 
[  364.601253][ T6761] Uninit was stored to memory at:
[  364.601327][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.606004][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.610819][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.610867][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.617267][ T6784] 
[  364.622252][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.626856][ T6784] Uninit was stored to memory at:
[  364.631638][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.636282][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.642505][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.648954][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.653051][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.672790][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.681211][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.681271][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.683649][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.691602][ T6761] 
[  364.691610][ T6761] Uninit was stored to memory at:
[  364.691684][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.699689][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.707675][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.715780][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.723763][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.728834][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.733956][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.736992][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.741997][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.747213][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.752081][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.757097][ T6784] 
[  364.761555][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.766176][ T6784] Uninit was stored to memory at:
[  364.770815][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.775643][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.781852][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.788254][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.793347][ T6761] 
[  364.793358][ T6761] Uninit was stored to memory at:
[  364.793433][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.798405][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.803340][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.807841][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.812672][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.812729][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.819152][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.823727][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.826098][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.831054][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.836256][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.842546][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.842608][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.847611][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.852079][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.854488][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.859237][ T6761] 
[  364.859248][ T6761] Uninit was stored to memory at:
[  364.859324][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.864412][ T6784] 
[  364.864420][ T6784] Uninit was stored to memory at:
[  364.864490][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.870719][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.875964][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.880936][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.885962][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.890778][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.895399][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  364.899835][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.906241][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  364.910885][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  364.913335][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  364.918320][ T6761]  do_fast_syscall_32+0x34/0x70
[  364.923512][ T6784]  do_fast_syscall_32+0x34/0x70
[  364.929799][ T6761]  do_SYSENTER_32+0x1b/0x20
[  364.934859][ T6784]  do_SYSENTER_32+0x1b/0x20
[  364.939849][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.944464][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  364.949241][ T6761] 
[  364.949250][ T6761] Uninit was stored to memory at:
[  364.953997][ T6784] 
[  364.958531][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  364.964933][ T6784] Uninit was stored to memory at:
[  364.971219][ T6761]  get_compat_msghdr+0x108/0x2c0
[  364.976433][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  364.978625][ T6761]  do_recvmmsg+0xd77/0x2120
[  364.983557][ T6784]  get_compat_msghdr+0x108/0x2c0
[  364.988559][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  364.993173][ T6784]  do_recvmmsg+0xd77/0x2120
[  364.998218][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.004645][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.009560][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  365.009625][ T6761]  do_fast_syscall_32+0x34/0x70
[  365.011925][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.017014][ T6761]  do_SYSENTER_32+0x1b/0x20
[  365.022127][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.026701][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.031663][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.036401][ T6761] 
[  365.036410][ T6761] Uninit was stored to memory at:
[  365.036489][ T6761]  __get_compat_msghdr+0x6e1/0x9d0
[  365.040905][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.045640][ T6761]  get_compat_msghdr+0x108/0x2c0
[  365.045689][ T6761]  do_recvmmsg+0xd77/0x2120
[  365.051993][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.058379][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  365.063527][ T6784] 
[  365.068493][ T6761]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.073420][ T6784] Uninit was stored to memory at:
[  365.078229][ T6761]  __do_fast_syscall_32+0x96/0xf0
[  365.078292][ T6761]  do_fast_syscall_32+0x34/0x70
[  365.082818][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  365.087317][ T6761]  do_SYSENTER_32+0x1b/0x20
[  365.093763][ T6784]  get_compat_msghdr+0x108/0x2c0
[  365.100025][ T6761]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.102337][ T6784]  do_recvmmsg+0xd77/0x2120
[  365.107416][ T6761] 
[  365.107425][ T6761] Local variable msg_sys created at:
[  365.107443][ T6761]  do_recvmmsg+0xbb/0x2120
[  365.112571][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.114913][ T6761]  __sys_recvmmsg+0x51c/0x6f0
[  365.119945][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.421426][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.426727][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.431635][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.436375][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.442826][ T6784] 
[  365.445329][ T6784] Local variable msg_sys created at:
[  365.450625][ T6784]  do_recvmmsg+0xbb/0x2120
[  365.455271][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.544560][ T6784] not chained 310000 origins
[  365.549199][ T6784] CPU: 1 PID: 6784 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  365.557564][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  365.567655][ T6784] Call Trace:
[  365.570953][ T6784]  <TASK>
[  365.573897][ T6784]  dump_stack_lvl+0x1ff/0x28e
[  365.578640][ T6784]  dump_stack+0x25/0x28
[  365.582843][ T6784]  kmsan_internal_chain_origin+0x78/0x110
[  365.588624][ T6784]  ? _raw_spin_unlock_bh+0x4b/0x60
[  365.593787][ T6784]  ? release_sock+0x2b5/0x2e0
[  365.598504][ T6784]  ? sctp_recvmsg+0x100e/0x1430
[  365.603410][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  365.608582][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  365.614459][ T6784]  ? should_fail+0x75/0x9c0
[  365.619001][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  365.624867][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  365.630027][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  365.636323][ T6784]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  365.642452][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  365.647643][ T6784]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  365.653503][ T6784]  __msan_chain_origin+0xbf/0x140
[  365.658581][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  365.663758][ T6784]  get_compat_msghdr+0x108/0x2c0
[  365.668740][ T6784]  ? __sys_recvmmsg+0x51c/0x6f0
[  365.673644][ T6784]  do_recvmmsg+0xd77/0x2120
[  365.678218][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  365.683387][ T6784]  ? kmsan_get_metadata+0x33/0x220
[  365.688564][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
04:36:38 executing program 5:
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f00000011c0))

04:36:38 executing program 2:
open$dir(&(0x7f00000000c0)='./file0\x00', 0x6242, 0x0)
mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, 0x0)

04:36:38 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}}, 0x0)

04:36:38 executing program 0:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)

04:36:38 executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x4e20, @empty}, 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x40800, 0x0)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
sendfile(r2, r3, 0x0, 0x101000003)

[  365.694862][ T6784]  ? __stack_depot_save+0x21/0x4d0
[  365.700031][ T6784]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  365.706338][ T6784]  ? fput+0x82/0x320
[  365.710285][ T6784]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.716855][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.721602][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.727995][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.733088][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.738000][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.742558][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.748948][ T6784] RIP: 0023:0xf6e6e549
[  365.753042][ T6784] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  365.772700][ T6784] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  365.781160][ T6784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  365.789161][ T6784] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  365.797149][ T6784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  365.805135][ T6784] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  365.813119][ T6784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  365.821125][ T6784]  </TASK>
[  365.824360][    C1] vkms_vblank_simulate: vblank timer overrun
[  365.833113][ T6784] Uninit was stored to memory at:
[  365.842455][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  365.847755][ T6784]  get_compat_msghdr+0x108/0x2c0
[  365.852733][ T6784]  do_recvmmsg+0xd77/0x2120
[  365.857424][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.862211][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.868723][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.873938][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.878901][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.883581][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.889974][ T6784] 
[  365.892361][ T6784] Uninit was stored to memory at:
[  365.897593][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  365.902751][ T6784]  get_compat_msghdr+0x108/0x2c0
[  365.907852][ T6784]  do_recvmmsg+0xd77/0x2120
[  365.912476][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.917337][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.923841][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.928976][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.934012][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.938566][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  365.945124][ T6784] 
[  365.947452][ T6784] Uninit was stored to memory at:
[  365.952560][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  365.957837][ T6784]  get_compat_msghdr+0x108/0x2c0
[  365.962980][ T6784]  do_recvmmsg+0xd77/0x2120
[  365.967536][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  365.972260][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  365.978802][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  365.984004][ T6784]  do_fast_syscall_32+0x34/0x70
[  365.988921][ T6784]  do_SYSENTER_32+0x1b/0x20
[  365.993633][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  366.000016][ T6784] 
[  366.002343][ T6784] Uninit was stored to memory at:
[  366.007556][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  366.012764][ T6784]  get_compat_msghdr+0x108/0x2c0
[  366.017860][ T6784]  do_recvmmsg+0xd77/0x2120
[  366.022416][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  366.027348][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  366.033850][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  366.038936][ T6784]  do_fast_syscall_32+0x34/0x70
[  366.044076][ T6784]  do_SYSENTER_32+0x1b/0x20
[  366.048635][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  366.055210][ T6784] 
[  366.057543][ T6784] Uninit was stored to memory at:
[  366.062717][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  366.068047][ T6784]  get_compat_msghdr+0x108/0x2c0
[  366.073140][ T6784]  do_recvmmsg+0xd77/0x2120
[  366.077747][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  366.082474][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  366.089032][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  366.094270][ T6784]  do_fast_syscall_32+0x34/0x70
[  366.099175][ T6784]  do_SYSENTER_32+0x1b/0x20
[  366.103903][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  366.110349][ T6784] 
[  366.112685][ T6784] Uninit was stored to memory at:
[  366.117958][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  366.123259][ T6784]  get_compat_msghdr+0x108/0x2c0
[  366.128299][ T6784]  do_recvmmsg+0xd77/0x2120
[  366.133033][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  366.137778][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  366.144407][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  366.149509][ T6784]  do_fast_syscall_32+0x34/0x70
[  366.154615][ T6784]  do_SYSENTER_32+0x1b/0x20
[  366.159231][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  366.165805][ T6784] 
[  366.168138][ T6784] Uninit was stored to memory at:
[  366.173355][ T6784]  __get_compat_msghdr+0x6e1/0x9d0
[  366.178564][ T6784]  get_compat_msghdr+0x108/0x2c0
[  366.183657][ T6784]  do_recvmmsg+0xd77/0x2120
[  366.188213][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  366.193088][ T6784]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  366.199466][ T6784]  __do_fast_syscall_32+0x96/0xf0
[  366.204682][ T6784]  do_fast_syscall_32+0x34/0x70
[  366.209662][ T6784]  do_SYSENTER_32+0x1b/0x20
[  366.214349][ T6784]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  366.220752][ T6784] 
[  366.223207][ T6784] Local variable msg_sys created at:
[  366.228548][ T6784]  do_recvmmsg+0xbb/0x2120
[  366.233127][ T6784]  __sys_recvmmsg+0x51c/0x6f0
[  366.327958][   T24] audit: type=1800 audit(1649046999.386:3): pid=6799 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=1177 res=0 errno=0
[  366.362795][ T6799] 9pnet_virtio: no channels available for device ./file0
04:36:39 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$inet6_buf(r0, 0x29, 0x0, 0x0, 0x0)

04:36:39 executing program 3:
fsopen(&(0x7f00000000c0)='tmpfs\x00', 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0)

04:36:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

04:36:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000b40)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

04:36:39 executing program 0:
getrusage(0x1, &(0x7f0000001100))

04:36:39 executing program 4:
pselect6(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000000040)={0x5ab}, &(0x7f0000000080), &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})

04:36:40 executing program 2:
shmctl$SHM_LOCK(0x0, 0xb)
shmget$private(0x0, 0x4000, 0x54000000, &(0x7f0000ffa000/0x4000)=nil)
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, <r1=>0xee01}}, './file0\x00'})
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
shmctl$IPC_SET(r0, 0x1, &(0x7f0000002080)={{0x3, 0x0, r1, 0xffffffffffffffff, r2, 0x8, 0x1}, 0x7, 0x7ff, 0x5, 0x1, 0x0, 0xffffffffffffffff, 0x1})
r3 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r3, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
shmctl$IPC_STAT(r3, 0x2, &(0x7f0000002100)=""/1)

04:36:40 executing program 1:
syz_open_dev$video(&(0x7f0000000080), 0x0, 0x519242)

04:36:40 executing program 0:
r0 = syz_open_dev$vbi(&(0x7f0000000200), 0x2, 0x2)
ioctl$VIDIOC_ENCODER_CMD(r0, 0xc028564d, &(0x7f0000000180))

04:36:40 executing program 3:
fsopen(&(0x7f00000003c0)='dax\x00', 0x0)

04:36:40 executing program 4:
pselect6(0x0, 0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0)={0x0, 0x989680}, 0x0)

04:36:40 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x14}, 0x14}}, 0x0)

04:36:40 executing program 5:
r0 = syz_open_dev$video(&(0x7f0000000200), 0x0, 0x0)
ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000240)=0x5d67)

04:36:40 executing program 4:
shmctl$SHM_STAT(0x0, 0xf, 0x0)

04:36:40 executing program 0:
fsopen(&(0x7f00000004c0)='binder\x00', 0x0)

04:36:40 executing program 2:
shmctl$SHM_LOCK(0x0, 0xb)
shmget$private(0x0, 0x4000, 0x54000000, &(0x7f0000ffa000/0x4000)=nil)
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01, <r1=>0xee01}}, './file0\x00'})
read$FUSE(0xffffffffffffffff, &(0x7f0000000040)={0x2020, 0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
shmctl$IPC_SET(r0, 0x1, &(0x7f0000002080)={{0x3, 0x0, r1, 0xffffffffffffffff, r2, 0x8, 0x1}, 0x7, 0x7ff, 0x5, 0x1, 0x0, 0xffffffffffffffff, 0x1})
r3 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r3, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
shmctl$IPC_STAT(r3, 0x2, &(0x7f0000002100)=""/1)

04:36:41 executing program 3:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
connect$rxrpc(r0, &(0x7f0000000080)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @local}}, 0x24)

04:36:41 executing program 1:
syz_open_dev$video(&(0x7f0000000080), 0x52000000, 0x0)

04:36:41 executing program 5:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)={0x7}, &(0x7f00000000c0)={0x0, 0x989680}, 0x0)

04:36:41 executing program 4:
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

04:36:41 executing program 2:
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, 0x0, 0x0, 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='&-#{)\x00', &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x48, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, 0x0, 0x20000050)

04:36:41 executing program 0:
sendto$phonet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001180), 0x10)
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f00000011c0))

04:36:41 executing program 3:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x301000, 0x0)

04:36:41 executing program 1:
wait4(0x0, 0x0, 0x1000000, &(0x7f0000001640))

04:36:41 executing program 5:
shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000300)=""/37)
getresuid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000200))

04:36:41 executing program 4:
connect$can_j1939(0xffffffffffffffff, 0x0, 0x0)

04:36:41 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x14}, 0x14}}, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMGETDEVINFO(0xffffffffffffffff, 0x80044944, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000a40)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000a00)={&(0x7f0000000900)={0x14, 0x0, 0x419}, 0x14}}, 0x0)

04:36:41 executing program 0:
shmget$private(0x0, 0x4000, 0xe4ffffff, &(0x7f0000ffa000/0x4000)=nil)

04:36:41 executing program 3:
pselect6(0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100), 0x8})

04:36:42 executing program 1:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x2000080001, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2004, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0xfffc}], 0x1, 0x0, 0x1f4, 0x24}}], 0xffffff1f, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)

04:36:42 executing program 5:
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)

04:36:42 executing program 4:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
connect$rxrpc(r0, 0x0, 0x0)

04:36:42 executing program 0:
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "40d880", 0x8, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

04:36:42 executing program 2:
r0 = fsopen(&(0x7f00000004c0)='binder\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, 0x0, 0x0, 0x0)

04:36:42 executing program 3:
connect$rxrpc(0xffffffffffffffff, 0x0, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)

04:36:42 executing program 4:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)
shmctl$IPC_RMID(r0, 0x0)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f0000ffd000/0x1000)=nil, 0x4000)

[  369.472221][ T6871] not chained 320000 origins
[  369.477089][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  369.485463][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  369.495553][ T6871] Call Trace:
[  369.498870][ T6871]  <TASK>
[  369.501817][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  369.506569][ T6871]  dump_stack+0x25/0x28
[  369.510784][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  369.516578][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  369.521746][ T6871]  ? release_sock+0x2b5/0x2e0
[  369.526470][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  369.531378][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  369.536550][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  369.542430][ T6871]  ? should_fail+0x75/0x9c0
[  369.546972][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  369.552844][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  369.558022][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  369.564325][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  369.570453][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  369.575626][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  369.581483][ T6871]  __msan_chain_origin+0xbf/0x140
[  369.586557][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.591727][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.596705][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  369.601603][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.606155][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  369.611342][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  369.616503][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  369.622245][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  369.627405][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  369.633708][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.640259][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.644995][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.651377][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  369.656454][ T6871]  do_fast_syscall_32+0x34/0x70
[  369.661352][ T6871]  do_SYSENTER_32+0x1b/0x20
[  369.665904][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  369.672287][ T6871] RIP: 0023:0xf6e6e549
[  369.676373][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  369.696017][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  369.704461][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  369.712452][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  369.720444][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  369.728434][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  369.736419][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  369.744423][ T6871]  </TASK>
[  369.751224][ T6871] Uninit was stored to memory at:
[  369.758193][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.763445][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.768432][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.773076][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.777807][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.784297][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  369.789383][ T6871]  do_fast_syscall_32+0x34/0x70
[  369.794396][ T6871]  do_SYSENTER_32+0x1b/0x20
[  369.798957][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  369.805457][ T6871] 
[  369.807786][ T6871] Uninit was stored to memory at:
[  369.812986][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.818147][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.823225][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.827783][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.832519][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.839003][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  369.844176][ T6871]  do_fast_syscall_32+0x34/0x70
[  369.849085][ T6871]  do_SYSENTER_32+0x1b/0x20
[  369.853743][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  369.860140][ T6871] 
[  369.862469][ T6871] Uninit was stored to memory at:
[  369.867668][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.872821][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.877909][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.882465][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.887294][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.893772][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  369.898864][ T6871]  do_fast_syscall_32+0x34/0x70
[  369.903867][ T6871]  do_SYSENTER_32+0x1b/0x20
[  369.908426][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  369.914919][ T6871] 
[  369.917253][ T6871] Uninit was stored to memory at:
[  369.922344][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.927595][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.932580][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.937224][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.941957][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  369.948439][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  369.953620][ T6871]  do_fast_syscall_32+0x34/0x70
[  369.958530][ T6871]  do_SYSENTER_32+0x1b/0x20
[  369.963238][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  369.969630][ T6871] 
[  369.971962][ T6871] Uninit was stored to memory at:
[  369.977208][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  369.982357][ T6871]  get_compat_msghdr+0x108/0x2c0
[  369.987494][ T6871]  do_recvmmsg+0xd77/0x2120
[  369.992051][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  369.996936][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  370.003413][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  370.008499][ T6871]  do_fast_syscall_32+0x34/0x70
[  370.013556][ T6871]  do_SYSENTER_32+0x1b/0x20
[  370.018116][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  370.024662][ T6871] 
[  370.027002][ T6871] Uninit was stored to memory at:
[  370.032113][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  370.037360][ T6871]  get_compat_msghdr+0x108/0x2c0
[  370.042341][ T6871]  do_recvmmsg+0xd77/0x2120
[  370.046997][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  370.051728][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  370.058198][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  370.063488][ T6871]  do_fast_syscall_32+0x34/0x70
[  370.068401][ T6871]  do_SYSENTER_32+0x1b/0x20
[  370.073103][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  370.079497][ T6871] 
[  370.081826][ T6871] Uninit was stored to memory at:
[  370.087109][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  370.092265][ T6871]  get_compat_msghdr+0x108/0x2c0
[  370.097402][ T6871]  do_recvmmsg+0xd77/0x2120
[  370.101964][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  370.106868][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  370.113349][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  370.118441][ T6871]  do_fast_syscall_32+0x34/0x70
04:36:43 executing program 0:
syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x458, 0x5013, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x20}}]}}}]}}]}}, 0x0)

04:36:43 executing program 2:
io_uring_setup(0x5b18, &(0x7f0000000080))

04:36:43 executing program 5:
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x3, 0x0, 0x80, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x10}}}}}]}}]}}, 0x0)
socket(0x2c, 0x0, 0x2)

[  370.123546][ T6871]  do_SYSENTER_32+0x1b/0x20
[  370.128105][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  370.134697][ T6871] 
[  370.137032][ T6871] Local variable msg_sys created at:
[  370.142315][ T6871]  do_recvmmsg+0xbb/0x2120
[  370.142377][ T6871]  __sys_recvmmsg+0x51c/0x6f0
04:36:43 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x2}}, @typedef={0x1}]}}, &(0x7f0000000200)=""/157, 0x3e, 0x9d, 0x1}, 0x20)

04:36:43 executing program 2:
r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x4000)

[  370.753484][    T5] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  370.783486][   T34] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  371.013425][    T5] usb 1-1: Using ep0 maxpacket: 8
[  371.034183][   T34] usb 6-1: Using ep0 maxpacket: 8
[  371.133600][    T5] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  371.165152][   T34] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  371.324274][    T5] usb 1-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.40
[  371.333748][    T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.341945][    T5] usb 1-1: Product: syz
[  371.346420][    T5] usb 1-1: Manufacturer: syz
[  371.351211][    T5] usb 1-1: SerialNumber: syz
[  371.353732][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  371.365271][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.373675][   T34] usb 6-1: Product: syz
[  371.377997][   T34] usb 6-1: Manufacturer: syz
[  371.382705][   T34] usb 6-1: SerialNumber: syz
[  371.433807][ T6887] raw-gadget gadget: fail, usb_ep_enable returned -22
[  371.452518][    T5] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[  371.630600][ T6871] not chained 330000 origins
[  371.635673][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  371.644045][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  371.654125][ T6871] Call Trace:
[  371.654858][    T5] usb 1-1: USB disconnect, device number 6
[  371.657426][ T6871]  <TASK>
[  371.657443][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  371.657517][ T6871]  dump_stack+0x25/0x28
[  371.675047][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  371.680836][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  371.686005][ T6871]  ? release_sock+0x2b5/0x2e0
[  371.690728][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  371.695635][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  371.700805][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  371.706686][ T6871]  ? should_fail+0x75/0x9c0
[  371.711225][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  371.717089][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  371.722254][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  371.728532][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  371.734647][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  371.739818][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  371.745682][ T6871]  __msan_chain_origin+0xbf/0x140
[  371.750746][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  371.755924][ T6871]  get_compat_msghdr+0x108/0x2c0
[  371.760910][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  371.765824][ T6871]  do_recvmmsg+0xd77/0x2120
[  371.770390][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  371.775536][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  371.780699][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  371.786387][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  371.791535][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  371.797845][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  371.804409][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  371.809153][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  371.815518][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  371.820592][ T6871]  do_fast_syscall_32+0x34/0x70
[  371.825484][ T6871]  do_SYSENTER_32+0x1b/0x20
[  371.830047][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  371.836435][ T6871] RIP: 0023:0xf6e6e549
[  371.840529][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  371.860180][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  371.868640][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  371.876641][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  371.884625][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  371.892626][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  371.900620][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  371.908639][ T6871]  </TASK>
[  371.911702][    C1] vkms_vblank_simulate: vblank timer overrun
[  371.921957][ T6871] Uninit was stored to memory at:
[  371.927920][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  371.933201][ T6871]  get_compat_msghdr+0x108/0x2c0
[  371.938174][ T6871]  do_recvmmsg+0xd77/0x2120
[  371.942778][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  371.947636][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  371.954147][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  371.959288][ T6871]  do_fast_syscall_32+0x34/0x70
[  371.964328][ T6871]  do_SYSENTER_32+0x1b/0x20
[  371.968892][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  371.975445][ T6871] 
[  371.977777][ T6871] Uninit was stored to memory at:
[  371.982866][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  371.988217][ T6871]  get_compat_msghdr+0x108/0x2c0
[  371.993403][ T6871]  do_recvmmsg+0xd77/0x2120
[  371.997966][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.002695][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.009297][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.014498][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.019404][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.024127][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.030658][ T6871] 
[  372.033153][ T6871] Uninit was stored to memory at:
[  372.038254][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.043563][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.048541][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.053238][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.057969][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.064574][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.069663][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.074784][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.079382][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.085959][ T6871] 
[  372.088294][ T6871] Uninit was stored to memory at:
[  372.093586][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.098739][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.103901][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.108457][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.113404][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.119791][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.125056][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.130017][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.134727][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.141118][ T6871] 
[  372.143633][ T6871] Uninit was stored to memory at:
[  372.148733][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.154086][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.159126][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.163807][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.168541][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.175101][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.180247][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.185338][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.189913][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.196520][ T6871] 
[  372.198857][ T6871] Uninit was stored to memory at:
[  372.204121][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.209335][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.214461][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.219015][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.223924][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.230360][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.235725][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.240639][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.245398][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.251793][ T6871] 
[  372.254305][ T6871] Uninit was stored to memory at:
[  372.259462][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.264802][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.269783][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.274519][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.279307][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.285900][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.290990][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.296121][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.300683][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.307255][ T6871] 
[  372.309647][ T6871] Local variable msg_sys created at:
[  372.315132][ T6871]  do_recvmmsg+0xbb/0x2120
[  372.319604][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.375129][   T34] usb 6-1: USB disconnect, device number 12
[  372.667079][ T6871] not chained 340000 origins
[  372.671700][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  372.680038][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  372.690098][ T6871] Call Trace:
[  372.693382][ T6871]  <TASK>
[  372.696325][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  372.701060][ T6871]  dump_stack+0x25/0x28
[  372.705243][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  372.710999][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  372.716138][ T6871]  ? release_sock+0x2b5/0x2e0
[  372.720853][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  372.725740][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  372.730910][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  372.736754][ T6871]  ? should_fail+0x75/0x9c0
[  372.741296][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  372.747165][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  372.752307][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  372.758584][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  372.764716][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  372.769884][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  372.775724][ T6871]  __msan_chain_origin+0xbf/0x140
[  372.780796][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.785946][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.790907][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  372.795792][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.800418][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  372.805559][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  372.810703][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  372.816368][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  372.821532][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  372.827808][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.834350][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.839090][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.845483][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.850563][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.855450][ T6871]  do_SYSENTER_32+0x1b/0x20
[  372.860001][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  372.866364][ T6871] RIP: 0023:0xf6e6e549
[  372.870462][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  372.890096][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  372.898557][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  372.906566][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  372.914564][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  372.922561][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  372.930537][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  372.938532][ T6871]  </TASK>
[  372.946581][ T6871] Uninit was stored to memory at:
[  372.951691][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  372.965591][ T6871]  get_compat_msghdr+0x108/0x2c0
[  372.970594][ T6871]  do_recvmmsg+0xd77/0x2120
[  372.975301][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  372.980027][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  372.986528][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  372.991611][ T6871]  do_fast_syscall_32+0x34/0x70
[  372.996624][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.001179][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.007701][ T6871] 
[  373.010032][ T6871] Uninit was stored to memory at:
[  373.015257][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.020406][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.025515][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.030064][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.034926][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.041325][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.046539][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.051442][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.056082][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.062465][ T6871] 
[  373.064939][ T6871] Uninit was stored to memory at:
[  373.070018][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.075286][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.080264][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.084929][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.089659][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.096177][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.101258][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.106294][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.110850][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.117328][ T6871] 
[  373.119659][ T6871] Uninit was stored to memory at:
[  373.124897][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.130068][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.135179][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.139737][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.144609][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.150989][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.156129][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.161012][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.165692][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.172078][ T6871] 
[  373.174535][ T6871] Uninit was stored to memory at:
[  373.179635][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.184933][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.189911][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.194615][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.199358][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.205869][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.210952][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.215971][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.220523][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.227047][ T6871] 
[  373.229379][ T6871] Uninit was stored to memory at:
[  373.234618][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.239768][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.244866][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.249424][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.254302][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.260679][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.265891][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.270797][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.275473][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.281876][ T6871] 
[  373.284345][ T6871] Uninit was stored to memory at:
[  373.289424][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.294697][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.299672][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.304351][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.309079][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.315612][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.320695][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.325742][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.330294][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.336800][ T6871] 
[  373.339125][ T6871] Local variable msg_sys created at:
[  373.344557][ T6871]  do_recvmmsg+0xbb/0x2120
[  373.349024][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.540815][ T6871] not chained 350000 origins
[  373.545552][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  373.553901][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  373.563981][ T6871] Call Trace:
[  373.567257][ T6871]  <TASK>
[  373.570181][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  373.574893][ T6871]  dump_stack+0x25/0x28
[  373.579077][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  373.584827][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  373.589961][ T6871]  ? release_sock+0x2b5/0x2e0
[  373.594656][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  373.599548][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  373.604691][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  373.610537][ T6871]  ? should_fail+0x75/0x9c0
[  373.615054][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  373.620897][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  373.626042][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  373.632314][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  373.638416][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  373.643559][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  373.649396][ T6871]  __msan_chain_origin+0xbf/0x140
[  373.654449][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.659615][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.664577][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  373.669457][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.673989][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  373.679128][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  373.684269][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  373.689954][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  373.695093][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  373.701370][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.707900][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.712632][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.718988][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.724042][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.728924][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.733450][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.739808][ T6871] RIP: 0023:0xf6e6e549
[  373.743880][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  373.763526][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  373.771959][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  373.779945][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  373.787940][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  373.795918][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  373.803901][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.811891][ T6871]  </TASK>
[  373.815073][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.823814][ T6871] Uninit was stored to memory at:
[  373.829331][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.834595][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.839568][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.844283][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.849006][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.855495][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.860647][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.865677][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.870235][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.876777][ T6871] 
[  373.879103][ T6871] Uninit was stored to memory at:
[  373.884325][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.889475][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.894637][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.899191][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.904101][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.910515][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.915707][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.920613][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.925339][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.931724][ T6871] 
[  373.934198][ T6871] Uninit was stored to memory at:
[  373.939292][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.944647][ T6871]  get_compat_msghdr+0x108/0x2c0
[  373.949629][ T6871]  do_recvmmsg+0xd77/0x2120
[  373.954291][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  373.959055][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  373.965578][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  373.970659][ T6871]  do_fast_syscall_32+0x34/0x70
[  373.975734][ T6871]  do_SYSENTER_32+0x1b/0x20
[  373.980284][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  373.986778][ T6871] 
[  373.989104][ T6871] Uninit was stored to memory at:
[  373.994386][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  373.999534][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.004641][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.009232][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.014138][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.020534][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.025810][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.030727][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.035415][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.041836][ T6871] 
[  374.044341][ T6871] Uninit was stored to memory at:
[  374.049416][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.054723][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.059761][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.064469][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.069194][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.075803][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.080907][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.085990][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.090545][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.097067][ T6871] 
[  374.099398][ T6871] Uninit was stored to memory at:
[  374.104672][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.109860][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.114995][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.119550][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.124442][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.130854][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.136093][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.140995][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.145683][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.152067][ T6871] 
[  374.154565][ T6871] Uninit was stored to memory at:
[  374.159678][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.164987][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.169961][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.174666][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.179431][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.185982][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.191063][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.196124][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.200684][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.207226][ T6871] 
[  374.209603][ T6871] Local variable msg_sys created at:
[  374.215072][ T6871]  do_recvmmsg+0xbb/0x2120
[  374.219539][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.387427][ T6871] not chained 360000 origins
[  374.392085][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  374.400431][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  374.410495][ T6871] Call Trace:
[  374.413775][ T6871]  <TASK>
[  374.416700][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  374.421414][ T6871]  dump_stack+0x25/0x28
[  374.425636][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  374.431391][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  374.436523][ T6871]  ? release_sock+0x2b5/0x2e0
[  374.441220][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  374.446183][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  374.451345][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  374.457192][ T6871]  ? should_fail+0x75/0x9c0
[  374.461707][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  374.467547][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  374.472693][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  374.478993][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  374.485139][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  374.490281][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  374.496136][ T6871]  __msan_chain_origin+0xbf/0x140
[  374.501194][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.506338][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.511297][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  374.516178][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.520756][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  374.525896][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  374.531043][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  374.536707][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  374.541869][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  374.548147][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.554679][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.559414][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.565795][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.570857][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.575739][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.580287][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.586654][ T6871] RIP: 0023:0xf6e6e549
[  374.590724][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  374.610351][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  374.618781][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  374.626786][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  374.634767][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  374.642761][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  374.650741][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  374.658730][ T6871]  </TASK>
[  374.661893][    C1] vkms_vblank_simulate: vblank timer overrun
[  374.670782][ T6871] Uninit was stored to memory at:
[  374.676397][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.681581][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.686695][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.691249][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.696146][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.702527][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.707811][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.712774][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.717457][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.723976][ T6871] 
[  374.726359][ T6871] Uninit was stored to memory at:
[  374.731448][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.736728][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.741710][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.746409][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.751113][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.757608][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.762733][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.767810][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.772365][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.778905][ T6871] 
[  374.781238][ T6871] Uninit was stored to memory at:
[  374.786523][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.791672][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.796822][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.801374][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.806236][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.812673][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.817948][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.822865][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.827668][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.834198][ T6871] 
[  374.836527][ T6871] Uninit was stored to memory at:
[  374.841591][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.846879][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.851863][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.856593][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.861361][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.867879][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.873083][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.878045][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.882599][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.889121][ T6871] 
[  374.891454][ T6871] Uninit was stored to memory at:
[  374.896677][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.901824][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.907082][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.911695][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.916612][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.923108][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.928226][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.933281][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.937834][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.944447][ T6871] 
[  374.946778][ T6871] Uninit was stored to memory at:
[  374.951852][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  374.957117][ T6871]  get_compat_msghdr+0x108/0x2c0
[  374.962132][ T6871]  do_recvmmsg+0xd77/0x2120
[  374.966848][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  374.971571][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  374.978108][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  374.983317][ T6871]  do_fast_syscall_32+0x34/0x70
[  374.988223][ T6871]  do_SYSENTER_32+0x1b/0x20
[  374.992814][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  374.999351][ T6871] 
[  375.001682][ T6871] Uninit was stored to memory at:
[  375.006902][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.012098][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.017233][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.021784][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.026694][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.033193][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.038273][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.043367][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.047925][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.054461][ T6871] 
[  375.056790][ T6871] Local variable msg_sys created at:
[  375.062112][ T6871]  do_recvmmsg+0xbb/0x2120
[  375.066728][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.241484][ T6871] not chained 370000 origins
[  375.246271][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  375.254648][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  375.264725][ T6871] Call Trace:
[  375.268007][ T6871]  <TASK>
[  375.270948][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  375.275668][ T6871]  dump_stack+0x25/0x28
[  375.279870][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  375.285648][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  375.290896][ T6871]  ? release_sock+0x2b5/0x2e0
[  375.295606][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  375.300512][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  375.305685][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  375.311551][ T6871]  ? should_fail+0x75/0x9c0
[  375.316071][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  375.321952][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  375.327096][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  375.333378][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  375.339503][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  375.344645][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  375.350527][ T6871]  __msan_chain_origin+0xbf/0x140
[  375.355584][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.360778][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.365758][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  375.370660][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.375198][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  375.380363][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  375.385506][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  375.391187][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  375.396339][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  375.402653][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.409213][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.413938][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.420320][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.425388][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.430288][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.434827][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.441213][ T6871] RIP: 0023:0xf6e6e549
[  375.445284][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  375.464940][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  375.473395][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  375.481394][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  375.489378][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  375.497378][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  375.505376][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  375.513388][ T6871]  </TASK>
[  375.519038][ T6871] Uninit was stored to memory at:
[  375.524764][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.529923][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.535005][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.539558][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.544380][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.550758][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.556020][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.560927][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.565642][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.572033][ T6871] 
[  375.574466][ T6871] Uninit was stored to memory at:
[  375.579554][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.584790][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.589762][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.594413][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.599158][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.605633][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.610714][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.615783][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.620335][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.626810][ T6871] 
[  375.629137][ T6871] Uninit was stored to memory at:
[  375.634319][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.639474][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.644531][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.649085][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.653897][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.660274][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.665451][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.670361][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.675003][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.681388][ T6871] 
[  375.683812][ T6871] Uninit was stored to memory at:
[  375.688902][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.694142][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.699120][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.703754][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.708481][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.714951][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.720034][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.725027][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.729581][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.736094][ T6871] 
[  375.738424][ T6871] Uninit was stored to memory at:
[  375.743656][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.748805][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.753915][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.758470][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.763335][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.769716][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.774911][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.779818][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.784524][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.790910][ T6871] 
[  375.793389][ T6871] Uninit was stored to memory at:
[  375.798481][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.803765][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.808746][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.813455][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.818185][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.824699][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.829779][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.834810][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.839368][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.845904][ T6871] 
[  375.848236][ T6871] Uninit was stored to memory at:
[  375.853476][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  375.858626][ T6871]  get_compat_msghdr+0x108/0x2c0
[  375.863753][ T6871]  do_recvmmsg+0xd77/0x2120
[  375.868330][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  375.873175][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  375.879554][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  375.884789][ T6871]  do_fast_syscall_32+0x34/0x70
[  375.889692][ T6871]  do_SYSENTER_32+0x1b/0x20
[  375.894388][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  375.900778][ T6871] 
[  375.903261][ T6871] Local variable msg_sys created at:
[  375.908555][ T6871]  do_recvmmsg+0xbb/0x2120
[  375.913152][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.088276][ T6871] not chained 380000 origins
[  376.093076][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  376.101439][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  376.111506][ T6871] Call Trace:
[  376.114801][ T6871]  <TASK>
[  376.117745][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  376.122467][ T6871]  dump_stack+0x25/0x28
[  376.126647][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  376.132401][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  376.137535][ T6871]  ? release_sock+0x2b5/0x2e0
[  376.142250][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  376.147139][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  376.152279][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  376.158121][ T6871]  ? should_fail+0x75/0x9c0
[  376.162638][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  376.168478][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  376.173619][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  376.179890][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  376.186107][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  376.191258][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  376.197099][ T6871]  __msan_chain_origin+0xbf/0x140
[  376.202277][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.207438][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.212404][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  376.217300][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.221866][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  376.227022][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  376.232163][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  376.237825][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  376.242979][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  376.249259][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.255799][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.260519][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.266886][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.271958][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.276846][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.281407][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.287788][ T6871] RIP: 0023:0xf6e6e549
[  376.291859][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  376.311496][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  376.319933][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  376.327935][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  376.335918][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  376.343902][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  376.351877][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  376.359869][ T6871]  </TASK>
[  376.363072][    C1] vkms_vblank_simulate: vblank timer overrun
[  376.373285][ T6871] Uninit was stored to memory at:
[  376.379467][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.384755][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.389779][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.394495][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.399228][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.405740][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.410858][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.415875][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.420455][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.427060][ T6871] 
[  376.429393][ T6871] Uninit was stored to memory at:
[  376.434664][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.439810][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.444983][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.449534][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.454404][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.460823][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.466010][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.470918][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.475624][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.482033][ T6871] 
[  376.484527][ T6871] Uninit was stored to memory at:
[  376.489616][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.494974][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.499953][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.504627][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.509388][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.515928][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.521012][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.526079][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.530633][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.537175][ T6871] 
[  376.539503][ T6871] Uninit was stored to memory at:
[  376.544794][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.549943][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.555090][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.559684][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.564572][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.570947][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.576217][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.581121][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.585789][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.592218][ T6871] 
[  376.594718][ T6871] Uninit was stored to memory at:
[  376.599795][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.605108][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.610125][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.614835][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.619563][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.626087][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.631187][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.636282][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.640831][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.647359][ T6871] 
[  376.649689][ T6871] Uninit was stored to memory at:
[  376.654957][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.660158][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.665253][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.669804][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.674637][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.681057][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.686303][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.691207][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.695928][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.702312][ T6871] 
[  376.704822][ T6871] Uninit was stored to memory at:
[  376.709945][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  376.715262][ T6871]  get_compat_msghdr+0x108/0x2c0
[  376.720239][ T6871]  do_recvmmsg+0xd77/0x2120
[  376.724914][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.729691][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  376.736258][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  376.741337][ T6871]  do_fast_syscall_32+0x34/0x70
[  376.746397][ T6871]  do_SYSENTER_32+0x1b/0x20
[  376.750951][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  376.757467][ T6871] 
[  376.759836][ T6871] Local variable msg_sys created at:
[  376.765250][ T6871]  do_recvmmsg+0xbb/0x2120
[  376.769711][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  376.938653][ T6871] not chained 390000 origins
[  376.943444][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  376.951808][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  376.961868][ T6871] Call Trace:
[  376.965150][ T6871]  <TASK>
[  376.968095][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  376.972833][ T6871]  dump_stack+0x25/0x28
[  376.977039][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  376.982818][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  376.987977][ T6871]  ? release_sock+0x2b5/0x2e0
[  376.992701][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  376.997601][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.002747][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.008599][ T6871]  ? should_fail+0x75/0x9c0
[  377.013149][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.019016][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.024167][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  377.030468][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  377.036580][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.041752][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.047603][ T6871]  __msan_chain_origin+0xbf/0x140
[  377.052680][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.057856][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.062820][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  377.067719][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.072281][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  377.077423][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.082592][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  377.088259][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  377.093404][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  377.099709][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.106247][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.110988][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.117355][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.122434][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.127322][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.131879][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.138242][ T6871] RIP: 0023:0xf6e6e549
[  377.142332][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  377.162063][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  377.170536][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  377.178523][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  377.186512][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  377.194510][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  377.202505][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  377.210496][ T6871]  </TASK>
[  377.216297][ T6871] Uninit was stored to memory at:
[  377.221401][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.227047][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.232030][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.236683][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.241435][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.247913][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.253075][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.257980][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.262508][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.269008][ T6871] 
[  377.271342][ T6871] Uninit was stored to memory at:
[  377.276551][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.281699][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.286821][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.291378][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.296201][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.302578][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.307804][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.312710][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.317364][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.323841][ T6871] 
[  377.326174][ T6871] Uninit was stored to memory at:
[  377.331264][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.336522][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.341502][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.346214][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.350945][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.357435][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.362513][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.367543][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.372096][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.378574][ T6871] 
[  377.380905][ T6871] Uninit was stored to memory at:
[  377.386144][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.391291][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.396357][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.400909][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.405775][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.412154][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.417347][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.422250][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.426948][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.433423][ T6871] 
[  377.435752][ T6871] Uninit was stored to memory at:
[  377.440840][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.446122][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.451104][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.455817][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.460549][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.467053][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.472129][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.477120][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.481671][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.488182][ T6871] 
[  377.490529][ T6871] Uninit was stored to memory at:
[  377.495765][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.500910][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.506025][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.510575][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.515432][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.521810][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.527031][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.531936][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.536579][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.543049][ T6871] 
[  377.545381][ T6871] Uninit was stored to memory at:
[  377.550470][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.555770][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.560747][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.565418][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.570140][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.576650][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.581726][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.586741][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.591292][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.597808][ T6871] 
[  377.600137][ T6871] Local variable msg_sys created at:
[  377.605567][ T6871]  do_recvmmsg+0xbb/0x2120
[  377.610026][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.781910][ T6871] not chained 400000 origins
[  377.786807][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  377.795178][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  377.805244][ T6871] Call Trace:
[  377.808534][ T6871]  <TASK>
[  377.811476][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  377.816202][ T6871]  dump_stack+0x25/0x28
[  377.820385][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  377.826147][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  377.831305][ T6871]  ? release_sock+0x2b5/0x2e0
[  377.835999][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  377.840899][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.846050][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.851920][ T6871]  ? should_fail+0x75/0x9c0
[  377.856457][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.862318][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.867463][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  377.873767][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  377.879901][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.885047][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  377.890910][ T6871]  __msan_chain_origin+0xbf/0x140
[  377.895964][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  377.901109][ T6871]  get_compat_msghdr+0x108/0x2c0
[  377.906070][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  377.910973][ T6871]  do_recvmmsg+0xd77/0x2120
[  377.915510][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  377.920665][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  377.925812][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  377.931500][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  377.936643][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  377.942935][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.949492][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  377.954216][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  377.960600][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  377.965666][ T6871]  do_fast_syscall_32+0x34/0x70
[  377.970571][ T6871]  do_SYSENTER_32+0x1b/0x20
[  377.975098][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  377.981482][ T6871] RIP: 0023:0xf6e6e549
[  377.985562][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  378.005208][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  378.013665][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  378.021666][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  378.029665][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  378.037658][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  378.045745][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  378.053763][ T6871]  </TASK>
[  378.059389][ T6871] Uninit was stored to memory at:
[  378.064963][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.070116][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.075190][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.079744][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.084563][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.090945][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.096183][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.101089][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.105826][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.112210][ T6871] 
[  378.114683][ T6871] Uninit was stored to memory at:
[  378.119760][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.125033][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.130013][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.134702][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.139424][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.145933][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.151011][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.156042][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.160620][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.167121][ T6871] 
[  378.169508][ T6871] Uninit was stored to memory at:
[  378.174754][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.179915][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.185036][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.189589][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.194457][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.200847][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.206047][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.210953][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.215658][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.222047][ T6871] 
[  378.224527][ T6871] Uninit was stored to memory at:
[  378.229625][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.234949][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.239934][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.244618][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.249345][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.255895][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.260986][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.266053][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.270614][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.277138][ T6871] 
[  378.279469][ T6871] Uninit was stored to memory at:
[  378.284706][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.289860][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.294990][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.299543][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.304425][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.310806][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.316023][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.320930][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.325643][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.332027][ T6871] 
[  378.334502][ T6871] Uninit was stored to memory at:
[  378.339600][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.344882][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.349876][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.354554][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.359280][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.365803][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.370892][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.375957][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.380512][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.386985][ T6871] 
[  378.389417][ T6871] Uninit was stored to memory at:
[  378.394649][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.399802][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.404942][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.409496][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.414333][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.420713][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.425934][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.430835][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.435528][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.441927][ T6871] 
[  378.444401][ T6871] Local variable msg_sys created at:
[  378.449693][ T6871]  do_recvmmsg+0xbb/0x2120
[  378.454291][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.623447][ T6871] not chained 410000 origins
[  378.628121][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  378.636460][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  378.646518][ T6871] Call Trace:
[  378.649793][ T6871]  <TASK>
[  378.652720][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  378.657432][ T6871]  dump_stack+0x25/0x28
[  378.661614][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  378.667366][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  378.672505][ T6871]  ? release_sock+0x2b5/0x2e0
[  378.677225][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  378.682106][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  378.687249][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  378.693092][ T6871]  ? should_fail+0x75/0x9c0
[  378.697606][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  378.703444][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  378.708589][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  378.714885][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  378.720993][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  378.726153][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  378.731992][ T6871]  __msan_chain_origin+0xbf/0x140
[  378.737043][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.742192][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.747153][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  378.752080][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.756617][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  378.761760][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  378.766904][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  378.772570][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  378.777739][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  378.784046][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.790580][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.795295][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.801680][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.806742][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.811625][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.816154][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.822514][ T6871] RIP: 0023:0xf6e6e549
[  378.826583][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  378.846209][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  378.854638][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  378.862619][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  378.870604][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  378.878601][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  378.886593][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  378.894583][ T6871]  </TASK>
[  378.897760][    C1] vkms_vblank_simulate: vblank timer overrun
[  378.906525][ T6871] Uninit was stored to memory at:
[  378.912075][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.917367][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.922350][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.927066][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.931796][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.938305][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.943606][ T6871]  do_fast_syscall_32+0x34/0x70
[  378.948506][ T6871]  do_SYSENTER_32+0x1b/0x20
[  378.953205][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  378.959659][ T6871] 
[  378.961984][ T6871] Uninit was stored to memory at:
[  378.967247][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  378.972404][ T6871]  get_compat_msghdr+0x108/0x2c0
[  378.977535][ T6871]  do_recvmmsg+0xd77/0x2120
[  378.982108][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  378.987028][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  378.993560][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  378.998639][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.003820][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.008430][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.014996][ T6871] 
[  379.017326][ T6871] Uninit was stored to memory at:
[  379.022393][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.027693][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.032674][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.037391][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.042179][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.048747][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.053908][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.058836][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.063547][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.069943][ T6871] 
[  379.072272][ T6871] Uninit was stored to memory at:
[  379.077521][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.082675][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.087803][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.092400][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.097288][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.103754][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.108850][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.113921][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.118483][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.125099][ T6871] 
[  379.127430][ T6871] Uninit was stored to memory at:
[  379.132512][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.137808][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.142830][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.147558][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.152284][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.158886][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.164054][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.168940][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.173634][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.180081][ T6871] 
[  379.182406][ T6871] Uninit was stored to memory at:
[  379.187678][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.192991][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.197975][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.202528][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.207397][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.213886][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.218953][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.224025][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.228631][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.235158][ T6871] 
[  379.237487][ T6871] Uninit was stored to memory at:
[  379.242592][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.247859][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.252842][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.257562][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.262346][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.268919][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.274085][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.279025][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.283758][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.290145][ T6871] 
[  379.292532][ T6871] Local variable msg_sys created at:
[  379.298013][ T6871]  do_recvmmsg+0xbb/0x2120
[  379.302477][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.471629][ T6871] not chained 420000 origins
[  379.476407][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  379.484760][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  379.494842][ T6871] Call Trace:
[  379.498135][ T6871]  <TASK>
[  379.501078][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  379.505814][ T6871]  dump_stack+0x25/0x28
[  379.509997][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  379.515753][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  379.520886][ T6871]  ? release_sock+0x2b5/0x2e0
[  379.525584][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  379.530460][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  379.535610][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  379.541453][ T6871]  ? should_fail+0x75/0x9c0
[  379.545967][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  379.551808][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  379.556948][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  379.563222][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  379.569324][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  379.574467][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  379.580307][ T6871]  __msan_chain_origin+0xbf/0x140
[  379.585362][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.590529][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.595493][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  379.600410][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.604945][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  379.610101][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  379.615243][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  379.620903][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  379.626045][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  379.632327][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.638882][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.643601][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.649963][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.655021][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.659900][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.664435][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.670797][ T6871] RIP: 0023:0xf6e6e549
[  379.674867][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  379.694500][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  379.702954][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  379.710941][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  379.718920][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  379.726903][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  379.734884][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  379.742876][ T6871]  </TASK>
[  379.746059][    C1] vkms_vblank_simulate: vblank timer overrun
[  379.754696][ T6871] Uninit was stored to memory at:
[  379.760215][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.765489][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.770470][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.775174][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.779905][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.786429][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.791567][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.796603][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.801179][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.807760][ T6871] 
[  379.810125][ T6871] Uninit was stored to memory at:
[  379.815387][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.820538][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.825732][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.830288][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.835165][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.841579][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.846816][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.851716][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.856381][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.862831][ T6871] 
[  379.865344][ T6871] Uninit was stored to memory at:
[  379.870417][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.875772][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.880751][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.885424][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.890153][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.896684][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.901771][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.906805][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.911395][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.917942][ T6871] 
[  379.920269][ T6871] Uninit was stored to memory at:
[  379.925513][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.930663][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.935812][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.940361][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  379.945273][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  379.951648][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  379.956834][ T6871]  do_fast_syscall_32+0x34/0x70
[  379.961791][ T6871]  do_SYSENTER_32+0x1b/0x20
[  379.966544][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  379.973050][ T6871] 
[  379.975449][ T6871] Uninit was stored to memory at:
[  379.980526][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  379.985790][ T6871]  get_compat_msghdr+0x108/0x2c0
[  379.990772][ T6871]  do_recvmmsg+0xd77/0x2120
[  379.995523][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.000267][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.006761][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.011905][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.016989][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.021569][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.028097][ T6871] 
[  380.030430][ T6871] Uninit was stored to memory at:
[  380.035708][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.041010][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.046144][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.050698][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.055702][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.062117][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.067368][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.072270][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.076972][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.083483][ T6871] 
[  380.085811][ T6871] Uninit was stored to memory at:
[  380.090883][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.096162][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.101140][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.105833][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.110598][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.117143][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.122225][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.127346][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.131900][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.138429][ T6871] 
[  380.140758][ T6871] Local variable msg_sys created at:
[  380.146251][ T6871]  do_recvmmsg+0xbb/0x2120
[  380.150721][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.319924][ T6871] not chained 430000 origins
[  380.324938][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  380.333309][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  380.343394][ T6871] Call Trace:
[  380.346688][ T6871]  <TASK>
[  380.349622][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  380.354367][ T6871]  dump_stack+0x25/0x28
[  380.358573][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  380.364353][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  380.369528][ T6871]  ? release_sock+0x2b5/0x2e0
[  380.374236][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  380.379152][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  380.384331][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  380.390209][ T6871]  ? should_fail+0x75/0x9c0
[  380.394750][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  380.400620][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  380.405768][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  380.412081][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  380.418213][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  380.423386][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  380.429251][ T6871]  __msan_chain_origin+0xbf/0x140
[  380.434318][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.439510][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.444506][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  380.449409][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.453949][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  380.459123][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  380.464298][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  380.469997][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  380.475148][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  380.481453][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.487997][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.492748][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.499145][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.504234][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.509118][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.513652][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.520035][ T6871] RIP: 0023:0xf6e6e549
[  380.524128][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  380.543780][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  380.552244][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  380.560230][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  380.568229][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  380.576211][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  380.584208][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.592222][ T6871]  </TASK>
[  380.598198][ T6871] Uninit was stored to memory at:
[  380.604631][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.609819][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.614907][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.619482][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.624302][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.630686][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.635860][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.640764][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.645416][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.651805][ T6871] 
[  380.654233][ T6871] Uninit was stored to memory at:
[  380.659324][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.664570][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.669548][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.674221][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.678948][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.685446][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.690527][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.695568][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.700138][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.706656][ T6871] 
[  380.708984][ T6871] Uninit was stored to memory at:
[  380.714213][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.719361][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.724499][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.729051][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.733911][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.740338][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.745544][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.750449][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.755166][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.761551][ T6871] 
[  380.764017][ T6871] Uninit was stored to memory at:
[  380.769094][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.774371][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.779356][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.784066][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.788793][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.795317][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.800403][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.805445][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.809999][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.816507][ T6871] 
[  380.818839][ T6871] Uninit was stored to memory at:
[  380.824072][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.829315][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.834459][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.839010][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.843872][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.850247][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.855447][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.860351][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.865037][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.871426][ T6871] 
[  380.873903][ T6871] Uninit was stored to memory at:
[  380.879002][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.884272][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.889255][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.893936][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.898660][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.905171][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.910250][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.915293][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.919852][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.926374][ T6871] 
[  380.928703][ T6871] Uninit was stored to memory at:
[  380.933888][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  380.939039][ T6871]  get_compat_msghdr+0x108/0x2c0
[  380.944159][ T6871]  do_recvmmsg+0xd77/0x2120
[  380.948709][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  380.953562][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  380.959944][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  380.965133][ T6871]  do_fast_syscall_32+0x34/0x70
[  380.970036][ T6871]  do_SYSENTER_32+0x1b/0x20
[  380.974740][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  380.981126][ T6871] 
[  380.983594][ T6871] Local variable msg_sys created at:
[  380.988882][ T6871]  do_recvmmsg+0xbb/0x2120
[  380.993481][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.164779][ T6871] not chained 440000 origins
[  381.169395][ T6871] CPU: 0 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  381.177744][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  381.187848][ T6871] Call Trace:
[  381.191129][ T6871]  <TASK>
[  381.194065][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  381.198818][ T6871]  dump_stack+0x25/0x28
[  381.203035][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  381.208817][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  381.213966][ T6871]  ? release_sock+0x2b5/0x2e0
[  381.218693][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  381.223600][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  381.228771][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  381.234632][ T6871]  ? should_fail+0x75/0x9c0
[  381.239178][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  381.245045][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  381.250207][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  381.256486][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  381.262636][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  381.267792][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  381.273646][ T6871]  __msan_chain_origin+0xbf/0x140
[  381.278739][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.283941][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.288932][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  381.293822][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.298383][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  381.303550][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  381.308723][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  381.314405][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  381.319583][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  381.325905][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.332445][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.337171][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.343570][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.348658][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.353550][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.358105][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.364497][ T6871] RIP: 0023:0xf6e6e549
[  381.368591][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  381.388247][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  381.396713][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  381.404723][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  381.412710][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  381.420690][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  381.428812][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  381.436834][ T6871]  </TASK>
[  381.442448][ T6871] Uninit was stored to memory at:
[  381.448150][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.453413][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.458396][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.463038][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.467769][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.474441][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.479534][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.484615][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.489182][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.495761][ T6871] 
[  381.498098][ T6871] Uninit was stored to memory at:
[  381.503329][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.508481][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.513612][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.518168][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.523035][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.529422][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.534656][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.539583][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.544295][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.550690][ T6871] 
[  381.553166][ T6871] Uninit was stored to memory at:
[  381.558247][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.563550][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.568535][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.573211][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.577948][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.584493][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.589577][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.594636][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.599201][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.605746][ T6871] 
[  381.608088][ T6871] Uninit was stored to memory at:
[  381.613323][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.618481][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.623608][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.628166][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.633040][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.639419][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.644636][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.649545][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.654266][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.660653][ T6871] 
[  381.663122][ T6871] Uninit was stored to memory at:
[  381.668217][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.673525][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.678507][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.683192][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.687923][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.694460][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.699544][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.704613][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.709173][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.715734][ T6871] 
[  381.718064][ T6871] Uninit was stored to memory at:
[  381.723277][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.728429][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.733551][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.738104][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.742834][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.749362][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.754596][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.759502][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.764178][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.770567][ T6871] 
[  381.773025][ T6871] Uninit was stored to memory at:
[  381.778121][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  381.783452][ T6871]  get_compat_msghdr+0x108/0x2c0
[  381.788438][ T6871]  do_recvmmsg+0xd77/0x2120
[  381.793149][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  381.797880][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  381.804424][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  381.809508][ T6871]  do_fast_syscall_32+0x34/0x70
[  381.814580][ T6871]  do_SYSENTER_32+0x1b/0x20
[  381.819135][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  381.825663][ T6871] 
[  381.827992][ T6871] Local variable msg_sys created at:
[  381.833418][ T6871]  do_recvmmsg+0xbb/0x2120
[  381.837891][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.008139][ T6871] not chained 450000 origins
[  382.012760][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  382.021106][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  382.031173][ T6871] Call Trace:
[  382.034455][ T6871]  <TASK>
[  382.037384][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  382.042097][ T6871]  dump_stack+0x25/0x28
[  382.046280][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  382.052124][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  382.057285][ T6871]  ? release_sock+0x2b5/0x2e0
[  382.061985][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  382.066863][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.072006][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.077846][ T6871]  ? should_fail+0x75/0x9c0
[  382.082366][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.088209][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.093354][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  382.099656][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  382.105759][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.110924][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.116764][ T6871]  __msan_chain_origin+0xbf/0x140
[  382.121818][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.126967][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.131928][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  382.136864][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.141397][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  382.146538][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.151683][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  382.157349][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  382.162517][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  382.168800][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.175357][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.180076][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.186462][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.191523][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.196404][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.200964][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.207331][ T6871] RIP: 0023:0xf6e6e549
[  382.211424][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  382.231049][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  382.239496][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  382.247477][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  382.255456][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  382.263453][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  382.271586][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  382.279581][ T6871]  </TASK>
[  382.282769][    C1] vkms_vblank_simulate: vblank timer overrun
[  382.291622][ T6871] Uninit was stored to memory at:
[  382.297207][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.302370][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.307489][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.312109][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.316963][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.323457][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.328596][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.333682][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.338237][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.344793][ T6871] 
[  382.347124][ T6871] Uninit was stored to memory at:
[  382.352183][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.357478][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.362516][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.367249][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.371975][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.378535][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.383734][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.388636][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.393357][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.399745][ T6871] 
[  382.402069][ T6871] Uninit was stored to memory at:
[  382.407322][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.412513][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.417600][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.422153][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.427078][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.433572][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.438651][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.443735][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.448285][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.454775][ T6871] 
[  382.457104][ T6871] Uninit was stored to memory at:
[  382.462235][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.467569][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.472546][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.477269][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.481994][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.488479][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.493702][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.498612][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.503345][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.509772][ T6871] 
[  382.512088][ T6871] Uninit was stored to memory at:
[  382.517348][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.522504][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.527702][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.532260][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.537158][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.543633][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.548686][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.553741][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.558354][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.564916][ T6871] 
[  382.567250][ T6871] Uninit was stored to memory at:
[  382.572321][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.577653][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.582631][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.587349][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.592111][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.598622][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.603823][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.608770][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.613475][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.619861][ T6871] 
[  382.622175][ T6871] Uninit was stored to memory at:
[  382.627417][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.632562][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.637710][ T6871]  do_recvmmsg+0xd77/0x2120
[  382.642316][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.647222][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  382.653676][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  382.658789][ T6871]  do_fast_syscall_32+0x34/0x70
[  382.663878][ T6871]  do_SYSENTER_32+0x1b/0x20
[  382.668434][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  382.675030][ T6871] 
[  382.677361][ T6871] Local variable msg_sys created at:
[  382.682645][ T6871]  do_recvmmsg+0xbb/0x2120
[  382.687258][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  382.875561][ T6871] not chained 460000 origins
[  382.880213][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  382.888556][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  382.898620][ T6871] Call Trace:
[  382.901895][ T6871]  <TASK>
[  382.904822][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  382.909543][ T6871]  dump_stack+0x25/0x28
[  382.913726][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  382.919504][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  382.924644][ T6871]  ? release_sock+0x2b5/0x2e0
[  382.929340][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  382.934239][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.939377][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.945216][ T6871]  ? should_fail+0x75/0x9c0
[  382.949733][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.955570][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.960727][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  382.966996][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  382.973106][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  382.978265][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  382.984110][ T6871]  __msan_chain_origin+0xbf/0x140
[  382.989169][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  382.994314][ T6871]  get_compat_msghdr+0x108/0x2c0
[  382.999277][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  383.004161][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.008713][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  383.013851][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  383.018992][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  383.024665][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  383.029804][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  383.036081][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.042632][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.047350][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.053732][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.058791][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.063674][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.068203][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.074568][ T6871] RIP: 0023:0xf6e6e549
[  383.078650][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  383.098280][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  383.106710][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  383.114690][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  383.122670][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  383.130645][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  383.138626][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  383.146616][ T6871]  </TASK>
[  383.149785][    C1] vkms_vblank_simulate: vblank timer overrun
[  383.158635][ T6871] Uninit was stored to memory at:
[  383.164220][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.169381][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.174497][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.179136][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.183986][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.190373][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.195694][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.200608][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.205246][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.211649][ T6871] 
[  383.214157][ T6871] Uninit was stored to memory at:
[  383.219248][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.224620][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.229602][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.234262][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.238992][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.245570][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.250655][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.255702][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.260297][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.266784][ T6871] 
[  383.269115][ T6871] Uninit was stored to memory at:
[  383.274377][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.279573][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.284670][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.289222][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.294156][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.300534][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.305721][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.310667][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.315379][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.321763][ T6871] 
[  383.324248][ T6871] Uninit was stored to memory at:
[  383.329363][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.334628][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.339605][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.344350][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.349076][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.355630][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.360754][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.365765][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.370317][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.376890][ T6871] 
[  383.379218][ T6871] Uninit was stored to memory at:
[  383.384475][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.389625][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.394795][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.399349][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.404191][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.410604][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.415832][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.420733][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.425424][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.431808][ T6871] 
[  383.434310][ T6871] Uninit was stored to memory at:
[  383.439391][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.444737][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.449716][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.454383][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.459147][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.465681][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.470761][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.475849][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.480437][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.486969][ T6871] 
[  383.489304][ T6871] Uninit was stored to memory at:
[  383.494543][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.499694][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.504800][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.509391][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.514280][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.520662][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.525898][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.530809][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.535492][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.541936][ T6871] 
[  383.544437][ T6871] Local variable msg_sys created at:
[  383.549724][ T6871]  do_recvmmsg+0xbb/0x2120
[  383.554357][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.720721][ T6871] not chained 470000 origins
[  383.725467][ T6871] CPU: 1 PID: 6871 Comm: syz-executor.1 Not tainted 5.17.0-syzkaller #0
[  383.733816][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  383.743965][ T6871] Call Trace:
[  383.747261][ T6871]  <TASK>
[  383.750192][ T6871]  dump_stack_lvl+0x1ff/0x28e
[  383.754926][ T6871]  dump_stack+0x25/0x28
[  383.759112][ T6871]  kmsan_internal_chain_origin+0x78/0x110
[  383.764881][ T6871]  ? _raw_spin_unlock_bh+0x4b/0x60
[  383.770027][ T6871]  ? release_sock+0x2b5/0x2e0
[  383.774719][ T6871]  ? sctp_recvmsg+0x100e/0x1430
[  383.779594][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  383.784741][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  383.790589][ T6871]  ? should_fail+0x75/0x9c0
[  383.795120][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  383.800986][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  383.806133][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  383.812408][ T6871]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  383.818513][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  383.823655][ T6871]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  383.829494][ T6871]  __msan_chain_origin+0xbf/0x140
[  383.834552][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  383.839700][ T6871]  get_compat_msghdr+0x108/0x2c0
[  383.844682][ T6871]  ? __sys_recvmmsg+0x51c/0x6f0
[  383.849579][ T6871]  do_recvmmsg+0xd77/0x2120
[  383.854114][ T6871]  ? xfd_validate_state+0xd1/0x2d0
[  383.859256][ T6871]  ? kmsan_get_metadata+0x33/0x220
[  383.864399][ T6871]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  383.870062][ T6871]  ? __stack_depot_save+0x21/0x4d0
[  383.875225][ T6871]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  383.881521][ T6871]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.888053][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  383.892769][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  383.899132][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  383.904212][ T6871]  do_fast_syscall_32+0x34/0x70
[  383.909106][ T6871]  do_SYSENTER_32+0x1b/0x20
[  383.913636][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  383.920001][ T6871] RIP: 0023:0xf6e6e549
[  383.924070][ T6871] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  383.943698][ T6871] RSP: 002b:00000000f58475cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  383.952149][ T6871] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  383.960133][ T6871] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  383.968116][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  383.976097][ T6871] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  383.984092][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  383.992082][ T6871]  </TASK>
[  383.995259][    C1] vkms_vblank_simulate: vblank timer overrun
[  384.004165][ T6871] Uninit was stored to memory at:
[  384.009743][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.015034][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.020020][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.024743][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.029473][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.035992][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.041074][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.046163][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.050726][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.057324][ T6871] 
[  384.059716][ T6871] Uninit was stored to memory at:
[  384.065032][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.070190][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.075392][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.079951][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.084801][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.091225][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.096479][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.101408][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.106160][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.112589][ T6871] 
[  384.115093][ T6871] Uninit was stored to memory at:
[  384.120172][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.125513][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.130492][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.135220][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.139953][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.146495][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.151577][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.156591][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.161181][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.167729][ T6871] 
[  384.170057][ T6871] Uninit was stored to memory at:
[  384.175312][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.180461][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.185628][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.190189][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.195125][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.201508][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.206796][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.211762][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.216487][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.222995][ T6871] 
[  384.225387][ T6871] Uninit was stored to memory at:
[  384.230465][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.235746][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.240733][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.245490][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.250224][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.256811][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.261960][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.267004][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.271558][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.278094][ T6871] 
[  384.280442][ T6871] Uninit was stored to memory at:
[  384.285702][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.290852][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.295978][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.300529][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.305399][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.311816][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.317055][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.321957][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.326651][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.333147][ T6871] 
[  384.335475][ T6871] Uninit was stored to memory at:
[  384.340566][ T6871]  __get_compat_msghdr+0x6e1/0x9d0
[  384.345865][ T6871]  get_compat_msghdr+0x108/0x2c0
[  384.350846][ T6871]  do_recvmmsg+0xd77/0x2120
[  384.355515][ T6871]  __sys_recvmmsg+0x51c/0x6f0
[  384.360311][ T6871]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  384.366883][ T6871]  __do_fast_syscall_32+0x96/0xf0
[  384.371971][ T6871]  do_fast_syscall_32+0x34/0x70
[  384.377099][ T6871]  do_SYSENTER_32+0x1b/0x20
[  384.381657][ T6871]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  384.388186][ T6871] 
[  384.390515][ T6871] Local variable msg_sys created at:
[  384.395946][ T6871]  do_recvmmsg+0xbb/0x2120
[  384.400408][ T6871]  __sys_recvmmsg+0x51c/0x6f0
04:36:57 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={0x0}}, 0x0)

04:36:57 executing program 4:
socket$nl_route(0x10, 0x3, 0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet(0x2, 0x2000080001, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2004, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0xfffc}], 0x1, 0x0, 0x1f4, 0x24}}], 0xffffff1f, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)

04:36:57 executing program 3:
ioctl$IMSETDEVNAME(0xffffffffffffffff, 0x80184947, 0x0)

04:36:57 executing program 2:
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cpuacct.usage_percpu_user\x00', 0x0, 0x0)

04:36:57 executing program 0:
syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000004c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x458, 0x5013, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x20}}]}}}]}}]}}, 0x0)

04:36:57 executing program 5:
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
bind(0xffffffffffffffff, 0x0, 0x0)
move_mount(r2, 0x0, 0xffffffffffffffff, &(0x7f00000009c0)='./file0\x00', 0x42)
socket$inet6_sctp(0xa, 0x0, 0x84)
open(&(0x7f0000000200)='./bus\x00', 0x10103e, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x32}, 0x9c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
syz_clone(0x800000, &(0x7f0000000a80)="13", 0x1, 0x0, &(0x7f0000000bc0), 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0xac}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f0000000a00)={0xa, 0x0, 0xd5, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0xfffffdef, 0x0, 0x0, 0x0, 0x0, 0xffffffe0}, 0x4000000}], 0xaa, 0x0)

04:36:57 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)

04:36:57 executing program 3:
io_uring_setup(0x0, &(0x7f00000001c0))

[  385.033963][    T5] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  385.276113][ T6907] not chained 480000 origins
[  385.280926][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  385.289300][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  385.299383][ T6907] Call Trace:
[  385.302664][ T6907]  <TASK>
[  385.305601][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  385.310314][ T6907]  dump_stack+0x25/0x28
[  385.314494][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  385.320270][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  385.325414][ T6907]  ? release_sock+0x2b5/0x2e0
[  385.330115][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  385.335025][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  385.340173][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  385.346014][ T6907]  ? should_fail+0x75/0x9c0
[  385.350531][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  385.356369][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  385.361509][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  385.367787][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  385.373895][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  385.379036][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  385.384879][ T6907]  __msan_chain_origin+0xbf/0x140
[  385.389930][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.395072][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.400029][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  385.404909][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.409439][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  385.414575][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  385.419713][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  385.425374][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  385.430519][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  385.436829][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.443367][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.448081][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.454454][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.459510][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.464391][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.468919][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.475277][ T6907] RIP: 0023:0xf6e8e549
[  385.479345][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  385.498981][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  385.507416][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  385.515394][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  385.523368][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  385.531341][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  385.539331][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  385.547335][ T6907]  </TASK>
[  385.550527][    C1] vkms_vblank_simulate: vblank timer overrun
[  385.556023][    T5] usb 1-1: Using ep0 maxpacket: 8
[  385.560298][ T6907] Uninit was stored to memory at:
[  385.567564][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.572721][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.577806][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.582347][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.587139][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.593596][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.598663][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.603642][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.608208][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.614644][ T6907] 
[  385.616965][ T6907] Uninit was stored to memory at:
[  385.622027][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.627261][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.632217][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.636827][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.641572][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.648016][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.653153][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.658067][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.662597][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.669032][ T6907] 
[  385.671345][ T6907] Uninit was stored to memory at:
[  385.676486][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.681628][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.686660][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.691225][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.696003][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.702350][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.707481][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.712392][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.716998][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.723434][ T6907] 
[  385.725780][ T6907] Uninit was stored to memory at:
[  385.730841][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.736064][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.741092][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.745710][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.750411][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.756842][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.761938][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.766900][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.771427][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.777893][ T6907] 
[  385.780208][ T6907] Uninit was stored to memory at:
[  385.785349][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.790473][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.795522][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.800060][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.804839][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.811231][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.816357][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.821229][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.825860][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.832222][ T6907] 
[  385.834607][ T6907] Uninit was stored to memory at:
[  385.839683][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.844934][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.849892][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.854516][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.859252][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.865696][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.870749][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.875734][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.880263][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.886700][ T6907] 
[  385.889015][ T6907] Uninit was stored to memory at:
[  385.894176][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  385.899302][ T6907]  get_compat_msghdr+0x108/0x2c0
[  385.904329][ T6907]  do_recvmmsg+0xd77/0x2120
[  385.908896][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  385.913673][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  385.920024][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  385.925170][ T6907]  do_fast_syscall_32+0x34/0x70
[  385.930043][ T6907]  do_SYSENTER_32+0x1b/0x20
[  385.934649][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  385.941056][ T6907] 
[  385.943491][ T6907] Local variable msg_sys created at:
[  385.948779][ T6907]  do_recvmmsg+0xbb/0x2120
[  385.953290][ T6907]  __sys_recvmmsg+0x51c/0x6f0
04:36:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x805)

04:36:59 executing program 2:
open$dir(&(0x7f0000000000)='./file0\x00', 0x242, 0x0)
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=""/8)

[  386.094686][    T5] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
04:36:59 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x1c}}, 0x0)

[  386.304101][    T5] usb 1-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.40
[  386.313698][    T5] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.321872][    T5] usb 1-1: Product: syz
[  386.326629][    T5] usb 1-1: Manufacturer: syz
[  386.331324][    T5] usb 1-1: SerialNumber: syz
[  386.553314][    T5] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
04:36:59 executing program 1:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000200)=""/137)
r1 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r1, &(0x7f0000ffd000/0x1000)=nil, 0x4000)

04:36:59 executing program 2:
r0 = getpgrp(0xffffffffffffffff)
sched_setaffinity(r0, 0x8, &(0x7f0000000540))

[  386.819649][  T122] usb 1-1: USB disconnect, device number 7
[  387.806147][ T6907] not chained 490000 origins
[  387.810854][ T6907] CPU: 0 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  387.819218][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  387.829284][ T6907] Call Trace:
[  387.832579][ T6907]  <TASK>
[  387.835526][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  387.840285][ T6907]  dump_stack+0x25/0x28
[  387.844483][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  387.850264][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  387.855421][ T6907]  ? release_sock+0x2b5/0x2e0
[  387.860137][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  387.865016][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  387.870165][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  387.876013][ T6907]  ? should_fail+0x75/0x9c0
[  387.880546][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  387.886386][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  387.891533][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  387.897817][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  387.903946][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  387.909113][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  387.914957][ T6907]  __msan_chain_origin+0xbf/0x140
[  387.920036][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  387.925189][ T6907]  get_compat_msghdr+0x108/0x2c0
[  387.930171][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  387.935054][ T6907]  do_recvmmsg+0xd77/0x2120
[  387.939614][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  387.944771][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  387.949910][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  387.955593][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  387.960759][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  387.967059][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  387.973612][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  387.978366][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  387.984758][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  387.989828][ T6907]  do_fast_syscall_32+0x34/0x70
[  387.994737][ T6907]  do_SYSENTER_32+0x1b/0x20
[  387.999302][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.005692][ T6907] RIP: 0023:0xf6e8e549
[  388.009784][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  388.029420][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  388.037874][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  388.045882][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  388.053898][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  388.061910][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  388.069892][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  388.077894][ T6907]  </TASK>
[  388.084081][ T6907] Uninit was stored to memory at:
[  388.089187][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.097368][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.102362][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.107428][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.112167][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.118658][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.123853][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.128769][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.133509][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.139905][ T6907] 
[  388.142219][ T6907] Uninit was stored to memory at:
[  388.147470][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.152777][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.157946][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.162504][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.167384][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.173869][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.178960][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.184009][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.188563][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.195082][ T6907] 
[  388.197415][ T6907] Uninit was stored to memory at:
[  388.202515][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.207809][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.212789][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.217440][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.222169][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.228646][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.233827][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.238739][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.243405][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.249796][ T6907] 
[  388.252130][ T6907] Uninit was stored to memory at:
[  388.257420][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.262634][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.267758][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.272317][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.277227][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.283697][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.288779][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.293818][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.298383][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.304942][ T6907] 
[  388.307275][ T6907] Uninit was stored to memory at:
[  388.312354][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.317607][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.322585][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.327272][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.332004][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.338550][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.343736][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.348650][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.353327][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.359715][ T6907] 
[  388.362030][ T6907] Uninit was stored to memory at:
[  388.367235][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.372385][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.377503][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.382058][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.386929][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.393408][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.398491][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.403530][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.408089][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.414569][ T6907] 
[  388.416904][ T6907] Uninit was stored to memory at:
[  388.421987][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.427241][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.432221][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.436922][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.441650][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.448131][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.453310][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.458220][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.462771][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.469252][ T6907] 
[  388.471580][ T6907] Local variable msg_sys created at:
[  388.477013][ T6907]  do_recvmmsg+0xbb/0x2120
[  388.481482][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.666649][ T6907] not chained 500000 origins
[  388.671270][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  388.679617][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  388.689677][ T6907] Call Trace:
[  388.692962][ T6907]  <TASK>
[  388.695894][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  388.700608][ T6907]  dump_stack+0x25/0x28
[  388.704789][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  388.710554][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  388.715700][ T6907]  ? release_sock+0x2b5/0x2e0
[  388.720423][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  388.725300][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  388.730441][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  388.736285][ T6907]  ? should_fail+0x75/0x9c0
[  388.740799][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  388.746640][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  388.751782][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  388.758060][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  388.764167][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  388.769305][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  388.775142][ T6907]  __msan_chain_origin+0xbf/0x140
[  388.780203][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.785348][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.790314][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  388.795193][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.799726][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  388.804866][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  388.810007][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  388.815687][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  388.820830][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  388.827107][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.833655][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.838373][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.844774][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.849833][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.854731][ T6907]  do_SYSENTER_32+0x1b/0x20
[  388.859263][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  388.865627][ T6907] RIP: 0023:0xf6e8e549
[  388.869715][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  388.889340][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  388.897774][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  388.905758][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  388.913743][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  388.921739][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  388.929719][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  388.937709][ T6907]  </TASK>
[  388.940897][    C1] vkms_vblank_simulate: vblank timer overrun
[  388.952550][ T6907] Uninit was stored to memory at:
[  388.963630][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  388.968802][ T6907]  get_compat_msghdr+0x108/0x2c0
[  388.973920][ T6907]  do_recvmmsg+0xd77/0x2120
[  388.978530][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  388.983391][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  388.989784][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  388.995031][ T6907]  do_fast_syscall_32+0x34/0x70
[  388.999939][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.004672][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.011109][ T6907] 
[  389.013587][ T6907] Uninit was stored to memory at:
[  389.018682][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.024020][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.029041][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.033760][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.038494][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.045105][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.050202][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.055234][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.059920][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.066478][ T6907] 
[  389.068808][ T6907] Uninit was stored to memory at:
[  389.074091][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.079297][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.084451][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.089008][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.093924][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.100305][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.105565][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.110505][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.115337][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.121734][ T6907] 
[  389.124275][ T6907] Uninit was stored to memory at:
[  389.129371][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.134684][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.139658][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.144347][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.149072][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.155629][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.160766][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.165823][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.170382][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.177004][ T6907] 
[  389.179448][ T6907] Uninit was stored to memory at:
[  389.184699][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.189848][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.195044][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.199597][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.204474][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.210891][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.216156][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.221062][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.225822][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.232216][ T6907] 
[  389.234710][ T6907] Uninit was stored to memory at:
[  389.239922][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.245254][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.250231][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.254951][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.259715][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.266202][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.271280][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.276393][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.280947][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.287525][ T6907] 
[  389.289856][ T6907] Uninit was stored to memory at:
[  389.295168][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.300316][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.305457][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.310066][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.315011][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.321390][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.326686][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.331592][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.336315][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.342757][ T6907] 
[  389.345266][ T6907] Local variable msg_sys created at:
[  389.350553][ T6907]  do_recvmmsg+0xbb/0x2120
[  389.355178][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.555814][ T6907] not chained 510000 origins
[  389.560455][ T6907] CPU: 0 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  389.568819][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  389.578889][ T6907] Call Trace:
[  389.582187][ T6907]  <TASK>
[  389.585129][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  389.589840][ T6907]  dump_stack+0x25/0x28
[  389.594022][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  389.599807][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  389.604952][ T6907]  ? release_sock+0x2b5/0x2e0
[  389.609680][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  389.614585][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  389.619755][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  389.625608][ T6907]  ? should_fail+0x75/0x9c0
[  389.630147][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  389.636015][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  389.641188][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  389.647487][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  389.653593][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  389.658762][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  389.664628][ T6907]  __msan_chain_origin+0xbf/0x140
[  389.669684][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.674841][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.679825][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  389.684735][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.689289][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  389.694438][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  389.699610][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  389.705295][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  389.710443][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  389.716727][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.723284][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.728005][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.734379][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.739468][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.744376][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.748905][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.755269][ T6907] RIP: 0023:0xf6e8e549
[  389.759367][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  389.779019][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  389.787472][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  389.795460][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  389.803460][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  389.811454][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  389.819437][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  389.827494][ T6907]  </TASK>
[  389.833215][ T6907] Uninit was stored to memory at:
[  389.838318][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.845148][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.850142][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.855089][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.859822][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.866319][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.871404][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.876445][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.881002][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.887506][ T6907] 
[  389.889833][ T6907] Uninit was stored to memory at:
[  389.895136][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.900289][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.905432][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.909983][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.914849][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.921227][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.926406][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.931311][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.936000][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.942391][ T6907] 
[  389.944876][ T6907] Uninit was stored to memory at:
[  389.949952][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  389.955242][ T6907]  get_compat_msghdr+0x108/0x2c0
[  389.960216][ T6907]  do_recvmmsg+0xd77/0x2120
[  389.964906][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  389.969654][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  389.976156][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  389.981234][ T6907]  do_fast_syscall_32+0x34/0x70
[  389.986267][ T6907]  do_SYSENTER_32+0x1b/0x20
[  389.990826][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  389.997328][ T6907] 
[  389.999663][ T6907] Uninit was stored to memory at:
[  390.004882][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.010033][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.015182][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.019747][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.024640][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.031021][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.036254][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.041168][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.045882][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.052270][ T6907] 
[  390.054757][ T6907] Uninit was stored to memory at:
[  390.059837][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.065177][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.070154][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.074881][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.079611][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.086143][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.091226][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.096266][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.100826][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.107366][ T6907] 
[  390.109695][ T6907] Uninit was stored to memory at:
[  390.114927][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.120079][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.125191][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.129750][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.134640][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.141023][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.146263][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.151182][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.155895][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.162284][ T6907] 
[  390.164770][ T6907] Uninit was stored to memory at:
[  390.169853][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.175156][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.180134][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.184847][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.189575][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.196084][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.201165][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.206206][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.210772][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.217269][ T6907] 
[  390.219603][ T6907] Local variable msg_sys created at:
[  390.225021][ T6907]  do_recvmmsg+0xbb/0x2120
[  390.229488][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.412665][ T6907] not chained 520000 origins
[  390.417524][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  390.425901][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  390.435983][ T6907] Call Trace:
[  390.439264][ T6907]  <TASK>
[  390.442192][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  390.446909][ T6907]  dump_stack+0x25/0x28
[  390.451138][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  390.456898][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  390.462038][ T6907]  ? release_sock+0x2b5/0x2e0
[  390.466737][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  390.471615][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  390.476757][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  390.482605][ T6907]  ? should_fail+0x75/0x9c0
[  390.487120][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  390.492964][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  390.498117][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  390.504389][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  390.510494][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  390.515639][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  390.521501][ T6907]  __msan_chain_origin+0xbf/0x140
[  390.526557][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.531703][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.536681][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  390.541577][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.546109][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  390.551257][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  390.556432][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  390.562094][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  390.567238][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  390.573532][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.580063][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.584910][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.591283][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.596361][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.601251][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.605783][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.612146][ T6907] RIP: 0023:0xf6e8e549
[  390.616218][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  390.635846][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  390.644302][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  390.652296][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  390.660356][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  390.668489][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  390.676477][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  390.684476][ T6907]  </TASK>
[  390.687727][    C1] vkms_vblank_simulate: vblank timer overrun
[  390.696628][ T6907] Uninit was stored to memory at:
[  390.701735][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.707469][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.712452][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.717134][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.721874][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.728445][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.733737][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.738652][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.743500][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.749901][ T6907] 
[  390.752222][ T6907] Uninit was stored to memory at:
[  390.757550][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.762705][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.767882][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.772440][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.777371][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.783886][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.788968][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.794041][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.798607][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.805202][ T6907] 
[  390.807593][ T6907] Uninit was stored to memory at:
[  390.812688][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.817976][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.823108][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.827726][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.832464][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.839109][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.844310][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.849196][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.853921][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.860373][ T6907] 
[  390.862707][ T6907] Uninit was stored to memory at:
[  390.867947][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.873234][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.878254][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.882786][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.887684][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.894176][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.899235][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.904304][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.908920][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.915493][ T6907] 
[  390.917827][ T6907] Uninit was stored to memory at:
[  390.923129][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.928343][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.933461][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.938013][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.942761][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  390.949310][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  390.954494][ T6907]  do_fast_syscall_32+0x34/0x70
[  390.959454][ T6907]  do_SYSENTER_32+0x1b/0x20
[  390.964183][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  390.970611][ T6907] 
[  390.973110][ T6907] Uninit was stored to memory at:
[  390.978261][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  390.983546][ T6907]  get_compat_msghdr+0x108/0x2c0
[  390.988528][ T6907]  do_recvmmsg+0xd77/0x2120
[  390.993293][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  390.998020][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.004575][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.009718][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.014751][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.019304][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.025897][ T6907] 
[  391.028224][ T6907] Uninit was stored to memory at:
[  391.033483][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.038637][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.043851][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.048411][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.053286][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.059728][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.065014][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.069922][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.074687][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.081075][ T6907] 
[  391.083574][ T6907] Local variable msg_sys created at:
[  391.088896][ T6907]  do_recvmmsg+0xbb/0x2120
[  391.093544][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.260874][ T6907] not chained 530000 origins
[  391.265602][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  391.273955][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  391.284033][ T6907] Call Trace:
[  391.287311][ T6907]  <TASK>
[  391.290249][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  391.294989][ T6907]  dump_stack+0x25/0x28
[  391.299244][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  391.305001][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  391.310141][ T6907]  ? release_sock+0x2b5/0x2e0
[  391.314842][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  391.319752][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  391.324897][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  391.330742][ T6907]  ? should_fail+0x75/0x9c0
[  391.335257][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  391.341096][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  391.346251][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  391.352527][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  391.358628][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  391.363770][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  391.369613][ T6907]  __msan_chain_origin+0xbf/0x140
[  391.374686][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.379838][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.384801][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  391.389681][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.394219][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  391.399355][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  391.404498][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  391.410162][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  391.415413][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  391.421694][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.428228][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.432950][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.439318][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.444379][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.449285][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.453816][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.460184][ T6907] RIP: 0023:0xf6e8e549
[  391.464271][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  391.483900][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  391.492333][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  391.500327][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  391.508335][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  391.516310][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  391.524285][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  391.532274][ T6907]  </TASK>
[  391.535445][    C1] vkms_vblank_simulate: vblank timer overrun
[  391.544417][ T6907] Uninit was stored to memory at:
[  391.549523][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.555216][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.560258][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.564940][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.569672][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.576259][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.581345][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.586440][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.591053][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.597646][ T6907] 
[  391.599979][ T6907] Uninit was stored to memory at:
[  391.605258][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.610472][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.615605][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.620163][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.625043][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.631419][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.636669][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.641617][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.646286][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.652699][ T6907] 
[  391.655209][ T6907] Uninit was stored to memory at:
[  391.660322][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.665632][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.670611][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.675312][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.680039][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.686603][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.691724][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.696742][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.701299][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.707894][ T6907] 
[  391.710221][ T6907] Uninit was stored to memory at:
[  391.715433][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.720582][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.725752][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.730307][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.735225][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.741645][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.746839][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.751749][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.756418][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.762994][ T6907] 
[  391.765331][ T6907] Uninit was stored to memory at:
[  391.770421][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.775810][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.780800][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.785552][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.790282][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.796900][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.801984][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.807030][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.811623][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.818122][ T6907] 
[  391.820452][ T6907] Uninit was stored to memory at:
[  391.825767][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.830920][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.836040][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.840595][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.845471][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.851852][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.857091][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.862034][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.866702][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.873212][ T6907] 
[  391.875613][ T6907] Uninit was stored to memory at:
[  391.880703][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  391.886036][ T6907]  get_compat_msghdr+0x108/0x2c0
[  391.891079][ T6907]  do_recvmmsg+0xd77/0x2120
[  391.895766][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  391.900494][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  391.907045][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  391.912181][ T6907]  do_fast_syscall_32+0x34/0x70
[  391.917266][ T6907]  do_SYSENTER_32+0x1b/0x20
[  391.921824][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  391.928381][ T6907] 
[  391.930709][ T6907] Local variable msg_sys created at:
[  391.936192][ T6907]  do_recvmmsg+0xbb/0x2120
[  391.940698][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.089867][ T1197] ieee802154 phy0 wpan0: encryption failed: -22
[  392.096529][ T1197] ieee802154 phy1 wpan1: encryption failed: -22
[  392.118214][ T6907] not chained 540000 origins
[  392.122844][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  392.131205][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  392.141267][ T6907] Call Trace:
[  392.144542][ T6907]  <TASK>
[  392.147467][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  392.152177][ T6907]  dump_stack+0x25/0x28
[  392.156352][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  392.162106][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  392.167239][ T6907]  ? release_sock+0x2b5/0x2e0
[  392.171935][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  392.176814][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  392.181962][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  392.187835][ T6907]  ? should_fail+0x75/0x9c0
[  392.192375][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  392.198227][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  392.203374][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  392.209650][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  392.215759][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  392.220909][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  392.226748][ T6907]  __msan_chain_origin+0xbf/0x140
[  392.231806][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.236964][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.241922][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  392.246805][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.251348][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  392.256488][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  392.261977][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  392.267639][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  392.272785][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  392.279079][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.285611][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.290336][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.296729][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.301793][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.306682][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.311222][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.317592][ T6907] RIP: 0023:0xf6e8e549
[  392.321671][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  392.341296][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  392.349729][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  392.357717][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  392.365710][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  392.373689][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  392.381663][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  392.389651][ T6907]  </TASK>
[  392.392921][    C1] vkms_vblank_simulate: vblank timer overrun
[  392.403561][ T6907] Uninit was stored to memory at:
[  392.409529][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.414818][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.419803][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.424536][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.429272][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.435800][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.440925][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.445952][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.450510][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.457094][ T6907] 
[  392.459494][ T6907] Uninit was stored to memory at:
[  392.464750][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.469900][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.475090][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.479675][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.484570][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.490994][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.496231][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.501181][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.505857][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.512306][ T6907] 
[  392.514821][ T6907] Uninit was stored to memory at:
[  392.519922][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.525287][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.530278][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.535009][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.539736][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.546488][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.551569][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.556598][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.561207][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.567714][ T6907] 
[  392.570046][ T6907] Uninit was stored to memory at:
[  392.575362][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.580518][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.585662][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.590216][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.595143][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.601532][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.606834][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.611796][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.616473][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.622866][ T6907] 
[  392.625413][ T6907] Uninit was stored to memory at:
[  392.630512][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.635800][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.640824][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.645539][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.650261][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.656803][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.661944][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.667049][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.671610][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.678257][ T6907] 
[  392.680598][ T6907] Uninit was stored to memory at:
[  392.685903][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.691099][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.696206][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.700763][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.705683][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.712111][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.717302][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.722208][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.726927][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.733435][ T6907] 
[  392.735771][ T6907] Uninit was stored to memory at:
[  392.740894][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  392.746215][ T6907]  get_compat_msghdr+0x108/0x2c0
[  392.751195][ T6907]  do_recvmmsg+0xd77/0x2120
[  392.755897][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.760668][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  392.767214][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  392.772296][ T6907]  do_fast_syscall_32+0x34/0x70
[  392.777431][ T6907]  do_SYSENTER_32+0x1b/0x20
[  392.781986][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  392.788498][ T6907] 
[  392.790875][ T6907] Local variable msg_sys created at:
[  392.796341][ T6907]  do_recvmmsg+0xbb/0x2120
[  392.800803][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  392.971143][ T6907] not chained 550000 origins
[  392.976032][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  392.984395][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  392.994476][ T6907] Call Trace:
[  392.997758][ T6907]  <TASK>
[  393.000688][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  393.005401][ T6907]  dump_stack+0x25/0x28
[  393.009589][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  393.015373][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  393.020514][ T6907]  ? release_sock+0x2b5/0x2e0
[  393.025206][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  393.030084][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.035221][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.041061][ T6907]  ? should_fail+0x75/0x9c0
[  393.045582][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.051434][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.056586][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  393.062873][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  393.069004][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.074146][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.079990][ T6907]  __msan_chain_origin+0xbf/0x140
[  393.085054][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.090216][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.095201][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  393.100084][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.104621][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  393.109794][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.114966][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  393.120632][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  393.125779][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  393.132076][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.138645][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.143374][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.149743][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.154809][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.159693][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.164227][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.170594][ T6907] RIP: 0023:0xf6e8e549
[  393.174663][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  393.194290][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  393.202726][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  393.210709][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  393.218701][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  393.226701][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  393.234683][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  393.242674][ T6907]  </TASK>
[  393.245866][    C1] vkms_vblank_simulate: vblank timer overrun
[  393.255797][ T6907] Uninit was stored to memory at:
[  393.261638][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.266928][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.271916][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.276640][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.281381][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.287940][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.293185][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.298106][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.302638][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.309171][ T6907] 
[  393.311505][ T6907] Uninit was stored to memory at:
[  393.316736][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.321893][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.327093][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.331647][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.336546][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.343066][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.348147][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.353186][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.357782][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.364279][ T6907] 
[  393.366607][ T6907] Uninit was stored to memory at:
[  393.371668][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.377016][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.381996][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.386738][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.391523][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.398084][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.403243][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.408160][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.412688][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.419218][ T6907] 
[  393.421549][ T6907] Uninit was stored to memory at:
[  393.426778][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.431931][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.437020][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.441613][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.446498][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.452990][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.458128][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.463160][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.467718][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.474308][ T6907] 
[  393.476678][ T6907] Uninit was stored to memory at:
[  393.481741][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.487062][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.492115][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.496875][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.501608][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.508155][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.513357][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.518264][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.522825][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.529455][ T6907] 
[  393.531775][ T6907] Uninit was stored to memory at:
[  393.536995][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.542188][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.547339][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.551898][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.556755][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.563308][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.568393][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.573453][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.578069][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.584593][ T6907] 
[  393.586924][ T6907] Uninit was stored to memory at:
[  393.592027][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.597348][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.602330][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.607051][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.611841][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.618379][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  393.623582][ T6907]  do_fast_syscall_32+0x34/0x70
[  393.628545][ T6907]  do_SYSENTER_32+0x1b/0x20
[  393.633272][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  393.639662][ T6907] 
[  393.642020][ T6907] Local variable msg_sys created at:
[  393.647513][ T6907]  do_recvmmsg+0xbb/0x2120
[  393.651980][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.824699][ T6907] not chained 560000 origins
[  393.831599][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  393.839967][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  393.850028][ T6907] Call Trace:
[  393.853307][ T6907]  <TASK>
[  393.856235][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  393.860948][ T6907]  dump_stack+0x25/0x28
[  393.865133][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  393.870886][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  393.876021][ T6907]  ? release_sock+0x2b5/0x2e0
[  393.880716][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  393.885599][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.890745][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.896598][ T6907]  ? should_fail+0x75/0x9c0
[  393.901113][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.906951][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.912093][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  393.918367][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  393.924470][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.929614][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  393.935471][ T6907]  __msan_chain_origin+0xbf/0x140
[  393.940529][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  393.945673][ T6907]  get_compat_msghdr+0x108/0x2c0
[  393.950637][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  393.955519][ T6907]  do_recvmmsg+0xd77/0x2120
[  393.960065][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  393.965204][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  393.970342][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  393.976000][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  393.981144][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  393.987420][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  393.993951][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  393.998667][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.005049][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.010114][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.015021][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.019558][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.025919][ T6907] RIP: 0023:0xf6e8e549
[  394.029998][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  394.049631][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  394.058085][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  394.066069][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  394.074049][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  394.082030][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  394.090008][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  394.097998][ T6907]  </TASK>
[  394.101170][    C1] vkms_vblank_simulate: vblank timer overrun
[  394.110345][ T6907] Uninit was stored to memory at:
[  394.119870][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.125224][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.130206][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.134911][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.139641][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.146184][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.151269][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.156378][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.161001][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.167525][ T6907] 
[  394.169859][ T6907] Uninit was stored to memory at:
[  394.175201][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.180355][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.185498][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.190055][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.194932][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.201309][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.206558][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.211502][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.216213][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.222613][ T6907] 
[  394.225148][ T6907] Uninit was stored to memory at:
[  394.230243][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.235591][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.240631][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.245372][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.250097][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.256586][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.261708][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.266718][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.271273][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.277864][ T6907] 
[  394.280192][ T6907] Uninit was stored to memory at:
[  394.285483][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.290672][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.295810][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.300426][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.305350][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.311792][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.317021][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.321924][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.326711][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.333221][ T6907] 
[  394.335555][ T6907] Uninit was stored to memory at:
[  394.340715][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.346054][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.351036][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.355723][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.360488][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.367027][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.372108][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.377176][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.381725][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.388215][ T6907] 
[  394.390584][ T6907] Uninit was stored to memory at:
[  394.395827][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.400980][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.406066][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.410672][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.415609][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.421989][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.427260][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.432168][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.436834][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.443386][ T6907] 
[  394.445716][ T6907] Uninit was stored to memory at:
[  394.450803][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.456144][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.461184][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.465927][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.470653][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.477259][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.482339][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.487405][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.492000][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.498492][ T6907] 
[  394.500824][ T6907] Local variable msg_sys created at:
[  394.506280][ T6907]  do_recvmmsg+0xbb/0x2120
[  394.510786][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.677364][ T6907] not chained 570000 origins
[  394.681985][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  394.690346][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  394.700410][ T6907] Call Trace:
[  394.703692][ T6907]  <TASK>
[  394.706618][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  394.711332][ T6907]  dump_stack+0x25/0x28
[  394.715515][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  394.721277][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  394.726408][ T6907]  ? release_sock+0x2b5/0x2e0
[  394.731104][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  394.735980][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  394.741123][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  394.746960][ T6907]  ? should_fail+0x75/0x9c0
[  394.751481][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  394.757351][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  394.762493][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  394.768770][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  394.774874][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  394.780015][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  394.785853][ T6907]  __msan_chain_origin+0xbf/0x140
[  394.790915][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.796071][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.801051][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  394.805930][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.810461][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  394.815604][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  394.820745][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  394.826405][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  394.831546][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  394.837826][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.844365][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.849083][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.855472][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.860537][ T6907]  do_fast_syscall_32+0x34/0x70
[  394.865421][ T6907]  do_SYSENTER_32+0x1b/0x20
[  394.869953][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  394.876313][ T6907] RIP: 0023:0xf6e8e549
[  394.880383][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  394.900011][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  394.908441][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  394.916424][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  394.924408][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  394.932383][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  394.940357][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  394.948345][ T6907]  </TASK>
[  394.951513][    C1] vkms_vblank_simulate: vblank timer overrun
[  394.960190][ T6907] Uninit was stored to memory at:
[  394.965779][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  394.970940][ T6907]  get_compat_msghdr+0x108/0x2c0
[  394.976079][ T6907]  do_recvmmsg+0xd77/0x2120
[  394.980644][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  394.985488][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  394.991932][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  394.997145][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.002052][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.006725][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.013273][ T6907] 
[  395.015602][ T6907] Uninit was stored to memory at:
[  395.020700][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.026023][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.031001][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.035726][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.040500][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.047002][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.052085][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.057189][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.061753][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.068280][ T6907] 
[  395.070633][ T6907] Uninit was stored to memory at:
[  395.075944][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.081096][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.086259][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.090875][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.095740][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.102119][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.107349][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.112254][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.116983][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.123500][ T6907] 
[  395.125866][ T6907] Uninit was stored to memory at:
[  395.130935][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.136262][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.141281][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.145988][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.150729][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.157299][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.162392][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.167518][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.172079][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.178618][ T6907] 
[  395.180947][ T6907] Uninit was stored to memory at:
[  395.186224][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.191435][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.196750][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.201311][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.206168][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.212589][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.217844][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.222764][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.227507][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.234025][ T6907] 
[  395.236356][ T6907] Uninit was stored to memory at:
[  395.241470][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.246738][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.251721][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.256417][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.261212][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.267934][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.273154][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.278108][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.282642][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.289149][ T6907] 
[  395.291526][ T6907] Uninit was stored to memory at:
[  395.296783][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.301937][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.307138][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.311699][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.316595][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.323119][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.328269][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.333320][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.337881][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.344414][ T6907] 
[  395.346771][ T6907] Local variable msg_sys created at:
[  395.352043][ T6907]  do_recvmmsg+0xbb/0x2120
[  395.356678][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.527613][ T6907] not chained 580000 origins
[  395.532233][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  395.540580][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  395.550644][ T6907] Call Trace:
[  395.553929][ T6907]  <TASK>
[  395.556873][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  395.561586][ T6907]  dump_stack+0x25/0x28
[  395.565773][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  395.571541][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  395.576706][ T6907]  ? release_sock+0x2b5/0x2e0
[  395.581404][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  395.586285][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  395.591431][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  395.597272][ T6907]  ? should_fail+0x75/0x9c0
[  395.601789][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  395.607634][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  395.612777][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  395.619054][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  395.625153][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  395.630298][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  395.636134][ T6907]  __msan_chain_origin+0xbf/0x140
[  395.641188][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.646335][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.651293][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  395.656192][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.660730][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  395.665882][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  395.671052][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  395.676737][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  395.681882][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  395.688181][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.694713][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.699427][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.705806][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.710873][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.715755][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.720282][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.726663][ T6907] RIP: 0023:0xf6e8e549
[  395.730734][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  395.750358][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  395.758789][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  395.766777][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  395.774762][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  395.782755][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  395.790737][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  395.798725][ T6907]  </TASK>
[  395.801904][    C1] vkms_vblank_simulate: vblank timer overrun
[  395.810589][ T6907] Uninit was stored to memory at:
[  395.816162][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.821320][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.826465][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.831023][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.835958][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.842391][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.847588][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.852515][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.857214][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.863726][ T6907] 
[  395.866056][ T6907] Uninit was stored to memory at:
[  395.871128][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.876448][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.881440][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.886126][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.890900][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.897437][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.902517][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.907565][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.912117][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.918613][ T6907] 
[  395.920944][ T6907] Uninit was stored to memory at:
[  395.926241][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.931395][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.936554][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.941175][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  395.946027][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  395.952407][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  395.957628][ T6907]  do_fast_syscall_32+0x34/0x70
[  395.962528][ T6907]  do_SYSENTER_32+0x1b/0x20
[  395.967246][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  395.973797][ T6907] 
[  395.976128][ T6907] Uninit was stored to memory at:
[  395.981201][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  395.986521][ T6907]  get_compat_msghdr+0x108/0x2c0
[  395.991555][ T6907]  do_recvmmsg+0xd77/0x2120
[  395.996237][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.000967][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.007559][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.012638][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.017698][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.022254][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.028857][ T6907] 
[  396.031188][ T6907] Uninit was stored to memory at:
[  396.036466][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.041675][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.046837][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.051391][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.056271][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.062708][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.067947][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.072850][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.077638][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.084229][ T6907] 
[  396.086557][ T6907] Uninit was stored to memory at:
[  396.091659][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.096922][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.101897][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.106616][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.111380][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.117870][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.123066][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.128020][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.132570][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.139097][ T6907] 
[  396.141478][ T6907] Uninit was stored to memory at:
[  396.146710][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.151867][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.157085][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.161648][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.166573][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.173062][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.178199][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.183266][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.187823][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.194426][ T6907] 
[  396.196758][ T6907] Local variable msg_sys created at:
[  396.202044][ T6907]  do_recvmmsg+0xbb/0x2120
[  396.206621][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.374198][ T6907] not chained 590000 origins
[  396.378815][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  396.387159][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  396.397235][ T6907] Call Trace:
[  396.400511][ T6907]  <TASK>
[  396.403439][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  396.408152][ T6907]  dump_stack+0x25/0x28
[  396.412335][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  396.418095][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  396.423242][ T6907]  ? release_sock+0x2b5/0x2e0
[  396.427934][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  396.432812][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  396.437964][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  396.443804][ T6907]  ? should_fail+0x75/0x9c0
[  396.448318][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  396.454180][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  396.459337][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  396.465617][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  396.471743][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  396.476881][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  396.482719][ T6907]  __msan_chain_origin+0xbf/0x140
[  396.487775][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.492928][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.497915][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  396.502819][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.507365][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  396.512523][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  396.517677][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  396.523513][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  396.528657][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  396.534953][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.541485][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.546198][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.552557][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.557618][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.562500][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.567032][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.573395][ T6907] RIP: 0023:0xf6e8e549
[  396.577467][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  396.597099][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  396.605532][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  396.613515][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  396.621493][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  396.629469][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  396.637443][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  396.645431][ T6907]  </TASK>
[  396.648628][    C1] vkms_vblank_simulate: vblank timer overrun
[  396.659226][ T6907] Uninit was stored to memory at:
[  396.665197][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.670353][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.675505][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.680081][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.685006][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.691431][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.696681][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.701588][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.706317][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.712752][ T6907] 
[  396.715208][ T6907] Uninit was stored to memory at:
[  396.720288][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.725634][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.730613][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.735330][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.740058][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.746575][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.751656][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.756736][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.761314][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.767838][ T6907] 
[  396.770165][ T6907] Uninit was stored to memory at:
[  396.775463][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.780614][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.785778][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.790391][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.795251][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.801630][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.806827][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.811775][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.816510][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.823011][ T6907] 
[  396.825402][ T6907] Uninit was stored to memory at:
[  396.830477][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.835748][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.840769][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.845483][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.850211][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.856753][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.861887][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.866927][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.871484][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.878065][ T6907] 
[  396.880397][ T6907] Uninit was stored to memory at:
[  396.885708][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.890896][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.896050][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.900604][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.905454][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.911892][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.917142][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.922045][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.926746][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.933257][ T6907] 
[  396.935593][ T6907] Uninit was stored to memory at:
[  396.940710][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  396.946084][ T6907]  get_compat_msghdr+0x108/0x2c0
[  396.951063][ T6907]  do_recvmmsg+0xd77/0x2120
[  396.955732][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  396.960515][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  396.967081][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  396.972163][ T6907]  do_fast_syscall_32+0x34/0x70
[  396.977209][ T6907]  do_SYSENTER_32+0x1b/0x20
[  396.981760][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  396.988265][ T6907] 
[  396.990643][ T6907] Uninit was stored to memory at:
[  396.995914][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.001068][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.006231][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.010845][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.015704][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.022081][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.027360][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.032263][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.036988][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.043530][ T6907] 
[  397.045884][ T6907] Local variable msg_sys created at:
[  397.051156][ T6907]  do_recvmmsg+0xbb/0x2120
[  397.055790][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.235428][ T6907] not chained 600000 origins
[  397.240070][ T6907] CPU: 1 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  397.248433][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  397.258505][ T6907] Call Trace:
[  397.261781][ T6907]  <TASK>
[  397.264710][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  397.269431][ T6907]  dump_stack+0x25/0x28
[  397.273625][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  397.279377][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  397.284511][ T6907]  ? release_sock+0x2b5/0x2e0
[  397.289218][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  397.294096][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  397.299300][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  397.305141][ T6907]  ? should_fail+0x75/0x9c0
[  397.309665][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  397.315531][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  397.320749][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  397.327032][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  397.333133][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  397.338272][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  397.344108][ T6907]  __msan_chain_origin+0xbf/0x140
[  397.349162][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.354306][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.359265][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  397.364144][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.368694][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  397.373856][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  397.378998][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  397.384663][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  397.389803][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  397.396086][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.402621][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.407336][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.413704][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.418789][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.423677][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.428205][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.434566][ T6907] RIP: 0023:0xf6e8e549
[  397.438634][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  397.458260][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  397.466689][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  397.474672][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  397.482663][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  397.491940][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  397.499917][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  397.507924][ T6907]  </TASK>
[  397.510959][    C1] vkms_vblank_simulate: vblank timer overrun
[  397.521163][ T6907] Uninit was stored to memory at:
[  397.527107][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.532271][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.537383][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.542003][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.546881][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.553440][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.558583][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.563679][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.568238][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.574862][ T6907] 
[  397.577199][ T6907] Uninit was stored to memory at:
[  397.582278][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.587552][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.592573][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.597330][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.602062][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.608601][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.613809][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.618745][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.623492][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.629933][ T6907] 
[  397.632250][ T6907] Uninit was stored to memory at:
[  397.637469][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.642683][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.647871][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.652430][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.657359][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.663868][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.668950][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.674058][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.678617][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.685148][ T6907] 
[  397.687479][ T6907] Uninit was stored to memory at:
[  397.692587][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.697862][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.702842][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.707655][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.712386][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.718908][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.724103][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.728986][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.733694][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.740086][ T6907] 
[  397.742453][ T6907] Uninit was stored to memory at:
[  397.747674][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.752832][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.758057][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.762613][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.767488][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.773980][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.779040][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.784115][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.788670][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.795294][ T6907] 
[  397.797628][ T6907] Uninit was stored to memory at:
[  397.802708][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.808016][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.813115][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.817677][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.822402][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.828969][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.834137][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.839021][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.843776][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.850171][ T6907] 
[  397.852503][ T6907] Uninit was stored to memory at:
[  397.857773][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  397.863045][ T6907]  get_compat_msghdr+0x108/0x2c0
[  397.868026][ T6907]  do_recvmmsg+0xd77/0x2120
[  397.872578][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  397.877481][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  397.883949][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  397.889004][ T6907]  do_fast_syscall_32+0x34/0x70
[  397.894106][ T6907]  do_SYSENTER_32+0x1b/0x20
[  397.898666][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  397.905256][ T6907] 
[  397.907627][ T6907] Local variable msg_sys created at:
[  397.913079][ T6907]  do_recvmmsg+0xbb/0x2120
[  397.917547][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.094000][ T6907] not chained 610000 origins
[  398.098644][ T6907] CPU: 0 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  398.107011][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  398.117089][ T6907] Call Trace:
[  398.120376][ T6907]  <TASK>
[  398.123307][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  398.128059][ T6907]  dump_stack+0x25/0x28
[  398.132260][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  398.138023][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  398.143165][ T6907]  ? release_sock+0x2b5/0x2e0
[  398.147882][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  398.152869][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  398.158050][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  398.163898][ T6907]  ? should_fail+0x75/0x9c0
[  398.168434][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  398.174281][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  398.179450][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  398.185727][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  398.191851][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  398.196993][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  398.202944][ T6907]  __msan_chain_origin+0xbf/0x140
[  398.208028][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.213184][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.218166][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  398.223055][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.227611][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  398.232759][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  398.237927][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  398.243600][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  398.248771][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  398.255060][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.261615][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.266341][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.272733][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.277795][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.282678][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.287210][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.293604][ T6907] RIP: 0023:0xf6e8e549
[  398.297692][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  398.317320][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  398.325765][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  398.333773][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  398.341769][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  398.349746][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  398.357726][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  398.365725][ T6907]  </TASK>
[  398.371515][ T6907] Uninit was stored to memory at:
[  398.377098][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.382258][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.387334][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.391899][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.396792][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.403262][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.408346][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.413388][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.417945][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.424495][ T6907] 
[  398.426824][ T6907] Uninit was stored to memory at:
[  398.431897][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.437172][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.442156][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.446870][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.451621][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.458098][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.463267][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.468179][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.472730][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.479227][ T6907] 
[  398.481556][ T6907] Uninit was stored to memory at:
[  398.486792][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.491941][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.497013][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.501567][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.506428][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.512803][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.517999][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.523008][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.527563][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.534105][ T6907] 
[  398.536436][ T6907] Uninit was stored to memory at:
[  398.541525][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.546825][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.551803][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.556453][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.561180][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.567689][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.572773][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.577774][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.582331][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.588855][ T6907] 
[  398.591188][ T6907] Uninit was stored to memory at:
[  398.596393][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.601539][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.606650][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.611202][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.616054][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.622445][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.627644][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.632549][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.637195][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.643668][ T6907] 
[  398.645995][ T6907] Uninit was stored to memory at:
[  398.651070][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.656310][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.661302][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.666011][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.670736][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.677201][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.682280][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.687304][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.691862][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.698335][ T6907] 
[  398.700666][ T6907] Uninit was stored to memory at:
[  398.705902][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  398.711049][ T6907]  get_compat_msghdr+0x108/0x2c0
[  398.716202][ T6907]  do_recvmmsg+0xd77/0x2120
[  398.720756][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.725607][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  398.731985][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  398.737152][ T6907]  do_fast_syscall_32+0x34/0x70
[  398.742057][ T6907]  do_SYSENTER_32+0x1b/0x20
[  398.746765][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  398.753253][ T6907] 
[  398.755599][ T6907] Local variable msg_sys created at:
[  398.760881][ T6907]  do_recvmmsg+0xbb/0x2120
[  398.765483][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  398.933431][ T6907] not chained 620000 origins
[  398.938065][ T6907] CPU: 0 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  398.946432][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  398.956513][ T6907] Call Trace:
[  398.959811][ T6907]  <TASK>
[  398.962752][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  398.967469][ T6907]  dump_stack+0x25/0x28
[  398.971650][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  398.977412][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  398.982573][ T6907]  ? release_sock+0x2b5/0x2e0
[  398.987275][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  398.992181][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  398.997327][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.003203][ T6907]  ? should_fail+0x75/0x9c0
[  399.007742][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.013584][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.018754][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  399.025057][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  399.031195][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.036348][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.042231][ T6907]  __msan_chain_origin+0xbf/0x140
[  399.047308][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.052476][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.057463][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  399.062372][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.066918][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  399.072083][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.077235][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  399.082930][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  399.088105][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  399.094393][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.100950][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.105678][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.112037][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.117100][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.122007][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.126538][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.132932][ T6907] RIP: 0023:0xf6e8e549
[  399.137028][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  399.156694][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  399.165135][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  399.173148][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  399.181151][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  399.189144][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  399.197145][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  399.205148][ T6907]  </TASK>
[  399.210902][ T6907] Uninit was stored to memory at:
[  399.216615][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.221776][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.226858][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.231411][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.236242][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.242643][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.247858][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.252772][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.257481][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.263964][ T6907] 
[  399.266290][ T6907] Uninit was stored to memory at:
[  399.271366][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.276669][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.281648][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.286331][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.291059][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.297552][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.302639][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.307688][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.312244][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.318726][ T6907] 
[  399.321056][ T6907] Uninit was stored to memory at:
[  399.326300][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.331450][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.336527][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.341083][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.345953][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.352336][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.357551][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.362459][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.367173][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.373659][ T6907] 
[  399.375989][ T6907] Uninit was stored to memory at:
[  399.381062][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.386354][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.391337][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.396010][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.400740][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.407260][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.412342][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.417338][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.421897][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.428419][ T6907] 
[  399.430744][ T6907] Uninit was stored to memory at:
[  399.435947][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.441093][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.446208][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.450763][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.455617][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.462000][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.467240][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.472150][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.476844][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.483358][ T6907] 
[  399.485693][ T6907] Uninit was stored to memory at:
[  399.490764][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.496010][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.500989][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.505674][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.510402][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.516898][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.521978][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.527023][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.531581][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.538080][ T6907] 
[  399.540408][ T6907] Uninit was stored to memory at:
[  399.545642][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.550790][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.555862][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.560422][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.565297][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.571678][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.576901][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.581802][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.586494][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.592969][ T6907] 
[  399.595297][ T6907] Local variable msg_sys created at:
[  399.600569][ T6907]  do_recvmmsg+0xbb/0x2120
[  399.605167][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.772821][ T6907] not chained 630000 origins
[  399.777636][ T6907] CPU: 0 PID: 6907 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  399.786005][ T6907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  399.796077][ T6907] Call Trace:
[  399.799372][ T6907]  <TASK>
[  399.802314][ T6907]  dump_stack_lvl+0x1ff/0x28e
[  399.807029][ T6907]  dump_stack+0x25/0x28
[  399.811212][ T6907]  kmsan_internal_chain_origin+0x78/0x110
[  399.816970][ T6907]  ? _raw_spin_unlock_bh+0x4b/0x60
[  399.822131][ T6907]  ? release_sock+0x2b5/0x2e0
[  399.826831][ T6907]  ? sctp_recvmsg+0x100e/0x1430
[  399.831714][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.836858][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.842734][ T6907]  ? should_fail+0x75/0x9c0
[  399.847256][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.853125][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.858293][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  399.864597][ T6907]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  399.870707][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.875887][ T6907]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  399.881759][ T6907]  __msan_chain_origin+0xbf/0x140
[  399.886815][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  399.891969][ T6907]  get_compat_msghdr+0x108/0x2c0
[  399.896935][ T6907]  ? __sys_recvmmsg+0x51c/0x6f0
[  399.901839][ T6907]  do_recvmmsg+0xd77/0x2120
[  399.906380][ T6907]  ? xfd_validate_state+0xd1/0x2d0
[  399.911522][ T6907]  ? kmsan_get_metadata+0x33/0x220
[  399.916673][ T6907]  ? btf_decl_tag_check_meta+0x6c0/0x770
[  399.922359][ T6907]  ? __stack_depot_save+0x21/0x4d0
[  399.927502][ T6907]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  399.933788][ T6907]  ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.940352][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  399.945071][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  399.951433][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  399.956496][ T6907]  do_fast_syscall_32+0x34/0x70
[  399.961404][ T6907]  do_SYSENTER_32+0x1b/0x20
[  399.965942][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  399.972306][ T6907] RIP: 0023:0xf6e8e549
[  399.976399][ T6907] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  399.996058][ T6907] RSP: 002b:00000000f58675cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  400.004520][ T6907] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  400.012525][ T6907] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000
[  400.020508][ T6907] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  400.028508][ T6907] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  400.036493][ T6907] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  400.044507][ T6907]  </TASK>
[  400.050296][ T6907] Uninit was stored to memory at:
[  400.055891][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.061047][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.066136][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.070688][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.075513][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.081906][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.087127][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.092034][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.096690][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.103168][ T6907] 
[  400.105500][ T6907] Uninit was stored to memory at:
[  400.110593][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.115862][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.120867][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.125563][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.130292][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.136825][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.141908][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.146955][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.151510][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.158002][ T6907] 
[  400.160332][ T6907] Uninit was stored to memory at:
[  400.165550][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.170703][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.175841][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.180400][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.185296][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.191686][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.196886][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.201795][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.206499][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.213006][ T6907] 
[  400.215338][ T6907] Uninit was stored to memory at:
[  400.220418][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.225710][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.230690][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.235380][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.240108][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.246654][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.251740][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.256759][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.261320][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.267845][ T6907] 
[  400.270182][ T6907] Uninit was stored to memory at:
[  400.275427][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.280583][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.285737][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.290295][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.295168][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.301546][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.306771][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.311677][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.316330][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.322738][ T6907] 
[  400.325217][ T6907] Uninit was stored to memory at:
[  400.330303][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.335608][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.340592][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.345279][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.350012][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.356510][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.361597][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.366648][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.371204][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.377686][ T6907] 
[  400.380023][ T6907] Uninit was stored to memory at:
[  400.385262][ T6907]  __get_compat_msghdr+0x6e1/0x9d0
[  400.390415][ T6907]  get_compat_msghdr+0x108/0x2c0
[  400.395531][ T6907]  do_recvmmsg+0xd77/0x2120
[  400.400097][ T6907]  __sys_recvmmsg+0x51c/0x6f0
[  400.404963][ T6907]  __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[  400.411344][ T6907]  __do_fast_syscall_32+0x96/0xf0
[  400.416517][ T6907]  do_fast_syscall_32+0x34/0x70
[  400.421427][ T6907]  do_SYSENTER_32+0x1b/0x20
[  400.426116][ T6907]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  400.432505][ T6907] 
[  400.434975][ T6907] Local variable msg_sys created at:
[  400.440267][ T6907]  do_recvmmsg+0xbb/0x2120
[  400.444867][ T6907]  __sys_recvmmsg+0x51c/0x6f0
04:37:13 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x14}, 0x14}}, 0x0)

04:37:13 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, &(0x7f0000000180)=""/226, 0x0, 0xe2}, 0x20)

04:37:13 executing program 3:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, &(0x7f0000000180)=""/226, 0x0, 0xe2, 0x1}, 0x20)

04:37:13 executing program 0:
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000002140)={{0x0, 0x0, 0xffffffffffffffff, 0xee00}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

04:37:13 executing program 2:
fsopen(&(0x7f00000000c0)='tmpfs\x00', 0x0)

04:37:13 executing program 5:
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, 0x0)
sendto$phonet(0xffffffffffffffff, 0x0, 0x0, 0x4040000, 0x0, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$l2tp6(0xa, 0x2, 0x73)
getsockopt$inet6_buf(r0, 0x29, 0x0, &(0x7f0000001440)=""/19, 0x0)
connect$rxrpc(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)

04:37:14 executing program 0:
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000002080)={{0x3, 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

04:37:14 executing program 2:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x10000, 0x0)

04:37:14 executing program 3:
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "40d880", 0x8, 0x2b, 0x0, @remote, @local, {[], {{0x0, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

04:37:14 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[], 0x20}}, 0x0)

04:37:14 executing program 5:
syz_open_dev$video(&(0x7f0000000080), 0x0, 0x0)

04:37:14 executing program 4:
socket$rxrpc(0x21, 0x2, 0x0)

04:37:14 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f0000000a40)={0x0, 0x0, 0x0}, 0x0)

04:37:14 executing program 2:
r0 = syz_io_uring_setup(0x182, &(0x7f00000006c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000200)=@in={0x2, 0x0, @private}}, 0x0)
io_uring_enter(r0, 0x1ecf, 0x0, 0x0, 0x0, 0x0)

04:37:14 executing program 1:
getgroups(0x2, &(0x7f0000000000)=[0xee01, 0xee01])

04:37:14 executing program 5:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="0e01000066230f40ef170372dde100000001090212000100001a000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000840)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x40, 0xb, 0x2, "cd9b"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000001780)={0x2c, &(0x7f0000001580)={0x0, 0x0, 0x2, "5cb1"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000001000)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000d00)={0x40, 0xb, 0x2, "80fa"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000c80)={0x34, &(0x7f0000000a00), 0x0, 0x0, 0x0, 0x0, 0x0})

04:37:14 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000440)={0xec4, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}, [@NL80211_PMSR_ATTR_PEERS={0x9e4, 0x5, 0x0, 0x1, [{0x68, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x34, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x28, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x54, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x67}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xd0}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8}]}]}, {0x238, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x28, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x20c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x50, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x400}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x15c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8001}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfffd}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}]}]}, {0x3e4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x44, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0xcc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x218, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x14c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xe0}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x80, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xf79f}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}]}]}, {0xf8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xe8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xdc, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0x108, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0xc8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfb}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x76}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1e0}]}]}, {0xdc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xd8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x81}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x53e5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x95}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x28, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}]}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0xcc, 0x5, 0x0, 0x1, [{0xc8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xc4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1c}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x3ec, 0x5, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x3d8, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x38, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x55c}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x258, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x6c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x9c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xf0, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x80, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x68, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x48, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}]}]}]}, 0xec4}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

04:37:14 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x0, 0x0, 0x0, 0x4)
dup(0xffffffffffffffff)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000001a00)=ANY=[@ANYBLOB], &(0x7f0000000140)=0xfe)
process_vm_readv(0x0, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000000)=0x2)

04:37:14 executing program 0:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x3, 0xffffffffffffffff)
write(r1, &(0x7f0000000100), 0xfffffe5d)

04:37:14 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

04:37:15 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001240)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@volatile={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto, @enum={0x0, 0x0, 0x0, 0x2, 0x2}]}}, &(0x7f0000001180)=""/174, 0x3e, 0xae, 0x1}, 0x20)

04:37:15 executing program 3:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

[  402.053457][   T34] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  402.204124][ T6975] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  402.326903][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #108!!!
[  402.345505][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10a!!!
[  402.354657][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10a!!!
[  402.363748][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10a!!!
[  402.372929][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10a!!!
[  402.382024][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #10a!!!
[  402.391320][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #18a!!!
[  402.429660][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  402.493826][   T34] usb 6-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=e1.dd
[  402.503262][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  402.598098][   T34] usb 6-1: config 0 descriptor??
04:37:15 executing program 2:
r0 = syz_open_dev$vbi(&(0x7f0000000200), 0x2, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000000))

04:37:15 executing program 3:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000300)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)

04:37:15 executing program 1:
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000180)={&(0x7f0000000100)='./file0\x00', 0x0, 0x8}, 0x10)

04:37:15 executing program 4:
openat$nvram(0xffffffffffffff9c, &(0x7f00000014c0), 0x80000, 0x0)

04:37:16 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000000)='net/rfcomm\x00')

[  403.304046][   T34] asix 6-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  403.513899][   T34] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: fffffffb
[  403.524684][   T34] asix: probe of 6-1:0.0 failed with error -5
[  403.734147][ T3557] usb 6-1: USB disconnect, device number 13
04:37:17 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x4020940d, &(0x7f0000000000))

04:37:17 executing program 2:
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x842, 0x0)

04:37:17 executing program 3:
r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
write$P9_RMKDIR(r0, 0x0, 0x0)

04:37:17 executing program 1:
socket(0xbf131ec7d9faaa3d, 0x0, 0x0)

04:37:17 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/226, 0x1a, 0xe2, 0x1}, 0x20)

04:37:17 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x14}, 0x14}}, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x10000, 0x0)

04:37:17 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c42, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, &(0x7f0000000080))

04:37:17 executing program 3:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f00000001c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private1}}}, 0x30)

04:37:17 executing program 4:
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x1, @remote}}, 0x1e)

04:37:17 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5}, 0x48)

04:37:17 executing program 0:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c42, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, 0x0)

04:37:17 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x6}, 0x4)

04:37:17 executing program 1:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, 0x0)

04:37:17 executing program 2:
syz_genetlink_get_family_id$ipvs(&(0x7f0000000540), 0xffffffffffffffff)

04:37:18 executing program 3:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)

04:37:18 executing program 4:
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x0, 0x0)

04:37:18 executing program 0:
mq_unlink(&(0x7f0000000000)='}]!**+.\x00')

04:37:18 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_TMR_SELECT(r0, 0x40045408)

04:37:18 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/tcp\x00')
read$fb(r0, &(0x7f00000000c0)=""/127, 0x7f)

04:37:18 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045406, 0x0)

04:37:18 executing program 3:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x80045113, &(0x7f0000000000))

04:37:18 executing program 4:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x109101, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r0, 0x80045104, &(0x7f0000000080))

04:37:18 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/sockstat6\x00')
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x541b, 0x0)

04:37:18 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000040)='net/hci\x00')

04:37:18 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x40085112, &(0x7f0000000000))

04:37:18 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x5421, &(0x7f0000000000))

04:37:18 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0xa00}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x14}, 0x14}}, 0x0)

04:37:18 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$FBIOPUTCMAP(r0, 0xc0189436, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0})

04:37:19 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:19 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')

04:37:19 executing program 2:
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$batadv(&(0x7f0000000ac0), 0xffffffffffffffff)

04:37:19 executing program 1:
getsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0)

04:37:19 executing program 4:
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f00000007c0), 0x0)

04:37:19 executing program 3:
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x77359400}, 0x0)

04:37:19 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:19 executing program 5:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd/3\x00')

04:37:19 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x1, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x5100, 0x0)

04:37:19 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x4004510d, 0x0)

04:37:19 executing program 4:
syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00')

04:37:20 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:20 executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)

04:37:20 executing program 5:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0))

04:37:20 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c42, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, &(0x7f0000000080)=0xc1)

04:37:20 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@bloom_filter, 0x48)

04:37:20 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:20 executing program 3:
syz_clone(0x801000, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)

04:37:20 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc020660b, 0x0)

04:37:20 executing program 5:
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, 0x0, 0x0)

04:37:20 executing program 2:
pselect6(0x40, &(0x7f0000000200), 0x0, &(0x7f0000000480)={0xffffffffffff35ad}, &(0x7f00000004c0)={0x77359400}, &(0x7f0000000540)={&(0x7f0000000500), 0x8})

04:37:21 executing program 4:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x5451, 0x0)

04:37:21 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:21 executing program 1:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000540), r0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)

04:37:21 executing program 2:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x161c41, 0x0)
fcntl$getownex(r0, 0x4, 0x0)

04:37:21 executing program 5:
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)

04:37:21 executing program 3:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)

04:37:21 executing program 4:
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000380), 0xe00, 0x0)

04:37:21 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:21 executing program 5:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_TMR_TIMEBASE(r0, 0xc0045401, &(0x7f0000000100))

04:37:21 executing program 1:
syz_clone(0x801000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)='9')

04:37:21 executing program 2:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x5404, 0x0)

04:37:21 executing program 3:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002d80), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000001400)={@host})

04:37:22 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x40, 0x0)
fcntl$getownex(r0, 0x4, 0x0)
r1 = syz_open_procfs(0x0, 0x0)
ioctl$UDMABUF_CREATE(r1, 0x40187542, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socketpair(0x2, 0x1, 0x4, &(0x7f00000000c0))
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

04:37:22 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:22 executing program 5:
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200)={&(0x7f00000001c0)={[0x101]}, 0x8})

04:37:22 executing program 2:
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)

04:37:22 executing program 3:
pipe2$9p(&(0x7f0000000640)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
fstat(r0, &(0x7f0000000680))

04:37:22 executing program 1:
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f00000007c0), 0x0)

04:37:22 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:22 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)

04:37:22 executing program 2:
syz_open_procfs(0x0, &(0x7f0000000040)='comm\x00')

04:37:22 executing program 3:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x4004510f, &(0x7f0000000000))

04:37:22 executing program 4:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, 0x0)

04:37:23 executing program 1:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, 0x0)

04:37:23 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:23 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x2}]})

04:37:23 executing program 2:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x109101, 0x0)

04:37:23 executing program 3:
r0 = socket$pptp(0x18, 0x1, 0x2)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, 0x0)

04:37:23 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001100), 0x1, 0x0)
write$sequencer(r0, &(0x7f0000001140)=[@n={0x1}, @t={0x4, 0x0, 0x0, 0x0, @generic=0x3}, @e={0xff, 0x4, 0x0, 0x0, @generic}, @x={0x94, 0x0, "09e55309de4e"}, @e={0xff, 0xc, 0x0, 0x0, @generic}, @e={0xff, 0x0, 0x0, 0x0, @SEQ_NOTEON=@special}], 0x2c)

04:37:23 executing program 4:
socketpair(0x1e, 0x0, 0x6, &(0x7f0000000080))

04:37:23 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:23 executing program 5:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000001200), 0x2, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, 0x0)

04:37:23 executing program 2:
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, r0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000ac0), 0xffffffffffffffff)

04:37:23 executing program 1:
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x0)

04:37:23 executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000040)='fd/3\x00')

04:37:23 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mmap$fb(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3, 0x11, r0, 0x0)

04:37:24 executing program 0:
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:24 executing program 5:
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000280), 0xc29, 0x41)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)

04:37:24 executing program 1:
syz_open_dev$sg(&(0x7f0000000100), 0x0, 0xc0)

04:37:24 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001100), 0x1, 0x0)
write$sequencer(r0, 0x0, 0x0)

04:37:24 executing program 3:
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001100), 0x4c041, 0x0)

04:37:24 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$FBIOPUTCMAP(r0, 0x541b, 0x0)

04:37:24 executing program 0:
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:24 executing program 5:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002d80), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, 0x0)

04:37:24 executing program 1:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002d80), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000400))

04:37:24 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$FBIOPUTCMAP(r0, 0x541b, 0x0)

04:37:24 executing program 3:
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000740), 0x842, 0x0)

04:37:24 executing program 2:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002d80), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0)

04:37:24 executing program 0:
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:24 executing program 5:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001100), 0x4c041, 0x0)

04:37:25 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x4020940d, 0x0)

04:37:25 executing program 3:
syz_genetlink_get_family_id$batadv(&(0x7f0000000ac0), 0xffffffffffffffff)

04:37:25 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100})

04:37:25 executing program 2:
openat$drirender128(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usbip_server_init(0x5)

04:37:25 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:25 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)

04:37:25 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001100), 0x1, 0x0)
write$sequencer(r0, &(0x7f0000001140)=[@n={0x1}, @t={0x4, 0x0, 0x0, 0x0, @generic=0x3}, @e={0xff, 0x4, 0x0, 0x0, @generic}, @x={0x94, 0x0, "09e55309de4e"}, @e={0xff, 0xc, 0x0, 0x0, @generic}, @e={0xff, 0xa, 0x0, 0x0, @SEQ_NOTEON}, @e={0xff, 0x0, 0x0, 0x0, @SEQ_NOTEON=@special}], 0x34)

04:37:25 executing program 3:
ioctl$SNDCTL_SEQ_CTRLRATE(0xffffffffffffffff, 0x5403, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x48000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

04:37:25 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x3234c2, 0x0)
fcntl$getownex(r0, 0x3, 0x0)

[  412.682849][ T7212] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  412.689548][ T7212] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  412.697788][ T7212] vhci_hcd vhci_hcd.0: Device attached
04:37:25 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:25 executing program 5:
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0xffffffffffffffff}, 0xc)
sendmsg$NL80211_CMD_SET_KEY(0xffffffffffffffff, 0x0, 0x80004)
ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0)
syz_usbip_server_init(0x5)

[  412.794166][ T7215] vhci_hcd: connection closed
[  412.797261][ T1522] vhci_hcd: stop threads
[  412.806700][ T1522] vhci_hcd: release socket
[  412.811227][ T1522] vhci_hcd: disconnect device
04:37:26 executing program 1:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000040)={{}, 0x0, 0x0, @unused, @subvolid})

04:37:26 executing program 4:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f00000000c0)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x38)

04:37:26 executing program 3:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x801c581f, 0x0)

[  413.192448][ T7227] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  413.199140][ T7227] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  413.207922][ T7227] vhci_hcd vhci_hcd.0: Device attached
04:37:26 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

[  413.296655][ T7228] vhci_hcd: connection closed
[  413.297723][ T1522] vhci_hcd: stop threads
[  413.307450][ T1522] vhci_hcd: release socket
[  413.311963][ T1522] vhci_hcd: disconnect device
04:37:26 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f00000000c0), 0x4)

04:37:26 executing program 1:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000001680))

04:37:26 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000001700)='mountinfo\x00')
read$hiddev(r0, &(0x7f0000000140)=""/132, 0xfffffffffffffffe)

04:37:26 executing program 3:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0x5403, 0x0)

04:37:26 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:26 executing program 5:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000001240)={0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x100})

04:37:26 executing program 2:
syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/time\x00')

04:37:27 executing program 1:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x40, 0x170, 0x800})

04:37:27 executing program 4:
r0 = open(&(0x7f0000000180)='./file1\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00')
pwritev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)

04:37:27 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:27 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000040)={'syztnl2\x00', 0x0})

04:37:27 executing program 5:
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, 0x0, 0x0)

04:37:27 executing program 2:
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)

04:37:27 executing program 1:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002d00), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0189436, 0x0)

04:37:27 executing program 0:
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff}, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r0}}, 0x30)

04:37:27 executing program 4:
syz_open_dev$sg(&(0x7f0000000440), 0x6, 0x0)

04:37:27 executing program 5:
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000001240), 0xc040, 0x0)

04:37:27 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a40)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)

04:37:27 executing program 1:
socketpair(0x2, 0x3, 0x6, &(0x7f00000001c0))

04:37:28 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:28 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={&(0x7f0000000000)=@abs, 0x6e, 0x0}, 0x0)

04:37:28 executing program 3:
add_key$fscrypt_provisioning(&(0x7f0000000000), 0x0, &(0x7f0000000080)={0x1, 0x0, @c}, 0x29, 0xfffffffffffffffc)

04:37:28 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x5, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

04:37:28 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x1b, &(0x7f0000000500), 0x4)

04:37:28 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:28 executing program 1:
pipe2$9p(&(0x7f0000000640), 0x880)

04:37:28 executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, @local}, 0x10)

04:37:28 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
dup2(r0, 0xffffffffffffffff)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup2(r1, r1)
bind$bt_l2cap(r2, &(0x7f0000000040), 0xe)
listen(r2, 0x0)

04:37:28 executing program 5:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4a}, 0x0)

04:37:28 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000040), 0x4)

04:37:28 executing program 1:
setsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x80, &(0x7f0000000080), 0xfffffffffffffcfe)

04:37:28 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:29 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
recvmsg$unix(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)

04:37:29 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="8d8ca12b6fe200df9e806a7f31c2db83", 0x10)

04:37:29 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$fscrypt_v1(&(0x7f0000000080), 0x0, &(0x7f0000000180)={0x0, "2c1a0abe6f3eeede52f3eb88bc86bed27008b308d9cc61c136ee16d785a749713128fcfd53cf49b08298d71fb99910dd438e74ab7c310c44e024f66954091b97"}, 0x48, r0)

04:37:29 executing program 2:
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x106788e5b896b996, 0x0)

04:37:29 executing program 1:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000002880)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0)

04:37:29 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:29 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x4b49, 0x0)

04:37:29 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="10000000000000f3"], 0x10}, 0x0)

04:37:29 executing program 2:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000140))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000180)=0x40)

04:37:29 executing program 5:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$search(0xa, r1, &(0x7f0000000140)='id_resolver\x00', &(0x7f0000000180)={'syz', 0x0}, r0)

04:37:29 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:29 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[], 0xf}, 0x0)

04:37:30 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

04:37:30 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x19, &(0x7f0000000500), 0x4)

04:37:30 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x17, &(0x7f0000000500), 0x4)

04:37:30 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:30 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$tcp_mem(r0, &(0x7f00000002c0), 0x48)

04:37:30 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0)

04:37:30 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0xee00], 0xa0}, 0x0)

04:37:30 executing program 3:
socket(0x1d, 0x0, 0x40)

04:37:30 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
sendmmsg$unix(r0, &(0x7f00000020c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002200)=ANY=[], 0xc8}}], 0x1, 0x0)

04:37:30 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:30 executing program 4:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f00000004c0), &(0x7f0000000500)={'syz', 0x2}, 0x0, 0x0, r0)

04:37:30 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)

04:37:30 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000140)=""/138)

04:37:30 executing program 3:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$unlink(0x18, 0x0, r0)

04:37:31 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)

04:37:31 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:31 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

04:37:31 executing program 5:
clock_gettime(0x0, &(0x7f0000000440)={0x0, <r0=>0x0})
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x0, r0+60000000}, 0x0)

04:37:31 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f00000011c0)=""/170)

04:37:31 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:31 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5452, 0x0)

04:37:31 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:31 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0xb42c33ab0d283a5a)

04:37:31 executing program 1:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x80086601, 0x0)

04:37:31 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40305829, 0x0)

04:37:31 executing program 2:
socketpair(0x22, 0x0, 0x0, &(0x7f00000011c0))

04:37:32 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:32 executing program 4:
syz_usb_connect$cdc_ecm(0x0, 0x6e, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@mbim={0xc}, @mbim={0xc}]}, {[{}], {{0x9, 0x5, 0x82, 0x2, 0x3f7}}}}}]}}]}}, &(0x7f0000000280)={0x0, 0x0, 0x1d, &(0x7f0000000100)={0x5, 0xf, 0x1d, 0x3, [@ss_cap={0xa}, @ext_cap={0x7}, @ext_cap={0x7}]}})

04:37:32 executing program 1:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, 0x0, 0x0)

04:37:32 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x1e, &(0x7f0000000500), 0x4)

04:37:32 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x80087601, 0x0)

04:37:32 executing program 2:
syz_clone3(&(0x7f0000001200)={0x191000, 0x0, 0x0, &(0x7f00000000c0), {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:37:32 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

[  419.543417][ T3557] usb 5-1: new high-speed USB device number 8 using dummy_hcd
04:37:32 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c000000000000000100000002", @ANYRES32=0x0, @ANYRES32=0xee00], 0xa0}, 0x0)

04:37:32 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000180), 0x4)

04:37:32 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x12, &(0x7f0000000500), 0x4)

[  419.783396][ T3557] usb 5-1: Using ep0 maxpacket: 16
04:37:32 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000007680)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000007640)={&(0x7f0000007800)=ANY=[], 0x708c}}, 0x0)

04:37:32 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:33 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000100)={'wg2\x00'})

[  419.984629][ T3557] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  419.995967][ T3557] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  420.006125][ T3557] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1015
[  420.016568][ T3557] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  420.325704][ T3557] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  420.335058][ T3557] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  420.343401][ T3557] usb 5-1: Product: syz
[  420.347720][ T3557] usb 5-1: Manufacturer: syz
[  420.352435][ T3557] usb 5-1: SerialNumber: syz
[  420.484578][ T7386] raw-gadget gadget: fail, usb_ep_enable returned -22
[  420.506541][ T3557] cdc_ether: probe of 5-1:1.0 failed with error -22
[  420.709007][ T3557] usb 5-1: USB disconnect, device number 8
04:37:34 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000001280), 0x0, 0x1)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, 0x0)

04:37:34 executing program 3:
syz_clone3(&(0x7f0000001800)={0x20000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:37:34 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:34 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000001780)={0x0, 0x0, 0x0}, 0x63)

04:37:34 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000480)=0x2e, 0x4)

04:37:34 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x1d, &(0x7f0000000500), 0x4)

04:37:34 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:34 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x373b, @none, 0x3}, 0xe)

04:37:34 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
getpeername$unix(r0, &(0x7f0000000000), &(0x7f0000000080)=0x6e)

04:37:34 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)

04:37:34 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5460, 0x0)

04:37:35 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x541b, 0x0)

04:37:35 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x0, 0x0, 0x0})

04:37:35 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, r1}}, 0x30)

04:37:35 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000100)={0x2, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

04:37:35 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x0, 0x9, &(0x7f0000000080)="d1dba4c56debcf5994"})

04:37:35 executing program 3:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0xb81c5, 0x0)

04:37:35 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x4b47, 0x0)

04:37:35 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x1, &(0x7f0000000140)=@raw=[@kfunc], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:37:36 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, 0x0, 0x0)

04:37:36 executing program 1:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5421, 0x0)

04:37:36 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x0, 0xffffffffffffffc1, &(0x7f0000000240)="45ef93e04a71b787764e376411f3893979a05d6deb3d527ef769fb0cc80f1aaddbf77594ec70f1eb18ea9ca34437f6541b502ff50f27d920807301d5b5cdc28e9a2173228bca35c10c221833e54c9633f6a43e20fcfe5691aa656a5e1d78c025f1d10ed22e5eb7bbc591cf52c52c151bb1106d244315a94bc369a8d2b23bda92abbe6ef0200e558b1e71144afa5a285a38f7090c806efc2f53e476df9d2c734bfb626c92529ade7e386ebb69eb8b0794c7df12ef522066936efa7d183b37f034f9f11451543eaa83d9"})

04:37:36 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40305839, 0x0)

04:37:36 executing program 4:
syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x2080)

04:37:36 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x0)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000001c0)={0x7, 0x0, 0x0})

04:37:36 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, 0x0, 0x0)

04:37:36 executing program 1:
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x3, 0x300)

04:37:37 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xb704, 0x0)

04:37:37 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, 0x0, 0x4)

04:37:37 executing program 2:
r0 = add_key$keyring(&(0x7f0000000200), &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$fscrypt_provisioning(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)={0x1, 0x0, @c}, 0x29, r0)

04:37:37 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, 0x0, 0x0)

04:37:37 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @none, 0x3}, 0xe)

04:37:37 executing program 3:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x12c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x30, &(0x7f0000000180)={0x5, 0xf, 0x30, 0x4, [@ss_cap={0xa}, @ss_cap={0xa}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "4c1203cb6b8f0aeac41e165ddb0fef14"}]}, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x84, &(0x7f0000000280)=@string={0x84, 0x3, "afad4833a2823b9096cce554189d754162976c3d2e33cd5174ca2929ab923985330536029c7640fe97e343444bb4647cb143f344de1af8f035f7768a763a00be2dc5c1515f223bfba4a7351bc1f2a15f83bdeec87da0b7954d946cf6b2796a1256bd161f167706762ef8d6c1a0da5f6564008c64dd5d2d162acd8482a8a900dc6dac"}}]})

04:37:38 executing program 5:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$unlink(0x9, r0, 0xfffffffffffffffb)

04:37:38 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40305828, 0x0)

04:37:38 executing program 2:
socketpair(0xa, 0x5, 0x6, &(0x7f0000000000))

04:37:38 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000140))

04:37:38 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

[  424.958044][ T3557] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  425.225968][ T3557] usb 4-1: Using ep0 maxpacket: 32
04:37:38 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
getsockopt$inet6_tcp_buf(r0, 0x6, 0x0, 0x0, &(0x7f0000000000))

04:37:38 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x11, &(0x7f0000000500), 0x4)

[  425.424232][ T3557] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
04:37:38 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, r1, 0x1}, 0x14}}, 0x0)

04:37:38 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

[  425.614122][ T3557] usb 4-1: New USB device found, idVendor=056a, idProduct=012c, bcdDevice= 0.40
[  425.623936][ T3557] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.632088][ T3557] usb 4-1: Product: syz
[  425.636660][ T3557] usb 4-1: Manufacturer: 궯㍈芢逻첖哥鴘䅵面㵬㌮凍쩴⤩銫蔹Գȶ皜﹀䑃둋籤䎱䓳᫞詶㩶븀씭凁≟כּꞤᬵ御붃죮ꁽ閷鑍禲ቪ뵖἖眖瘆쇖敟d撌川ᘭ촪芄ꦨ걭
[  425.657262][    C1] vkms_vblank_simulate: vblank timer overrun
[  425.663874][ T3557] usb 4-1: SerialNumber: syz
04:37:38 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001600)={0x4, &(0x7f00000015c0)=[{0x5}, {}, {}, {}]})

04:37:38 executing program 4:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$setperm(0x5, r0, 0x0)

[  425.941000][ T3557] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  426.137756][ T3557] usb 4-1: USB disconnect, device number 15
04:37:39 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0xa0}, 0x0)

04:37:39 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000200)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private0, @mcast2}})

04:37:39 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000780)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x30)

04:37:39 executing program 2:
syz_clone3(&(0x7f0000008b80)={0x4040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000008b40)=[0x0], 0x1}, 0x58)

04:37:39 executing program 4:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, r0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$setperm(0x5, r1, 0x0)

04:37:39 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)

04:37:39 executing program 4:
syz_clone(0x3d0a5880a510be49, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:40 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x1, &(0x7f0000000140)=@raw=[@kfunc], &(0x7f00000000c0)='GPL\x00', 0x0, 0xbc, &(0x7f00000001c0)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:37:40 executing program 5:
socket(0x2, 0x6, 0x7ff)

04:37:40 executing program 1:
syz_open_dev$loop(&(0x7f0000000000), 0x0, 0xa4943)

04:37:40 executing program 3:
socket(0x2, 0x5, 0x5)

04:37:40 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
recvfrom$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:40 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_deladdrlabel={0x1c}, 0x1c}}, 0x0)

04:37:40 executing program 5:
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x9f8908aed0aa0936)

04:37:40 executing program 4:
r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
connect$nfc_raw(r0, &(0x7f0000000440), 0x10)

04:37:40 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f0000000040)=""/163)

04:37:40 executing program 2:
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/net\x00')
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)

04:37:40 executing program 0:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)

04:37:41 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x22, &(0x7f0000000500), 0x4)

04:37:41 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, 0x0)

04:37:41 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)

04:37:41 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f00000002c0)="12", 0x1, 0x0, 0x0, 0x0)

04:37:41 executing program 2:
keyctl$unlink(0x10, 0x0, 0x0)

04:37:41 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000100)=""/81)

04:37:41 executing program 4:
keyctl$unlink(0x3, 0x0, 0x0)

04:37:41 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x25, &(0x7f0000000500), 0x4)

04:37:41 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=@newlink={0x20}, 0x20}}, 0x0)

04:37:41 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x2}}, 0x26)

04:37:41 executing program 2:
syz_clone3(&(0x7f0000000240)={0x0, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {}, &(0x7f00000002c0)=""/95, 0x5f, &(0x7f0000000140)=""/154, &(0x7f0000000200), 0x41cb}, 0x58)

04:37:41 executing program 0:
keyctl$unlink(0x1c, 0x0, 0x0)

04:37:41 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0x0, 0x4, 0xc42b, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3}, 0x48)

04:37:41 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x541b, 0x0)

04:37:42 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockname$unix(r0, 0x0, &(0x7f00000000c0))

04:37:42 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, &(0x7f00000002c0))

04:37:42 executing program 1:
mkdir(&(0x7f0000000240)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
mount$binder(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x20cb8, 0x0)
pread64(r0, &(0x7f0000000000)=""/134, 0x86, 0x10000)

04:37:42 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={0x0, 0x708c}}, 0x0)

04:37:42 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x12053)

04:37:42 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}}}, 0x3a)

04:37:42 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000500), 0x4)

04:37:42 executing program 1:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x82)

04:37:42 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40087602, 0x0)

04:37:42 executing program 0:
syz_open_dev$evdev(&(0x7f0000000000), 0x100000000, 0x40741)

04:37:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000d80)={&(0x7f0000000000), 0xc, &(0x7f0000000d40)={&(0x7f0000000f00)=ANY=[@ANYBLOB="b00c0000", @ANYRES16=r1, @ANYBLOB="01"], 0xcb0}}, 0x0)

04:37:42 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x13, &(0x7f0000000500), 0x4)

04:37:42 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3e80, &(0x7f0000000240)=ANY=[@ANYBLOB="10"], 0x10}, 0x0)

04:37:43 executing program 0:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, 0x0)

04:37:43 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$SIOCGETLINKNAME(r0, 0x89e0, 0x0)

04:37:43 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0)

04:37:43 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x541b, 0x0)

04:37:43 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0xa, &(0x7f0000000500), 0x4)

04:37:43 executing program 5:
r0 = socket(0x1e, 0x1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0)

04:37:43 executing program 0:
keyctl$unlink(0x1e, 0x0, 0x0)

04:37:43 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000100)={0x11, 0xc, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x1a, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)

04:37:43 executing program 4:
r0 = gettid()
rt_sigqueueinfo(r0, 0x0, &(0x7f0000000040))

04:37:43 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x7, &(0x7f0000000500), 0x4)

04:37:43 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x2, &(0x7f0000000500), 0x4)

04:37:43 executing program 0:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, 0x0)

04:37:43 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0x0, 0x4, 0xc42b, 0x1}, 0x48)

04:37:44 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="10"], 0x10}, 0x4004815)

04:37:44 executing program 2:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)={@local})

04:37:44 executing program 1:
syz_usb_connect$cdc_ecm(0x0, 0x58, &(0x7f0000000500)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x46, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@mdlm_detail={0x5, 0x24, 0x13, 0x0, "cc"}, @ncm={0x6}]}}}]}}]}}, 0x0)

04:37:44 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x40000}, 0x0)

04:37:44 executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
recvmsg$unix(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000001840)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x108}, 0x0)

04:37:44 executing program 4:
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

04:37:44 executing program 5:
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$link(0x8, 0x0, r0)

04:37:44 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee00], 0xa0}, 0x0)

04:37:44 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x101000)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)

04:37:44 executing program 0:
socketpair(0x1d, 0x0, 0x0, &(0x7f0000000300))

[  431.663586][ T3557] usb 2-1: new high-speed USB device number 8 using dummy_hcd
04:37:44 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00'})

04:37:44 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockname$unix(r0, 0x0, 0x0)

04:37:45 executing program 5:
r0 = socket$tipc(0x1e, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg2\x00'})

04:37:45 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

[  432.024841][ T3557] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  432.183152][ T7646] can: request_module (can-proto-0) failed.
[  432.204254][ T3557] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  432.214013][ T3557] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.222228][ T3557] usb 2-1: Product: syz
[  432.228717][ T3557] usb 2-1: Manufacturer: syz
[  432.234074][ T3557] usb 2-1: SerialNumber: syz
[  432.416607][ T3557] cdc_ether: probe of 2-1:1.0 failed with error -22
[  432.621404][ T3557] usb 2-1: USB disconnect, device number 8
04:37:46 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)

04:37:46 executing program 0:
keyctl$unlink(0x1a, 0x0, 0x0)

04:37:46 executing program 2:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000140)={0x0, "4e02dda622f3e019aac7d328bcaf1d61862279ad6fe463551eac66dedc110081647eb0f8b5740c46392cc5db9123f37ed1a158e5933e80430544d3f23618a8a3"}, 0x48, r0)
keyctl$search(0xa, r1, &(0x7f0000000080)='syzkaller\x00', &(0x7f00000001c0)={'syz', 0x3}, 0x0)

04:37:46 executing program 3:
socketpair(0x10, 0x0, 0x19dab4ee, &(0x7f0000000040))

04:37:46 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x5, &(0x7f0000000500), 0x4)

04:37:46 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000f00)=ANY=[@ANYBLOB="b00c0000", @ANYRES16, @ANYBLOB="01"], 0xcb0}}, 0x0)

04:37:46 executing program 2:
keyctl$unlink(0xb, 0x0, 0x0)

04:37:46 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x4030582a, 0x0)

04:37:46 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmmsg$unix(r0, &(0x7f0000001300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

04:37:46 executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000000c0)={'wg1\x00'})

04:37:46 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)

04:37:47 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000100)=0x722c, 0x4)

04:37:47 executing program 3:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:37:47 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, 0x0, 0x0, 0x2000854, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)

04:37:47 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x2, 0x0, 0x0, 0x4}}, 0x26)

04:37:47 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000200)=""/94)

04:37:47 executing program 3:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000200)={0x0, "a0a50baa84214b1feac9a799e67d5378b1f6eb971dedcddf140fd8add60c9b12a68c0c3ca917190d9a805d46cb4466e29ec80a98f1b081a4c699c974dd40f357"}, 0x48, 0xfffffffffffffffc)
keyctl$link(0x8, r0, 0xfffffffffffffffc)

04:37:47 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)

04:37:47 executing program 2:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000080), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, r0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @auto=[0x30, 0x39, 0x38, 0x63, 0x31, 0x32, 0x33, 0x61, 0x32, 0x37, 0x64, 0x38, 0x66, 0x31, 0x39, 0x65]}, &(0x7f0000000140)={0x0, "ecef29e7d81e5a45348848cfa9e97501f1e6dc5131ad85e17b71e7436ba06e2e9ea5b39bd1e9689e410e9047b060a58c4d5226598f219d9034983ee4775ee286", 0x15}, 0x48, r1)

04:37:48 executing program 4:
alarm(0x4)
alarm(0x0)

04:37:48 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040)=0x4, 0x4)

04:37:48 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={0x0, 0xcb0}}, 0x0)

04:37:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000f00)=ANY=[@ANYBLOB="b00c0000", @ANYRES16=r1, @ANYBLOB="01"], 0xcb0}}, 0x0)

04:37:48 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x3, &(0x7f0000000500), 0x4)

04:37:48 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="10"], 0x10}, 0x0)

04:37:48 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x10}, 0x0)

04:37:48 executing program 5:
ioctl$IMGETVERSION(0xffffffffffffffff, 0x80044942, &(0x7f0000000000))
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000140)='&-#{)\x00', 0x0, 0xffffffffffffffff)
fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000180)='&-#{)\x00', &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c)
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000240), 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x4040)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={0x0}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$IMGETDEVINFO(0xffffffffffffffff, 0x80044944, &(0x7f00000007c0))

04:37:48 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000000))

04:37:48 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000007800)=ANY=[], 0x708c}}, 0x0)

04:37:48 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0)

04:37:48 executing program 5:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0, 0x24}}, 0x44)

04:37:48 executing program 4:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f0000000080), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, r0)
keyctl$read(0xb, r0, &(0x7f0000000300)=""/140, 0x8c)

04:37:49 executing program 3:
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x2080)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, 0x0)

04:37:49 executing program 1:
syz_clone3(&(0x7f0000001640)={0x44003000, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:49 executing program 0:
keyctl$unlink(0x1b, 0x0, 0x0)

04:37:49 executing program 2:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x1fd600, 0x0)

04:37:49 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
getsockname$unix(r0, 0x0, &(0x7f0000000100))

04:37:49 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xc, &(0x7f0000000040)=0xfffffffd, 0x4)

04:37:49 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xc0189436, 0x0)

04:37:49 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x86)

04:37:49 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0xee00], 0xa0}, 0x0)

04:37:49 executing program 4:
syz_clone(0x40884180, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:49 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x17, 0x1, &(0x7f0000000080)="d1"})

04:37:49 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, 0x0)

04:37:50 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x6, 0x0, &(0x7f0000000040)="680f35e4", 0x4)

04:37:50 executing program 1:
syz_clone3(&(0x7f0000001640)={0x44003000, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:50 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000f00)=ANY=[], 0xcb0}}, 0x0)

04:37:50 executing program 5:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xb702, 0x0)

04:37:50 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x20000250}, 0x0)

04:37:50 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5451, 0x0)

04:37:50 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000140)={'erspan0\x00', 0x0})

04:37:50 executing program 5:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000004c0), 0x1810c0, 0x0)

04:37:51 executing program 4:
setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000000), 0x4)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000080))

04:37:51 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c0000000000000001"], 0xa0}, 0x0)

04:37:51 executing program 2:
syz_open_dev$evdev(&(0x7f0000000040), 0xffffffffffffffff, 0x3d1c40)

04:37:51 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000180)='ns/pid\x00')
r1 = syz_open_dev$loop(&(0x7f0000000140), 0xb5c6, 0x2080)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(r2, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000200)={'\x00', 0x7, 0xfffffffd, 0xc873, 0xfffffffffffeffff, 0x1, r2})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x541b, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x8, 0x6, 0x0, 0x3, 0x6, 0x4, "ca4c83d1e78a2afca100015c32a1fac3dd644fbe707bd82e98c7e153c47ebef75299dc41ec5891c6870b34ec0f24b9c64e6f587084f5cf149a05c2493657d1f7", "9e41fc1fc765db4c442f4ae01e67d563b826da09db010f818aa26cf53ae8dff303a47e33345deeba9f37f8290410a6f05c932836a9485cbb7687cc29bbb1498b", "8e8581b1d83fcb66e34ae212e5ef8242ce5a47e6bb6951f9a897c4886fcdc575", [0x5, 0x100000001]})

04:37:51 executing program 5:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xc0045878, 0x0)

04:37:51 executing program 1:
syz_clone3(&(0x7f0000001640)={0x44003000, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:51 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xb701, 0x0)

04:37:51 executing program 0:
syz_clone3(&(0x7f0000001800)={0x20000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000700)=[0xffffffffffffffff], 0x1}, 0x58)

04:37:51 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000024c0)={0x2, &(0x7f0000002480)=[{}, {0x5}]})

04:37:51 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$EVIOCGVERSION(r0, 0x80044501, 0x0)

04:37:51 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000140)=""/60)

04:37:52 executing program 2:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x26)

04:37:52 executing program 4:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x7f, &(0x7f0000000000)=0x80000000, 0x4)

04:37:52 executing program 5:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000200), 0xe240, 0x0)

04:37:52 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, 0x0)

04:37:52 executing program 3:
r0 = socket$unix(0x1, 0x5, 0x0)
recvmsg$unix(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

[  439.649336][ T7804] tipc: Trying to set illegal importance in message
04:37:52 executing program 2:
syz_open_procfs$namespace(0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xffffffffffffffff)

04:37:53 executing program 1:
syz_clone3(&(0x7f0000001640)={0x44003000, 0x0, 0x0, 0x0, {0x1}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:37:53 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x10}, 0x0)

04:37:53 executing program 4:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x12c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x82, &(0x7f0000000280)=@string={0x82, 0x3, "afad4833a2823b9096cce554189d754162976c3d2e33cd5174ca2929ab923985330536029c7640fe97e343444bb4647cb143f344de1af8f035f7768a763a00be2dc5c1515f223bfba4a7351bc1f2a15f83bdeec87da0b7954d946cf6b2796a1256bd161f167706762ef8d6c1a0da5f6564008c64dd5d2d162acd8482a8a900dc"}}]})

04:37:53 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={&(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000001640)="27c6ea507aeba4bf307708d3c1d8cdc9a7ea1218846fc20024292352fac94c2ac29858db2b3c3fc81349210780dea199e4b110d7a8ead371ee79e44528b7005d0e809e0ee2c08eeadc3b16e095e3a13522af85f3568141e71badeb2d9a73c518a6a1331b62133524b68a39fe2de437a2f8e631a7362e5da07ff3a2ad6fac66e3ef26ec7ec00cb133113a50984c2ec0bde1f83b355ca9ead904e8030e5ad08fe14cd838e0e8625846afd8b55e5cc2ded06886c7ce0415edcdc4f31611f6d012f0d78f51cdba5a3039128545ed1bff8d32d0a291972dc7cdd036e10a6a5ba74f325e9b79185423fdae63f15857ae6ce79e1aff61fa45c182991a005ff70c9b7e448a8ed2a45b1744cae06f7cbb94d391d17b5a87bd1a4eebf7e6c4ea307ce8f5dbed3a5ed05d0bb2c88506ba2b55bfd3985320476af3ee9f4fd5288ab83a56face7e871c3d7f960168ddcf12d66bf53b0489be44f3debf69ad4a8294d4ea1a7139271163357bbe72fd860a78db0a941fc340f4aec61cc73bd0980436a1e122f5062fa21a9bb01e3902ff6b30f35ed8d3bd68229dde2cd58cbe29343c1448b23a268152d033138f0f6062c37baa6ccb4ae56dbb2bed4023d8abc1bc8c7a5b6a693805f5bb7725183d4d2edd944a4121fab7abdf39dee1d1ac70d03f298f57d5b8791cc776e6d84437d953f52d63b444698d7537d7b2585879820ddac39c0285ae3f833fb1af82e52f89b9f0c9a57fd0dd9e0d555e996bee2359f7a3abb1a773b2a8c006a5a581c377dd332fffde697da0ed30cb35b8faef4eeb75ec42a6c69b8e8bf15482b8abf2c0edd26e5fda2dd2ee631940378b68b45a7a2a4701e19b161763ca740fbfde827e9a24535556adb7e418243a2ae8a43dbf9626a95d73a556bfe25c99cfd9035b8f4f19ba0bb77f83bcd9b7407ac385838f287ce4b059ab5e36e23d0730809fbbbf69f93f14d1f7eae75dd6074627b554772b0d4ef0161d31e3f086a1d68e0075488e35fbbbb95e930c621f379cf1a683b9bd40d18b04f6a805eadd985efaeb9205beab21d876bd1892997157fdd390c21d3bc2570387344325b666ad17c014b19f285bc338205fe15617c64a0db5c56fb3f37cd001bf7592c1b42e5f2319f49b2836de3d90c7b134a6834a529dd26c4e93adbe3e995a85b8affe88aae38adcf79eb1dcce44f112ae39a88b524fc87a2d8cdaed31656b75ab1678f2ebe592a2ac7f3be9a70296b52de892bd5231290dca7a655f0f84d23ea393d152820a87f35705449ce0d5b23378ee1303a303c3c7a3aa6477a472460d7a513a61d47df95986ec6cf78eba1b4ee663bfa182fa0e3f08690aec8d14ffec69240e6f3a3cc1e52752fd358629fbab3df524e43468f3553c45e0936c9c9cdc54993c0539d24c0fe086b82971c5e9dcca666d0c7b778bcf77512ef2e8352128f83f14ec428b10639f2380ff3d0170537f289271919b58e3ed5c60e5e73d948ac81a5c0c81c233ce03bde1d1101a42e16f496d94683d04eba00cf97608cde89c6aadc34bc1397517a328e7a2eca24e9eee452535605d3ce2557aac8ba06a4677c1eebde73c02d1ada9b645cab6d7e53c534a23ce50845081c60576de9558aa0a68d6a99862f8b3ec85a7ae945eeeed50de90c49d883b057742427b31df879c4ec104df67855caeb587907dd3d77e9f18fbde6a7a995fe5aeb40017b3f970563266492e34b042d991bea28e5e41e3c2b7d08148489922e0fea5bd78a792facf516a1f51bdb40d6b4fe58b5f9b9f231c20982e517c7ffc57d09e08029dd9ca714813aca4753cfb16468fe14b6e07ba2d0c0f56151b32694165daca31ceef541fa1366fae3448209bcd2b7c925ca0a09c27972a3993a97269b787c1feb35c1510ebe7592706f2622897f05fb71a4e7e8a012f031f1a4994c93835dfea3fa674d691c3a5abd24d2072ed827ed56fc4c0c928cdd8b408f5f2c841609d3315cb764c77fd087883f16a79ebaafce4b46f5c09deb0eb20fc36356401803265ec2eb873a500dd196e801218fc16f31e4a75d19a4a876a8f32b74dd6dc41627eae3843f44b2e74d056602c01922defeabeb68f26831bf8078166da50a30b23019de21422654aa1d4cb5321163704e95a597c452d47407d22f5c177d50efa4a03030ee5319771d29025fa7956debd0bff9158f41857acd34e276f4b3b1fb099cdd88306a697301ec55057f34f68b7d700b7f8ebff5d975b54e29c3c75d7130c0ffef83d7cf1c1d42f7365f682493d40ea6f7946f2db515566a37d7e31a0e91f52a05070a6834043ef61a659f7695bb6de284016c756ba56163d6da5035f49e364bdad594b924229e535cb29c0cbfe426e44300e58bbc16b9de0c0f6561af7a372ec8158f9738c7337e235ab4d072a68d5528e7d5662eb251379cbbcf56e77c37fbeb5bc485c384552cc3588fa8093872c35851d7f4895524221dbb0adc797a4ce7f16609a8e59c491697919c7d54abab8608bd06401f60e3e5d075898587a801b39e11893ef4b20e5a851702d5d9e771ddb82aefd2d75dc4d2985e0270bdfd4bff801ae277ea1da07ff6948dcf9c23ef70fbc45bd761879675e7238f2f4262f7f93b2c73c6a7ce81908f0078b5b6372a7ae22155d151f1251af70bdc621513fddc33aea8e0588f5caa39e94c5c081348e595a7e7cb6d9565e22cae7bed2348c85ce7c60b8fec5688a5e5d09732edcdb3f055e4a80e3bd7cbd8ea834e0488dfcf6cb5940f93f15e8719042e98e4779afbdc16a0c592877ab8e8076ffe482e614a77bc6650e1a0797f8619a3daa78ed4d33447f7ee41635ec4d47befdca5b1dc69df8abd2957d510ed5338c549b58c47b583edc203f4a7a7ac1c89fdd1b4808afa6e718ff7564de107cbf701f55af4b98ca900b7b631b59db529cf5284c6fbf1d26561e77f92ca14633ad55867254faca92758827324277a85c6dd9b9ebe81dc4dbda23dfaa0818ed45ba7f8870f7de8089fbd8df0f7ce89fddda80c51585a56776b69453accfe7af384b28c79c842c51d035b852423ad8d61c39eedab4755a4f0d11600015add49fa6b615195075a934447db97bbd4f59194b269bd3e1863becda3842db3b42b7edef22842a7d1d89786c6f114b1b4a947c8bef0e748a7766cc4f0d3111909a6b670c35d96e683f38c43ce8928dbbc8701ed565079d9df35c510be19dcb1127401a2118717fc9c89d8c0acd06048e56e8eeee962ae26e93fb3768da96d594cbbeb15cf673ece545b0dd0235646f626189f289487c658dcc72ca577f4c53d79b61aba88825f0a8dff7ec52ac749ebf8e7fe3670e5e034e0af9c94aa9d622b68c070912d587a08f35a2d52467aa88e0a016574a4c1218e0ea77f9ba6a146ccf5b9ccd472f4aad23b4fdc242f864928021ac35d8bd2b4fd27b58eb4ad2e4e0d1e315e0d58582cad376b3515eca571e772d263cfd19ee080d76a529c8f645f5e53a3872223b2d262e44f9e29bfc4da0f05a55089c60e04b4ccf5d673ba65aa051a4405e1f2a84d3340cabf525a98badc769f0ca89d61d98409dcbbd93b8484b8b8131fa7d326f7acc79cf9b56692b1eaecea3fda9ca4c51c857c59357640eff43a43f5a7e3180b829e842b8f8d2e6f0fe0c774d31d3f6576fcb595859c89a728969f88154248626de7a1aa60ed7fe316a0c87aef36785ef4bc5a694e4fe7e091b119c5517f463f95b1386520726c9156c3006c8d1b2b3a2e897e549bc3c6720ecbfb09317ba6b67c72c83428ac5e677882937ef6a3d57971de3d1231860705ebf2268dfe32e449da4cd45ea61d2fa1623498c714eaf3f6db2f03a8f2c81a901268f1b6cf67da15effebf72e24a0d55572cdd9164ca20143acd4ac6f992f50f970d80a8d53c4277dd079202e9df4f99cdb2a7a5c980d0438488e5bb80686aaa05b9c0897809fef6d0eead20f3b4c34069be49a7c21180650010866aad49944666066bb93202ef5ca6f51cf320368af2a4ad820cb498da50a3090b491c62ae3778a6a7483820b425f97a8909640eb55563bf988cde75bc2231a3acb2587aca31058aa27a9c765e74fb8e952b161ea020c6004ff8beb41d6d18c564aee2c9efc5ee12be163bf459e98e79975e77e21acc98276b13adc9320f9343af7dbc1d619bd13e9d4df778f2dff7614cf23cf8cfe30ed3e06d0ed413292a89d96909337f4b0a22a539e47d54fcea355c65ef6d60989a23ce765b80995824976e5b299390da5b00f9b2045965024f8a996ee67fdc2d11b1c0de34a7f14f9f828656a0081d5cb80f00a50e21ad8d8aefbe0b9835da421ce81d806b06fa7fde4b3139a0581411a40d357bdb74f3e3495faeb01a7213934c1b56e58f3017a4199cdb90bd95e0800ce8a363ff5ce60da17db85da3b52d8abe17a34fd5a9fa482fc6366244f8937e1d76cf4050057d68f9de9d6228eb2ca51defca8d07314b6afa67e7da91570ea46b0a05e7ebd6cfa00bacf0f43c1138efa6a59781337b69d0e6441f1ceaf199435337bf8055f62b9ff734fe006b2c00883ca9a98c847fd7e79c51da8b3224e961a418a931dc4503b8da52eef9eb65d4d61e0a9f32450fa783866899e829b5ef7f64853d0fe2024705dafccb86f787fb195cee8fe055e9d2d6e07cacdaf4fd75b81f383fbf1118e1db9c63e12c63dfa97f8140c6259ff21878bc8e98b0c3b2c5fcab1e9eecf8352cea7e9dce2383adbd6b4e71aeaa360b892eb08416a8431f71ba90ccb43c21c1a7e4ababafb5600d2fae32a48e6ce4dfa06a86972948c60e6f33347ea11b59d4a0db26dce72a2708390d2c672e9161e06a7d8970394aabbd3192bb89a8fc9fe68de260175b08012c59a341ed06ba80b63772a916e61d66da48a1864deddfb1f791534b7f5d732ba056fcf2fbb49e0612185d4393f7467b255d0602ef2445f2d2e4c376217ce0a9d245af61f41157f5f9b22c8e4f01c1c3cb3bb2f8cc20db36aef935fd1db701ca44827796dfa8eac91401da598a6a77a46923dc47ea3c876948b9ca482d6ee9d3c4e0748bffa54e9324321c5575dcfa6fe31aa3a2368abaa2e4ff02be08e4882e345b50207984fa6d819d5171dce8f7b72488187c3833b2f3ab1dd8b959f2fd181f4c937c61aaf8d42311477721f25fbd7d59e7bd43599c9e825d2b5a44a2b17ea0507c2b51ff0c2244547f16581687823b29dd0a61d2fa0655c3b3dd282053bccf408dae127f282ca78a978f3ba8189de1bc568bf541061766c3d8e0616499c2946506b9299dc379ac3fb11971d1926bbf1e7463c24c1493837b022bd0f62031a7da7af5cd6c2b774e4ddf3b5dfc1e47a876a0b967dbfd3eb599bdc97f433dd2fcaae268805d5446907fef7a0c2a92035387e5af46600ee0e4b4091f479ac5a3b4e16085f166c0f74130561c22b8910ebd36849d25317183a6ed1c7f347fb85044c938be4168dfca5a68756b47f11e4e0db3cfe56d7976fcb497684e4d63d07fa24dd4f70c28899cc681fe555624f7fa9dd75bdbbc10cc11c5feadab685e662f56fcdb388378e99ea70b09b9e3056664449d0b9aca3ef7414f2ec31ce47baa354fa6685ea90c08f59f848447f3d063732e79e14a624ea0f9c49c26433ef10815cd9fff0b1a6235e5b7c15a7009ba3aa831c7a9755a44e7982a87569e00ac089aa4cc3adb9253bdf50e00f482652ba1dd733a85f49eca0c120530bde696660d3a915bc88dc0226cb3662842d4bf8caa182bae212046600f4bd7f3cb5ed77f46426a507ad163d47610f941f79d169e05eaf0baf44faa4769a3d", 0x1000}, {&(0x7f0000000280)="799036273446c9888ae8d277b35c36b6b710633739bf7c1f4df1caf7eb38065832259cb52c0754a9f8e48429b0e9ee0f2a8b51839937e95cf338381d24690da2bb43ff8bcdb12635b70fab3e043e254138852ce594a0aaf01b33e1bde8db9b912ae7b23aacf94b", 0x67}, {&(0x7f0000000300)="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", 0xfb}], 0x100000000000005d, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}, 0x0)

04:37:53 executing program 3:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)={0x0, "9fdcbb41a2e0adfb1a695c1d7ccf93e7ea6d6ee680b60dd65a3b7557fe57a2aab0ae319999c62b797f6ae3e0c74b217b6eaf6a145478e7b6729e10995f100915"}, 0x48, r0)
add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000280)=ANY=[], 0x48, r1)

04:37:53 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'tunl0\x00', &(0x7f0000000000)={'gretap0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x15, 0x4, 0x0, 0x0, 0x54, 0x0, 0x0, 0x20, 0x0, 0x0, @remote, @loopback, {[@rr={0x7, 0x13, 0x0, [@local, @remote, @local, @local]}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@multicast1}, {@local}, {@empty}, {@private}, {}]}]}}}}})

04:37:53 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe}, 0x48)

04:37:53 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[], 0x10}, 0x0)

04:37:53 executing program 5:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000340)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x32)

[  440.575966][ T3557] usb 5-1: new high-speed USB device number 9 using dummy_hcd
04:37:53 executing program 2:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$read(0xb, r0, &(0x7f0000000300)=""/140, 0x8c)

[  440.834903][ T3557] usb 5-1: Using ep0 maxpacket: 32
04:37:54 executing program 0:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x12c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x33, &(0x7f0000000180)={0x5, 0xf, 0x33, 0x5, [@ss_cap={0xa}, @ss_cap={0xa}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "4c1203cb6b8f0aeac41e165ddb0fef14"}, @ptm_cap={0x3}]}, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x84, &(0x7f0000000280)=@string={0x84, 0x3, "afad4833a2823b9096cce554189d754162976c3d2e33cd5174ca2929ab923985330536029c7640fe97e343444bb4647cb143f344de1af8f035f7768a763a00be2dc5c1515f223bfba4a7351bc1f2a15f83bdeec87da0b7954d946cf6b2796a1256bd161f167706762ef8d6c1a0da5f6564008c64dd5d2d162acd8482a8a900dc6dac"}}]})

[  440.953608][ T3557] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
04:37:54 executing program 5:
socketpair(0x0, 0x0, 0x0, &(0x7f0000000000))
syz_clone(0x100000, 0x0, 0x0, &(0x7f0000000580), 0x0, 0x0)

[  441.124902][ T3557] usb 5-1: New USB device found, idVendor=056a, idProduct=012c, bcdDevice= 0.40
[  441.134257][ T3557] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.142574][ T3557] usb 5-1: Product: syz
[  441.147060][ T3557] usb 5-1: Manufacturer: 궯㍈芢逻첖哥鴘䅵面㵬㌮凍쩴⤩銫蔹Գȶ皜﹀䑃둋籤䎱䓳᫞詶㩶븀씭凁≟כּꞤᬵ御붃죮ꁽ閷鑍禲ቪ뵖἖眖瘆쇖敟d撌川ᘭ촪芄ꦨ
[  441.167546][ T3557] usb 5-1: SerialNumber: syz
[  441.372031][ T3557] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[  441.570432][  T122] usb 5-1: USB disconnect, device number 9
[  441.583446][   T34] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  441.823358][   T34] usb 1-1: Using ep0 maxpacket: 32
[  442.023395][   T34] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
04:37:55 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0xffff, 0x0, 0xc42b}, 0x48)

04:37:55 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0xffffffffffffff8f)

[  442.213700][   T34] usb 1-1: New USB device found, idVendor=056a, idProduct=012c, bcdDevice= 0.40
[  442.223346][   T34] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  442.232532][   T34] usb 1-1: Product: syz
[  442.237039][   T34] usb 1-1: Manufacturer: 궯㍈芢逻첖哥鴘䅵面㵬㌮凍쩴⤩銫蔹Գȶ皜﹀䑃둋籤䎱䓳᫞詶㩶븀씭凁≟כּꞤᬵ御붃죮ꁽ閷鑍禲ቪ뵖἖眖瘆쇖敟d撌川ᘭ촪芄ꦨ걭
[  442.257632][    C1] vkms_vblank_simulate: vblank timer overrun
04:37:55 executing program 4:
r0 = socket(0x1e, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, 0x0, 0x0)

04:37:55 executing program 2:
add_key$fscrypt_provisioning(&(0x7f0000000080), 0x0, 0x0, 0x48, 0x0)

[  442.264439][   T34] usb 1-1: SerialNumber: syz
04:37:55 executing program 2:
r0 = socket$unix(0x1, 0x1, 0x0)
recvmmsg$unix(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2000, 0x0)

04:37:55 executing program 3:
r0 = socket(0x2, 0xa, 0x0)
setsockopt$packet_drop_memb(r0, 0x107, 0x2, 0x0, 0x0)

[  442.685433][   T34] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
04:37:55 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
getpeername$unix(r0, 0x0, 0x0)

[  442.886763][   T34] usb 1-1: USB disconnect, device number 8
04:37:56 executing program 4:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$tcp_mem(r0, 0x0, 0x0)

04:37:56 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getsockname$unix(r0, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e)

04:37:56 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
recvmsg$unix(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/112, 0x70}], 0x1}, 0x0)

04:37:56 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c000000000000000100000002"], 0xa0}, 0x0)

04:37:56 executing program 1:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40049409, 0x0)

04:37:56 executing program 5:
syz_clone3(&(0x7f0000000200)={0x81300000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

04:37:56 executing program 2:
keyctl$unlink(0xe, 0x0, 0x0)

04:37:56 executing program 4:
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)

04:37:56 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f00000014c0), 0x0, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000001500)=""/69)

04:37:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="10"], 0x10}, 0x0)

04:37:57 executing program 4:
add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)={0x1, 0x0, @c}, 0x29, 0xfffffffffffffffc)

04:37:57 executing program 5:
r0 = socket(0x1e, 0x1, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000080)={'gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}}}})

04:37:57 executing program 0:
r0 = socket(0x1e, 0x1, 0x0)
recvfrom$unix(r0, &(0x7f0000000000)=""/68, 0x44, 0x0, 0x0, 0x0)

04:37:57 executing program 1:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x45}, 0x0)

04:37:57 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x12, 0x0, 0x0)

04:37:57 executing program 0:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000340)={0x28, 0x0, 0x0, @host}, 0x10)

04:37:57 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000001640)='\'', 0x1}, {&(0x7f0000000280)='y', 0x1}, {&(0x7f0000000300)='J', 0x1}], 0x3}, 0x0)

04:37:57 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000180)=@gcm_128={{}, "dbc19ef4aad88295", "88430fcb0af569297359a5c38046c90e", "0873d962", "e2e31810eec04619"}, 0x28)

04:37:57 executing program 5:
memfd_create(0x0, 0x800ccfc681150eef)

04:37:57 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000000)=""/217, &(0x7f0000000100)=0xd9)

04:37:57 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f}, 0x0)

04:37:58 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
recvmmsg$unix(r0, 0x0, 0x0, 0x12120, 0x0)

04:37:58 executing program 0:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x12c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0x5, &(0x7f0000000180)={0x5, 0xf, 0x5}, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4}}, {0x84, &(0x7f0000000280)=@string={0x84, 0x3, "afad4833a2823b9096cce554189d754162976c3d2e33cd5174ca2929ab923985330536029c7640fe97e343444bb4647cb143f344de1af8f035f7768a763a00be2dc5c1515f223bfba4a7351bc1f2a15f83bdeec87da0b7954d946cf6b2796a1256bd161f167706762ef8d6c1a0da5f6564008c64dd5d2d162acd8482a8a900dc6dac"}}]})

04:37:58 executing program 5:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, r0)

04:37:58 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x1, &(0x7f0000000140)=@raw=[@kfunc], &(0x7f00000000c0)='GPL\x00', 0x32c, 0xbc, &(0x7f00000001c0)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

04:37:58 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="1c"], 0xa0}, 0x0)

04:37:58 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)=[{0x0}, {&(0x7f0000000280)='y', 0x1}, {&(0x7f0000000300)='J', 0x1}], 0x3}, 0x0)

04:37:58 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x4, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x4, 0xf8, &(0x7f0000000140)=""/248, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000280)=[0x0], &(0x7f0000000340)=[0x0], 0x0, 0x8, &(0x7f0000000380)=[{}], 0x8, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)

04:37:58 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0x0, 0x4, 0xc42b}, 0x48)

[  445.545082][   T34] usb 1-1: new high-speed USB device number 9 using dummy_hcd
04:37:58 executing program 3:
syz_clone3(&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, {}, &(0x7f0000000100), 0x0, 0x0, 0x0}, 0x58)

04:37:58 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140))

[  445.803942][   T34] usb 1-1: Using ep0 maxpacket: 32
04:37:59 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xb703, 0x0)

04:37:59 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0x7, 0x0, 0x4)

04:37:59 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={0x0}}, 0x0)

[  446.007615][   T34] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  446.204720][   T34] usb 1-1: New USB device found, idVendor=056a, idProduct=012c, bcdDevice= 0.40
[  446.214146][   T34] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.222381][   T34] usb 1-1: Product: syz
[  446.226887][   T34] usb 1-1: Manufacturer: 궯㍈芢逻첖哥鴘䅵面㵬㌮凍쩴⤩銫蔹Գȶ皜﹀䑃둋籤䎱䓳᫞詶㩶븀씭凁≟כּꞤᬵ御붃죮ꁽ閷鑍禲ቪ뵖἖眖瘆쇖敟d撌川ᘭ촪芄ꦨ걭
[  446.247796][   T34] usb 1-1: SerialNumber: syz
[  446.500979][   T34] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[  446.708123][   T34] usb 1-1: USB disconnect, device number 9
04:38:00 executing program 0:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x8a)

04:38:00 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x4, &(0x7f0000000500), 0x4)

04:38:00 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@rights={{0x10}}], 0x10}, 0x0)

04:38:00 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
recvmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/49, 0x31}], 0x1}, 0x0)

04:38:00 executing program 1:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000280)={0x0, 0x0, 0xc, &(0x7f0000000100)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7}]}})

04:38:00 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvfrom$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

04:38:00 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x20}, 0x0)

04:38:00 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x2, &(0x7f0000000100)=[{}, {0x2, 0x0, 0x0, 0xc8}]})

04:38:00 executing program 3:
socketpair(0x2c, 0x3, 0x1, &(0x7f0000000080))

[  447.604881][ T3528] usb 2-1: new high-speed USB device number 9 using dummy_hcd
04:38:00 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0x0, 0x0, 0xc42b}, 0x48)

[  447.844047][ T3528] usb 2-1: Using ep0 maxpacket: 16
04:38:01 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x17, 0x0, 0x0})

[  448.047201][ T3528] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
04:38:01 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGID(r0, 0x80084502, &(0x7f0000001940)=""/191)

04:38:01 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000000))

[  448.236578][ T3528] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  448.246419][ T3528] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.254745][ T3528] usb 2-1: Product: syz
[  448.259035][ T3528] usb 2-1: Manufacturer: syz
[  448.263925][ T3528] usb 2-1: SerialNumber: syz
04:38:01 executing program 4:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x87)

04:38:01 executing program 0:
syz_open_dev$evdev(&(0x7f0000000000), 0x100000000, 0x0)

[  448.441620][ T3528] cdc_ether: probe of 2-1:1.0 failed with error -22
04:38:01 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000004c0)={'wg1\x00'})

[  448.631068][    T5] usb 2-1: USB disconnect, device number 9
04:38:02 executing program 1:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$setperm(0x5, r0, 0x0)
keyctl$read(0xb, r0, 0x0, 0x0)

04:38:02 executing program 3:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0xc020660b, 0x0)

04:38:02 executing program 5:
alarm(0x4)
alarm(0xa8b)

04:38:02 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={&(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e, 0x0}, 0x0)

04:38:02 executing program 4:
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup2(r0, r0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r3 = dup2(r2, r2)
bind$bt_l2cap(r3, &(0x7f0000000040), 0xe)
listen(r3, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000040), 0xe)
listen(r1, 0x0)

04:38:02 executing program 2:
r0 = socket(0x1e, 0x1, 0x0)
setsockopt$packet_add_memb(r0, 0x107, 0x1, 0x0, 0x0)

04:38:02 executing program 5:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="12015002020000202505a1a440000102030109025c0002010000000904010001020d0000052406000105240000030d240f0100000000000000000006241a"], &(0x7f0000000380)={0x0, 0x0, 0x11, 0x0})

04:38:02 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGBITKEY(r0, 0x80404521, 0x0)

04:38:02 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000080)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, &(0x7f0000000280)={0x0, 0x0, 0x1d, &(0x7f0000000100)={0x5, 0xf, 0x1d, 0x3, [@ss_cap={0xa}, @ext_cap={0x7}, @ext_cap={0x7}]}})

04:38:02 executing program 4:
r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, 0x0)

04:38:02 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x24, &(0x7f0000000500), 0x4)

04:38:02 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000040)={'wg2\x00'})

04:38:03 executing program 4:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x98203, 0x0)

04:38:03 executing program 3:
r0 = socket(0x1e, 0x1, 0x0)
sendmmsg$unix(r0, 0x0, 0x0, 0x0)

[  450.104864][    T5] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  450.144491][  T122] usb 1-1: new high-speed USB device number 10 using dummy_hcd
04:38:03 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
getpeername$unix(r0, 0x0, &(0x7f0000000080))

[  450.363340][    T5] usb 6-1: Using ep0 maxpacket: 32
[  450.393673][  T122] usb 1-1: Using ep0 maxpacket: 16
[  450.554122][    T5] usb 6-1: unable to get BOS descriptor or descriptor too short
[  450.613858][  T122] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  450.645352][    T5] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
04:38:03 executing program 4:
socket(0x0, 0x80d, 0x0)

04:38:03 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000001640)='\'', 0x1}, {0x0}, {&(0x7f0000000300)='J', 0x1}], 0x3}, 0x0)

[  450.655873][    T5] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  450.667392][    T5] usb 6-1: config 1 has no interface number 0
[  450.674261][    T5] usb 6-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
04:38:03 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x0, 0x300)
bind$packet(r0, &(0x7f0000000000)={0x11, 0xf6, 0x0, 0x1, 0x8d, 0x6, @random="327784c7f512"}, 0x14)

[  450.895553][  T122] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  450.904901][  T122] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.913290][  T122] usb 1-1: Product: syz
[  450.917577][  T122] usb 1-1: Manufacturer: syz
[  450.922298][  T122] usb 1-1: SerialNumber: syz
[  451.023545][    T5] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  451.032848][    T5] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.041677][    T5] usb 6-1: Product: syz
[  451.046235][    T5] usb 6-1: Manufacturer: syz
[  451.051014][    T5] usb 6-1: SerialNumber: syz
[  451.164846][  T122] cdc_ether: probe of 1-1:1.0 failed with error -22
[  451.203435][    T5] usb 6-1: selecting invalid altsetting 1
[  451.396461][ T3565] usb 1-1: USB disconnect, device number 10
[  451.406300][    T5] cdc_ncm 6-1:1.1: bind() failure
[  451.476345][    T5] usb 6-1: USB disconnect, device number 14
04:38:05 executing program 5:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x20, 0x56a, 0x12c, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000380)={0x0, 0x0, 0xf, &(0x7f0000000180)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa}]}})

04:38:05 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)=[{0x0}, {0x0}, {&(0x7f0000000300)='J', 0x1}], 0x3}, 0x0)

04:38:05 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x4020940d, 0x0)

04:38:05 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x8, &(0x7f0000000500), 0x4)

04:38:05 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xe, 0x0, 0x0, 0x6}, 0x48)

04:38:05 executing program 0:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, r0)

04:38:05 executing program 4:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$set_timeout(0xf, r0, 0x15)
keyctl$unlink(0x9, 0x0, r0)

04:38:05 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xd, 0x0, 0x0)

04:38:05 executing program 1:
r0 = socket(0x1e, 0x1, 0x0)
connect$unix(r0, &(0x7f0000000000)=@abs, 0x6e)

04:38:05 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x2, 0x0)

04:38:05 executing program 0:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x40086602, 0x0)

[  452.493454][    T5] usb 6-1: new high-speed USB device number 15 using dummy_hcd
04:38:05 executing program 3:
r0 = syz_open_dev$evdev(&(0x7f00000014c0), 0x0, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, 0x0)

[  452.743732][    T5] usb 6-1: Using ep0 maxpacket: 32
[  452.954191][    T5] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  453.133754][    T5] usb 6-1: New USB device found, idVendor=056a, idProduct=012c, bcdDevice= 0.40
[  453.143607][    T5] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  453.151810][    T5] usb 6-1: Product: syz
[  453.156296][    T5] usb 6-1: Manufacturer: syz
[  453.161077][    T5] usb 6-1: SerialNumber: syz
[  453.280942][    T5] usbhid 6-1:1.0: couldn't find an input interrupt endpoint
[  453.487642][    T5] usb 6-1: USB disconnect, device number 15
[  453.533868][ T1197] ieee802154 phy0 wpan0: encryption failed: -22
[  453.540429][ T1197] ieee802154 phy1 wpan1: encryption failed: -22
04:38:07 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$chown(0x4, 0x0, 0x0, 0x0)
add_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f00000001c0)="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", 0x105, r0)

04:38:07 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
getsockname$unix(r0, 0x0, 0x0)

04:38:07 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c00, r0)

04:38:07 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x9, &(0x7f0000000500), 0x4)

04:38:07 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendto$unix(r0, &(0x7f0000000040)="96", 0x1, 0x2000854, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)

04:38:07 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x6, 0x88)

04:38:07 executing program 2:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x5450, 0x0)

04:38:07 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x17, 0x0, 0x4, 0xc42b, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48)

04:38:07 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x18, &(0x7f0000000500), 0x4)

04:38:07 executing program 4:
add_key$keyring(&(0x7f0000001c80), 0x0, 0x0, 0x0, 0xfffffffffffffffa)

04:38:07 executing program 1:
socketpair(0xa, 0x0, 0x8000, &(0x7f0000000080))

[  454.399721][ T8037] Invalid option length (239) for dns_resolver key
04:38:07 executing program 5:
add_key(&(0x7f0000000280)='user\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)="df", 0x1, 0xfffffffffffffffe)

04:38:07 executing program 3:
r0 = syz_open_dev$hidraw(&(0x7f00000000c0), 0x0, 0x2003)
read$hidraw(r0, 0x0, 0x0)

04:38:07 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00')
read$hidraw(r0, 0x0, 0x7ffffffff000)

04:38:07 executing program 0:
keyctl$describe(0x18, 0x0, 0x0, 0x0)

04:38:08 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/stat\x00')
read$char_usb(r0, 0x0, 0x0)

04:38:08 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x7, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)

04:38:08 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00')
read$hidraw(r0, &(0x7f0000000100)=""/122, 0x7a)

04:38:08 executing program 3:
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000002200)=""/23)

04:38:08 executing program 2:
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000180), 0xffffffffffffffff)

04:38:08 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/keycreate\x00')
read$hidraw(r0, 0x0, 0x7ffffffff000)

04:38:08 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x6, &(0x7f0000000000)="7675251c", 0x4)

04:38:08 executing program 5:
shmctl$IPC_SET(0xffffffffffffffff, 0x1, &(0x7f0000002040)={{0x3, 0x0, 0xee00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000002200)=""/23)

04:38:08 executing program 1:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_provisioning(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)=ANY=[@ANYBLOB="02"], 0x48, r0)
keyctl$describe(0x5, r1, 0x0, 0x0)

04:38:08 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x17, 0x0, 0x2, 0x10000, 0x0, 0x1}, 0x48)

04:38:08 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp6\x00')
read$hidraw(r0, &(0x7f0000000040)=""/122, 0x7a)

04:38:08 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/nf_conntrack_expect\x00')
read$hidraw(r0, 0x0, 0x7ffffffff000)

04:38:08 executing program 5:
keyctl$describe(0x12, 0x0, 0x0, 0x0)

04:38:08 executing program 4:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key(&(0x7f0000000080)='dns_resolver\x00', 0x0, &(0x7f00000001c0)="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", 0x105, r0)

04:38:08 executing program 1:
setfsuid(0xee01)
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000100), 0x949c00, 0x0)

04:38:09 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='gid_map\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:09 executing program 5:
r0 = socket(0x2, 0x3, 0x9)
sendmsg$BATADV_CMD_TP_METER(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={0x0}}, 0x0)

04:38:09 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_provisioning(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)=ANY=[@ANYBLOB="02"], 0x48, r0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$describe(0x6, r1, 0x0, 0x0)

04:38:09 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

[  456.156713][ T8084] Invalid option length (239) for dns_resolver key
04:38:09 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x15, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)

04:38:09 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='attr/sockcreate\x00')
read$hidraw(r0, 0x0, 0x0)

04:38:09 executing program 3:
openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x40542, 0x0)

04:38:09 executing program 5:
setfsuid(0xee01)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

04:38:09 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_provisioning(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)=ANY=[@ANYBLOB="02"], 0x48, r0)
add_key$fscrypt_provisioning(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$describe(0x6, r1, 0x0, 0x0)

04:38:09 executing program 0:
keyctl$instantiate_iov(0xc, 0x0, &(0x7f0000000440)=[{0x0}], 0x1, 0x0)

04:38:09 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_targets\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)
read$char_usb(r0, &(0x7f0000000100)=""/255, 0xff)

04:38:09 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_targets\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:09 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0)

04:38:09 executing program 2:
r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x40000)
read$hidraw(r0, 0x0, 0x0)

04:38:10 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/icmp\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:10 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt6_stats\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:10 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x2000, 0x3, 0x4, 0x7fff}, {0x3, 0x9, 0x2, 0x2}]})
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{0x7, 0x39, 0x6}, {0x6, 0x7f, 0xfe, 0x10000}]})

04:38:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000600), r0)

04:38:10 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@mpls_newroute={0x1c, 0x18, 0x1}, 0x1c}}, 0x0)

04:38:10 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='projid_map\x00')
write$hidraw(r0, 0x0, 0x0)

04:38:10 executing program 1:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x24800)

04:38:10 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000400))

[  457.433678][   T24] audit: type=1326 audit(1649047090.496:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8118 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6e8e549 code=0x10000
[  457.456116][    C1] vkms_vblank_simulate: vblank timer overrun
04:38:10 executing program 4:
syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x44f00)

04:38:10 executing program 2:
setitimer(0x0, &(0x7f00000003c0)={{0x77359400}, {0x0, 0xea60}}, 0x0)

04:38:10 executing program 1:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$fscrypt_provisioning(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)=ANY=[@ANYBLOB="02"], 0x48, r0)
keyctl$describe(0x1d, r1, 0x0, 0x0)

04:38:10 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='personality\x00')
read$hidraw(r0, 0x0, 0x7ffffffff000)

04:38:10 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$invalidate(0x15, r0)

04:38:10 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
read$hidraw(r0, 0x0, 0x0)

04:38:11 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/protocols\x00')
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:11 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000000)="be", 0x1)

04:38:11 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
read$char_usb(r0, &(0x7f0000000740)=""/47, 0x2f)

04:38:11 executing program 5:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb)
r1 = add_key$fscrypt_provisioning(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000280)={0x1, 0x0, @b}, 0x48, r0)
keyctl$search(0xa, r1, &(0x7f0000000300)='id_legacy\x00', &(0x7f0000000340)={'syz', 0x3}, 0x0)

04:38:11 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/unix\x00')
read$char_usb(r0, &(0x7f0000000000)=""/36, 0x24)
read$hidraw(r0, &(0x7f0000000080)=""/122, 0x7a)

04:38:11 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/route\x00')
read$hidraw(r0, &(0x7f0000000100)=""/208, 0xd0)

04:38:11 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='clear_refs\x00')
read$hidraw(r0, 0x0, 0x0)

04:38:11 executing program 2:
rt_sigaction(0x9, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x8, &(0x7f0000000480))

04:38:11 executing program 5:
shmctl$SHM_UNLOCK(0x0, 0xc)
syz_genetlink_get_family_id$ipvs(&(0x7f0000002100), 0xffffffffffffffff)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000002200)=""/23)

04:38:11 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0)

04:38:11 executing program 3:
add_key$fscrypt_provisioning(&(0x7f0000000340), 0x0, 0x0, 0x0, 0xfffffffffffffffd)

04:38:11 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00')
read$hidraw(r0, &(0x7f0000000100)=""/138, 0x8a)

04:38:11 executing program 0:
keyctl$describe(0x2, 0x0, 0x0, 0x0)

04:38:12 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000400)=0xe)

[  459.088130][ T8165] =====================================================
[  459.095261][ T8165] BUG: KMSAN: uninit-value in kallsyms_lookup_buildid+0x1ee/0xb10
[  459.103138][ T8165]  kallsyms_lookup_buildid+0x1ee/0xb10
[  459.108666][ T8165]  __sprint_symbol+0x166/0x650
[  459.113491][ T8165]  sprint_backtrace+0x7f/0x90
[  459.118207][ T8165]  symbol_string+0x421/0x6e0
[  459.122871][ T8165]  pointer+0x136e/0x2060
[  459.127149][ T8165]  vsnprintf+0x1a9b/0x3650
[  459.131603][ T8165]  seq_printf+0x314/0x4f0
[  459.135999][ T8165]  proc_pid_stack+0x3b7/0x4d0
[  459.140747][ T8165]  proc_single_show+0x1cc/0x370
[  459.145653][ T8165]  seq_read_iter+0xaac/0x2150
[  459.150374][ T8165]  seq_read+0x7a6/0x990
[  459.154567][ T8165]  vfs_read+0x6c8/0x1980
[  459.158916][ T8165]  ksys_read+0x28b/0x510
[  459.163207][ T8165]  __ia32_sys_read+0xdb/0x120
[  459.167938][ T8165]  __do_fast_syscall_32+0x96/0xf0
[  459.173017][ T8165]  do_fast_syscall_32+0x34/0x70
[  459.177920][ T8165]  do_SYSENTER_32+0x1b/0x20
[  459.182466][ T8165]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  459.188846][ T8165] 
[  459.191170][ T8165] Uninit was created at:
[  459.195467][ T8165]  kmem_cache_alloc_trace+0xaa1/0x1120
[  459.200972][ T8165]  proc_pid_stack+0x103/0x4d0
[  459.205686][ T8165]  proc_single_show+0x1cc/0x370
[  459.210571][ T8165]  seq_read_iter+0xaac/0x2150
[  459.215276][ T8165]  seq_read+0x7a6/0x990
[  459.219455][ T8165]  vfs_read+0x6c8/0x1980
[  459.223735][ T8165]  ksys_read+0x28b/0x510
[  459.228017][ T8165]  __ia32_sys_read+0xdb/0x120
[  459.232731][ T8165]  __do_fast_syscall_32+0x96/0xf0
[  459.237804][ T8165]  do_fast_syscall_32+0x34/0x70
[  459.242701][ T8165]  do_SYSENTER_32+0x1b/0x20
[  459.247244][ T8165]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  459.253621][ T8165] 
[  459.255955][ T8165] CPU: 1 PID: 8165 Comm: syz-executor.4 Not tainted 5.17.0-syzkaller #0
[  459.264328][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  459.274410][ T8165] =====================================================
[  459.281347][ T8165] Disabling lock debugging due to kernel taint
[  459.287707][    C1] vkms_vblank_simulate: vblank timer overrun
[  459.296920][ T8165] Kernel panic - not syncing: kmsan.panic set ...
[  459.303365][ T8165] CPU: 1 PID: 8165 Comm: syz-executor.4 Tainted: G    B             5.17.0-syzkaller #0
[  459.313123][ T8165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  459.323206][ T8165] Call Trace:
[  459.326505][ T8165]  <TASK>
[  459.329454][ T8165]  dump_stack_lvl+0x1ff/0x28e
[  459.334201][ T8165]  dump_stack+0x25/0x28
04:38:12 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x14}, 0x14}}, 0x0)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000440)={0x14}, 0x14}}, 0x0)

[  459.338418][ T8165]  panic+0x487/0xe1f
[  459.342378][ T8165]  ? add_taint+0x181/0x210
[  459.346866][ T8165]  ? _raw_spin_unlock_irqrestore+0x78/0xb0
[  459.352730][ T8165]  kmsan_report+0x2e6/0x2f0
[  459.357317][ T8165]  ? __msan_warning+0xb8/0x130
[  459.362144][ T8165]  ? kallsyms_lookup_buildid+0x1ee/0xb10
[  459.367843][ T8165]  ? __sprint_symbol+0x166/0x650
[  459.372842][ T8165]  ? sprint_backtrace+0x7f/0x90
[  459.377730][ T8165]  ? symbol_string+0x421/0x6e0
[  459.382548][ T8165]  ? pointer+0x136e/0x2060
[  459.387004][ T8165]  ? vsnprintf+0x1a9b/0x3650
[  459.391637][ T8165]  ? seq_printf+0x314/0x4f0
[  459.396186][ T8165]  ? proc_pid_stack+0x3b7/0x4d0
[  459.401084][ T8165]  ? proc_single_show+0x1cc/0x370
[  459.406158][ T8165]  ? seq_read_iter+0xaac/0x2150
[  459.411042][ T8165]  ? seq_read+0x7a6/0x990
[  459.415399][ T8165]  ? vfs_read+0x6c8/0x1980
[  459.419854][ T8165]  ? ksys_read+0x28b/0x510
[  459.424309][ T8165]  ? __ia32_sys_read+0xdb/0x120
[  459.429204][ T8165]  ? __do_fast_syscall_32+0x96/0xf0
[  459.434455][ T8165]  ? do_fast_syscall_32+0x34/0x70
[  459.439527][ T8165]  ? do_SYSENTER_32+0x1b/0x20
[  459.444254][ T8165]  ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  459.450814][ T8165]  ? kernel_text_address+0x1f1/0x2b0
[  459.456208][ T8165]  ? stack_trace_save+0x43/0x60
[  459.461144][ T8165]  ? update_stack_state+0x883/0xa60
[  459.466406][ T8165]  ? __stack_depot_save+0x1b1/0x4d0
[  459.471666][ T8165]  ? kmsan_get_metadata+0x33/0x220
[  459.476838][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.482699][ T8165]  ? futex_wait_queue+0x24b/0x420
[  459.487767][ T8165]  __msan_warning+0xb8/0x130
[  459.492406][ T8165]  kallsyms_lookup_buildid+0x1ee/0xb10
[  459.497921][ T8165]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  459.504215][ T8165]  ? futex_wait_queue+0x24b/0x420
[  459.509279][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.514340][ T8165]  __sprint_symbol+0x166/0x650
[  459.519156][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.524223][ T8165]  sprint_backtrace+0x7f/0x90
[  459.528930][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.533992][ T8165]  symbol_string+0x421/0x6e0
[  459.538613][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.543683][ T8165]  ? __kernel_text_address+0x32/0xf0
[  459.549011][ T8165]  ? __stack_depot_save+0x1b1/0x4d0
[  459.554261][ T8165]  ? __stack_depot_save+0x21/0x4d0
[  459.559415][ T8165]  ? kmsan_get_metadata+0x33/0x220
[  459.564576][ T8165]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[  459.570865][ T8165]  ? kmsan_get_metadata+0x33/0x220
[  459.576023][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.581882][ T8165]  pointer+0x136e/0x2060
[  459.586156][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.591214][ T8165]  ? kmsan_get_metadata+0x33/0x220
[  459.596374][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.602232][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.607290][ T8165]  vsnprintf+0x1a9b/0x3650
[  459.611754][ T8165]  seq_printf+0x314/0x4f0
[  459.616137][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.621191][ T8165]  ? proc_pid_stack+0x305/0x4d0
[  459.626083][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.631941][ T8165]  ? futex_wait_queue+0x24c/0x420
[  459.637001][ T8165]  proc_pid_stack+0x3b7/0x4d0
[  459.641726][ T8165]  proc_single_show+0x1cc/0x370
[  459.646627][ T8165]  ? proc_pid_wchan+0x260/0x260
[  459.651518][ T8165]  ? proc_single_open+0x90/0x90
[  459.656406][ T8165]  seq_read_iter+0xaac/0x2150
[  459.661121][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.666983][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.672842][ T8165]  seq_read+0x7a6/0x990
[  459.677049][ T8165]  ? seq_open+0x320/0x320
[  459.681404][ T8165]  vfs_read+0x6c8/0x1980
[  459.685691][ T8165]  ? kmsan_internal_unpoison_memory+0x10/0x20
[  459.691821][ T8165]  ? kmsan_get_metadata+0x33/0x220
[  459.696976][ T8165]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[  459.702838][ T8165]  ksys_read+0x28b/0x510
[  459.707134][ T8165]  __ia32_sys_read+0xdb/0x120
[  459.711858][ T8165]  __do_fast_syscall_32+0x96/0xf0
[  459.716931][ T8165]  ? irqentry_exit_to_user_mode+0x15/0x30
[  459.722692][ T8165]  do_fast_syscall_32+0x34/0x70
[  459.727595][ T8165]  do_SYSENTER_32+0x1b/0x20
[  459.732145][ T8165]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  459.738526][ T8165] RIP: 0023:0xf6e8e549
[  459.742608][ T8165] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[  459.762252][ T8165] RSP: 002b:00000000f58885cc EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  459.770695][ T8165] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  459.778691][ T8165] RDX: 000000000000008a RSI: 0000000000000000 RDI: 0000000000000000
[  459.786683][ T8165] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  459.794672][ T8165] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  459.802661][ T8165] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  459.810663][ T8165]  </TASK>
[  459.813862][ T8165] Kernel Offset: disabled
[  459.818187][ T8165] Rebooting in 86400 seconds..