msg+0x4ca/0x510 [ 825.087952][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.094016][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.100165][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.105430][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.110281][T18458] do_SYSENTER_32+0x73/0x90 [ 825.114821][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.121157][T18458] [ 825.123473][T18458] Uninit was stored to memory at: [ 825.128499][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.134222][T18458] __msan_chain_origin+0x50/0x90 [ 825.139158][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.144269][T18458] get_compat_msghdr+0x108/0x270 [ 825.149206][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.153692][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.158350][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.164410][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.170562][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.175795][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.180630][T18458] do_SYSENTER_32+0x73/0x90 [ 825.185131][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.191448][T18458] [ 825.193771][T18458] Uninit was stored to memory at: [ 825.198832][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.204549][T18458] __msan_chain_origin+0x50/0x90 [ 825.209605][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.214714][T18458] get_compat_msghdr+0x108/0x270 [ 825.219659][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.224166][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.228844][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.234903][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.241048][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.246236][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.251070][T18458] do_SYSENTER_32+0x73/0x90 [ 825.255556][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.261863][T18458] [ 825.264194][T18458] Uninit was stored to memory at: [ 825.269218][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.274921][T18458] __msan_chain_origin+0x50/0x90 [ 825.279875][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.284991][T18458] get_compat_msghdr+0x108/0x270 [ 825.289978][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.294476][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.299160][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.305241][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.311394][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.316603][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.321440][T18458] do_SYSENTER_32+0x73/0x90 [ 825.325981][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.332320][T18458] [ 825.334632][T18458] Uninit was stored to memory at: [ 825.339669][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.345442][T18458] __msan_chain_origin+0x50/0x90 [ 825.350411][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.355541][T18458] get_compat_msghdr+0x108/0x270 [ 825.360465][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.365012][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.369686][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.375739][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.381879][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.387068][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.391906][T18458] do_SYSENTER_32+0x73/0x90 [ 825.396397][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.402700][T18458] [ 825.405019][T18458] Uninit was stored to memory at: [ 825.410046][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.415751][T18458] __msan_chain_origin+0x50/0x90 [ 825.420677][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.425783][T18458] get_compat_msghdr+0x108/0x270 [ 825.430719][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.435332][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.440041][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.446095][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.452352][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.457540][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.462377][T18458] do_SYSENTER_32+0x73/0x90 [ 825.466867][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.473178][T18458] [ 825.475544][T18458] Uninit was stored to memory at: [ 825.480593][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.486297][T18458] __msan_chain_origin+0x50/0x90 [ 825.491221][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.496366][T18458] get_compat_msghdr+0x108/0x270 [ 825.501288][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.505787][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.510461][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.516524][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.522679][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.527910][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.532745][T18458] do_SYSENTER_32+0x73/0x90 [ 825.537237][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.543550][T18458] [ 825.545879][T18458] Local variable ----msg_sys@do_recvmmsg created at: [ 825.552545][T18458] do_recvmmsg+0xc5/0x1ee0 [ 825.556981][T18458] do_recvmmsg+0xc5/0x1ee0 [ 825.721035][T18458] not chained 3520000 origins [ 825.725779][T18458] CPU: 0 PID: 18458 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 825.734586][T18458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 825.744652][T18458] Call Trace: [ 825.747966][T18458] dump_stack+0x1df/0x240 [ 825.752317][T18458] kmsan_internal_chain_origin+0x6f/0x130 [ 825.758064][T18458] ? _raw_spin_unlock_bh+0x4b/0x60 [ 825.763310][T18458] ? release_sock+0x238/0x2a0 [ 825.768009][T18458] ? sctp_recvmsg+0xd9b/0x1160 [ 825.772794][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 825.778049][T18458] ? kmsan_set_origin_checked+0x95/0xf0 [ 825.783612][T18458] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 825.789694][T18458] ? _copy_from_user+0x15b/0x260 [ 825.794645][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 825.799770][T18458] __msan_chain_origin+0x50/0x90 [ 825.804795][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.809940][T18458] get_compat_msghdr+0x108/0x270 [ 825.814909][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.819450][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 825.824577][T18458] ? __msan_poison_alloca+0xf0/0x120 [ 825.829874][T18458] ? __sys_recvmmsg+0xb4/0x510 [ 825.834658][T18458] ? __sys_recvmmsg+0xb4/0x510 [ 825.839434][T18458] ? kmsan_get_metadata+0x11d/0x180 [ 825.844646][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.849348][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.855435][T18458] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 825.861690][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.867963][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.873284][T18458] do_fast_syscall_32+0x6b/0xd0 [ 825.878216][T18458] do_SYSENTER_32+0x73/0x90 [ 825.882721][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 825.889033][T18458] RIP: 0023:0xf7fd3549 [ 825.893211][T18458] Code: Bad RIP value. [ 825.897271][T18458] RSP: 002b:00000000f5dad0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 825.905667][T18458] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 825.913633][T18458] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 825.921815][T18458] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 825.929778][T18458] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 825.937742][T18458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 825.945882][T18458] Uninit was stored to memory at: [ 825.950906][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 825.956741][T18458] __msan_chain_origin+0x50/0x90 [ 825.961679][T18458] __get_compat_msghdr+0x5be/0x890 [ 825.966777][T18458] get_compat_msghdr+0x108/0x270 [ 825.971699][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 825.976207][T18458] __sys_recvmmsg+0x4ca/0x510 [ 825.980885][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 825.986942][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 825.993092][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 825.998289][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.003134][T18458] do_SYSENTER_32+0x73/0x90 [ 826.007631][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.013942][T18458] [ 826.016269][T18458] Uninit was stored to memory at: [ 826.021292][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.027033][T18458] __msan_chain_origin+0x50/0x90 [ 826.031961][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.037062][T18458] get_compat_msghdr+0x108/0x270 [ 826.041985][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.046473][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.051133][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.057186][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.063337][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.068587][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.073436][T18458] do_SYSENTER_32+0x73/0x90 [ 826.077939][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.084248][T18458] [ 826.086572][T18458] Uninit was stored to memory at: [ 826.091585][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.097470][T18458] __msan_chain_origin+0x50/0x90 [ 826.102425][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.107649][T18458] get_compat_msghdr+0x108/0x270 [ 826.112576][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.117090][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.121753][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.127805][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.134081][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.139275][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.144112][T18458] do_SYSENTER_32+0x73/0x90 [ 826.148642][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.154954][T18458] [ 826.157278][T18458] Uninit was stored to memory at: [ 826.162293][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.168056][T18458] __msan_chain_origin+0x50/0x90 [ 826.172990][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.178112][T18458] get_compat_msghdr+0x108/0x270 [ 826.183060][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.187670][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.192332][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.198385][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.204538][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.209724][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.214697][T18458] do_SYSENTER_32+0x73/0x90 [ 826.219205][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.225632][T18458] [ 826.227946][T18458] Uninit was stored to memory at: [ 826.233031][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.238750][T18458] __msan_chain_origin+0x50/0x90 [ 826.243692][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.248799][T18458] get_compat_msghdr+0x108/0x270 [ 826.253737][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.258248][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.263058][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.269262][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.275418][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.280733][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.285587][T18458] do_SYSENTER_32+0x73/0x90 [ 826.290088][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.296398][T18458] [ 826.298914][T18458] Uninit was stored to memory at: [ 826.304224][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.310054][T18458] __msan_chain_origin+0x50/0x90 [ 826.315127][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.320416][T18458] get_compat_msghdr+0x108/0x270 [ 826.325391][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.329880][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.334557][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.340682][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.346826][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.352131][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.357028][T18458] do_SYSENTER_32+0x73/0x90 [ 826.361653][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.367965][T18458] [ 826.370338][T18458] Uninit was stored to memory at: [ 826.375368][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.381093][T18458] __msan_chain_origin+0x50/0x90 [ 826.386101][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.391199][T18458] get_compat_msghdr+0x108/0x270 [ 826.396211][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.400719][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.405424][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.411592][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.417744][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.422953][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.427798][T18458] do_SYSENTER_32+0x73/0x90 [ 826.432285][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.438755][T18458] [ 826.441071][T18458] Local variable ----msg_sys@do_recvmmsg created at: [ 826.447734][T18458] do_recvmmsg+0xc5/0x1ee0 [ 826.452217][T18458] do_recvmmsg+0xc5/0x1ee0 [ 826.621170][T18458] not chained 3530000 origins [ 826.626132][T18458] CPU: 0 PID: 18458 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 826.634866][T18458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 826.644937][T18458] Call Trace: [ 826.648245][T18458] dump_stack+0x1df/0x240 [ 826.652593][T18458] kmsan_internal_chain_origin+0x6f/0x130 [ 826.658335][T18458] ? _raw_spin_unlock_bh+0x4b/0x60 [ 826.663463][T18458] ? release_sock+0x238/0x2a0 [ 826.668159][T18458] ? sctp_recvmsg+0xd9b/0x1160 [ 826.672945][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 826.678067][T18458] ? kmsan_set_origin_checked+0x95/0xf0 [ 826.683630][T18458] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 826.689711][T18458] ? _copy_from_user+0x15b/0x260 [ 826.694662][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 826.699864][T18458] __msan_chain_origin+0x50/0x90 [ 826.704827][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.710124][T18458] get_compat_msghdr+0x108/0x270 [ 826.715090][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.719631][T18458] ? kmsan_get_metadata+0x4f/0x180 [ 826.724759][T18458] ? __msan_poison_alloca+0xf0/0x120 [ 826.730068][T18458] ? __sys_recvmmsg+0xb4/0x510 [ 826.734949][T18458] ? __sys_recvmmsg+0xb4/0x510 [ 826.739724][T18458] ? kmsan_get_metadata+0x11d/0x180 [ 826.744935][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.749633][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.755717][T18458] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 826.761983][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.768149][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.773374][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.778236][T18458] do_SYSENTER_32+0x73/0x90 [ 826.782736][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.789157][T18458] RIP: 0023:0xf7fd3549 [ 826.793260][T18458] Code: Bad RIP value. [ 826.797321][T18458] RSP: 002b:00000000f5dad0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 826.805721][T18458] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 826.813843][T18458] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 826.821845][T18458] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 826.829851][T18458] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 826.837821][T18458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 826.845801][T18458] Uninit was stored to memory at: [ 826.850866][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.856584][T18458] __msan_chain_origin+0x50/0x90 [ 826.861523][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.866669][T18458] get_compat_msghdr+0x108/0x270 [ 826.871591][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.876087][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.880783][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.886834][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.892977][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.898174][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.903021][T18458] do_SYSENTER_32+0x73/0x90 [ 826.907524][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.913884][T18458] [ 826.916281][T18458] Uninit was stored to memory at: [ 826.921523][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.927600][T18458] __msan_chain_origin+0x50/0x90 [ 826.932558][T18458] __get_compat_msghdr+0x5be/0x890 [ 826.937660][T18458] get_compat_msghdr+0x108/0x270 [ 826.942583][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 826.947076][T18458] __sys_recvmmsg+0x4ca/0x510 [ 826.951740][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 826.958028][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 826.964381][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 826.969577][T18458] do_fast_syscall_32+0x6b/0xd0 [ 826.974428][T18458] do_SYSENTER_32+0x73/0x90 [ 826.978959][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 826.985294][T18458] [ 826.987607][T18458] Uninit was stored to memory at: [ 826.992616][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 826.998461][T18458] __msan_chain_origin+0x50/0x90 [ 827.003390][T18458] __get_compat_msghdr+0x5be/0x890 [ 827.008513][T18458] get_compat_msghdr+0x108/0x270 [ 827.013449][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 827.017954][T18458] __sys_recvmmsg+0x4ca/0x510 [ 827.022646][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 827.028698][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 827.034853][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 827.040054][T18458] do_fast_syscall_32+0x6b/0xd0 [ 827.044903][T18458] do_SYSENTER_32+0x73/0x90 [ 827.049393][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 827.055932][T18458] [ 827.058265][T18458] Uninit was stored to memory at: [ 827.063313][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 827.069492][T18458] __msan_chain_origin+0x50/0x90 [ 827.074438][T18458] __get_compat_msghdr+0x5be/0x890 [ 827.079553][T18458] get_compat_msghdr+0x108/0x270 [ 827.084480][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 827.089049][T18458] __sys_recvmmsg+0x4ca/0x510 [ 827.093723][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 827.099786][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 827.106020][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 827.111253][T18458] do_fast_syscall_32+0x6b/0xd0 [ 827.116094][T18458] do_SYSENTER_32+0x73/0x90 [ 827.120653][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 827.126958][T18458] [ 827.129268][T18458] Uninit was stored to memory at: [ 827.134291][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 827.140009][T18458] __msan_chain_origin+0x50/0x90 [ 827.144968][T18458] __get_compat_msghdr+0x5be/0x890 [ 827.150061][T18458] get_compat_msghdr+0x108/0x270 [ 827.154997][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 827.159547][T18458] __sys_recvmmsg+0x4ca/0x510 [ 827.164220][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 827.170333][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 827.176606][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 827.182746][T18458] do_fast_syscall_32+0x6b/0xd0 [ 827.187621][T18458] do_SYSENTER_32+0x73/0x90 [ 827.192144][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 827.198536][T18458] [ 827.200853][T18458] Uninit was stored to memory at: [ 827.205868][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 827.211571][T18458] __msan_chain_origin+0x50/0x90 [ 827.216518][T18458] __get_compat_msghdr+0x5be/0x890 [ 827.221632][T18458] get_compat_msghdr+0x108/0x270 [ 827.226562][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 827.231053][T18458] __sys_recvmmsg+0x4ca/0x510 [ 827.235726][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 827.241783][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 827.247923][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 827.253118][T18458] do_fast_syscall_32+0x6b/0xd0 [ 827.257968][T18458] do_SYSENTER_32+0x73/0x90 [ 827.262603][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 827.268912][T18458] [ 827.271229][T18458] Uninit was stored to memory at: [ 827.276252][T18458] kmsan_internal_chain_origin+0xad/0x130 [ 827.282067][T18458] __msan_chain_origin+0x50/0x90 [ 827.286994][T18458] __get_compat_msghdr+0x5be/0x890 [ 827.292094][T18458] get_compat_msghdr+0x108/0x270 [ 827.297035][T18458] do_recvmmsg+0xa6a/0x1ee0 [ 827.301552][T18458] __sys_recvmmsg+0x4ca/0x510 [ 827.306233][T18458] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 827.312377][T18458] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 827.318517][T18458] __do_fast_syscall_32+0x2aa/0x400 [ 827.323824][T18458] do_fast_syscall_32+0x6b/0xd0 [ 827.328679][T18458] do_SYSENTER_32+0x73/0x90 [ 827.333227][T18458] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 827.339589][T18458] [ 827.341913][T18458] Local variable ----msg_sys@do_recvmmsg created at: [ 827.348580][T18458] do_recvmmsg+0xc5/0x1ee0 [ 827.352997][T18458] do_recvmmsg+0xc5/0x1ee0 15:58:17 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:58:17 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:17 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:17 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(0xffffffffffffffff) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:58:17 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 15:58:17 executing program 1: syz_emit_ethernet(0x22, &(0x7f0000000080)={@local, @random="46b8c6281661", @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}}}}, 0x0) 15:58:17 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:17 executing program 1: syz_emit_ethernet(0x0, 0x0, 0x0) 15:58:17 executing program 5: r0 = socket$kcm(0x10, 0x100000000002, 0x4) recvmsg$kcm(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$kcm(r0, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000003a00)=[{&(0x7f0000000100)="39000000140081ae0ec02c000500018701546fabcae5e5741af20f367c355fee27a04f7e0592616675e285af71583c7d06a6580e883795c0c5", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0) 15:58:17 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:17 executing program 1: syz_emit_ethernet(0x0, 0x0, 0x0) 15:58:18 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) [ 828.738686][T18505] not chained 3540000 origins [ 828.743444][T18505] CPU: 1 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 828.752103][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 828.762163][T18505] Call Trace: [ 828.765448][T18505] dump_stack+0x1df/0x240 [ 828.769775][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 828.775493][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 828.780603][T18505] ? release_sock+0x238/0x2a0 [ 828.785275][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 828.790052][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 828.795151][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 828.800687][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 828.806761][T18505] ? _copy_from_user+0x15b/0x260 [ 828.811705][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 828.816823][T18505] __msan_chain_origin+0x50/0x90 [ 828.821755][T18505] __get_compat_msghdr+0x5be/0x890 [ 828.826869][T18505] get_compat_msghdr+0x108/0x270 [ 828.831820][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 828.836320][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 828.841951][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 828.847055][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 828.852353][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 828.857108][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 828.861877][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 828.867085][T18505] __sys_recvmmsg+0x4ca/0x510 [ 828.871768][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 828.877875][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 828.884114][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 828.890259][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 828.895472][T18505] do_fast_syscall_32+0x6b/0xd0 [ 828.900313][T18505] do_SYSENTER_32+0x73/0x90 [ 828.904824][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 828.911152][T18505] RIP: 0023:0xf7fd3549 [ 828.915200][T18505] Code: Bad RIP value. [ 828.919263][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 828.927664][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 828.935640][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 828.943599][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 828.951555][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 828.959528][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 828.967532][T18505] Uninit was stored to memory at: [ 828.972547][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 828.978251][T18505] __msan_chain_origin+0x50/0x90 [ 828.983178][T18505] __get_compat_msghdr+0x5be/0x890 [ 828.988276][T18505] get_compat_msghdr+0x108/0x270 [ 828.993202][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 828.997689][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.002355][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.008427][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.014571][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.019759][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.024596][T18505] do_SYSENTER_32+0x73/0x90 [ 829.029101][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.035421][T18505] [ 829.037749][T18505] Uninit was stored to memory at: [ 829.042778][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.048484][T18505] __msan_chain_origin+0x50/0x90 [ 829.053411][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.058508][T18505] get_compat_msghdr+0x108/0x270 [ 829.063447][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.067953][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.072647][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.078720][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.084903][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.090106][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.094944][T18505] do_SYSENTER_32+0x73/0x90 [ 829.099449][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.105756][T18505] [ 829.108067][T18505] Uninit was stored to memory at: [ 829.113097][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.118800][T18505] __msan_chain_origin+0x50/0x90 [ 829.123726][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.128824][T18505] get_compat_msghdr+0x108/0x270 [ 829.133766][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.138256][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.142932][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.148984][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.155124][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.160397][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.165249][T18505] do_SYSENTER_32+0x73/0x90 [ 829.170271][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.176578][T18505] [ 829.178894][T18505] Uninit was stored to memory at: [ 829.183907][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.190766][T18505] __msan_chain_origin+0x50/0x90 [ 829.195781][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.200896][T18505] get_compat_msghdr+0x108/0x270 [ 829.205820][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.210312][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.214986][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.221035][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.227325][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.232555][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.237404][T18505] do_SYSENTER_32+0x73/0x90 [ 829.241903][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.248311][T18505] [ 829.250648][T18505] Uninit was stored to memory at: [ 829.255659][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.261367][T18505] __msan_chain_origin+0x50/0x90 [ 829.266312][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.271410][T18505] get_compat_msghdr+0x108/0x270 [ 829.276335][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.280835][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.285497][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.291548][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.297687][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.302883][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.307729][T18505] do_SYSENTER_32+0x73/0x90 [ 829.312247][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.318551][T18505] [ 829.320863][T18505] Uninit was stored to memory at: [ 829.325873][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.331586][T18505] __msan_chain_origin+0x50/0x90 [ 829.336530][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.341628][T18505] get_compat_msghdr+0x108/0x270 [ 829.346552][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.351040][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.355702][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.361753][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.367909][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.373110][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.377945][T18505] do_SYSENTER_32+0x73/0x90 [ 829.382440][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.388743][T18505] [ 829.391056][T18505] Uninit was stored to memory at: [ 829.396081][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 829.401801][T18505] __msan_chain_origin+0x50/0x90 [ 829.406726][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.411822][T18505] get_compat_msghdr+0x108/0x270 [ 829.416749][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.421238][T18505] __sys_recvmmsg+0x4ca/0x510 [ 829.425901][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 829.431953][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 829.438094][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 829.443281][T18505] do_fast_syscall_32+0x6b/0xd0 [ 829.448118][T18505] do_SYSENTER_32+0x73/0x90 [ 829.452605][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 829.458923][T18505] [ 829.461238][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 829.467896][T18505] do_recvmmsg+0xc5/0x1ee0 [ 829.472296][T18505] do_recvmmsg+0xc5/0x1ee0 [ 829.896771][T18505] not chained 3550000 origins [ 829.901520][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 829.910194][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 829.920245][T18505] Call Trace: [ 829.923551][T18505] dump_stack+0x1df/0x240 [ 829.927878][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 829.933680][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 829.938780][T18505] ? release_sock+0x238/0x2a0 [ 829.943469][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 829.948245][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 829.953344][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 829.958890][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 829.964966][T18505] ? _copy_from_user+0x15b/0x260 [ 829.969892][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 829.975010][T18505] __msan_chain_origin+0x50/0x90 [ 829.979961][T18505] __get_compat_msghdr+0x5be/0x890 [ 829.985091][T18505] get_compat_msghdr+0x108/0x270 [ 829.990024][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 829.994525][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 830.000157][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 830.005258][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 830.010551][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 830.015303][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 830.020072][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 830.025261][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.029938][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.036014][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 830.042243][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.048391][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.053603][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.058445][T18505] do_SYSENTER_32+0x73/0x90 [ 830.062942][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.069271][T18505] RIP: 0023:0xf7fd3549 [ 830.073336][T18505] Code: Bad RIP value. [ 830.077386][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 830.085796][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 830.093753][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 830.101709][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 830.109687][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 830.117664][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 830.125630][T18505] Uninit was stored to memory at: [ 830.130644][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.136351][T18505] __msan_chain_origin+0x50/0x90 [ 830.141275][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.146374][T18505] get_compat_msghdr+0x108/0x270 [ 830.151297][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.155788][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.160464][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.166531][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.172674][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.177963][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.182801][T18505] do_SYSENTER_32+0x73/0x90 [ 830.187292][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.193613][T18505] [ 830.195922][T18505] Uninit was stored to memory at: [ 830.200952][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.206674][T18505] __msan_chain_origin+0x50/0x90 [ 830.211607][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.216710][T18505] get_compat_msghdr+0x108/0x270 [ 830.221648][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.226156][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.230829][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.236909][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.243058][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.248281][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.253121][T18505] do_SYSENTER_32+0x73/0x90 [ 830.257610][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.263926][T18505] [ 830.266243][T18505] Uninit was stored to memory at: [ 830.271255][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.276958][T18505] __msan_chain_origin+0x50/0x90 [ 830.281881][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.286981][T18505] get_compat_msghdr+0x108/0x270 [ 830.292091][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.296580][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.301245][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.307302][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.313442][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.318647][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.323487][T18505] do_SYSENTER_32+0x73/0x90 [ 830.327992][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.334319][T18505] [ 830.336631][T18505] Uninit was stored to memory at: [ 830.341680][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.347403][T18505] __msan_chain_origin+0x50/0x90 [ 830.352348][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.357448][T18505] get_compat_msghdr+0x108/0x270 [ 830.362370][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.366861][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.371526][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.377578][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.383735][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.388922][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.393764][T18505] do_SYSENTER_32+0x73/0x90 [ 830.398251][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.404555][T18505] [ 830.406865][T18505] Uninit was stored to memory at: [ 830.411876][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.417592][T18505] __msan_chain_origin+0x50/0x90 [ 830.422517][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.427629][T18505] get_compat_msghdr+0x108/0x270 [ 830.432553][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.437042][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.441704][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.447760][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.453900][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.459170][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.464036][T18505] do_SYSENTER_32+0x73/0x90 [ 830.468565][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.474891][T18505] [ 830.477202][T18505] Uninit was stored to memory at: [ 830.482232][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.487954][T18505] __msan_chain_origin+0x50/0x90 [ 830.492894][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.497992][T18505] get_compat_msghdr+0x108/0x270 [ 830.502917][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.507430][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.512099][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.518180][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.524334][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.529534][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.534402][T18505] do_SYSENTER_32+0x73/0x90 [ 830.538899][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.545205][T18505] [ 830.547518][T18505] Uninit was stored to memory at: [ 830.552550][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 830.558286][T18505] __msan_chain_origin+0x50/0x90 [ 830.563219][T18505] __get_compat_msghdr+0x5be/0x890 [ 830.568319][T18505] get_compat_msghdr+0x108/0x270 [ 830.573254][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 830.577752][T18505] __sys_recvmmsg+0x4ca/0x510 [ 830.582418][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 830.588472][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 830.594613][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 830.599797][T18505] do_fast_syscall_32+0x6b/0xd0 [ 830.604633][T18505] do_SYSENTER_32+0x73/0x90 [ 830.609120][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 830.615422][T18505] [ 830.617733][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 830.624397][T18505] do_recvmmsg+0xc5/0x1ee0 [ 830.628799][T18505] do_recvmmsg+0xc5/0x1ee0 [ 830.939809][T18505] not chained 3560000 origins [ 830.944549][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 830.953245][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 830.963325][T18505] Call Trace: [ 830.966621][T18505] dump_stack+0x1df/0x240 [ 830.970969][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 830.976704][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 830.981824][T18505] ? release_sock+0x238/0x2a0 [ 830.986514][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 830.991289][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 830.996405][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 831.001956][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 831.008032][T18505] ? _copy_from_user+0x15b/0x260 [ 831.012969][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 831.018084][T18505] __msan_chain_origin+0x50/0x90 [ 831.023029][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.028162][T18505] get_compat_msghdr+0x108/0x270 [ 831.033133][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.037657][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 831.043307][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 831.048426][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 831.053720][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 831.058608][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 831.063386][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 831.068597][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.073288][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.079364][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 831.085610][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.091770][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.096986][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.101847][T18505] do_SYSENTER_32+0x73/0x90 [ 831.106355][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.112680][T18505] RIP: 0023:0xf7fd3549 [ 831.116742][T18505] Code: Bad RIP value. [ 831.120806][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 831.129218][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 831.137197][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 831.145170][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 831.153145][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 831.161117][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 831.169127][T18505] Uninit was stored to memory at: [ 831.174166][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.179892][T18505] __msan_chain_origin+0x50/0x90 [ 831.184823][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.190047][T18505] get_compat_msghdr+0x108/0x270 [ 831.195011][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.199511][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.204180][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.210233][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.216389][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.221592][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.226441][T18505] do_SYSENTER_32+0x73/0x90 [ 831.230941][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.237255][T18505] [ 831.239591][T18505] Uninit was stored to memory at: [ 831.244605][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.250332][T18505] __msan_chain_origin+0x50/0x90 [ 831.255256][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.260354][T18505] get_compat_msghdr+0x108/0x270 [ 831.265276][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.269767][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.274431][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.280481][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.286641][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.291829][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.296685][T18505] do_SYSENTER_32+0x73/0x90 [ 831.301173][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.307476][T18505] [ 831.309806][T18505] Uninit was stored to memory at: [ 831.314816][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.320534][T18505] __msan_chain_origin+0x50/0x90 [ 831.325459][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.330555][T18505] get_compat_msghdr+0x108/0x270 [ 831.335481][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.339970][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.344651][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.350703][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.356841][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.362024][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.366863][T18505] do_SYSENTER_32+0x73/0x90 [ 831.371349][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.377656][T18505] [ 831.379966][T18505] Uninit was stored to memory at: [ 831.384978][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.390681][T18505] __msan_chain_origin+0x50/0x90 [ 831.395606][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.400719][T18505] get_compat_msghdr+0x108/0x270 [ 831.405642][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.410145][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.414807][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.420858][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.426995][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.432181][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.437038][T18505] do_SYSENTER_32+0x73/0x90 [ 831.441530][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.447854][T18505] [ 831.450168][T18505] Uninit was stored to memory at: [ 831.455180][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.460886][T18505] __msan_chain_origin+0x50/0x90 [ 831.465837][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.470938][T18505] get_compat_msghdr+0x108/0x270 [ 831.475863][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.480354][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.485036][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.491091][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.497229][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.502415][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.507271][T18505] do_SYSENTER_32+0x73/0x90 [ 831.511762][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.518070][T18505] [ 831.520381][T18505] Uninit was stored to memory at: [ 831.525402][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.531108][T18505] __msan_chain_origin+0x50/0x90 [ 831.536062][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.541162][T18505] get_compat_msghdr+0x108/0x270 [ 831.546085][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.550576][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.555245][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.561294][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.567453][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.572639][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.577478][T18505] do_SYSENTER_32+0x73/0x90 [ 831.581968][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.588273][T18505] [ 831.590582][T18505] Uninit was stored to memory at: [ 831.595610][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 831.601316][T18505] __msan_chain_origin+0x50/0x90 [ 831.606245][T18505] __get_compat_msghdr+0x5be/0x890 [ 831.611342][T18505] get_compat_msghdr+0x108/0x270 [ 831.616269][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 831.620777][T18505] __sys_recvmmsg+0x4ca/0x510 [ 831.625443][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 831.631495][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 831.637649][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 831.642958][T18505] do_fast_syscall_32+0x6b/0xd0 [ 831.647814][T18505] do_SYSENTER_32+0x73/0x90 [ 831.652329][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 831.658647][T18505] [ 831.660964][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 831.667633][T18505] do_recvmmsg+0xc5/0x1ee0 [ 831.672043][T18505] do_recvmmsg+0xc5/0x1ee0 [ 831.921130][T18505] not chained 3570000 origins [ 831.925948][T18505] CPU: 1 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 831.934638][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 831.944672][T18505] Call Trace: [ 831.947955][T18505] dump_stack+0x1df/0x240 [ 831.952267][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 831.957969][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 831.963064][T18505] ? release_sock+0x238/0x2a0 [ 831.967745][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 831.972506][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 831.977624][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 831.983158][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 831.989208][T18505] ? _copy_from_user+0x15b/0x260 [ 831.994125][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 831.999214][T18505] __msan_chain_origin+0x50/0x90 [ 832.004151][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.009246][T18505] get_compat_msghdr+0x108/0x270 [ 832.014166][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.018651][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 832.024266][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 832.029355][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 832.034645][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 832.039404][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 832.044147][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 832.049325][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.053986][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.060031][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 832.066264][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.072396][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.077577][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.082421][T18505] do_SYSENTER_32+0x73/0x90 [ 832.086903][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.093205][T18505] RIP: 0023:0xf7fd3549 [ 832.097247][T18505] Code: Bad RIP value. [ 832.101288][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 832.109673][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 832.117624][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 832.125574][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 832.133530][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 832.142118][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 832.150098][T18505] Uninit was stored to memory at: [ 832.155111][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.160869][T18505] __msan_chain_origin+0x50/0x90 [ 832.165797][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.170938][T18505] get_compat_msghdr+0x108/0x270 [ 832.175859][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.180359][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.185016][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.191059][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.197191][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.202381][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.207218][T18505] do_SYSENTER_32+0x73/0x90 [ 832.211721][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.218062][T18505] [ 832.220367][T18505] Uninit was stored to memory at: [ 832.225373][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.231134][T18505] __msan_chain_origin+0x50/0x90 [ 832.236056][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.241146][T18505] get_compat_msghdr+0x108/0x270 [ 832.246082][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.250587][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.255286][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.261328][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.267458][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.272648][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.277480][T18505] do_SYSENTER_32+0x73/0x90 [ 832.281959][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.288254][T18505] [ 832.290589][T18505] Uninit was stored to memory at: [ 832.295594][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.301307][T18505] __msan_chain_origin+0x50/0x90 [ 832.306255][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.311374][T18505] get_compat_msghdr+0x108/0x270 [ 832.316333][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.320815][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.325468][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.331510][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.337638][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.342811][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.347639][T18505] do_SYSENTER_32+0x73/0x90 [ 832.352116][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.358419][T18505] [ 832.360731][T18505] Uninit was stored to memory at: [ 832.365743][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.371442][T18505] __msan_chain_origin+0x50/0x90 [ 832.376405][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.381496][T18505] get_compat_msghdr+0x108/0x270 [ 832.386409][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.390891][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.395542][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.401582][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.407738][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.412912][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.417737][T18505] do_SYSENTER_32+0x73/0x90 [ 832.422213][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.428508][T18505] [ 832.430811][T18505] Uninit was stored to memory at: [ 832.435812][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.441505][T18505] __msan_chain_origin+0x50/0x90 [ 832.446418][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.451505][T18505] get_compat_msghdr+0x108/0x270 [ 832.456417][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.460898][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.465550][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.471604][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.477731][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.482934][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.487774][T18505] do_SYSENTER_32+0x73/0x90 [ 832.492250][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.498564][T18505] [ 832.500867][T18505] Uninit was stored to memory at: [ 832.505874][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.511588][T18505] __msan_chain_origin+0x50/0x90 [ 832.516521][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.521610][T18505] get_compat_msghdr+0x108/0x270 [ 832.526576][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.531059][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.535758][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.541800][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.547960][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.553156][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.557983][T18505] do_SYSENTER_32+0x73/0x90 [ 832.562461][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.568779][T18505] [ 832.571101][T18505] Uninit was stored to memory at: [ 832.576104][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 832.581796][T18505] __msan_chain_origin+0x50/0x90 [ 832.586712][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.591799][T18505] get_compat_msghdr+0x108/0x270 [ 832.596712][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.601206][T18505] __sys_recvmmsg+0x4ca/0x510 [ 832.605858][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 832.611919][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 832.618049][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 832.623242][T18505] do_fast_syscall_32+0x6b/0xd0 [ 832.628067][T18505] do_SYSENTER_32+0x73/0x90 [ 832.632546][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 832.638843][T18505] [ 832.641161][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 832.647810][T18505] do_recvmmsg+0xc5/0x1ee0 [ 832.652200][T18505] do_recvmmsg+0xc5/0x1ee0 [ 832.880713][T18505] not chained 3580000 origins [ 832.885447][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 832.894112][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 832.904167][T18505] Call Trace: [ 832.907469][T18505] dump_stack+0x1df/0x240 [ 832.911828][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 832.917559][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 832.922673][T18505] ? release_sock+0x238/0x2a0 [ 832.927359][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 832.932136][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 832.937253][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 832.942805][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 832.948884][T18505] ? _copy_from_user+0x15b/0x260 [ 832.953850][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 832.958968][T18505] __msan_chain_origin+0x50/0x90 [ 832.963919][T18505] __get_compat_msghdr+0x5be/0x890 [ 832.969186][T18505] get_compat_msghdr+0x108/0x270 [ 832.974135][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 832.978680][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 832.984325][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 832.989528][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 832.994796][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 832.999538][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 833.004293][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 833.009484][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.014149][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.020216][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 833.026441][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.034061][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.039255][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.044147][T18505] do_SYSENTER_32+0x73/0x90 [ 833.048679][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.054989][T18505] RIP: 0023:0xf7fd3549 [ 833.059032][T18505] Code: Bad RIP value. [ 833.063078][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 833.071481][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 833.079433][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 833.087383][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 833.095333][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 833.103397][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 833.111356][T18505] Uninit was stored to memory at: [ 833.116376][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.122080][T18505] __msan_chain_origin+0x50/0x90 [ 833.126997][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.132084][T18505] get_compat_msghdr+0x108/0x270 [ 833.137016][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.141494][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.146150][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.152192][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.158413][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.163624][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.168518][T18505] do_SYSENTER_32+0x73/0x90 [ 833.173038][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.179398][T18505] [ 833.181759][T18505] Uninit was stored to memory at: [ 833.186783][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.192481][T18505] __msan_chain_origin+0x50/0x90 [ 833.197491][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.202601][T18505] get_compat_msghdr+0x108/0x270 [ 833.207522][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.212004][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.216659][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.222717][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.228862][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.234051][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.239067][T18505] do_SYSENTER_32+0x73/0x90 [ 833.243605][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.249907][T18505] [ 833.252209][T18505] Uninit was stored to memory at: [ 833.257216][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.262913][T18505] __msan_chain_origin+0x50/0x90 [ 833.267841][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.272934][T18505] get_compat_msghdr+0x108/0x270 [ 833.277876][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.282503][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.287166][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.293220][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.299363][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.304541][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.309369][T18505] do_SYSENTER_32+0x73/0x90 [ 833.313957][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.320255][T18505] [ 833.322574][T18505] Uninit was stored to memory at: [ 833.327578][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.333282][T18505] __msan_chain_origin+0x50/0x90 [ 833.338218][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.343317][T18505] get_compat_msghdr+0x108/0x270 [ 833.348245][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.352722][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.357376][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.363439][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.369585][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.374775][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.379617][T18505] do_SYSENTER_32+0x73/0x90 [ 833.384117][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.390432][T18505] [ 833.392752][T18505] Uninit was stored to memory at: [ 833.397771][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.403489][T18505] __msan_chain_origin+0x50/0x90 [ 833.408418][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.413508][T18505] get_compat_msghdr+0x108/0x270 [ 833.418437][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.422920][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.427572][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.433632][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.439760][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.444947][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.449808][T18505] do_SYSENTER_32+0x73/0x90 [ 833.454288][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.460583][T18505] [ 833.462884][T18505] Uninit was stored to memory at: [ 833.467890][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.473588][T18505] __msan_chain_origin+0x50/0x90 [ 833.478501][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.483588][T18505] get_compat_msghdr+0x108/0x270 [ 833.488500][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.492987][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.497648][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.503688][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.509819][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.514997][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.519823][T18505] do_SYSENTER_32+0x73/0x90 [ 833.524303][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.530597][T18505] [ 833.532925][T18505] Uninit was stored to memory at: [ 833.537948][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 833.543645][T18505] __msan_chain_origin+0x50/0x90 [ 833.548558][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.553655][T18505] get_compat_msghdr+0x108/0x270 [ 833.558616][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.563124][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.567787][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.573859][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.580005][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.585195][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.590022][T18505] do_SYSENTER_32+0x73/0x90 [ 833.594518][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 833.600814][T18505] [ 833.603125][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 833.609799][T18505] do_recvmmsg+0xc5/0x1ee0 [ 833.614189][T18505] do_recvmmsg+0xc5/0x1ee0 [ 833.832315][T18505] not chained 3590000 origins [ 833.837048][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 833.845722][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 833.855782][T18505] Call Trace: [ 833.859087][T18505] dump_stack+0x1df/0x240 [ 833.863419][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 833.869135][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 833.874277][T18505] ? release_sock+0x238/0x2a0 [ 833.878936][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 833.883700][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 833.888800][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 833.894366][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 833.900432][T18505] ? _copy_from_user+0x15b/0x260 [ 833.905370][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 833.910475][T18505] __msan_chain_origin+0x50/0x90 [ 833.915412][T18505] __get_compat_msghdr+0x5be/0x890 [ 833.920506][T18505] get_compat_msghdr+0x108/0x270 [ 833.925425][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 833.929921][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 833.935599][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 833.940721][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 833.946053][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 833.950796][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 833.955555][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 833.960738][T18505] __sys_recvmmsg+0x4ca/0x510 [ 833.965426][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 833.971472][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 833.977711][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 833.983850][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 833.989030][T18505] do_fast_syscall_32+0x6b/0xd0 [ 833.993883][T18505] do_SYSENTER_32+0x73/0x90 [ 833.998390][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.004704][T18505] RIP: 0023:0xf7fd3549 [ 834.008744][T18505] Code: Bad RIP value. [ 834.012785][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 834.021187][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 834.029138][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 834.037119][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 834.045100][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 834.053055][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 834.061020][T18505] Uninit was stored to memory at: [ 834.066036][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.071738][T18505] __msan_chain_origin+0x50/0x90 [ 834.076664][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.081770][T18505] get_compat_msghdr+0x108/0x270 [ 834.086686][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.091182][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.095855][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.101903][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.108052][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.113245][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.118089][T18505] do_SYSENTER_32+0x73/0x90 [ 834.122567][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.128864][T18505] [ 834.131166][T18505] Uninit was stored to memory at: [ 834.136168][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.141878][T18505] __msan_chain_origin+0x50/0x90 [ 834.146800][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.151894][T18505] get_compat_msghdr+0x108/0x270 [ 834.156810][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.161289][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.165953][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.172011][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.178156][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.183344][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.188169][T18505] do_SYSENTER_32+0x73/0x90 [ 834.192647][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.198949][T18505] [ 834.201359][T18505] Uninit was stored to memory at: [ 834.206379][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.212080][T18505] __msan_chain_origin+0x50/0x90 [ 834.217015][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.222117][T18505] get_compat_msghdr+0x108/0x270 [ 834.227033][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.231527][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.236195][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.242241][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.248376][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.253561][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.258424][T18505] do_SYSENTER_32+0x73/0x90 [ 834.262905][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.269228][T18505] [ 834.271534][T18505] Uninit was stored to memory at: [ 834.276569][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.282263][T18505] __msan_chain_origin+0x50/0x90 [ 834.287178][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.292265][T18505] get_compat_msghdr+0x108/0x270 [ 834.297183][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.301681][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.306334][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.312376][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.318506][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.323695][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.328538][T18505] do_SYSENTER_32+0x73/0x90 [ 834.333037][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.339346][T18505] [ 834.341650][T18505] Uninit was stored to memory at: [ 834.346675][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.352386][T18505] __msan_chain_origin+0x50/0x90 [ 834.357305][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.362409][T18505] get_compat_msghdr+0x108/0x270 [ 834.367326][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.371803][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.376459][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.382506][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.388654][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.393854][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.398679][T18505] do_SYSENTER_32+0x73/0x90 [ 834.403159][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.409471][T18505] [ 834.411777][T18505] Uninit was stored to memory at: [ 834.416779][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.422499][T18505] __msan_chain_origin+0x50/0x90 [ 834.427429][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.432534][T18505] get_compat_msghdr+0x108/0x270 [ 834.437461][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.441952][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.446632][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.452674][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.458807][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.464008][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.468832][T18505] do_SYSENTER_32+0x73/0x90 [ 834.473330][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.479626][T18505] [ 834.481943][T18505] Uninit was stored to memory at: [ 834.486948][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 834.492642][T18505] __msan_chain_origin+0x50/0x90 [ 834.497559][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.502653][T18505] get_compat_msghdr+0x108/0x270 [ 834.509477][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.513957][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.518630][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.524674][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.530802][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.535981][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.540827][T18505] do_SYSENTER_32+0x73/0x90 [ 834.545318][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.551624][T18505] [ 834.553932][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 834.560583][T18505] do_recvmmsg+0xc5/0x1ee0 [ 834.564992][T18505] do_recvmmsg+0xc5/0x1ee0 [ 834.772619][T18505] not chained 3600000 origins [ 834.777348][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 834.786017][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 834.796071][T18505] Call Trace: [ 834.799370][T18505] dump_stack+0x1df/0x240 [ 834.803711][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 834.809444][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 834.814564][T18505] ? release_sock+0x238/0x2a0 [ 834.819250][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 834.824028][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 834.829146][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 834.834806][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 834.840879][T18505] ? _copy_from_user+0x15b/0x260 [ 834.845826][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 834.850941][T18505] __msan_chain_origin+0x50/0x90 [ 834.855876][T18505] __get_compat_msghdr+0x5be/0x890 [ 834.860975][T18505] get_compat_msghdr+0x108/0x270 [ 834.865896][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 834.870389][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 834.876052][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 834.881154][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 834.886435][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 834.891175][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 834.895969][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 834.901146][T18505] __sys_recvmmsg+0x4ca/0x510 [ 834.905808][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 834.911856][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 834.918075][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 834.924209][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 834.929389][T18505] do_fast_syscall_32+0x6b/0xd0 [ 834.934219][T18505] do_SYSENTER_32+0x73/0x90 [ 834.938885][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 834.945194][T18505] RIP: 0023:0xf7fd3549 [ 834.949235][T18505] Code: Bad RIP value. [ 834.953292][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 834.961679][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 834.969645][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 834.977594][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 834.985550][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 834.993508][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 835.001464][T18505] Uninit was stored to memory at: [ 835.006468][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.012176][T18505] __msan_chain_origin+0x50/0x90 [ 835.017093][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.022178][T18505] get_compat_msghdr+0x108/0x270 [ 835.027091][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.031571][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.036223][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.042291][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.048421][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.053599][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.058427][T18505] do_SYSENTER_32+0x73/0x90 [ 835.062910][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.069209][T18505] [ 835.071513][T18505] Uninit was stored to memory at: [ 835.076515][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.082209][T18505] __msan_chain_origin+0x50/0x90 [ 835.087123][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.092209][T18505] get_compat_msghdr+0x108/0x270 [ 835.097146][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.101642][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.106304][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.112352][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.118489][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.123669][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.128498][T18505] do_SYSENTER_32+0x73/0x90 [ 835.133011][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.139324][T18505] [ 835.141633][T18505] Uninit was stored to memory at: [ 835.146675][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.152373][T18505] __msan_chain_origin+0x50/0x90 [ 835.157308][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.162398][T18505] get_compat_msghdr+0x108/0x270 [ 835.167331][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.171810][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.176463][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.182506][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.188652][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.193849][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.198677][T18505] do_SYSENTER_32+0x73/0x90 [ 835.203165][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.209474][T18505] [ 835.211776][T18505] Uninit was stored to memory at: [ 835.216803][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.222556][T18505] __msan_chain_origin+0x50/0x90 [ 835.227493][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.232648][T18505] get_compat_msghdr+0x108/0x270 [ 835.237616][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.242103][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.246777][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.252831][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.258981][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.264160][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.268989][T18505] do_SYSENTER_32+0x73/0x90 [ 835.273471][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.279766][T18505] [ 835.282082][T18505] Uninit was stored to memory at: [ 835.287084][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.292779][T18505] __msan_chain_origin+0x50/0x90 [ 835.297698][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.302804][T18505] get_compat_msghdr+0x108/0x270 [ 835.307739][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.312232][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.316899][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.322957][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.329111][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.334290][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.339118][T18505] do_SYSENTER_32+0x73/0x90 [ 835.343600][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.349899][T18505] [ 835.352202][T18505] Uninit was stored to memory at: [ 835.357203][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.362895][T18505] __msan_chain_origin+0x50/0x90 [ 835.367816][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.372917][T18505] get_compat_msghdr+0x108/0x270 [ 835.377896][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.382382][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.387090][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.393211][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.399363][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.404661][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.409496][T18505] do_SYSENTER_32+0x73/0x90 [ 835.414004][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.420304][T18505] [ 835.422608][T18505] Uninit was stored to memory at: [ 835.427661][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.433371][T18505] __msan_chain_origin+0x50/0x90 [ 835.438309][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.443425][T18505] get_compat_msghdr+0x108/0x270 [ 835.448339][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.452829][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.457484][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.463540][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.469795][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.474974][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.479800][T18505] do_SYSENTER_32+0x73/0x90 [ 835.484280][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.490575][T18505] [ 835.492878][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 835.499550][T18505] do_recvmmsg+0xc5/0x1ee0 [ 835.503946][T18505] do_recvmmsg+0xc5/0x1ee0 [ 835.728410][T18505] not chained 3610000 origins [ 835.733146][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 835.741815][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 835.751891][T18505] Call Trace: [ 835.755230][T18505] dump_stack+0x1df/0x240 [ 835.759573][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 835.765303][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 835.770428][T18505] ? release_sock+0x238/0x2a0 [ 835.775117][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 835.779891][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 835.784992][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 835.790516][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 835.796563][T18505] ? _copy_from_user+0x15b/0x260 [ 835.801492][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 835.806598][T18505] __msan_chain_origin+0x50/0x90 [ 835.811533][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.816652][T18505] get_compat_msghdr+0x108/0x270 [ 835.821589][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.826098][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 835.831732][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 835.836824][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 835.842089][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 835.846838][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 835.851583][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 835.856762][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.861429][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.867502][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 835.873732][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 835.879876][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 835.885061][T18505] do_fast_syscall_32+0x6b/0xd0 [ 835.889892][T18505] do_SYSENTER_32+0x73/0x90 [ 835.894375][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 835.900678][T18505] RIP: 0023:0xf7fd3549 [ 835.904718][T18505] Code: Bad RIP value. [ 835.908760][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 835.917148][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 835.925128][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 835.933085][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 835.941044][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 835.949015][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 835.956972][T18505] Uninit was stored to memory at: [ 835.961978][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 835.967676][T18505] __msan_chain_origin+0x50/0x90 [ 835.972610][T18505] __get_compat_msghdr+0x5be/0x890 [ 835.977700][T18505] get_compat_msghdr+0x108/0x270 [ 835.982631][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 835.987133][T18505] __sys_recvmmsg+0x4ca/0x510 [ 835.991875][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 835.997932][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.004149][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.009325][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.014170][T18505] do_SYSENTER_32+0x73/0x90 [ 836.018649][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.024952][T18505] [ 836.027274][T18505] Uninit was stored to memory at: [ 836.032279][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.037975][T18505] __msan_chain_origin+0x50/0x90 [ 836.042913][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.048011][T18505] get_compat_msghdr+0x108/0x270 [ 836.052933][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.057432][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.062084][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.068145][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.074330][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.079526][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.084385][T18505] do_SYSENTER_32+0x73/0x90 [ 836.088883][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.095186][T18505] [ 836.097493][T18505] Uninit was stored to memory at: [ 836.102516][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.108236][T18505] __msan_chain_origin+0x50/0x90 [ 836.113165][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.118267][T18505] get_compat_msghdr+0x108/0x270 [ 836.123196][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.127682][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.132333][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.138396][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.144529][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.149705][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.154532][T18505] do_SYSENTER_32+0x73/0x90 [ 836.159026][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.165339][T18505] [ 836.167643][T18505] Uninit was stored to memory at: [ 836.172644][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.178338][T18505] __msan_chain_origin+0x50/0x90 [ 836.183257][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.188347][T18505] get_compat_msghdr+0x108/0x270 [ 836.193279][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.197794][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.202464][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.208509][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.214642][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.219816][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.224727][T18505] do_SYSENTER_32+0x73/0x90 [ 836.229224][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.235524][T18505] [ 836.237829][T18505] Uninit was stored to memory at: [ 836.242882][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.248578][T18505] __msan_chain_origin+0x50/0x90 [ 836.253505][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.258605][T18505] get_compat_msghdr+0x108/0x270 [ 836.263581][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.268101][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.272752][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.278792][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.284922][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.290097][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.294926][T18505] do_SYSENTER_32+0x73/0x90 [ 836.299419][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.305721][T18505] [ 836.308037][T18505] Uninit was stored to memory at: [ 836.313076][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.318809][T18505] __msan_chain_origin+0x50/0x90 [ 836.323734][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.328824][T18505] get_compat_msghdr+0x108/0x270 [ 836.333741][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.338223][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.342888][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.348952][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.355104][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.360281][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.365109][T18505] do_SYSENTER_32+0x73/0x90 [ 836.369605][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.375920][T18505] [ 836.378226][T18505] Uninit was stored to memory at: [ 836.383241][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.388938][T18505] __msan_chain_origin+0x50/0x90 [ 836.393875][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.398970][T18505] get_compat_msghdr+0x108/0x270 [ 836.403889][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.408366][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.413027][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.419082][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.425235][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.430412][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.435253][T18505] do_SYSENTER_32+0x73/0x90 [ 836.439732][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.446030][T18505] [ 836.448334][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 836.454986][T18505] do_recvmmsg+0xc5/0x1ee0 [ 836.459394][T18505] do_recvmmsg+0xc5/0x1ee0 [ 836.626931][T18505] not chained 3620000 origins [ 836.631658][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 836.640332][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 836.650391][T18505] Call Trace: [ 836.653693][T18505] dump_stack+0x1df/0x240 [ 836.658034][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 836.663761][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 836.668877][T18505] ? release_sock+0x238/0x2a0 [ 836.673567][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 836.678345][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 836.683460][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 836.689011][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 836.695088][T18505] ? _copy_from_user+0x15b/0x260 [ 836.700032][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 836.705149][T18505] __msan_chain_origin+0x50/0x90 [ 836.710095][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.715230][T18505] get_compat_msghdr+0x108/0x270 [ 836.720203][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.724750][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 836.730399][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 836.735524][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 836.740817][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 836.745585][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 836.750355][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 836.755564][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.760258][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.766333][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 836.772579][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.778746][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.783962][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.788822][T18505] do_SYSENTER_32+0x73/0x90 [ 836.793331][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.799655][T18505] RIP: 0023:0xf7fd3549 [ 836.803715][T18505] Code: Bad RIP value. [ 836.807778][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 836.816196][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 836.824167][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 836.832138][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 836.840121][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 836.848106][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 836.856080][T18505] Uninit was stored to memory at: [ 836.861109][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.866814][T18505] __msan_chain_origin+0x50/0x90 [ 836.871737][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.876833][T18505] get_compat_msghdr+0x108/0x270 [ 836.881752][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.886234][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.890887][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.896944][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.903109][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.908366][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.913217][T18505] do_SYSENTER_32+0x73/0x90 [ 836.917711][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.924183][T18505] [ 836.926491][T18505] Uninit was stored to memory at: [ 836.931496][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 836.937712][T18505] __msan_chain_origin+0x50/0x90 [ 836.942647][T18505] __get_compat_msghdr+0x5be/0x890 [ 836.947763][T18505] get_compat_msghdr+0x108/0x270 [ 836.952700][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 836.957214][T18505] __sys_recvmmsg+0x4ca/0x510 [ 836.961872][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 836.967954][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 836.974096][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 836.979305][T18505] do_fast_syscall_32+0x6b/0xd0 [ 836.984140][T18505] do_SYSENTER_32+0x73/0x90 [ 836.988636][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 836.994939][T18505] [ 836.997253][T18505] Uninit was stored to memory at: [ 837.002255][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.007968][T18505] __msan_chain_origin+0x50/0x90 [ 837.012888][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.017997][T18505] get_compat_msghdr+0x108/0x270 [ 837.022929][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.027410][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.032065][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.038113][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.044247][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.049441][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.054311][T18505] do_SYSENTER_32+0x73/0x90 [ 837.058806][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.065223][T18505] [ 837.067534][T18505] Uninit was stored to memory at: [ 837.072559][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.078273][T18505] __msan_chain_origin+0x50/0x90 [ 837.083222][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.088323][T18505] get_compat_msghdr+0x108/0x270 [ 837.093253][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.097745][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.102414][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.108462][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.114606][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.119810][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.124639][T18505] do_SYSENTER_32+0x73/0x90 [ 837.129152][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.135454][T18505] [ 837.137774][T18505] Uninit was stored to memory at: [ 837.142780][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.148477][T18505] __msan_chain_origin+0x50/0x90 [ 837.153401][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.158517][T18505] get_compat_msghdr+0x108/0x270 [ 837.163448][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.167929][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.172596][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.178640][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.184794][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.189994][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.194865][T18505] do_SYSENTER_32+0x73/0x90 [ 837.199398][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.205696][T18505] [ 837.208000][T18505] Uninit was stored to memory at: [ 837.213016][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.218726][T18505] __msan_chain_origin+0x50/0x90 [ 837.223648][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.228743][T18505] get_compat_msghdr+0x108/0x270 [ 837.233671][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.238786][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.243503][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.249554][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.255709][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.260923][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.265782][T18505] do_SYSENTER_32+0x73/0x90 [ 837.270279][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.276576][T18505] [ 837.278880][T18505] Uninit was stored to memory at: [ 837.283887][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.289581][T18505] __msan_chain_origin+0x50/0x90 [ 837.294507][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.299608][T18505] get_compat_msghdr+0x108/0x270 [ 837.304541][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.309029][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.313691][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.319771][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.325905][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.331097][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.336365][T18505] do_SYSENTER_32+0x73/0x90 [ 837.340859][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.347165][T18505] [ 837.349498][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 837.356159][T18505] do_recvmmsg+0xc5/0x1ee0 [ 837.360554][T18505] do_recvmmsg+0xc5/0x1ee0 [ 837.531604][T18505] not chained 3630000 origins [ 837.536327][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 837.545005][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 837.555061][T18505] Call Trace: [ 837.558364][T18505] dump_stack+0x1df/0x240 [ 837.562709][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 837.568442][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 837.573589][T18505] ? release_sock+0x238/0x2a0 [ 837.578279][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 837.583054][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 837.588170][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 837.593753][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 837.599856][T18505] ? _copy_from_user+0x15b/0x260 [ 837.604800][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 837.609918][T18505] __msan_chain_origin+0x50/0x90 [ 837.614866][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.620004][T18505] get_compat_msghdr+0x108/0x270 [ 837.624959][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.629479][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 837.635158][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 837.640279][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 837.645572][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 837.650339][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 837.655233][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 837.660438][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.665131][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.671207][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 837.677444][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.683592][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.688784][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.693630][T18505] do_SYSENTER_32+0x73/0x90 [ 837.698228][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.704546][T18505] RIP: 0023:0xf7fd3549 [ 837.708613][T18505] Code: Bad RIP value. [ 837.712667][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 837.721085][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 837.729067][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 837.737147][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 837.745123][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 837.753096][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 837.761066][T18505] Uninit was stored to memory at: [ 837.766080][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.771776][T18505] __msan_chain_origin+0x50/0x90 [ 837.776693][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.781797][T18505] get_compat_msghdr+0x108/0x270 [ 837.786715][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.791212][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.795869][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.801930][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.808062][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.813251][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.818108][T18505] do_SYSENTER_32+0x73/0x90 [ 837.822587][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.828883][T18505] [ 837.831187][T18505] Uninit was stored to memory at: [ 837.836194][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.841890][T18505] __msan_chain_origin+0x50/0x90 [ 837.846825][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.851925][T18505] get_compat_msghdr+0x108/0x270 [ 837.856883][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.861394][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.866052][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.872095][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.878251][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.883441][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.888296][T18505] do_SYSENTER_32+0x73/0x90 [ 837.892775][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.899074][T18505] [ 837.901397][T18505] Uninit was stored to memory at: [ 837.906425][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.912120][T18505] __msan_chain_origin+0x50/0x90 [ 837.917056][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.922215][T18505] get_compat_msghdr+0x108/0x270 [ 837.927143][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 837.931629][T18505] __sys_recvmmsg+0x4ca/0x510 [ 837.936289][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 837.942332][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 837.948611][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 837.953806][T18505] do_fast_syscall_32+0x6b/0xd0 [ 837.958664][T18505] do_SYSENTER_32+0x73/0x90 [ 837.963194][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 837.969504][T18505] [ 837.971808][T18505] Uninit was stored to memory at: [ 837.976814][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 837.982524][T18505] __msan_chain_origin+0x50/0x90 [ 837.987441][T18505] __get_compat_msghdr+0x5be/0x890 [ 837.992531][T18505] get_compat_msghdr+0x108/0x270 [ 837.997453][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.001933][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.006590][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.012647][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.018791][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.023975][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.028916][T18505] do_SYSENTER_32+0x73/0x90 [ 838.033418][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.039737][T18505] [ 838.042042][T18505] Uninit was stored to memory at: [ 838.047049][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.052754][T18505] __msan_chain_origin+0x50/0x90 [ 838.057681][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.062794][T18505] get_compat_msghdr+0x108/0x270 [ 838.067776][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.072262][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.076932][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.083000][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.089147][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.094357][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.099218][T18505] do_SYSENTER_32+0x73/0x90 [ 838.103706][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.110008][T18505] [ 838.112313][T18505] Uninit was stored to memory at: [ 838.117357][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.123064][T18505] __msan_chain_origin+0x50/0x90 [ 838.128011][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.133110][T18505] get_compat_msghdr+0x108/0x270 [ 838.138036][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.142515][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.147169][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.153222][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.159365][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.164554][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.169396][T18505] do_SYSENTER_32+0x73/0x90 [ 838.173889][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.180198][T18505] [ 838.182501][T18505] Uninit was stored to memory at: [ 838.187506][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.193213][T18505] __msan_chain_origin+0x50/0x90 [ 838.198149][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.203282][T18505] get_compat_msghdr+0x108/0x270 [ 838.208218][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.212760][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.217464][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.223525][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.229672][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.234890][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.239739][T18505] do_SYSENTER_32+0x73/0x90 [ 838.244223][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.250538][T18505] [ 838.252851][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 838.259508][T18505] do_recvmmsg+0xc5/0x1ee0 [ 838.263907][T18505] do_recvmmsg+0xc5/0x1ee0 [ 838.445427][T18505] not chained 3640000 origins [ 838.450158][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 838.458826][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 838.468886][T18505] Call Trace: [ 838.472192][T18505] dump_stack+0x1df/0x240 [ 838.476539][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 838.482270][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 838.487390][T18505] ? release_sock+0x238/0x2a0 [ 838.492079][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 838.496858][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 838.501972][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 838.507554][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 838.513634][T18505] ? _copy_from_user+0x15b/0x260 [ 838.518576][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 838.523694][T18505] __msan_chain_origin+0x50/0x90 [ 838.528644][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.533778][T18505] get_compat_msghdr+0x108/0x270 [ 838.538733][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.543252][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 838.548901][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 838.554046][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 838.559343][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 838.564114][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 838.568880][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 838.574088][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.578783][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.584858][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 838.591092][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.597231][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.602430][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.607264][T18505] do_SYSENTER_32+0x73/0x90 [ 838.611746][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.618058][T18505] RIP: 0023:0xf7fd3549 [ 838.622111][T18505] Code: Bad RIP value. [ 838.626155][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 838.634553][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 838.642526][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 838.650478][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 838.658444][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 838.666413][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 838.674384][T18505] Uninit was stored to memory at: [ 838.679403][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.685118][T18505] __msan_chain_origin+0x50/0x90 [ 838.690033][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.695147][T18505] get_compat_msghdr+0x108/0x270 [ 838.700065][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.704545][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.709217][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.715259][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.721407][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.726593][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.731449][T18505] do_SYSENTER_32+0x73/0x90 [ 838.735964][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.742287][T18505] [ 838.744615][T18505] Uninit was stored to memory at: [ 838.749633][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.755329][T18505] __msan_chain_origin+0x50/0x90 [ 838.760244][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.765333][T18505] get_compat_msghdr+0x108/0x270 [ 838.770261][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.774752][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.779439][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.785514][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.791642][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.796821][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.801663][T18505] do_SYSENTER_32+0x73/0x90 [ 838.806146][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.812442][T18505] [ 838.814751][T18505] Uninit was stored to memory at: [ 838.819766][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.825465][T18505] __msan_chain_origin+0x50/0x90 [ 838.830395][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.835495][T18505] get_compat_msghdr+0x108/0x270 [ 838.840424][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.844915][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.849586][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.855631][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.861760][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.866947][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.871791][T18505] do_SYSENTER_32+0x73/0x90 [ 838.876287][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.882598][T18505] [ 838.884903][T18505] Uninit was stored to memory at: [ 838.889909][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.895621][T18505] __msan_chain_origin+0x50/0x90 [ 838.900569][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.905659][T18505] get_compat_msghdr+0x108/0x270 [ 838.910572][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.915076][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.919744][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.925788][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 838.931940][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 838.937119][T18505] do_fast_syscall_32+0x6b/0xd0 [ 838.941966][T18505] do_SYSENTER_32+0x73/0x90 [ 838.946459][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 838.952791][T18505] [ 838.955103][T18505] Uninit was stored to memory at: [ 838.960142][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 838.965858][T18505] __msan_chain_origin+0x50/0x90 [ 838.970774][T18505] __get_compat_msghdr+0x5be/0x890 [ 838.975867][T18505] get_compat_msghdr+0x108/0x270 [ 838.980794][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 838.985275][T18505] __sys_recvmmsg+0x4ca/0x510 [ 838.989929][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 838.995999][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.002133][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.007311][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.012152][T18505] do_SYSENTER_32+0x73/0x90 [ 839.016634][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.022934][T18505] [ 839.025241][T18505] Uninit was stored to memory at: [ 839.030245][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.035946][T18505] __msan_chain_origin+0x50/0x90 [ 839.040941][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.046045][T18505] get_compat_msghdr+0x108/0x270 [ 839.050967][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.055464][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.060136][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.066194][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.072330][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.077514][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.082342][T18505] do_SYSENTER_32+0x73/0x90 [ 839.086826][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.093133][T18505] [ 839.095448][T18505] Uninit was stored to memory at: [ 839.100449][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.106151][T18505] __msan_chain_origin+0x50/0x90 [ 839.111085][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.116198][T18505] get_compat_msghdr+0x108/0x270 [ 839.121130][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.125611][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.130324][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.136425][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.142677][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.147881][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.152717][T18505] do_SYSENTER_32+0x73/0x90 [ 839.157222][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.163525][T18505] [ 839.165848][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 839.172515][T18505] do_recvmmsg+0xc5/0x1ee0 [ 839.176914][T18505] do_recvmmsg+0xc5/0x1ee0 [ 839.345145][T18505] not chained 3650000 origins [ 839.349877][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 839.358580][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 839.368635][T18505] Call Trace: [ 839.371934][T18505] dump_stack+0x1df/0x240 [ 839.376280][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 839.382014][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 839.387158][T18505] ? release_sock+0x238/0x2a0 [ 839.391848][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 839.396632][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 839.401748][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 839.407301][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 839.413421][T18505] ? _copy_from_user+0x15b/0x260 [ 839.418361][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 839.423476][T18505] __msan_chain_origin+0x50/0x90 [ 839.428421][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.433555][T18505] get_compat_msghdr+0x108/0x270 [ 839.438513][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.443027][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 839.448683][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 839.453801][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 839.459098][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 839.463955][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 839.468722][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 839.473926][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.478617][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.484694][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 839.491070][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.497237][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.502433][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.507272][T18505] do_SYSENTER_32+0x73/0x90 [ 839.511754][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.518069][T18505] RIP: 0023:0xf7fd3549 [ 839.522112][T18505] Code: Bad RIP value. [ 839.526157][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 839.534554][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 839.542516][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 839.550488][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 839.558445][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 839.566415][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 839.574383][T18505] Uninit was stored to memory at: [ 839.579430][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.585125][T18505] __msan_chain_origin+0x50/0x90 [ 839.590067][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.595183][T18505] get_compat_msghdr+0x108/0x270 [ 839.600131][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.604624][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.609292][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.615345][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.621493][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.626691][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.631518][T18505] do_SYSENTER_32+0x73/0x90 [ 839.636000][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.642297][T18505] [ 839.644600][T18505] Uninit was stored to memory at: [ 839.649604][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.655309][T18505] __msan_chain_origin+0x50/0x90 [ 839.660236][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.665343][T18505] get_compat_msghdr+0x108/0x270 [ 839.670271][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.674768][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.679433][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.685475][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.691621][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.696812][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.701666][T18505] do_SYSENTER_32+0x73/0x90 [ 839.706159][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.712469][T18505] [ 839.714776][T18505] Uninit was stored to memory at: [ 839.719793][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.725500][T18505] __msan_chain_origin+0x50/0x90 [ 839.730427][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.735540][T18505] get_compat_msghdr+0x108/0x270 [ 839.740460][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.744941][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.749594][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.755637][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.761766][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.766964][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.771789][T18505] do_SYSENTER_32+0x73/0x90 [ 839.776292][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.782587][T18505] [ 839.784890][T18505] Uninit was stored to memory at: [ 839.789912][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.795608][T18505] __msan_chain_origin+0x50/0x90 [ 839.800540][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.805645][T18505] get_compat_msghdr+0x108/0x270 [ 839.810557][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.815051][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.819716][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.825769][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.831912][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.837102][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.841957][T18505] do_SYSENTER_32+0x73/0x90 [ 839.846463][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.852760][T18505] [ 839.855071][T18505] Uninit was stored to memory at: [ 839.860089][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.865785][T18505] __msan_chain_origin+0x50/0x90 [ 839.870700][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.875789][T18505] get_compat_msghdr+0x108/0x270 [ 839.880724][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.885207][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.889863][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.895905][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.902038][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.907216][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.912066][T18505] do_SYSENTER_32+0x73/0x90 [ 839.916549][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.922864][T18505] [ 839.925166][T18505] Uninit was stored to memory at: [ 839.930171][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 839.935875][T18505] __msan_chain_origin+0x50/0x90 [ 839.940802][T18505] __get_compat_msghdr+0x5be/0x890 [ 839.945895][T18505] get_compat_msghdr+0x108/0x270 [ 839.950823][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 839.955331][T18505] __sys_recvmmsg+0x4ca/0x510 [ 839.960000][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 839.966046][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 839.972177][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 839.977361][T18505] do_fast_syscall_32+0x6b/0xd0 [ 839.982220][T18505] do_SYSENTER_32+0x73/0x90 [ 839.986702][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 839.993006][T18505] [ 839.995331][T18505] Uninit was stored to memory at: [ 840.000378][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.006261][T18505] __msan_chain_origin+0x50/0x90 [ 840.011181][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.016293][T18505] get_compat_msghdr+0x108/0x270 [ 840.021229][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.025710][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.030364][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.036424][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.042575][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.047774][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.052739][T18505] do_SYSENTER_32+0x73/0x90 [ 840.057276][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.063583][T18505] [ 840.065903][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 840.072567][T18505] do_recvmmsg+0xc5/0x1ee0 [ 840.076976][T18505] do_recvmmsg+0xc5/0x1ee0 [ 840.252202][T18505] not chained 3660000 origins [ 840.256937][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 840.265606][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 840.275664][T18505] Call Trace: [ 840.278964][T18505] dump_stack+0x1df/0x240 [ 840.283314][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 840.289064][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 840.294186][T18505] ? release_sock+0x238/0x2a0 [ 840.299011][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 840.303791][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 840.308907][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 840.314458][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 840.320536][T18505] ? _copy_from_user+0x15b/0x260 [ 840.325480][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 840.330598][T18505] __msan_chain_origin+0x50/0x90 [ 840.335574][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.340709][T18505] get_compat_msghdr+0x108/0x270 [ 840.345661][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.350181][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 840.355832][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 840.360981][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 840.366281][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 840.371046][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 840.375837][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 840.381043][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.385738][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.391802][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 840.398031][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.404229][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.409439][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.414297][T18505] do_SYSENTER_32+0x73/0x90 [ 840.418792][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.425118][T18505] RIP: 0023:0xf7fd3549 [ 840.429176][T18505] Code: Bad RIP value. [ 840.433225][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 840.441629][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 840.449600][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 840.457569][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 840.465544][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 840.473498][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 840.481485][T18505] Uninit was stored to memory at: [ 840.486541][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.492251][T18505] __msan_chain_origin+0x50/0x90 [ 840.497188][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.502299][T18505] get_compat_msghdr+0x108/0x270 [ 840.507238][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.511719][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.516376][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.522435][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.528581][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.533777][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.538634][T18505] do_SYSENTER_32+0x73/0x90 [ 840.543142][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.549448][T18505] [ 840.551752][T18505] Uninit was stored to memory at: [ 840.556783][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.562496][T18505] __msan_chain_origin+0x50/0x90 [ 840.567412][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.572515][T18505] get_compat_msghdr+0x108/0x270 [ 840.577434][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.581912][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.586566][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.592609][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.598752][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.603972][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.608816][T18505] do_SYSENTER_32+0x73/0x90 [ 840.613330][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.619638][T18505] [ 840.621944][T18505] Uninit was stored to memory at: [ 840.626948][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.632643][T18505] __msan_chain_origin+0x50/0x90 [ 840.637583][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.642672][T18505] get_compat_msghdr+0x108/0x270 [ 840.647604][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.652103][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.656759][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.662800][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.668929][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.674118][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.678957][T18505] do_SYSENTER_32+0x73/0x90 [ 840.683463][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.689760][T18505] [ 840.692083][T18505] Uninit was stored to memory at: [ 840.697100][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.702797][T18505] __msan_chain_origin+0x50/0x90 [ 840.707750][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.712866][T18505] get_compat_msghdr+0x108/0x270 [ 840.717783][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.722263][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.726946][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.733022][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.739177][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.744388][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.749218][T18505] do_SYSENTER_32+0x73/0x90 [ 840.753711][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.760026][T18505] [ 840.762360][T18505] Uninit was stored to memory at: [ 840.767391][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.773096][T18505] __msan_chain_origin+0x50/0x90 [ 840.778027][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.783135][T18505] get_compat_msghdr+0x108/0x270 [ 840.788090][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.792593][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.797272][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.803352][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.809497][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.814686][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.819534][T18505] do_SYSENTER_32+0x73/0x90 [ 840.824028][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.830373][T18505] [ 840.832700][T18505] Uninit was stored to memory at: [ 840.837733][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.843463][T18505] __msan_chain_origin+0x50/0x90 [ 840.848392][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.853490][T18505] get_compat_msghdr+0x108/0x270 [ 840.858435][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.862929][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.867599][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.873654][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.879797][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.884998][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.889827][T18505] do_SYSENTER_32+0x73/0x90 [ 840.894318][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.900642][T18505] [ 840.902964][T18505] Uninit was stored to memory at: [ 840.907995][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 840.913713][T18505] __msan_chain_origin+0x50/0x90 [ 840.918664][T18505] __get_compat_msghdr+0x5be/0x890 [ 840.923765][T18505] get_compat_msghdr+0x108/0x270 [ 840.928700][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 840.933191][T18505] __sys_recvmmsg+0x4ca/0x510 [ 840.937893][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 840.943955][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 840.950086][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 840.955289][T18505] do_fast_syscall_32+0x6b/0xd0 [ 840.960126][T18505] do_SYSENTER_32+0x73/0x90 [ 840.964610][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 840.970915][T18505] [ 840.973229][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 840.979945][T18505] do_recvmmsg+0xc5/0x1ee0 [ 840.984347][T18505] do_recvmmsg+0xc5/0x1ee0 [ 841.154430][T18505] not chained 3670000 origins [ 841.159159][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 841.167828][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 841.177887][T18505] Call Trace: [ 841.181190][T18505] dump_stack+0x1df/0x240 [ 841.185534][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 841.191264][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 841.196387][T18505] ? release_sock+0x238/0x2a0 [ 841.201072][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 841.205849][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 841.210974][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 841.216534][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 841.222624][T18505] ? _copy_from_user+0x15b/0x260 [ 841.227571][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 841.232691][T18505] __msan_chain_origin+0x50/0x90 [ 841.237642][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.242775][T18505] get_compat_msghdr+0x108/0x270 [ 841.247729][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.252262][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 841.257921][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 841.263042][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 841.268333][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 841.273099][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 841.277877][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 841.283083][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.287774][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.293854][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 841.300106][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.306408][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.311615][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.316449][T18505] do_SYSENTER_32+0x73/0x90 [ 841.321056][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.327359][T18505] RIP: 0023:0xf7fd3549 [ 841.331573][T18505] Code: Bad RIP value. [ 841.335649][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 841.344051][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 841.352025][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 841.359977][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 841.367927][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 841.375911][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 841.383906][T18505] Uninit was stored to memory at: [ 841.388934][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.394641][T18505] __msan_chain_origin+0x50/0x90 [ 841.399595][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.404687][T18505] get_compat_msghdr+0x108/0x270 [ 841.409604][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.414096][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.418789][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.424858][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.430995][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.436172][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.441018][T18505] do_SYSENTER_32+0x73/0x90 [ 841.445499][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.451796][T18505] [ 841.454106][T18505] Uninit was stored to memory at: [ 841.459122][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.464819][T18505] __msan_chain_origin+0x50/0x90 [ 841.469753][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.474862][T18505] get_compat_msghdr+0x108/0x270 [ 841.479793][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.484283][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.488949][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.495029][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.501188][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.506363][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.511190][T18505] do_SYSENTER_32+0x73/0x90 [ 841.515702][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.522000][T18505] [ 841.524301][T18505] Uninit was stored to memory at: [ 841.529308][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.535016][T18505] __msan_chain_origin+0x50/0x90 [ 841.540237][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.545330][T18505] get_compat_msghdr+0x108/0x270 [ 841.550245][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.554758][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.559437][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.565480][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.571625][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.576804][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.581637][T18505] do_SYSENTER_32+0x73/0x90 [ 841.586126][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.592485][T18505] [ 841.594818][T18505] Uninit was stored to memory at: [ 841.599839][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.605536][T18505] __msan_chain_origin+0x50/0x90 [ 841.610452][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.615552][T18505] get_compat_msghdr+0x108/0x270 [ 841.620496][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.624977][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.629648][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.635700][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.641838][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.647036][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.651886][T18505] do_SYSENTER_32+0x73/0x90 [ 841.656384][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.662698][T18505] [ 841.665002][T18505] Uninit was stored to memory at: [ 841.670122][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.675817][T18505] __msan_chain_origin+0x50/0x90 [ 841.680750][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.685840][T18505] get_compat_msghdr+0x108/0x270 [ 841.690763][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.695260][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.699941][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.706010][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.712144][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.717351][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.722196][T18505] do_SYSENTER_32+0x73/0x90 [ 841.726680][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.732981][T18505] [ 841.735300][T18505] Uninit was stored to memory at: [ 841.740318][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.746034][T18505] __msan_chain_origin+0x50/0x90 [ 841.750960][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.756069][T18505] get_compat_msghdr+0x108/0x270 [ 841.760985][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.765466][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.770135][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.776192][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.782349][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.787543][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.792372][T18505] do_SYSENTER_32+0x73/0x90 [ 841.796887][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.803207][T18505] [ 841.805525][T18505] Uninit was stored to memory at: [ 841.810555][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 841.816282][T18505] __msan_chain_origin+0x50/0x90 [ 841.821215][T18505] __get_compat_msghdr+0x5be/0x890 [ 841.826311][T18505] get_compat_msghdr+0x108/0x270 [ 841.831243][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 841.835723][T18505] __sys_recvmmsg+0x4ca/0x510 [ 841.840377][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 841.846420][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 841.852571][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 841.857749][T18505] do_fast_syscall_32+0x6b/0xd0 [ 841.862596][T18505] do_SYSENTER_32+0x73/0x90 [ 841.867077][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 841.873380][T18505] [ 841.875717][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 841.882384][T18505] do_recvmmsg+0xc5/0x1ee0 [ 841.886779][T18505] do_recvmmsg+0xc5/0x1ee0 [ 842.071173][T18505] not chained 3680000 origins [ 842.075938][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 842.084606][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 842.094671][T18505] Call Trace: [ 842.097970][T18505] dump_stack+0x1df/0x240 [ 842.102306][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 842.108041][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 842.113161][T18505] ? release_sock+0x238/0x2a0 [ 842.117844][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 842.122627][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 842.127749][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 842.133329][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 842.139407][T18505] ? _copy_from_user+0x15b/0x260 [ 842.144350][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 842.149509][T18505] __msan_chain_origin+0x50/0x90 [ 842.154461][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.159597][T18505] get_compat_msghdr+0x108/0x270 [ 842.164550][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.169066][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 842.174745][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 842.179869][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 842.185161][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 842.189929][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 842.194699][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 842.199891][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.204574][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.210634][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 842.216862][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.223006][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.228207][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.233052][T18505] do_SYSENTER_32+0x73/0x90 [ 842.237605][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.243929][T18505] RIP: 0023:0xf7fd3549 [ 842.247991][T18505] Code: Bad RIP value. [ 842.252074][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 842.260467][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 842.268424][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 842.276374][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 842.284333][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 842.292293][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 842.300266][T18505] Uninit was stored to memory at: [ 842.305288][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.310995][T18505] __msan_chain_origin+0x50/0x90 [ 842.315931][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.321017][T18505] get_compat_msghdr+0x108/0x270 [ 842.325959][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.330455][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.335129][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.341633][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.347784][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.353059][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.357921][T18505] do_SYSENTER_32+0x73/0x90 [ 842.362418][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.368803][T18505] [ 842.371109][T18505] Uninit was stored to memory at: [ 842.376141][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.381851][T18505] __msan_chain_origin+0x50/0x90 [ 842.386776][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.391872][T18505] get_compat_msghdr+0x108/0x270 [ 842.396793][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.401296][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.405971][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.412032][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.418164][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.423351][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.428188][T18505] do_SYSENTER_32+0x73/0x90 [ 842.432668][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.438971][T18505] [ 842.441273][T18505] Uninit was stored to memory at: [ 842.446281][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.452005][T18505] __msan_chain_origin+0x50/0x90 [ 842.456936][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.462047][T18505] get_compat_msghdr+0x108/0x270 [ 842.466979][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.471473][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.476127][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.482169][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.488333][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.493509][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.498341][T18505] do_SYSENTER_32+0x73/0x90 [ 842.502822][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.509119][T18505] [ 842.511423][T18505] Uninit was stored to memory at: [ 842.516430][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.522140][T18505] __msan_chain_origin+0x50/0x90 [ 842.527087][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.532173][T18505] get_compat_msghdr+0x108/0x270 [ 842.537089][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.541568][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.546224][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.552297][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.558428][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.563635][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.568479][T18505] do_SYSENTER_32+0x73/0x90 [ 842.572966][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.579276][T18505] [ 842.581595][T18505] Uninit was stored to memory at: [ 842.586617][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.592327][T18505] __msan_chain_origin+0x50/0x90 [ 842.597266][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.602354][T18505] get_compat_msghdr+0x108/0x270 [ 842.607271][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.611749][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.616424][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.622495][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.628629][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.633827][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.638655][T18505] do_SYSENTER_32+0x73/0x90 [ 842.643148][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.649471][T18505] [ 842.651776][T18505] Uninit was stored to memory at: [ 842.656800][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.662512][T18505] __msan_chain_origin+0x50/0x90 [ 842.667448][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.672553][T18505] get_compat_msghdr+0x108/0x270 [ 842.677468][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.681951][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.686615][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.692672][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.698892][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.704081][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.708920][T18505] do_SYSENTER_32+0x73/0x90 [ 842.713400][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.719696][T18505] [ 842.722026][T18505] Uninit was stored to memory at: [ 842.727047][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 842.732769][T18505] __msan_chain_origin+0x50/0x90 [ 842.737704][T18505] __get_compat_msghdr+0x5be/0x890 [ 842.742838][T18505] get_compat_msghdr+0x108/0x270 [ 842.747768][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 842.752255][T18505] __sys_recvmmsg+0x4ca/0x510 [ 842.756919][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 842.762993][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 842.769139][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 842.774325][T18505] do_fast_syscall_32+0x6b/0xd0 [ 842.779163][T18505] do_SYSENTER_32+0x73/0x90 [ 842.783652][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 842.789959][T18505] [ 842.792311][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 842.798975][T18505] do_recvmmsg+0xc5/0x1ee0 [ 842.803379][T18505] do_recvmmsg+0xc5/0x1ee0 [ 843.001029][T18505] not chained 3690000 origins [ 843.005761][T18505] CPU: 0 PID: 18505 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 843.014430][T18505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 843.024493][T18505] Call Trace: [ 843.027793][T18505] dump_stack+0x1df/0x240 [ 843.032146][T18505] kmsan_internal_chain_origin+0x6f/0x130 [ 843.037895][T18505] ? _raw_spin_unlock_bh+0x4b/0x60 [ 843.043020][T18505] ? release_sock+0x238/0x2a0 [ 843.047704][T18505] ? sctp_recvmsg+0xd9b/0x1160 [ 843.052483][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 843.057604][T18505] ? kmsan_set_origin_checked+0x95/0xf0 [ 843.063281][T18505] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 843.069372][T18505] ? _copy_from_user+0x15b/0x260 [ 843.074320][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 843.079438][T18505] __msan_chain_origin+0x50/0x90 [ 843.084422][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.089555][T18505] get_compat_msghdr+0x108/0x270 [ 843.094508][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.099028][T18505] ? kmsan_internal_set_origin+0x75/0xb0 [ 843.104679][T18505] ? kmsan_get_metadata+0x4f/0x180 [ 843.109912][T18505] ? __msan_poison_alloca+0xf0/0x120 [ 843.115182][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 843.119925][T18505] ? __sys_recvmmsg+0xb4/0x510 [ 843.124713][T18505] ? kmsan_get_metadata+0x11d/0x180 [ 843.129893][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.134555][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.140604][T18505] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 843.146832][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.152985][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.158175][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.163023][T18505] do_SYSENTER_32+0x73/0x90 [ 843.167624][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.173950][T18505] RIP: 0023:0xf7fd3549 [ 843.177990][T18505] Code: Bad RIP value. [ 843.182031][T18505] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 843.190471][T18505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 843.198423][T18505] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 843.206375][T18505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 843.214325][T18505] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 843.222276][T18505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 843.230240][T18505] Uninit was stored to memory at: [ 843.235261][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.240991][T18505] __msan_chain_origin+0x50/0x90 [ 843.245928][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.251018][T18505] get_compat_msghdr+0x108/0x270 [ 843.255975][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.260485][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.265159][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.271200][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.277329][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.282502][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.287328][T18505] do_SYSENTER_32+0x73/0x90 [ 843.291805][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.298102][T18505] [ 843.300406][T18505] Uninit was stored to memory at: [ 843.305409][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.311120][T18505] __msan_chain_origin+0x50/0x90 [ 843.316052][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.321140][T18505] get_compat_msghdr+0x108/0x270 [ 843.326060][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.330539][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.335191][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.341233][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.347363][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.352555][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.357402][T18505] do_SYSENTER_32+0x73/0x90 [ 843.361880][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.368396][T18505] [ 843.370711][T18505] Uninit was stored to memory at: [ 843.375726][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.381436][T18505] __msan_chain_origin+0x50/0x90 [ 843.386354][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.391442][T18505] get_compat_msghdr+0x108/0x270 [ 843.396356][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.400856][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.405527][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.411566][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.417697][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.422870][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.427713][T18505] do_SYSENTER_32+0x73/0x90 [ 843.432451][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.438765][T18505] [ 843.441071][T18505] Uninit was stored to memory at: [ 843.446072][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.451784][T18505] __msan_chain_origin+0x50/0x90 [ 843.456717][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.461818][T18505] get_compat_msghdr+0x108/0x270 [ 843.466731][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.471225][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.475892][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.481951][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.488083][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.493276][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.498111][T18505] do_SYSENTER_32+0x73/0x90 [ 843.502591][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.508889][T18505] [ 843.511213][T18505] Uninit was stored to memory at: [ 843.516220][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.521915][T18505] __msan_chain_origin+0x50/0x90 [ 843.526849][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.531953][T18505] get_compat_msghdr+0x108/0x270 [ 843.536868][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.541346][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.546001][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.552060][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.558191][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.563389][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.568235][T18505] do_SYSENTER_32+0x73/0x90 [ 843.572713][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.579023][T18505] [ 843.581325][T18505] Uninit was stored to memory at: [ 843.586338][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.592045][T18505] __msan_chain_origin+0x50/0x90 [ 843.596981][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.602070][T18505] get_compat_msghdr+0x108/0x270 [ 843.606994][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.611479][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.616157][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.622233][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.628386][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.633565][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.638390][T18505] do_SYSENTER_32+0x73/0x90 [ 843.642872][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.649188][T18505] [ 843.651512][T18505] Uninit was stored to memory at: [ 843.656515][T18505] kmsan_internal_chain_origin+0xad/0x130 [ 843.662366][T18505] __msan_chain_origin+0x50/0x90 [ 843.667337][T18505] __get_compat_msghdr+0x5be/0x890 [ 843.672550][T18505] get_compat_msghdr+0x108/0x270 [ 843.677472][T18505] do_recvmmsg+0xa6a/0x1ee0 [ 843.681956][T18505] __sys_recvmmsg+0x4ca/0x510 [ 843.686610][T18505] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 843.692654][T18505] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 843.698814][T18505] __do_fast_syscall_32+0x2aa/0x400 [ 843.704014][T18505] do_fast_syscall_32+0x6b/0xd0 [ 843.708840][T18505] do_SYSENTER_32+0x73/0x90 [ 843.713349][T18505] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 843.719731][T18505] [ 843.722036][T18505] Local variable ----msg_sys@do_recvmmsg created at: [ 843.728689][T18505] do_recvmmsg+0xc5/0x1ee0 [ 843.733093][T18505] do_recvmmsg+0xc5/0x1ee0 15:58:33 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:58:33 executing program 5: 15:58:33 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:33 executing program 1: syz_emit_ethernet(0x0, 0x0, 0x0) 15:58:33 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:33 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(0xffffffffffffffff) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:58:33 executing program 5: 15:58:33 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:33 executing program 1: 15:58:33 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:34 executing program 5: 15:58:34 executing program 5: [ 845.141122][T18545] not chained 3700000 origins [ 845.145864][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 845.154567][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 845.164632][T18545] Call Trace: [ 845.167947][T18545] dump_stack+0x1df/0x240 [ 845.172285][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 845.178002][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 845.183109][T18545] ? release_sock+0x238/0x2a0 [ 845.187780][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 845.192538][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 845.197639][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 845.203700][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 845.209787][T18545] ? _copy_from_user+0x15b/0x260 [ 845.214715][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 845.219834][T18545] __msan_chain_origin+0x50/0x90 [ 845.225592][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.230737][T18545] get_compat_msghdr+0x108/0x270 [ 845.235806][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.240367][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 845.245474][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 845.250770][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 845.255524][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 845.260278][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 845.265470][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.270165][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.276236][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 845.282465][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.288613][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.293828][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.298697][T18545] do_SYSENTER_32+0x73/0x90 [ 845.303191][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.309501][T18545] RIP: 0023:0xf7fd3549 [ 845.313547][T18545] Code: Bad RIP value. [ 845.317618][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 845.326015][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 845.333972][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 845.341931][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 845.349892][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 845.357851][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 845.365907][T18545] Uninit was stored to memory at: [ 845.370922][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.376624][T18545] __msan_chain_origin+0x50/0x90 [ 845.381566][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.386664][T18545] get_compat_msghdr+0x108/0x270 [ 845.391611][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.396101][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.400764][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.406815][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.412959][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.418235][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.423093][T18545] do_SYSENTER_32+0x73/0x90 [ 845.427584][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.433894][T18545] [ 845.436206][T18545] Uninit was stored to memory at: [ 845.441220][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.446945][T18545] __msan_chain_origin+0x50/0x90 [ 845.451892][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.456994][T18545] get_compat_msghdr+0x108/0x270 [ 845.461917][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.466408][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.471073][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.477210][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.483349][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.488532][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.493369][T18545] do_SYSENTER_32+0x73/0x90 [ 845.497882][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.504190][T18545] [ 845.506503][T18545] Uninit was stored to memory at: [ 845.511579][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.517308][T18545] __msan_chain_origin+0x50/0x90 [ 845.522244][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.527346][T18545] get_compat_msghdr+0x108/0x270 [ 845.532285][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.536893][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.541569][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.547636][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.553786][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.558978][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.563819][T18545] do_SYSENTER_32+0x73/0x90 [ 845.568314][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.574621][T18545] [ 845.576932][T18545] Uninit was stored to memory at: [ 845.581947][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.587649][T18545] __msan_chain_origin+0x50/0x90 [ 845.592574][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.597695][T18545] get_compat_msghdr+0x108/0x270 [ 845.602635][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.607122][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.611782][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.617834][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.623999][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.629185][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.634023][T18545] do_SYSENTER_32+0x73/0x90 [ 845.638529][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.644838][T18545] [ 845.647150][T18545] Uninit was stored to memory at: [ 845.652165][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.657884][T18545] __msan_chain_origin+0x50/0x90 [ 845.662819][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.667927][T18545] get_compat_msghdr+0x108/0x270 [ 845.672882][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.677383][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.682048][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.688124][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.694264][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.699461][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.704329][T18545] do_SYSENTER_32+0x73/0x90 [ 845.708823][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.715128][T18545] [ 845.717442][T18545] Uninit was stored to memory at: [ 845.722484][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.728195][T18545] __msan_chain_origin+0x50/0x90 [ 845.733121][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.738248][T18545] get_compat_msghdr+0x108/0x270 [ 845.743269][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.747759][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.752421][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.758473][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.764632][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.769830][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.774668][T18545] do_SYSENTER_32+0x73/0x90 [ 845.779156][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.785460][T18545] [ 845.787770][T18545] Uninit was stored to memory at: [ 845.792785][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 845.798521][T18545] __msan_chain_origin+0x50/0x90 [ 845.803451][T18545] __get_compat_msghdr+0x5be/0x890 [ 845.808551][T18545] get_compat_msghdr+0x108/0x270 [ 845.813494][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 845.817984][T18545] __sys_recvmmsg+0x4ca/0x510 [ 845.822646][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 845.828707][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 845.834847][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 845.840053][T18545] do_fast_syscall_32+0x6b/0xd0 [ 845.844897][T18545] do_SYSENTER_32+0x73/0x90 [ 845.849386][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 845.855692][T18545] [ 845.858013][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 845.864673][T18545] do_recvmmsg+0xc5/0x1ee0 [ 845.869084][T18545] do_recvmmsg+0xc5/0x1ee0 [ 846.261683][T18545] not chained 3710000 origins [ 846.266461][T18545] CPU: 1 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 846.275143][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 846.285250][T18545] Call Trace: [ 846.288540][T18545] dump_stack+0x1df/0x240 [ 846.292887][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 846.298622][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 846.303725][T18545] ? release_sock+0x238/0x2a0 [ 846.308396][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 846.313174][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 846.318274][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 846.323810][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 846.329893][T18545] ? _copy_from_user+0x15b/0x260 [ 846.334835][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 846.339941][T18545] __msan_chain_origin+0x50/0x90 [ 846.344880][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.349994][T18545] get_compat_msghdr+0x108/0x270 [ 846.354926][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.359438][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 846.364543][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 846.370287][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 846.375039][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 846.379806][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 846.385026][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.389732][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.395793][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 846.402046][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.408192][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.413386][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.418226][T18545] do_SYSENTER_32+0x73/0x90 [ 846.422717][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.429030][T18545] RIP: 0023:0xf7fd3549 [ 846.433081][T18545] Code: Bad RIP value. [ 846.437132][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 846.445528][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 846.453488][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 846.461445][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 846.469418][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 846.477497][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 846.485476][T18545] Uninit was stored to memory at: [ 846.490503][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.496216][T18545] __msan_chain_origin+0x50/0x90 [ 846.501148][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.506266][T18545] get_compat_msghdr+0x108/0x270 [ 846.511192][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.515683][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.520370][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.526426][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.532567][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.537755][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.542595][T18545] do_SYSENTER_32+0x73/0x90 [ 846.547089][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.553416][T18545] [ 846.555726][T18545] Uninit was stored to memory at: [ 846.560736][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.566441][T18545] __msan_chain_origin+0x50/0x90 [ 846.571366][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.576484][T18545] get_compat_msghdr+0x108/0x270 [ 846.581427][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.585916][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.590576][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.596643][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.602795][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.607998][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.612848][T18545] do_SYSENTER_32+0x73/0x90 [ 846.617338][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.623641][T18545] [ 846.625951][T18545] Uninit was stored to memory at: [ 846.630962][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.636684][T18545] __msan_chain_origin+0x50/0x90 [ 846.641623][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.646721][T18545] get_compat_msghdr+0x108/0x270 [ 846.651644][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.656133][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.660821][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.666876][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.673040][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.678227][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.683063][T18545] do_SYSENTER_32+0x73/0x90 [ 846.687553][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.693858][T18545] [ 846.696168][T18545] Uninit was stored to memory at: [ 846.701200][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.706904][T18545] __msan_chain_origin+0x50/0x90 [ 846.711831][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.716933][T18545] get_compat_msghdr+0x108/0x270 [ 846.721858][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.726366][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.731134][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.737201][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.743340][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.748525][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.753362][T18545] do_SYSENTER_32+0x73/0x90 [ 846.757850][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.764151][T18545] [ 846.766462][T18545] Uninit was stored to memory at: [ 846.771501][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.777212][T18545] __msan_chain_origin+0x50/0x90 [ 846.782137][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.787687][T18545] get_compat_msghdr+0x108/0x270 [ 846.792610][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.797098][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.801780][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.807831][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.813974][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.819177][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.824033][T18545] do_SYSENTER_32+0x73/0x90 [ 846.828539][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.834842][T18545] [ 846.837160][T18545] Uninit was stored to memory at: [ 846.842172][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.847892][T18545] __msan_chain_origin+0x50/0x90 [ 846.852818][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.857939][T18545] get_compat_msghdr+0x108/0x270 [ 846.862866][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.867356][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.872016][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.878067][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.884237][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.889425][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.894262][T18545] do_SYSENTER_32+0x73/0x90 [ 846.898751][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.905075][T18545] [ 846.907385][T18545] Uninit was stored to memory at: [ 846.912404][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 846.918126][T18545] __msan_chain_origin+0x50/0x90 [ 846.923053][T18545] __get_compat_msghdr+0x5be/0x890 [ 846.928154][T18545] get_compat_msghdr+0x108/0x270 [ 846.933077][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 846.937586][T18545] __sys_recvmmsg+0x4ca/0x510 [ 846.942250][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 846.948302][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 846.954438][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 846.959638][T18545] do_fast_syscall_32+0x6b/0xd0 [ 846.964480][T18545] do_SYSENTER_32+0x73/0x90 [ 846.968983][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 846.975312][T18545] [ 846.977625][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 846.984431][T18545] do_recvmmsg+0xc5/0x1ee0 [ 846.988839][T18545] do_recvmmsg+0xc5/0x1ee0 [ 847.273723][T18545] not chained 3720000 origins [ 847.278457][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 847.287133][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 847.297187][T18545] Call Trace: [ 847.300486][T18545] dump_stack+0x1df/0x240 [ 847.304829][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 847.310558][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 847.315679][T18545] ? release_sock+0x238/0x2a0 [ 847.320403][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 847.325184][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 847.330330][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 847.335883][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 847.341978][T18545] ? _copy_from_user+0x15b/0x260 [ 847.346928][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 847.352046][T18545] __msan_chain_origin+0x50/0x90 [ 847.356995][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.362131][T18545] get_compat_msghdr+0x108/0x270 [ 847.367090][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.371645][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 847.376770][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 847.382064][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 847.386834][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 847.391601][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 847.396809][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.401500][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.407578][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 847.413858][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.420025][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.425240][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.430098][T18545] do_SYSENTER_32+0x73/0x90 [ 847.434612][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.440940][T18545] RIP: 0023:0xf7fd3549 [ 847.445009][T18545] Code: Bad RIP value. [ 847.449071][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 847.457483][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 847.465457][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 847.473432][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 847.481429][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 847.489578][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 847.497561][T18545] Uninit was stored to memory at: [ 847.502597][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.508364][T18545] __msan_chain_origin+0x50/0x90 [ 847.513309][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.518451][T18545] get_compat_msghdr+0x108/0x270 [ 847.523422][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.527930][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.532607][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.538680][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.544838][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.550077][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.554935][T18545] do_SYSENTER_32+0x73/0x90 [ 847.559437][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.565753][T18545] [ 847.568117][T18545] Uninit was stored to memory at: [ 847.573146][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.578872][T18545] __msan_chain_origin+0x50/0x90 [ 847.583817][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.588936][T18545] get_compat_msghdr+0x108/0x270 [ 847.593871][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.598356][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.603020][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.609096][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.615256][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.620448][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.625290][T18545] do_SYSENTER_32+0x73/0x90 [ 847.629780][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.636096][T18545] [ 847.638400][T18545] Uninit was stored to memory at: [ 847.643409][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.649132][T18545] __msan_chain_origin+0x50/0x90 [ 847.654052][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.659138][T18545] get_compat_msghdr+0x108/0x270 [ 847.664060][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.668561][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.673237][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.679310][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.685441][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.690618][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.695447][T18545] do_SYSENTER_32+0x73/0x90 [ 847.699925][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.706236][T18545] [ 847.708542][T18545] Uninit was stored to memory at: [ 847.713554][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.719281][T18545] __msan_chain_origin+0x50/0x90 [ 847.724209][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.729337][T18545] get_compat_msghdr+0x108/0x270 [ 847.734269][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.738749][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.743413][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.749467][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.755596][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.760771][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.765601][T18545] do_SYSENTER_32+0x73/0x90 [ 847.770107][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.778842][T18545] [ 847.781190][T18545] Uninit was stored to memory at: [ 847.786196][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.791913][T18545] __msan_chain_origin+0x50/0x90 [ 847.796832][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.801940][T18545] get_compat_msghdr+0x108/0x270 [ 847.806860][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.811340][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.815992][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.822053][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.828184][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.833372][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.838219][T18545] do_SYSENTER_32+0x73/0x90 [ 847.842699][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.848997][T18545] [ 847.851326][T18545] Uninit was stored to memory at: [ 847.856359][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.862052][T18545] __msan_chain_origin+0x50/0x90 [ 847.866993][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.872099][T18545] get_compat_msghdr+0x108/0x270 [ 847.877016][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.881515][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.886179][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.892233][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.898384][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.903577][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.908531][T18545] do_SYSENTER_32+0x73/0x90 [ 847.913043][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.919349][T18545] [ 847.921651][T18545] Uninit was stored to memory at: [ 847.926673][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 847.932385][T18545] __msan_chain_origin+0x50/0x90 [ 847.937301][T18545] __get_compat_msghdr+0x5be/0x890 [ 847.942406][T18545] get_compat_msghdr+0x108/0x270 [ 847.947434][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 847.951920][T18545] __sys_recvmmsg+0x4ca/0x510 [ 847.956576][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 847.962632][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 847.968786][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 847.973965][T18545] do_fast_syscall_32+0x6b/0xd0 [ 847.978806][T18545] do_SYSENTER_32+0x73/0x90 [ 847.983322][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 847.989649][T18545] [ 847.991980][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 847.998639][T18545] do_recvmmsg+0xc5/0x1ee0 [ 848.003052][T18545] do_recvmmsg+0xc5/0x1ee0 [ 848.217807][T18545] not chained 3730000 origins [ 848.222528][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 848.231265][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 848.241321][T18545] Call Trace: [ 848.244599][T18545] dump_stack+0x1df/0x240 [ 848.248934][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 848.254637][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 848.259745][T18545] ? release_sock+0x238/0x2a0 [ 848.264403][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 848.269149][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 848.274240][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 848.279763][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 848.285808][T18545] ? _copy_from_user+0x15b/0x260 [ 848.290740][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 848.295853][T18545] __msan_chain_origin+0x50/0x90 [ 848.300773][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.305881][T18545] get_compat_msghdr+0x108/0x270 [ 848.310803][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.315305][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 848.320395][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 848.325677][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 848.330428][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 848.335195][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 848.340388][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.345050][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.351096][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 848.357488][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.364143][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.369340][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.374189][T18545] do_SYSENTER_32+0x73/0x90 [ 848.378672][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.384983][T18545] RIP: 0023:0xf7fd3549 [ 848.389041][T18545] Code: Bad RIP value. [ 848.393090][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 848.401538][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 848.409528][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 848.417611][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 848.425598][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 848.433558][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 848.441526][T18545] Uninit was stored to memory at: [ 848.446537][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.452232][T18545] __msan_chain_origin+0x50/0x90 [ 848.457193][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.462286][T18545] get_compat_msghdr+0x108/0x270 [ 848.467207][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.471689][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.476345][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.482387][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.488520][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.493699][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.498526][T18545] do_SYSENTER_32+0x73/0x90 [ 848.503016][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.509324][T18545] [ 848.511646][T18545] Uninit was stored to memory at: [ 848.516652][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.522349][T18545] __msan_chain_origin+0x50/0x90 [ 848.527288][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.532500][T18545] get_compat_msghdr+0x108/0x270 [ 848.537427][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.541908][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.546575][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.552631][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.558787][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.563978][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.568818][T18545] do_SYSENTER_32+0x73/0x90 [ 848.573303][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.579603][T18545] [ 848.581909][T18545] Uninit was stored to memory at: [ 848.586958][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.592669][T18545] __msan_chain_origin+0x50/0x90 [ 848.597586][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.602674][T18545] get_compat_msghdr+0x108/0x270 [ 848.607590][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.612072][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.616747][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.622789][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.628941][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.634119][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.638948][T18545] do_SYSENTER_32+0x73/0x90 [ 848.643427][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.649723][T18545] [ 848.652026][T18545] Uninit was stored to memory at: [ 848.657042][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.662750][T18545] __msan_chain_origin+0x50/0x90 [ 848.667671][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.672760][T18545] get_compat_msghdr+0x108/0x270 [ 848.677693][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.682172][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.686826][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.692889][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.699040][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.704245][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.709073][T18545] do_SYSENTER_32+0x73/0x90 [ 848.713555][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.719855][T18545] [ 848.722160][T18545] Uninit was stored to memory at: [ 848.727182][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.732883][T18545] __msan_chain_origin+0x50/0x90 [ 848.737821][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.742908][T18545] get_compat_msghdr+0x108/0x270 [ 848.747848][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.752343][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.756998][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.763053][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.769196][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.774374][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.779200][T18545] do_SYSENTER_32+0x73/0x90 [ 848.783680][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.789992][T18545] [ 848.792310][T18545] Uninit was stored to memory at: [ 848.797327][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.803050][T18545] __msan_chain_origin+0x50/0x90 [ 848.807995][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.813115][T18545] get_compat_msghdr+0x108/0x270 [ 848.818039][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.822518][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.827172][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.833216][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.839356][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.844530][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.849376][T18545] do_SYSENTER_32+0x73/0x90 [ 848.853856][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.860170][T18545] [ 848.862470][T18545] Uninit was stored to memory at: [ 848.867472][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 848.873200][T18545] __msan_chain_origin+0x50/0x90 [ 848.878137][T18545] __get_compat_msghdr+0x5be/0x890 [ 848.883238][T18545] get_compat_msghdr+0x108/0x270 [ 848.888170][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 848.892665][T18545] __sys_recvmmsg+0x4ca/0x510 [ 848.897318][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 848.903360][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 848.909487][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 848.914665][T18545] do_fast_syscall_32+0x6b/0xd0 [ 848.919490][T18545] do_SYSENTER_32+0x73/0x90 [ 848.923974][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 848.930270][T18545] [ 848.932574][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 848.939244][T18545] do_recvmmsg+0xc5/0x1ee0 [ 848.943654][T18545] do_recvmmsg+0xc5/0x1ee0 [ 849.122534][T18545] not chained 3740000 origins [ 849.127292][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 849.135961][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 849.146018][T18545] Call Trace: [ 849.149326][T18545] dump_stack+0x1df/0x240 [ 849.153668][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 849.159431][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 849.164585][T18545] ? release_sock+0x238/0x2a0 [ 849.169273][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 849.174053][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 849.179166][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 849.184716][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 849.190795][T18545] ? _copy_from_user+0x15b/0x260 [ 849.195773][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 849.200895][T18545] __msan_chain_origin+0x50/0x90 [ 849.205845][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.210981][T18545] get_compat_msghdr+0x108/0x270 [ 849.215965][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.220500][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 849.225628][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 849.230929][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 849.235757][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 849.240529][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 849.245741][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.250433][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.256510][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 849.262800][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.268966][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.274181][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.279035][T18545] do_SYSENTER_32+0x73/0x90 [ 849.283545][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.289874][T18545] RIP: 0023:0xf7fd3549 [ 849.293959][T18545] Code: Bad RIP value. [ 849.298044][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 849.306454][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 849.314427][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 849.322402][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 849.330412][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 849.338402][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 849.346372][T18545] Uninit was stored to memory at: [ 849.351428][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.357175][T18545] __msan_chain_origin+0x50/0x90 [ 849.362092][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.367204][T18545] get_compat_msghdr+0x108/0x270 [ 849.372120][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.376619][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.381298][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.387375][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.393510][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.398686][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.403524][T18545] do_SYSENTER_32+0x73/0x90 [ 849.408045][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.414342][T18545] [ 849.416646][T18545] Uninit was stored to memory at: [ 849.421650][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.427359][T18545] __msan_chain_origin+0x50/0x90 [ 849.432292][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.437399][T18545] get_compat_msghdr+0x108/0x270 [ 849.442337][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.446825][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.451479][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.457525][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.463668][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.468875][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.473703][T18545] do_SYSENTER_32+0x73/0x90 [ 849.478199][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.484527][T18545] [ 849.486866][T18545] Uninit was stored to memory at: [ 849.491893][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.497591][T18545] __msan_chain_origin+0x50/0x90 [ 849.502505][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.507597][T18545] get_compat_msghdr+0x108/0x270 [ 849.512531][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.517043][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.521697][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.527757][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.533902][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.539105][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.543968][T18545] do_SYSENTER_32+0x73/0x90 [ 849.548551][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.554868][T18545] [ 849.557171][T18545] Uninit was stored to memory at: [ 849.562191][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.567889][T18545] __msan_chain_origin+0x50/0x90 [ 849.572804][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.577904][T18545] get_compat_msghdr+0x108/0x270 [ 849.582835][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.587318][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.591988][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.598059][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.604201][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.609411][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.614243][T18545] do_SYSENTER_32+0x73/0x90 [ 849.618722][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.625022][T18545] [ 849.627336][T18545] Uninit was stored to memory at: [ 849.632357][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.638071][T18545] __msan_chain_origin+0x50/0x90 [ 849.643005][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.648115][T18545] get_compat_msghdr+0x108/0x270 [ 849.653075][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.657567][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.662219][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.668264][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.674420][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.679595][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.684433][T18545] do_SYSENTER_32+0x73/0x90 [ 849.688932][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.695248][T18545] [ 849.697553][T18545] Uninit was stored to memory at: [ 849.702575][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.708274][T18545] __msan_chain_origin+0x50/0x90 [ 849.713195][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.718297][T18545] get_compat_msghdr+0x108/0x270 [ 849.723223][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.727715][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.732382][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.738426][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.744594][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.749803][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.754646][T18545] do_SYSENTER_32+0x73/0x90 [ 849.759138][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.765445][T18545] [ 849.767762][T18545] Uninit was stored to memory at: [ 849.772765][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 849.778482][T18545] __msan_chain_origin+0x50/0x90 [ 849.783410][T18545] __get_compat_msghdr+0x5be/0x890 [ 849.788522][T18545] get_compat_msghdr+0x108/0x270 [ 849.793459][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 849.797939][T18545] __sys_recvmmsg+0x4ca/0x510 [ 849.802591][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 849.808654][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 849.814800][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 849.819992][T18545] do_fast_syscall_32+0x6b/0xd0 [ 849.824838][T18545] do_SYSENTER_32+0x73/0x90 [ 849.829329][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 849.835627][T18545] [ 849.837936][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 849.844597][T18545] do_recvmmsg+0xc5/0x1ee0 [ 849.849008][T18545] do_recvmmsg+0xc5/0x1ee0 [ 850.011256][T18545] not chained 3750000 origins [ 850.015990][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 850.024663][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 850.034723][T18545] Call Trace: [ 850.038034][T18545] dump_stack+0x1df/0x240 [ 850.042484][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 850.048325][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 850.053480][T18545] ? release_sock+0x238/0x2a0 [ 850.058171][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 850.062985][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 850.068105][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 850.073662][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 850.079738][T18545] ? _copy_from_user+0x15b/0x260 [ 850.084687][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 850.089801][T18545] __msan_chain_origin+0x50/0x90 [ 850.094750][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.099884][T18545] get_compat_msghdr+0x108/0x270 [ 850.104836][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.109371][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 850.114496][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 850.119787][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 850.124591][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 850.129359][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 850.134574][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.139264][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.145377][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 850.151648][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.157847][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.163047][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.167948][T18545] do_SYSENTER_32+0x73/0x90 [ 850.172518][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.178835][T18545] RIP: 0023:0xf7fd3549 [ 850.182897][T18545] Code: Bad RIP value. [ 850.187020][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 850.195445][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 850.203425][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 850.211398][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 850.219377][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 850.227341][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 850.235452][T18545] Uninit was stored to memory at: [ 850.240481][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.246194][T18545] __msan_chain_origin+0x50/0x90 [ 850.251136][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.256245][T18545] get_compat_msghdr+0x108/0x270 [ 850.261164][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.265647][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.270305][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.276353][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.282498][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.287682][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.292509][T18545] do_SYSENTER_32+0x73/0x90 [ 850.297009][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.303312][T18545] [ 850.305633][T18545] Uninit was stored to memory at: [ 850.310658][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.316383][T18545] __msan_chain_origin+0x50/0x90 [ 850.321302][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.326393][T18545] get_compat_msghdr+0x108/0x270 [ 850.331306][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.335789][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.340445][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.346511][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.352639][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.357839][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.362666][T18545] do_SYSENTER_32+0x73/0x90 [ 850.367150][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.373457][T18545] [ 850.375800][T18545] Uninit was stored to memory at: [ 850.380807][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.386531][T18545] __msan_chain_origin+0x50/0x90 [ 850.391446][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.396551][T18545] get_compat_msghdr+0x108/0x270 [ 850.401480][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.405981][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.410635][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.416709][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.422873][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.428054][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.432881][T18545] do_SYSENTER_32+0x73/0x90 [ 850.437364][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.443667][T18545] [ 850.445980][T18545] Uninit was stored to memory at: [ 850.450982][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.456681][T18545] __msan_chain_origin+0x50/0x90 [ 850.461610][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.466702][T18545] get_compat_msghdr+0x108/0x270 [ 850.471614][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.476097][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.480750][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.486794][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.493022][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.498259][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.503116][T18545] do_SYSENTER_32+0x73/0x90 [ 850.507654][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.513957][T18545] [ 850.516268][T18545] Uninit was stored to memory at: [ 850.521274][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.526994][T18545] __msan_chain_origin+0x50/0x90 [ 850.531936][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.537078][T18545] get_compat_msghdr+0x108/0x270 [ 850.542047][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.546534][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.551191][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.557248][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.563402][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.568596][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.573439][T18545] do_SYSENTER_32+0x73/0x90 [ 850.577932][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.584239][T18545] [ 850.586556][T18545] Uninit was stored to memory at: [ 850.591575][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.597293][T18545] __msan_chain_origin+0x50/0x90 [ 850.602225][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.607339][T18545] get_compat_msghdr+0x108/0x270 [ 850.612254][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.616737][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.621390][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.627449][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.633596][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.638793][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.643645][T18545] do_SYSENTER_32+0x73/0x90 [ 850.648136][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.654457][T18545] [ 850.656760][T18545] Uninit was stored to memory at: [ 850.661779][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 850.667475][T18545] __msan_chain_origin+0x50/0x90 [ 850.672391][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.677500][T18545] get_compat_msghdr+0x108/0x270 [ 850.682415][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 850.686899][T18545] __sys_recvmmsg+0x4ca/0x510 [ 850.691552][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 850.697604][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 850.703751][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 850.708951][T18545] do_fast_syscall_32+0x6b/0xd0 [ 850.713786][T18545] do_SYSENTER_32+0x73/0x90 [ 850.718286][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 850.724592][T18545] [ 850.726931][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 850.733605][T18545] do_recvmmsg+0xc5/0x1ee0 [ 850.738012][T18545] do_recvmmsg+0xc5/0x1ee0 [ 850.909263][T18545] not chained 3760000 origins [ 850.914085][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 850.922755][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 850.932949][T18545] Call Trace: [ 850.936346][T18545] dump_stack+0x1df/0x240 [ 850.940693][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 850.946424][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 850.951577][T18545] ? release_sock+0x238/0x2a0 [ 850.956267][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 850.961045][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 850.966165][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 850.971717][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 850.977797][T18545] ? _copy_from_user+0x15b/0x260 [ 850.982738][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 850.987855][T18545] __msan_chain_origin+0x50/0x90 [ 850.992803][T18545] __get_compat_msghdr+0x5be/0x890 [ 850.997956][T18545] get_compat_msghdr+0x108/0x270 [ 851.002911][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.007455][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 851.012577][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 851.017877][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 851.022643][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 851.027411][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 851.032617][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.037342][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.043510][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 851.049763][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.055958][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.061173][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.066113][T18545] do_SYSENTER_32+0x73/0x90 [ 851.070598][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.076924][T18545] RIP: 0023:0xf7fd3549 [ 851.080966][T18545] Code: Bad RIP value. [ 851.085168][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 851.093601][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 851.101565][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 851.109530][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 851.117508][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 851.125461][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 851.133432][T18545] Uninit was stored to memory at: [ 851.138468][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.144166][T18545] __msan_chain_origin+0x50/0x90 [ 851.149082][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.154182][T18545] get_compat_msghdr+0x108/0x270 [ 851.159111][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.163592][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.168245][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.174298][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.180441][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.185618][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.190443][T18545] do_SYSENTER_32+0x73/0x90 [ 851.194934][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.201257][T18545] [ 851.203581][T18545] Uninit was stored to memory at: [ 851.208710][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.214424][T18545] __msan_chain_origin+0x50/0x90 [ 851.219376][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.224594][T18545] get_compat_msghdr+0x108/0x270 [ 851.229563][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.234062][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.239047][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.245147][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.251306][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.256506][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.261336][T18545] do_SYSENTER_32+0x73/0x90 [ 851.265817][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.272114][T18545] [ 851.274444][T18545] Uninit was stored to memory at: [ 851.279582][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.285306][T18545] __msan_chain_origin+0x50/0x90 [ 851.290250][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.295359][T18545] get_compat_msghdr+0x108/0x270 [ 851.300294][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.304786][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.309495][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.315557][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.321723][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.326905][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.331733][T18545] do_SYSENTER_32+0x73/0x90 [ 851.336241][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.342559][T18545] [ 851.344870][T18545] Uninit was stored to memory at: [ 851.349886][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.355604][T18545] __msan_chain_origin+0x50/0x90 [ 851.360531][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.365639][T18545] get_compat_msghdr+0x108/0x270 [ 851.370567][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.375063][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.379748][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.385793][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.391946][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.397148][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.401997][T18545] do_SYSENTER_32+0x73/0x90 [ 851.406483][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.412781][T18545] [ 851.415092][T18545] Uninit was stored to memory at: [ 851.420119][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.425831][T18545] __msan_chain_origin+0x50/0x90 [ 851.430767][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.435879][T18545] get_compat_msghdr+0x108/0x270 [ 851.440813][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.445292][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.449975][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.456027][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.462158][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.467341][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.472268][T18545] do_SYSENTER_32+0x73/0x90 [ 851.476754][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.483073][T18545] [ 851.485393][T18545] Uninit was stored to memory at: [ 851.490403][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.496103][T18545] __msan_chain_origin+0x50/0x90 [ 851.501037][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.506150][T18545] get_compat_msghdr+0x108/0x270 [ 851.511087][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.515572][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.520226][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.526278][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.532452][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.537650][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.542478][T18545] do_SYSENTER_32+0x73/0x90 [ 851.546960][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.553263][T18545] [ 851.555620][T18545] Uninit was stored to memory at: [ 851.560628][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 851.566329][T18545] __msan_chain_origin+0x50/0x90 [ 851.571332][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.576510][T18545] get_compat_msghdr+0x108/0x270 [ 851.581445][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.585927][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.590579][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.596641][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.602771][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.607949][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.612776][T18545] do_SYSENTER_32+0x73/0x90 [ 851.617259][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.623560][T18545] [ 851.625877][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 851.632546][T18545] do_recvmmsg+0xc5/0x1ee0 [ 851.636952][T18545] do_recvmmsg+0xc5/0x1ee0 [ 851.808375][T18545] not chained 3770000 origins [ 851.813109][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 851.821785][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 851.831843][T18545] Call Trace: [ 851.835146][T18545] dump_stack+0x1df/0x240 [ 851.839491][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 851.845226][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 851.850345][T18545] ? release_sock+0x238/0x2a0 [ 851.855038][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 851.859816][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 851.864938][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 851.870491][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 851.876570][T18545] ? _copy_from_user+0x15b/0x260 [ 851.881528][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 851.886728][T18545] __msan_chain_origin+0x50/0x90 [ 851.891677][T18545] __get_compat_msghdr+0x5be/0x890 [ 851.896816][T18545] get_compat_msghdr+0x108/0x270 [ 851.901788][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 851.906349][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 851.911470][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 851.916776][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 851.921545][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 851.926315][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 851.931522][T18545] __sys_recvmmsg+0x4ca/0x510 [ 851.936244][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 851.942324][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 851.948558][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 851.954705][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 851.959904][T18545] do_fast_syscall_32+0x6b/0xd0 [ 851.964751][T18545] do_SYSENTER_32+0x73/0x90 [ 851.969245][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 851.975558][T18545] RIP: 0023:0xf7fd3549 [ 851.979629][T18545] Code: Bad RIP value. [ 851.983692][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 851.992079][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 852.000032][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 852.008000][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 852.015955][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 852.023909][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 852.031869][T18545] Uninit was stored to memory at: [ 852.036882][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.042581][T18545] __msan_chain_origin+0x50/0x90 [ 852.047540][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.052643][T18545] get_compat_msghdr+0x108/0x270 [ 852.057594][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.062076][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.066815][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.072912][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.079105][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.084324][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.089181][T18545] do_SYSENTER_32+0x73/0x90 [ 852.093670][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.099994][T18545] [ 852.102298][T18545] Uninit was stored to memory at: [ 852.107319][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.113022][T18545] __msan_chain_origin+0x50/0x90 [ 852.117952][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.123047][T18545] get_compat_msghdr+0x108/0x270 [ 852.127975][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.132458][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.137121][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.143164][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.149295][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.154481][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.159344][T18545] do_SYSENTER_32+0x73/0x90 [ 852.163825][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.170121][T18545] [ 852.172424][T18545] Uninit was stored to memory at: [ 852.177433][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.183153][T18545] __msan_chain_origin+0x50/0x90 [ 852.188093][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.193227][T18545] get_compat_msghdr+0x108/0x270 [ 852.198158][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.202653][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.207308][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.213357][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.219517][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.224702][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.229543][T18545] do_SYSENTER_32+0x73/0x90 [ 852.234050][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.240379][T18545] [ 852.242687][T18545] Uninit was stored to memory at: [ 852.247711][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.253421][T18545] __msan_chain_origin+0x50/0x90 [ 852.258368][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.263488][T18545] get_compat_msghdr+0x108/0x270 [ 852.268433][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.272932][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.277606][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.283662][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.289805][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.294993][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.299843][T18545] do_SYSENTER_32+0x73/0x90 [ 852.304339][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.310698][T18545] [ 852.313037][T18545] Uninit was stored to memory at: [ 852.318104][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.323816][T18545] __msan_chain_origin+0x50/0x90 [ 852.328887][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.333991][T18545] get_compat_msghdr+0x108/0x270 [ 852.338920][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.343437][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.348103][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.354157][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.360319][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.365499][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.370326][T18545] do_SYSENTER_32+0x73/0x90 [ 852.374815][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.381126][T18545] [ 852.383435][T18545] Uninit was stored to memory at: [ 852.388556][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.394266][T18545] __msan_chain_origin+0x50/0x90 [ 852.399195][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.404297][T18545] get_compat_msghdr+0x108/0x270 [ 852.409235][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.413740][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.418408][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.424451][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.430597][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.435774][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.440618][T18545] do_SYSENTER_32+0x73/0x90 [ 852.445104][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.451419][T18545] [ 852.453749][T18545] Uninit was stored to memory at: [ 852.458786][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.464486][T18545] __msan_chain_origin+0x50/0x90 [ 852.469401][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.474501][T18545] get_compat_msghdr+0x108/0x270 [ 852.479425][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.483923][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.488588][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.494641][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.500802][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.505995][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.510888][T18545] do_SYSENTER_32+0x73/0x90 [ 852.515411][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.521753][T18545] [ 852.524066][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 852.530850][T18545] do_recvmmsg+0xc5/0x1ee0 [ 852.535300][T18545] do_recvmmsg+0xc5/0x1ee0 [ 852.705142][T18545] not chained 3780000 origins [ 852.709883][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 852.718556][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 852.728614][T18545] Call Trace: [ 852.731913][T18545] dump_stack+0x1df/0x240 [ 852.736262][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 852.741997][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 852.747117][T18545] ? release_sock+0x238/0x2a0 [ 852.751800][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 852.756583][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 852.761702][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 852.767261][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 852.773342][T18545] ? _copy_from_user+0x15b/0x260 [ 852.778289][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 852.783408][T18545] __msan_chain_origin+0x50/0x90 [ 852.788359][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.793496][T18545] get_compat_msghdr+0x108/0x270 [ 852.798490][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.803020][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 852.808143][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 852.813465][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 852.818233][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 852.823097][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 852.828307][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.833000][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.839088][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 852.845377][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.851547][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.856762][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.861625][T18545] do_SYSENTER_32+0x73/0x90 [ 852.866155][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.872472][T18545] RIP: 0023:0xf7fd3549 [ 852.876516][T18545] Code: Bad RIP value. [ 852.880562][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 852.888969][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 852.896931][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 852.904895][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 852.912861][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 852.920833][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 852.928802][T18545] Uninit was stored to memory at: [ 852.933844][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 852.939573][T18545] __msan_chain_origin+0x50/0x90 [ 852.944502][T18545] __get_compat_msghdr+0x5be/0x890 [ 852.949605][T18545] get_compat_msghdr+0x108/0x270 [ 852.954676][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 852.959182][T18545] __sys_recvmmsg+0x4ca/0x510 [ 852.963860][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 852.970019][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 852.976213][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 852.981440][T18545] do_fast_syscall_32+0x6b/0xd0 [ 852.986314][T18545] do_SYSENTER_32+0x73/0x90 [ 852.990797][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 852.997098][T18545] [ 852.999409][T18545] Uninit was stored to memory at: [ 853.004449][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.010149][T18545] __msan_chain_origin+0x50/0x90 [ 853.015080][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.020195][T18545] get_compat_msghdr+0x108/0x270 [ 853.025131][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.029614][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.034288][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.040345][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.046479][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.051675][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.056854][T18545] do_SYSENTER_32+0x73/0x90 [ 853.061358][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.067685][T18545] [ 853.070013][T18545] Uninit was stored to memory at: [ 853.075030][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.080742][T18545] __msan_chain_origin+0x50/0x90 [ 853.085658][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.090745][T18545] get_compat_msghdr+0x108/0x270 [ 853.095707][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.100192][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.104868][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.110919][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.117056][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.122233][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.127083][T18545] do_SYSENTER_32+0x73/0x90 [ 853.131562][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.137861][T18545] [ 853.140169][T18545] Uninit was stored to memory at: [ 853.145200][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.150898][T18545] __msan_chain_origin+0x50/0x90 [ 853.155827][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.160929][T18545] get_compat_msghdr+0x108/0x270 [ 853.165850][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.170347][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.175014][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.181076][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.187217][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.192395][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.197246][T18545] do_SYSENTER_32+0x73/0x90 [ 853.201739][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.208040][T18545] [ 853.210370][T18545] Uninit was stored to memory at: [ 853.215393][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.221108][T18545] __msan_chain_origin+0x50/0x90 [ 853.226027][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.231117][T18545] get_compat_msghdr+0x108/0x270 [ 853.236038][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.240515][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.245168][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.251209][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.257368][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.262569][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.267402][T18545] do_SYSENTER_32+0x73/0x90 [ 853.271898][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.278201][T18545] [ 853.280509][T18545] Uninit was stored to memory at: [ 853.285522][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.291231][T18545] __msan_chain_origin+0x50/0x90 [ 853.296159][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.301272][T18545] get_compat_msghdr+0x108/0x270 [ 853.306206][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.310688][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.315345][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.321388][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.327537][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.332714][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.337546][T18545] do_SYSENTER_32+0x73/0x90 [ 853.342045][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.348440][T18545] [ 853.350762][T18545] Uninit was stored to memory at: [ 853.355770][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.361463][T18545] __msan_chain_origin+0x50/0x90 [ 853.366398][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.371484][T18545] get_compat_msghdr+0x108/0x270 [ 853.376423][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.380925][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.385583][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.391652][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.397794][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.403171][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.408016][T18545] do_SYSENTER_32+0x73/0x90 [ 853.412498][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.418820][T18545] [ 853.421131][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 853.427787][T18545] do_recvmmsg+0xc5/0x1ee0 [ 853.432199][T18545] do_recvmmsg+0xc5/0x1ee0 [ 853.609533][T18545] not chained 3790000 origins [ 853.614406][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 853.623112][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 853.633166][T18545] Call Trace: [ 853.636466][T18545] dump_stack+0x1df/0x240 [ 853.640806][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 853.646543][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 853.651663][T18545] ? release_sock+0x238/0x2a0 [ 853.656352][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 853.661130][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 853.666258][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 853.671812][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 853.677916][T18545] ? _copy_from_user+0x15b/0x260 [ 853.682859][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 853.687979][T18545] __msan_chain_origin+0x50/0x90 [ 853.692932][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.698075][T18545] get_compat_msghdr+0x108/0x270 [ 853.703030][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.707565][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 853.712685][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 853.717980][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 853.722756][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 853.727529][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 853.732735][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.737432][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.743516][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 853.749775][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.755914][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.761097][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.765929][T18545] do_SYSENTER_32+0x73/0x90 [ 853.770411][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.776714][T18545] RIP: 0023:0xf7fd3549 [ 853.780757][T18545] Code: Bad RIP value. [ 853.784808][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 853.793225][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 853.801191][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 853.809167][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 853.817146][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 853.825120][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 853.833099][T18545] Uninit was stored to memory at: [ 853.838156][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.843900][T18545] __msan_chain_origin+0x50/0x90 [ 853.848830][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.853922][T18545] get_compat_msghdr+0x108/0x270 [ 853.858839][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.863341][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.868008][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.874067][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.880201][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.885390][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.890229][T18545] do_SYSENTER_32+0x73/0x90 [ 853.894741][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.901053][T18545] [ 853.903362][T18545] Uninit was stored to memory at: [ 853.908377][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.914078][T18545] __msan_chain_origin+0x50/0x90 [ 853.919016][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.924119][T18545] get_compat_msghdr+0x108/0x270 [ 853.929046][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 853.933547][T18545] __sys_recvmmsg+0x4ca/0x510 [ 853.938202][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 853.944259][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 853.950415][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 853.955605][T18545] do_fast_syscall_32+0x6b/0xd0 [ 853.960448][T18545] do_SYSENTER_32+0x73/0x90 [ 853.964939][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 853.971334][T18545] [ 853.973653][T18545] Uninit was stored to memory at: [ 853.978671][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 853.984374][T18545] __msan_chain_origin+0x50/0x90 [ 853.989305][T18545] __get_compat_msghdr+0x5be/0x890 [ 853.994395][T18545] get_compat_msghdr+0x108/0x270 [ 853.999339][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.003833][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.008500][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.014552][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.020704][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.025914][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.030748][T18545] do_SYSENTER_32+0x73/0x90 [ 854.035278][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.041594][T18545] [ 854.043909][T18545] Uninit was stored to memory at: [ 854.048944][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.054680][T18545] __msan_chain_origin+0x50/0x90 [ 854.059620][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.064734][T18545] get_compat_msghdr+0x108/0x270 [ 854.069669][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.074154][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.078814][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.084874][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.091022][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.096222][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.101052][T18545] do_SYSENTER_32+0x73/0x90 [ 854.105544][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.112216][T18545] [ 854.114543][T18545] Uninit was stored to memory at: [ 854.119549][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.125279][T18545] __msan_chain_origin+0x50/0x90 [ 854.130206][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.135295][T18545] get_compat_msghdr+0x108/0x270 [ 854.140209][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.144700][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.149382][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.155427][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.161572][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.166761][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.171604][T18545] do_SYSENTER_32+0x73/0x90 [ 854.176101][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.182408][T18545] [ 854.184742][T18545] Uninit was stored to memory at: [ 854.189798][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.195499][T18545] __msan_chain_origin+0x50/0x90 [ 854.200439][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.205552][T18545] get_compat_msghdr+0x108/0x270 [ 854.210508][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.215010][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.219727][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.226911][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.233058][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.238249][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.243089][T18545] do_SYSENTER_32+0x73/0x90 [ 854.247585][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.253883][T18545] [ 854.256193][T18545] Uninit was stored to memory at: [ 854.261211][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.266937][T18545] __msan_chain_origin+0x50/0x90 [ 854.271863][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.276964][T18545] get_compat_msghdr+0x108/0x270 [ 854.281891][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.286410][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.291077][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.297120][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.303262][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.308448][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.313285][T18545] do_SYSENTER_32+0x73/0x90 [ 854.317777][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.324082][T18545] [ 854.326400][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 854.333061][T18545] do_recvmmsg+0xc5/0x1ee0 [ 854.337478][T18545] do_recvmmsg+0xc5/0x1ee0 [ 854.508810][T18545] not chained 3800000 origins [ 854.513539][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 854.522207][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 854.532350][T18545] Call Trace: [ 854.535653][T18545] dump_stack+0x1df/0x240 [ 854.539999][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 854.545729][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 854.550849][T18545] ? release_sock+0x238/0x2a0 [ 854.555537][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 854.560324][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 854.565475][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 854.571029][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 854.577110][T18545] ? _copy_from_user+0x15b/0x260 [ 854.582080][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 854.587223][T18545] __msan_chain_origin+0x50/0x90 [ 854.592168][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.597307][T18545] get_compat_msghdr+0x108/0x270 [ 854.602260][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.606798][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 854.611925][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 854.617220][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 854.621988][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 854.626782][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 854.631987][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.636684][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.642755][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 854.649001][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.655165][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.660362][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.665198][T18545] do_SYSENTER_32+0x73/0x90 [ 854.669703][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.676035][T18545] RIP: 0023:0xf7fd3549 [ 854.680077][T18545] Code: Bad RIP value. [ 854.684140][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 854.692526][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 854.700478][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 854.708428][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 854.716410][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 854.724375][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 854.732336][T18545] Uninit was stored to memory at: [ 854.737346][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.743052][T18545] __msan_chain_origin+0x50/0x90 [ 854.753289][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.758409][T18545] get_compat_msghdr+0x108/0x270 [ 854.763326][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.767806][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.772476][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.778611][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.784743][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.789923][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.794765][T18545] do_SYSENTER_32+0x73/0x90 [ 854.799259][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.805556][T18545] [ 854.807861][T18545] Uninit was stored to memory at: [ 854.812884][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.818618][T18545] __msan_chain_origin+0x50/0x90 [ 854.823549][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.828651][T18545] get_compat_msghdr+0x108/0x270 [ 854.833582][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.838077][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.842732][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.848774][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.854922][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.860108][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.864938][T18545] do_SYSENTER_32+0x73/0x90 [ 854.869437][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.875739][T18545] [ 854.878052][T18545] Uninit was stored to memory at: [ 854.883065][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.888773][T18545] __msan_chain_origin+0x50/0x90 [ 854.893702][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.898803][T18545] get_compat_msghdr+0x108/0x270 [ 854.903721][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.908198][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.912857][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.918909][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.925044][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 854.930222][T18545] do_fast_syscall_32+0x6b/0xd0 [ 854.935061][T18545] do_SYSENTER_32+0x73/0x90 [ 854.939570][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 854.945881][T18545] [ 854.948206][T18545] Uninit was stored to memory at: [ 854.953225][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 854.958932][T18545] __msan_chain_origin+0x50/0x90 [ 854.963864][T18545] __get_compat_msghdr+0x5be/0x890 [ 854.968950][T18545] get_compat_msghdr+0x108/0x270 [ 854.973876][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 854.978372][T18545] __sys_recvmmsg+0x4ca/0x510 [ 854.983034][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 854.989101][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 854.995245][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.000431][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.005260][T18545] do_SYSENTER_32+0x73/0x90 [ 855.009752][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.016070][T18545] [ 855.018373][T18545] Uninit was stored to memory at: [ 855.023380][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.029074][T18545] __msan_chain_origin+0x50/0x90 [ 855.034002][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.039103][T18545] get_compat_msghdr+0x108/0x270 [ 855.044053][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.048566][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.053253][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.059378][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.065513][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.070711][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.075553][T18545] do_SYSENTER_32+0x73/0x90 [ 855.080046][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.086371][T18545] [ 855.088678][T18545] Uninit was stored to memory at: [ 855.093695][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.099417][T18545] __msan_chain_origin+0x50/0x90 [ 855.104337][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.109545][T18545] get_compat_msghdr+0x108/0x270 [ 855.114478][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.118977][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.123739][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.129786][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.135973][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.141151][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.146077][T18545] do_SYSENTER_32+0x73/0x90 [ 855.150558][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.156887][T18545] [ 855.159206][T18545] Uninit was stored to memory at: [ 855.164223][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.169935][T18545] __msan_chain_origin+0x50/0x90 [ 855.174862][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.179967][T18545] get_compat_msghdr+0x108/0x270 [ 855.184925][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.189488][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.194173][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.200240][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.206377][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.211571][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.216418][T18545] do_SYSENTER_32+0x73/0x90 [ 855.220933][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.227233][T18545] [ 855.229539][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 855.236197][T18545] do_recvmmsg+0xc5/0x1ee0 [ 855.240633][T18545] do_recvmmsg+0xc5/0x1ee0 [ 855.408064][T18545] not chained 3810000 origins [ 855.412800][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 855.421489][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 855.431549][T18545] Call Trace: [ 855.434853][T18545] dump_stack+0x1df/0x240 [ 855.439197][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 855.444934][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 855.450057][T18545] ? release_sock+0x238/0x2a0 [ 855.454750][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 855.459558][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 855.464679][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 855.470235][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 855.476316][T18545] ? _copy_from_user+0x15b/0x260 [ 855.481259][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 855.486378][T18545] __msan_chain_origin+0x50/0x90 [ 855.491326][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.496470][T18545] get_compat_msghdr+0x108/0x270 [ 855.501633][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.506177][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 855.511302][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 855.516601][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 855.521368][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 855.526142][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 855.531350][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.536048][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.542129][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 855.548378][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.554566][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.559780][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.564646][T18545] do_SYSENTER_32+0x73/0x90 [ 855.569148][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.575454][T18545] RIP: 0023:0xf7fd3549 [ 855.579535][T18545] Code: Bad RIP value. [ 855.583584][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 855.591985][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 855.599938][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 855.607925][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 855.615892][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 855.623852][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 855.631840][T18545] Uninit was stored to memory at: [ 855.636858][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.642575][T18545] __msan_chain_origin+0x50/0x90 [ 855.647495][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.652602][T18545] get_compat_msghdr+0x108/0x270 [ 855.657544][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.662041][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.666700][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.672743][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.678891][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.684082][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.688948][T18545] do_SYSENTER_32+0x73/0x90 [ 855.693432][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.699746][T18545] [ 855.702050][T18545] Uninit was stored to memory at: [ 855.707057][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.712750][T18545] __msan_chain_origin+0x50/0x90 [ 855.717677][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.722785][T18545] get_compat_msghdr+0x108/0x270 [ 855.727706][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.732186][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.736840][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.742894][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.749031][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.754253][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.759082][T18545] do_SYSENTER_32+0x73/0x90 [ 855.763603][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.769932][T18545] [ 855.772260][T18545] Uninit was stored to memory at: [ 855.777285][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.782997][T18545] __msan_chain_origin+0x50/0x90 [ 855.787924][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.793022][T18545] get_compat_msghdr+0x108/0x270 [ 855.797974][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.802455][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.807376][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.813422][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.819554][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.824741][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.829595][T18545] do_SYSENTER_32+0x73/0x90 [ 855.834090][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.840406][T18545] [ 855.842730][T18545] Uninit was stored to memory at: [ 855.847752][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.853470][T18545] __msan_chain_origin+0x50/0x90 [ 855.858404][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.863502][T18545] get_compat_msghdr+0x108/0x270 [ 855.868431][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.872910][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.877565][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.883618][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.889763][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.894941][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.899771][T18545] do_SYSENTER_32+0x73/0x90 [ 855.904261][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.910569][T18545] [ 855.912873][T18545] Uninit was stored to memory at: [ 855.917894][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.923773][T18545] __msan_chain_origin+0x50/0x90 [ 855.928701][T18545] __get_compat_msghdr+0x5be/0x890 [ 855.933822][T18545] get_compat_msghdr+0x108/0x270 [ 855.938749][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 855.943240][T18545] __sys_recvmmsg+0x4ca/0x510 [ 855.947907][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 855.953951][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 855.960085][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 855.965272][T18545] do_fast_syscall_32+0x6b/0xd0 [ 855.970111][T18545] do_SYSENTER_32+0x73/0x90 [ 855.974591][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 855.980890][T18545] [ 855.983198][T18545] Uninit was stored to memory at: [ 855.988228][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 855.993925][T18545] __msan_chain_origin+0x50/0x90 [ 855.998841][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.003943][T18545] get_compat_msghdr+0x108/0x270 [ 856.008897][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.013384][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.018055][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.024109][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.030262][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.035451][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.040286][T18545] do_SYSENTER_32+0x73/0x90 [ 856.044783][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.051100][T18545] [ 856.053423][T18545] Uninit was stored to memory at: [ 856.058444][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.064264][T18545] __msan_chain_origin+0x50/0x90 [ 856.069207][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.074303][T18545] get_compat_msghdr+0x108/0x270 [ 856.079222][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.083716][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.088387][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.094442][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.100588][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.105798][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.110625][T18545] do_SYSENTER_32+0x73/0x90 [ 856.115109][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.121406][T18545] [ 856.123726][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 856.130391][T18545] do_recvmmsg+0xc5/0x1ee0 [ 856.134786][T18545] do_recvmmsg+0xc5/0x1ee0 [ 856.312009][T18545] not chained 3820000 origins [ 856.316757][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 856.325428][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 856.335486][T18545] Call Trace: [ 856.338784][T18545] dump_stack+0x1df/0x240 [ 856.343150][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 856.348883][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 856.354009][T18545] ? release_sock+0x238/0x2a0 [ 856.358722][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 856.363522][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 856.368642][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 856.374222][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 856.380300][T18545] ? _copy_from_user+0x15b/0x260 [ 856.385243][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 856.390359][T18545] __msan_chain_origin+0x50/0x90 [ 856.395310][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.400446][T18545] get_compat_msghdr+0x108/0x270 [ 856.405403][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.409950][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 856.415075][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 856.420371][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 856.425141][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 856.429909][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 856.435123][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.439815][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.445893][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 856.452124][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.458261][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.463452][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.468332][T18545] do_SYSENTER_32+0x73/0x90 [ 856.472842][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.479151][T18545] RIP: 0023:0xf7fd3549 [ 856.483199][T18545] Code: Bad RIP value. [ 856.487248][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 856.495664][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 856.503721][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 856.511675][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 856.519627][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 856.527578][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 856.535571][T18545] Uninit was stored to memory at: [ 856.540592][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.546287][T18545] __msan_chain_origin+0x50/0x90 [ 856.551203][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.556318][T18545] get_compat_msghdr+0x108/0x270 [ 856.561233][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.565729][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.570404][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.576452][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.582584][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.587789][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.592615][T18545] do_SYSENTER_32+0x73/0x90 [ 856.597107][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.603429][T18545] [ 856.605759][T18545] Uninit was stored to memory at: [ 856.610788][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.616493][T18545] __msan_chain_origin+0x50/0x90 [ 856.621440][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.626550][T18545] get_compat_msghdr+0x108/0x270 [ 856.631467][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.636068][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.640739][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.646790][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.652923][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.658106][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.662962][T18545] do_SYSENTER_32+0x73/0x90 [ 856.667471][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.673774][T18545] [ 856.676092][T18545] Uninit was stored to memory at: [ 856.681104][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.686801][T18545] __msan_chain_origin+0x50/0x90 [ 856.691733][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.696831][T18545] get_compat_msghdr+0x108/0x270 [ 856.701903][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.706413][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.711106][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.717176][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.723335][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.728527][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.733370][T18545] do_SYSENTER_32+0x73/0x90 [ 856.737868][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.744165][T18545] [ 856.746483][T18545] Uninit was stored to memory at: [ 856.751503][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.757209][T18545] __msan_chain_origin+0x50/0x90 [ 856.762127][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.767229][T18545] get_compat_msghdr+0x108/0x270 [ 856.772144][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.776650][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.781329][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.787395][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.793537][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.798728][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.803560][T18545] do_SYSENTER_32+0x73/0x90 [ 856.808068][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.814368][T18545] [ 856.816688][T18545] Uninit was stored to memory at: [ 856.821704][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.827408][T18545] __msan_chain_origin+0x50/0x90 [ 856.832326][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.837420][T18545] get_compat_msghdr+0x108/0x270 [ 856.842355][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.846856][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.851530][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.857580][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.863729][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.868906][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.873744][T18545] do_SYSENTER_32+0x73/0x90 [ 856.878256][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.884607][T18545] [ 856.886974][T18545] Uninit was stored to memory at: [ 856.891987][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.897700][T18545] __msan_chain_origin+0x50/0x90 [ 856.902619][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.907724][T18545] get_compat_msghdr+0x108/0x270 [ 856.912656][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.917165][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.921837][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.927899][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 856.934046][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 856.939238][T18545] do_fast_syscall_32+0x6b/0xd0 [ 856.944081][T18545] do_SYSENTER_32+0x73/0x90 [ 856.948562][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 856.954869][T18545] [ 856.957197][T18545] Uninit was stored to memory at: [ 856.962211][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 856.967907][T18545] __msan_chain_origin+0x50/0x90 [ 856.972822][T18545] __get_compat_msghdr+0x5be/0x890 [ 856.977953][T18545] get_compat_msghdr+0x108/0x270 [ 856.982868][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 856.987349][T18545] __sys_recvmmsg+0x4ca/0x510 [ 856.992027][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 856.998076][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.004208][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.009385][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.014240][T18545] do_SYSENTER_32+0x73/0x90 [ 857.018904][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.026009][T18545] [ 857.028343][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 857.035021][T18545] do_recvmmsg+0xc5/0x1ee0 [ 857.039537][T18545] do_recvmmsg+0xc5/0x1ee0 [ 857.213738][T18545] not chained 3830000 origins [ 857.218481][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 857.227179][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 857.237684][T18545] Call Trace: [ 857.240989][T18545] dump_stack+0x1df/0x240 [ 857.245681][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 857.251417][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 857.256544][T18545] ? release_sock+0x238/0x2a0 [ 857.261242][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 857.266030][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 857.271161][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 857.276718][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 857.282828][T18545] ? _copy_from_user+0x15b/0x260 [ 857.287781][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 857.292899][T18545] __msan_chain_origin+0x50/0x90 [ 857.297848][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.302996][T18545] get_compat_msghdr+0x108/0x270 [ 857.307951][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.312500][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 857.317627][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 857.322921][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 857.327723][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 857.332496][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 857.337704][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.342406][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.348524][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 857.354775][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.360926][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.366127][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.371056][T18545] do_SYSENTER_32+0x73/0x90 [ 857.375558][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.381877][T18545] RIP: 0023:0xf7fd3549 [ 857.385986][T18545] Code: Bad RIP value. [ 857.390091][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 857.398639][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 857.406704][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 857.414762][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 857.422733][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 857.430688][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 857.439169][T18545] Uninit was stored to memory at: [ 857.444260][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.449991][T18545] __msan_chain_origin+0x50/0x90 [ 857.454927][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.460054][T18545] get_compat_msghdr+0x108/0x270 [ 857.465033][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.469527][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.474197][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.480358][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.486533][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.491733][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.496568][T18545] do_SYSENTER_32+0x73/0x90 [ 857.501064][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.507369][T18545] [ 857.509679][T18545] Uninit was stored to memory at: [ 857.514696][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.520392][T18545] __msan_chain_origin+0x50/0x90 [ 857.525324][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.530615][T18545] get_compat_msghdr+0x108/0x270 [ 857.535564][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.540055][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.544724][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.550781][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.556916][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.562116][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.566975][T18545] do_SYSENTER_32+0x73/0x90 [ 857.571461][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.577776][T18545] [ 857.580084][T18545] Uninit was stored to memory at: [ 857.585101][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.590828][T18545] __msan_chain_origin+0x50/0x90 [ 857.595747][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.600833][T18545] get_compat_msghdr+0x108/0x270 [ 857.605777][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.610257][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.614942][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.620986][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.631287][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.636467][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.641295][T18545] do_SYSENTER_32+0x73/0x90 [ 857.645799][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.652107][T18545] [ 857.654411][T18545] Uninit was stored to memory at: [ 857.659501][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.665293][T18545] __msan_chain_origin+0x50/0x90 [ 857.670235][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.675324][T18545] get_compat_msghdr+0x108/0x270 [ 857.680258][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.684750][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.689431][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.695485][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.701654][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.706844][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.711686][T18545] do_SYSENTER_32+0x73/0x90 [ 857.716182][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.722479][T18545] [ 857.724790][T18545] Uninit was stored to memory at: [ 857.729806][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.735525][T18545] __msan_chain_origin+0x50/0x90 [ 857.740458][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.745559][T18545] get_compat_msghdr+0x108/0x270 [ 857.750488][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.754968][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.759622][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.765675][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.771818][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.776994][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.781851][T18545] do_SYSENTER_32+0x73/0x90 [ 857.786507][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.792821][T18545] [ 857.795135][T18545] Uninit was stored to memory at: [ 857.800140][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.805845][T18545] __msan_chain_origin+0x50/0x90 [ 857.810810][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.815904][T18545] get_compat_msghdr+0x108/0x270 [ 857.820825][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.825319][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.829999][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.836223][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.842355][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.847554][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.852396][T18545] do_SYSENTER_32+0x73/0x90 [ 857.856895][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.863224][T18545] [ 857.865551][T18545] Uninit was stored to memory at: [ 857.870577][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 857.876279][T18545] __msan_chain_origin+0x50/0x90 [ 857.881315][T18545] __get_compat_msghdr+0x5be/0x890 [ 857.886412][T18545] get_compat_msghdr+0x108/0x270 [ 857.891330][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 857.895814][T18545] __sys_recvmmsg+0x4ca/0x510 [ 857.900466][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 857.906542][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 857.912675][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 857.917858][T18545] do_fast_syscall_32+0x6b/0xd0 [ 857.922691][T18545] do_SYSENTER_32+0x73/0x90 [ 857.927188][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 857.933500][T18545] [ 857.935809][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 857.942477][T18545] do_recvmmsg+0xc5/0x1ee0 [ 857.946877][T18545] do_recvmmsg+0xc5/0x1ee0 [ 858.117505][T18545] not chained 3840000 origins [ 858.122676][T18545] CPU: 0 PID: 18545 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 858.131351][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 858.141418][T18545] Call Trace: [ 858.144723][T18545] dump_stack+0x1df/0x240 [ 858.149068][T18545] kmsan_internal_chain_origin+0x6f/0x130 [ 858.154801][T18545] ? _raw_spin_unlock_bh+0x4b/0x60 [ 858.159922][T18545] ? release_sock+0x238/0x2a0 [ 858.164612][T18545] ? sctp_recvmsg+0xd9b/0x1160 [ 858.169444][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 858.174568][T18545] ? kmsan_set_origin_checked+0x95/0xf0 [ 858.180131][T18545] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 858.186211][T18545] ? _copy_from_user+0x15b/0x260 [ 858.191193][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 858.196313][T18545] __msan_chain_origin+0x50/0x90 [ 858.201261][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.206406][T18545] get_compat_msghdr+0x108/0x270 [ 858.211365][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.215910][T18545] ? kmsan_get_metadata+0x4f/0x180 [ 858.221030][T18545] ? __msan_poison_alloca+0xf0/0x120 [ 858.226467][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 858.231265][T18545] ? __sys_recvmmsg+0xb4/0x510 [ 858.236046][T18545] ? kmsan_get_metadata+0x11d/0x180 [ 858.241269][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.245978][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.252245][T18545] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 858.258503][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.264716][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.269940][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.274818][T18545] do_SYSENTER_32+0x73/0x90 [ 858.279324][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.285671][T18545] RIP: 0023:0xf7fd3549 [ 858.289744][T18545] Code: Bad RIP value. [ 858.293813][T18545] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 858.302202][T18545] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 858.310169][T18545] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 858.318126][T18545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 858.326369][T18545] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 858.334341][T18545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 858.342299][T18545] Uninit was stored to memory at: [ 858.347335][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.353051][T18545] __msan_chain_origin+0x50/0x90 [ 858.358059][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.363172][T18545] get_compat_msghdr+0x108/0x270 [ 858.368134][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.372618][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.377274][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.383329][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.389475][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.394654][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.399482][T18545] do_SYSENTER_32+0x73/0x90 [ 858.403983][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.410290][T18545] [ 858.412592][T18545] Uninit was stored to memory at: [ 858.417630][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.423340][T18545] __msan_chain_origin+0x50/0x90 [ 858.428272][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.433384][T18545] get_compat_msghdr+0x108/0x270 [ 858.438298][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.442789][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.447460][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.453503][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.459633][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.464820][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.469658][T18545] do_SYSENTER_32+0x73/0x90 [ 858.474176][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.480508][T18545] [ 858.482829][T18545] Uninit was stored to memory at: [ 858.487835][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.493543][T18545] __msan_chain_origin+0x50/0x90 [ 858.498487][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.503601][T18545] get_compat_msghdr+0x108/0x270 [ 858.508576][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.513081][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.517747][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.523799][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.529944][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.535123][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.539948][T18545] do_SYSENTER_32+0x73/0x90 [ 858.544438][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.550748][T18545] [ 858.553059][T18545] Uninit was stored to memory at: [ 858.558075][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.563778][T18545] __msan_chain_origin+0x50/0x90 [ 858.568732][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.573833][T18545] get_compat_msghdr+0x108/0x270 [ 858.578762][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.583274][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.587942][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.593986][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.600116][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.605326][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.610182][T18545] do_SYSENTER_32+0x73/0x90 [ 858.614664][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.620962][T18545] [ 858.623275][T18545] Uninit was stored to memory at: [ 858.628295][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.634010][T18545] __msan_chain_origin+0x50/0x90 [ 858.638925][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.644026][T18545] get_compat_msghdr+0x108/0x270 [ 858.648968][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.653449][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.658121][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.664173][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.670333][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.675528][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.680368][T18545] do_SYSENTER_32+0x73/0x90 [ 858.684859][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.691170][T18545] [ 858.693479][T18545] Uninit was stored to memory at: [ 858.698495][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.704199][T18545] __msan_chain_origin+0x50/0x90 [ 858.709200][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.714329][T18545] get_compat_msghdr+0x108/0x270 [ 858.719266][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.723760][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.728429][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.734474][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.740603][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.745790][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.750636][T18545] do_SYSENTER_32+0x73/0x90 [ 858.755139][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.761436][T18545] [ 858.763743][T18545] Uninit was stored to memory at: [ 858.768761][T18545] kmsan_internal_chain_origin+0xad/0x130 [ 858.774460][T18545] __msan_chain_origin+0x50/0x90 [ 858.779373][T18545] __get_compat_msghdr+0x5be/0x890 [ 858.784474][T18545] get_compat_msghdr+0x108/0x270 [ 858.789404][T18545] do_recvmmsg+0xa6a/0x1ee0 [ 858.793901][T18545] __sys_recvmmsg+0x4ca/0x510 [ 858.798568][T18545] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 858.804618][T18545] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 858.810938][T18545] __do_fast_syscall_32+0x2aa/0x400 [ 858.816148][T18545] do_fast_syscall_32+0x6b/0xd0 [ 858.820978][T18545] do_SYSENTER_32+0x73/0x90 [ 858.825469][T18545] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 858.831781][T18545] [ 858.834100][T18545] Local variable ----msg_sys@do_recvmmsg created at: [ 858.840810][T18545] do_recvmmsg+0xc5/0x1ee0 [ 858.845235][T18545] do_recvmmsg+0xc5/0x1ee0 15:58:48 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:58:48 executing program 1: 15:58:48 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:48 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) r1 = dup(r0) sendmsg$inet_sctp(r1, &(0x7f0000001580)={&(0x7f0000000040)=@in={0x10, 0x2}, 0x10, 0x0}, 0x0) setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xbc14}, 0x14) 15:58:48 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:48 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, 0x0, 0x82, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:58:49 executing program 1: r0 = socket(0x2, 0x5, 0x0) connect$unix(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="000200bc0f"], 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x105, &(0x7f0000000240)=ANY=[@ANYBLOB="01", @ANYRES32=0x0], &(0x7f0000000280)=0x8) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x3004, &(0x7f0000000340), &(0x7f0000000380)=0x8) 15:58:49 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:58:49 executing program 5: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0xffffffffffffffd7, 0x1c, 0x3}, 0x1c) connect(r0, &(0x7f00000004c0)=@in6={0x1c, 0x1c, 0x1}, 0x1c) [ 859.557444][T18581] not chained 3850000 origins [ 859.562187][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 859.570886][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 859.580931][T18581] Call Trace: [ 859.584216][T18581] dump_stack+0x1df/0x240 [ 859.588543][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 859.594257][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 859.599363][T18581] ? release_sock+0x238/0x2a0 [ 859.604034][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 859.608794][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 859.613914][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 859.619468][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 859.625532][T18581] ? _copy_from_user+0x15b/0x260 [ 859.630457][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 859.635555][T18581] __msan_chain_origin+0x50/0x90 [ 859.640508][T18581] __get_compat_msghdr+0x5be/0x890 [ 859.645619][T18581] get_compat_msghdr+0x108/0x270 [ 859.650571][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 859.655071][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 859.660703][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 859.665809][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 859.671106][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 859.675858][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 859.680612][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 859.685799][T18581] __sys_recvmmsg+0x4ca/0x510 [ 859.690472][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 859.696531][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 859.702757][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 859.708900][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 859.714094][T18581] do_fast_syscall_32+0x6b/0xd0 [ 859.718934][T18581] do_SYSENTER_32+0x73/0x90 [ 859.723429][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 859.729764][T18581] RIP: 0023:0xf7fd3549 [ 859.733812][T18581] Code: Bad RIP value. [ 859.737867][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 859.746287][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 859.754246][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 859.762331][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 859.770310][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 859.778282][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 859.786260][T18581] Uninit was stored to memory at: [ 859.791281][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 859.796990][T18581] __msan_chain_origin+0x50/0x90 [ 859.801931][T18581] __get_compat_msghdr+0x5be/0x890 [ 859.807046][T18581] get_compat_msghdr+0x108/0x270 [ 859.811990][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 859.816493][T18581] __sys_recvmmsg+0x4ca/0x510 [ 859.821189][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 859.827245][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 859.833391][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 859.838594][T18581] do_fast_syscall_32+0x6b/0xd0 [ 859.843430][T18581] do_SYSENTER_32+0x73/0x90 [ 859.847918][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 859.854257][T18581] [ 859.856581][T18581] Uninit was stored to memory at: [ 859.861593][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 859.867302][T18581] __msan_chain_origin+0x50/0x90 [ 859.872226][T18581] __get_compat_msghdr+0x5be/0x890 [ 859.877341][T18581] get_compat_msghdr+0x108/0x270 [ 859.882265][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 859.886767][T18581] __sys_recvmmsg+0x4ca/0x510 [ 859.891426][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 859.897493][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 859.903647][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 859.908831][T18581] do_fast_syscall_32+0x6b/0xd0 [ 859.913668][T18581] do_SYSENTER_32+0x73/0x90 [ 859.918157][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 859.924463][T18581] [ 859.926775][T18581] Uninit was stored to memory at: [ 859.931787][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 859.937510][T18581] __msan_chain_origin+0x50/0x90 [ 859.942434][T18581] __get_compat_msghdr+0x5be/0x890 [ 859.947532][T18581] get_compat_msghdr+0x108/0x270 [ 859.952474][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 859.956965][T18581] __sys_recvmmsg+0x4ca/0x510 [ 859.961631][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 859.967682][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 859.973822][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 859.979024][T18581] do_fast_syscall_32+0x6b/0xd0 [ 859.983865][T18581] do_SYSENTER_32+0x73/0x90 [ 859.988352][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 859.994673][T18581] [ 859.996985][T18581] Uninit was stored to memory at: [ 860.001995][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 860.007698][T18581] __msan_chain_origin+0x50/0x90 [ 860.012638][T18581] __get_compat_msghdr+0x5be/0x890 [ 860.017737][T18581] get_compat_msghdr+0x108/0x270 [ 860.022661][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 860.027152][T18581] __sys_recvmmsg+0x4ca/0x510 [ 860.031814][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.037873][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.044013][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 860.049198][T18581] do_fast_syscall_32+0x6b/0xd0 [ 860.054032][T18581] do_SYSENTER_32+0x73/0x90 [ 860.058518][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.064831][T18581] [ 860.067154][T18581] Uninit was stored to memory at: [ 860.072193][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 860.077900][T18581] __msan_chain_origin+0x50/0x90 [ 860.082828][T18581] __get_compat_msghdr+0x5be/0x890 [ 860.087929][T18581] get_compat_msghdr+0x108/0x270 [ 860.092879][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 860.097386][T18581] __sys_recvmmsg+0x4ca/0x510 [ 860.102060][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.108197][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.114339][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 860.119544][T18581] do_fast_syscall_32+0x6b/0xd0 [ 860.124403][T18581] do_SYSENTER_32+0x73/0x90 [ 860.128893][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.135284][T18581] [ 860.137595][T18581] Uninit was stored to memory at: [ 860.142606][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 860.148308][T18581] __msan_chain_origin+0x50/0x90 [ 860.153234][T18581] __get_compat_msghdr+0x5be/0x890 [ 860.158348][T18581] get_compat_msghdr+0x108/0x270 [ 860.163270][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 860.167757][T18581] __sys_recvmmsg+0x4ca/0x510 [ 860.172433][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.178488][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.184628][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 860.189812][T18581] do_fast_syscall_32+0x6b/0xd0 [ 860.194648][T18581] do_SYSENTER_32+0x73/0x90 [ 860.199149][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.205453][T18581] [ 860.207784][T18581] Uninit was stored to memory at: [ 860.212822][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 860.218568][T18581] __msan_chain_origin+0x50/0x90 [ 860.223514][T18581] __get_compat_msghdr+0x5be/0x890 [ 860.228617][T18581] get_compat_msghdr+0x108/0x270 [ 860.233558][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 860.238063][T18581] __sys_recvmmsg+0x4ca/0x510 [ 860.242740][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 860.248817][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 860.254974][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 860.260256][T18581] do_fast_syscall_32+0x6b/0xd0 [ 860.265098][T18581] do_SYSENTER_32+0x73/0x90 [ 860.269589][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 860.275894][T18581] [ 860.278210][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 860.285067][T18581] do_recvmmsg+0xc5/0x1ee0 [ 860.289467][T18581] do_recvmmsg+0xc5/0x1ee0 15:58:49 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:58:50 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000000)={0x1b, 0x1c, 0x1}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f00000016c0)=ANY=[@ANYRES32=0x0], &(0x7f0000001700)=0x8) getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x1, &(0x7f0000000080)={r3}, &(0x7f00000000c0)=0x10) 15:58:50 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) [ 861.509702][T18581] not chained 3860000 origins [ 861.514532][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 861.523214][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 861.533291][T18581] Call Trace: [ 861.536586][T18581] dump_stack+0x1df/0x240 [ 861.540932][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 861.546662][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 861.551760][T18581] ? release_sock+0x238/0x2a0 [ 861.556442][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 861.561191][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 861.566284][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 861.571813][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 861.577888][T18581] ? _copy_from_user+0x15b/0x260 [ 861.582845][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 861.587979][T18581] __msan_chain_origin+0x50/0x90 [ 861.592903][T18581] __get_compat_msghdr+0x5be/0x890 [ 861.598023][T18581] get_compat_msghdr+0x108/0x270 [ 861.602979][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 861.607486][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 861.613123][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 861.618244][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 861.623539][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 861.628286][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 861.633052][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 861.638256][T18581] __sys_recvmmsg+0x4ca/0x510 [ 861.642920][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.648972][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 861.655194][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.661331][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 861.666515][T18581] do_fast_syscall_32+0x6b/0xd0 [ 861.671375][T18581] do_SYSENTER_32+0x73/0x90 [ 861.675861][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.682183][T18581] RIP: 0023:0xf7fd3549 [ 861.686227][T18581] Code: Bad RIP value. [ 861.690271][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 861.698684][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 861.706645][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 861.714612][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 861.722566][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 861.730537][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 861.738499][T18581] Uninit was stored to memory at: [ 861.743529][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 861.749233][T18581] __msan_chain_origin+0x50/0x90 [ 861.754178][T18581] __get_compat_msghdr+0x5be/0x890 [ 861.759292][T18581] get_compat_msghdr+0x108/0x270 [ 861.764211][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 861.768787][T18581] __sys_recvmmsg+0x4ca/0x510 [ 861.773475][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.779529][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.785666][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 861.790844][T18581] do_fast_syscall_32+0x6b/0xd0 [ 861.795685][T18581] do_SYSENTER_32+0x73/0x90 [ 861.800202][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.806514][T18581] [ 861.808822][T18581] Uninit was stored to memory at: [ 861.813829][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 861.819531][T18581] __msan_chain_origin+0x50/0x90 [ 861.824464][T18581] __get_compat_msghdr+0x5be/0x890 [ 861.829622][T18581] get_compat_msghdr+0x108/0x270 [ 861.834542][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 861.839024][T18581] __sys_recvmmsg+0x4ca/0x510 [ 861.843682][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.849753][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.855908][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 861.861088][T18581] do_fast_syscall_32+0x6b/0xd0 [ 861.865940][T18581] do_SYSENTER_32+0x73/0x90 [ 861.870432][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.876764][T18581] [ 861.879071][T18581] Uninit was stored to memory at: [ 861.884099][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 861.889819][T18581] __msan_chain_origin+0x50/0x90 [ 861.894765][T18581] __get_compat_msghdr+0x5be/0x890 [ 861.899879][T18581] get_compat_msghdr+0x108/0x270 [ 861.904798][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 861.909306][T18581] __sys_recvmmsg+0x4ca/0x510 [ 861.914136][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.920203][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.926336][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 861.931518][T18581] do_fast_syscall_32+0x6b/0xd0 [ 861.936372][T18581] do_SYSENTER_32+0x73/0x90 [ 861.940878][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 861.947197][T18581] [ 861.949534][T18581] Uninit was stored to memory at: [ 861.954541][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 861.960239][T18581] __msan_chain_origin+0x50/0x90 [ 861.965156][T18581] __get_compat_msghdr+0x5be/0x890 [ 861.970269][T18581] get_compat_msghdr+0x108/0x270 [ 861.975211][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 861.979695][T18581] __sys_recvmmsg+0x4ca/0x510 [ 861.984442][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 861.990493][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 861.996627][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.001806][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.006656][T18581] do_SYSENTER_32+0x73/0x90 [ 862.011138][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.017435][T18581] [ 862.019742][T18581] Uninit was stored to memory at: [ 862.024750][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.030487][T18581] __msan_chain_origin+0x50/0x90 [ 862.035433][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.040527][T18581] get_compat_msghdr+0x108/0x270 [ 862.045510][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.050000][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.054665][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.060839][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.066991][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.072189][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.077023][T18581] do_SYSENTER_32+0x73/0x90 [ 862.081525][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.087829][T18581] [ 862.090154][T18581] Uninit was stored to memory at: [ 862.095188][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.100888][T18581] __msan_chain_origin+0x50/0x90 [ 862.105827][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.110954][T18581] get_compat_msghdr+0x108/0x270 [ 862.115885][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.120393][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.125067][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.131134][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.137383][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.142572][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.147476][T18581] do_SYSENTER_32+0x73/0x90 [ 862.151985][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.158410][T18581] [ 862.160717][T18581] Uninit was stored to memory at: [ 862.165727][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.171605][T18581] __msan_chain_origin+0x50/0x90 [ 862.176548][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.181707][T18581] get_compat_msghdr+0x108/0x270 [ 862.186687][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.191173][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.195862][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.201931][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.208069][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.213249][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.218076][T18581] do_SYSENTER_32+0x73/0x90 [ 862.222592][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.228910][T18581] [ 862.231242][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 862.237912][T18581] do_recvmmsg+0xc5/0x1ee0 [ 862.242430][T18581] do_recvmmsg+0xc5/0x1ee0 [ 862.469927][T18581] not chained 3870000 origins [ 862.474663][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 862.483331][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 862.493382][T18581] Call Trace: [ 862.496677][T18581] dump_stack+0x1df/0x240 [ 862.501018][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 862.506748][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 862.511960][T18581] ? release_sock+0x238/0x2a0 [ 862.516646][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 862.521420][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 862.526538][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 862.532085][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 862.538158][T18581] ? _copy_from_user+0x15b/0x260 [ 862.543097][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 862.548220][T18581] __msan_chain_origin+0x50/0x90 [ 862.553168][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.558301][T18581] get_compat_msghdr+0x108/0x270 [ 862.563249][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.567765][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 862.573413][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 862.578544][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 862.583835][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 862.588600][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 862.593368][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 862.598571][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.603263][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.609327][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 862.615666][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.621806][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.627003][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.631833][T18581] do_SYSENTER_32+0x73/0x90 [ 862.636334][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.642654][T18581] RIP: 0023:0xf7fd3549 [ 862.646692][T18581] Code: Bad RIP value. [ 862.650732][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 862.659138][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 862.667086][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 862.675032][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 862.682984][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 862.690943][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 862.698894][T18581] Uninit was stored to memory at: [ 862.703895][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.709587][T18581] __msan_chain_origin+0x50/0x90 [ 862.714521][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.719608][T18581] get_compat_msghdr+0x108/0x270 [ 862.724523][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.729001][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.733673][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.739713][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.745842][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.751016][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.755847][T18581] do_SYSENTER_32+0x73/0x90 [ 862.760324][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.766623][T18581] [ 862.768927][T18581] Uninit was stored to memory at: [ 862.773928][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.779624][T18581] __msan_chain_origin+0x50/0x90 [ 862.784555][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.789657][T18581] get_compat_msghdr+0x108/0x270 [ 862.794572][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.799050][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.803704][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.809744][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.815873][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.821066][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.825895][T18581] do_SYSENTER_32+0x73/0x90 [ 862.830374][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.836702][T18581] [ 862.839008][T18581] Uninit was stored to memory at: [ 862.844038][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.849729][T18581] __msan_chain_origin+0x50/0x90 [ 862.854643][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.859733][T18581] get_compat_msghdr+0x108/0x270 [ 862.864649][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.869130][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.873781][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.879864][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.886010][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.891201][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.896028][T18581] do_SYSENTER_32+0x73/0x90 [ 862.900512][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.906808][T18581] [ 862.909130][T18581] Uninit was stored to memory at: [ 862.914151][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.919880][T18581] __msan_chain_origin+0x50/0x90 [ 862.924813][T18581] __get_compat_msghdr+0x5be/0x890 [ 862.929917][T18581] get_compat_msghdr+0x108/0x270 [ 862.934835][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 862.939331][T18581] __sys_recvmmsg+0x4ca/0x510 [ 862.943998][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 862.950040][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 862.956195][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 862.961368][T18581] do_fast_syscall_32+0x6b/0xd0 [ 862.966209][T18581] do_SYSENTER_32+0x73/0x90 [ 862.970686][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 862.976981][T18581] [ 862.979286][T18581] Uninit was stored to memory at: [ 862.984398][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 862.990091][T18581] __msan_chain_origin+0x50/0x90 [ 862.995010][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.000098][T18581] get_compat_msghdr+0x108/0x270 [ 863.005183][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.009662][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.014334][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.020390][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.026532][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.031718][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.036560][T18581] do_SYSENTER_32+0x73/0x90 [ 863.041069][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.047375][T18581] [ 863.049687][T18581] Uninit was stored to memory at: [ 863.054694][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.060404][T18581] __msan_chain_origin+0x50/0x90 [ 863.065357][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.070462][T18581] get_compat_msghdr+0x108/0x270 [ 863.075386][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.079884][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.084537][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.090595][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.096745][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.101936][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.106786][T18581] do_SYSENTER_32+0x73/0x90 [ 863.111283][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.117587][T18581] [ 863.119896][T18581] Uninit was stored to memory at: [ 863.124907][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.130606][T18581] __msan_chain_origin+0x50/0x90 [ 863.135707][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.140822][T18581] get_compat_msghdr+0x108/0x270 [ 863.145760][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.150248][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.154929][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.160992][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.167911][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.173092][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.177921][T18581] do_SYSENTER_32+0x73/0x90 [ 863.182415][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.188712][T18581] [ 863.191212][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 863.197867][T18581] do_recvmmsg+0xc5/0x1ee0 [ 863.202260][T18581] do_recvmmsg+0xc5/0x1ee0 [ 863.406198][T18581] not chained 3880000 origins [ 863.410943][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 863.419612][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 863.429695][T18581] Call Trace: [ 863.433024][T18581] dump_stack+0x1df/0x240 [ 863.437387][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 863.443119][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 863.448275][T18581] ? release_sock+0x238/0x2a0 [ 863.452959][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 863.457738][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 863.462855][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 863.468438][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 863.474514][T18581] ? _copy_from_user+0x15b/0x260 [ 863.479491][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 863.484581][T18581] __msan_chain_origin+0x50/0x90 [ 863.489502][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.494602][T18581] get_compat_msghdr+0x108/0x270 [ 863.499544][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.504049][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 863.509666][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 863.514758][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 863.520037][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 863.524799][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 863.529541][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 863.534718][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.539378][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.545443][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 863.551660][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.557816][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.563014][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.567851][T18581] do_SYSENTER_32+0x73/0x90 [ 863.572330][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.578652][T18581] RIP: 0023:0xf7fd3549 [ 863.582710][T18581] Code: Bad RIP value. [ 863.586751][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 863.595155][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 863.603101][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 863.611047][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 863.618993][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 863.626941][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 863.634897][T18581] Uninit was stored to memory at: [ 863.639921][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.645631][T18581] __msan_chain_origin+0x50/0x90 [ 863.650546][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.655639][T18581] get_compat_msghdr+0x108/0x270 [ 863.660555][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.665040][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.669708][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.675766][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.681963][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.687194][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.692032][T18581] do_SYSENTER_32+0x73/0x90 [ 863.696517][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.702912][T18581] [ 863.705226][T18581] Uninit was stored to memory at: [ 863.710243][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.715991][T18581] __msan_chain_origin+0x50/0x90 [ 863.720911][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.726002][T18581] get_compat_msghdr+0x108/0x270 [ 863.730917][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.735395][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.740062][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.746103][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.752229][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.757406][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.762231][T18581] do_SYSENTER_32+0x73/0x90 [ 863.766709][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.773008][T18581] [ 863.775320][T18581] Uninit was stored to memory at: [ 863.780321][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.786014][T18581] __msan_chain_origin+0x50/0x90 [ 863.790928][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.796016][T18581] get_compat_msghdr+0x108/0x270 [ 863.800929][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.805409][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.810062][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.816105][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.822234][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.827412][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.832240][T18581] do_SYSENTER_32+0x73/0x90 [ 863.836737][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.843037][T18581] [ 863.845340][T18581] Uninit was stored to memory at: [ 863.850422][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.856134][T18581] __msan_chain_origin+0x50/0x90 [ 863.861056][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.866149][T18581] get_compat_msghdr+0x108/0x270 [ 863.871066][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.875547][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.880212][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.886267][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.892395][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.897570][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.902397][T18581] do_SYSENTER_32+0x73/0x90 [ 863.906977][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.913295][T18581] [ 863.915598][T18581] Uninit was stored to memory at: [ 863.920705][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.926413][T18581] __msan_chain_origin+0x50/0x90 [ 863.931344][T18581] __get_compat_msghdr+0x5be/0x890 [ 863.936433][T18581] get_compat_msghdr+0x108/0x270 [ 863.941348][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 863.945843][T18581] __sys_recvmmsg+0x4ca/0x510 [ 863.950496][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 863.956537][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 863.962663][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 863.967855][T18581] do_fast_syscall_32+0x6b/0xd0 [ 863.972695][T18581] do_SYSENTER_32+0x73/0x90 [ 863.977174][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 863.983473][T18581] [ 863.985774][T18581] Uninit was stored to memory at: [ 863.990773][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 863.996481][T18581] __msan_chain_origin+0x50/0x90 [ 864.001402][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.006505][T18581] get_compat_msghdr+0x108/0x270 [ 864.011433][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.015912][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.020579][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.026759][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.032893][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.038084][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.042913][T18581] do_SYSENTER_32+0x73/0x90 [ 864.047416][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.053772][T18581] [ 864.056088][T18581] Uninit was stored to memory at: [ 864.061103][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.066805][T18581] __msan_chain_origin+0x50/0x90 [ 864.071740][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.076848][T18581] get_compat_msghdr+0x108/0x270 [ 864.081764][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.086245][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.090920][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.096961][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.103114][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.108315][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.113162][T18581] do_SYSENTER_32+0x73/0x90 [ 864.117661][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.123976][T18581] [ 864.126283][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 864.133002][T18581] do_recvmmsg+0xc5/0x1ee0 [ 864.137415][T18581] do_recvmmsg+0xc5/0x1ee0 [ 864.390104][T18581] not chained 3890000 origins [ 864.394841][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 864.403509][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 864.413563][T18581] Call Trace: [ 864.416894][T18581] dump_stack+0x1df/0x240 [ 864.421259][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 864.426982][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 864.432080][T18581] ? release_sock+0x238/0x2a0 [ 864.436741][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 864.441491][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 864.446581][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 864.452104][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 864.458166][T18581] ? _copy_from_user+0x15b/0x260 [ 864.463093][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 864.468239][T18581] __msan_chain_origin+0x50/0x90 [ 864.473164][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.478263][T18581] get_compat_msghdr+0x108/0x270 [ 864.483185][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.487673][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 864.493292][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 864.498399][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 864.503681][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 864.508420][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 864.513180][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 864.518377][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.523052][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.529116][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 864.535334][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.541472][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.546655][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.551490][T18581] do_SYSENTER_32+0x73/0x90 [ 864.556111][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.562428][T18581] RIP: 0023:0xf7fd3549 [ 864.566474][T18581] Code: Bad RIP value. [ 864.570576][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 864.579124][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 864.587089][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 864.595047][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 864.603007][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 864.610969][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 864.618943][T18581] Uninit was stored to memory at: [ 864.623952][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.629662][T18581] __msan_chain_origin+0x50/0x90 [ 864.634579][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.639675][T18581] get_compat_msghdr+0x108/0x270 [ 864.644602][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.649079][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.653732][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.659797][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.665928][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.671118][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.675961][T18581] do_SYSENTER_32+0x73/0x90 [ 864.680441][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.686908][T18581] [ 864.689236][T18581] Uninit was stored to memory at: [ 864.694276][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.700001][T18581] __msan_chain_origin+0x50/0x90 [ 864.704939][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.710026][T18581] get_compat_msghdr+0x108/0x270 [ 864.714961][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.719440][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.724117][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.730175][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.736301][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.741489][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.746316][T18581] do_SYSENTER_32+0x73/0x90 [ 864.750795][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.757092][T18581] [ 864.759396][T18581] Uninit was stored to memory at: [ 864.764416][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.770124][T18581] __msan_chain_origin+0x50/0x90 [ 864.775125][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.780236][T18581] get_compat_msghdr+0x108/0x270 [ 864.785150][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.789628][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.794280][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.800447][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.806641][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.811878][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.816754][T18581] do_SYSENTER_32+0x73/0x90 [ 864.821242][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.827566][T18581] [ 864.829871][T18581] Uninit was stored to memory at: [ 864.834874][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.840571][T18581] __msan_chain_origin+0x50/0x90 [ 864.845490][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.850593][T18581] get_compat_msghdr+0x108/0x270 [ 864.855523][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.860041][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.864719][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.870909][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.877059][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.882259][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.887108][T18581] do_SYSENTER_32+0x73/0x90 [ 864.891603][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.897899][T18581] [ 864.900211][T18581] Uninit was stored to memory at: [ 864.905232][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.910932][T18581] __msan_chain_origin+0x50/0x90 [ 864.915860][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.921131][T18581] get_compat_msghdr+0x108/0x270 [ 864.926052][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 864.930548][T18581] __sys_recvmmsg+0x4ca/0x510 [ 864.935211][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 864.941261][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 864.947416][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 864.952590][T18581] do_fast_syscall_32+0x6b/0xd0 [ 864.957416][T18581] do_SYSENTER_32+0x73/0x90 [ 864.961899][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 864.968194][T18581] [ 864.970497][T18581] Uninit was stored to memory at: [ 864.975500][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 864.981210][T18581] __msan_chain_origin+0x50/0x90 [ 864.986127][T18581] __get_compat_msghdr+0x5be/0x890 [ 864.991215][T18581] get_compat_msghdr+0x108/0x270 [ 864.996129][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.000606][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.005260][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.011313][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.017445][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.022621][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.027447][T18581] do_SYSENTER_32+0x73/0x90 [ 865.031931][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.038238][T18581] [ 865.040566][T18581] Uninit was stored to memory at: [ 865.045573][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.051270][T18581] __msan_chain_origin+0x50/0x90 [ 865.056186][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.061292][T18581] get_compat_msghdr+0x108/0x270 [ 865.066208][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.070700][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.075386][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.081551][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.087701][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.092891][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.097736][T18581] do_SYSENTER_32+0x73/0x90 [ 865.102300][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.108625][T18581] [ 865.110950][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 865.117607][T18581] do_recvmmsg+0xc5/0x1ee0 [ 865.122008][T18581] do_recvmmsg+0xc5/0x1ee0 [ 865.292926][T18581] not chained 3900000 origins [ 865.297693][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 865.306369][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 865.316429][T18581] Call Trace: [ 865.319728][T18581] dump_stack+0x1df/0x240 [ 865.324075][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 865.329803][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 865.334920][T18581] ? release_sock+0x238/0x2a0 [ 865.339603][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 865.344384][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 865.349499][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 865.355048][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 865.361126][T18581] ? _copy_from_user+0x15b/0x260 [ 865.366092][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 865.371206][T18581] __msan_chain_origin+0x50/0x90 [ 865.376156][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.381406][T18581] get_compat_msghdr+0x108/0x270 [ 865.386360][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.390918][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 865.396567][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 865.401708][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 865.407018][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 865.411788][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 865.416556][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 865.421761][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.426453][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.432527][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 865.438773][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.444946][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.450161][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.455024][T18581] do_SYSENTER_32+0x73/0x90 [ 865.459540][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.465854][T18581] RIP: 0023:0xf7fd3549 [ 865.469894][T18581] Code: Bad RIP value. [ 865.473935][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 865.482341][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 865.490290][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 865.498264][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 865.506213][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 865.514178][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 865.522149][T18581] Uninit was stored to memory at: [ 865.527170][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.532886][T18581] __msan_chain_origin+0x50/0x90 [ 865.537803][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.542900][T18581] get_compat_msghdr+0x108/0x270 [ 865.547811][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.552292][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.556943][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.562994][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.569133][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.574308][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.579132][T18581] do_SYSENTER_32+0x73/0x90 [ 865.583612][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.589910][T18581] [ 865.592214][T18581] Uninit was stored to memory at: [ 865.597216][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.602909][T18581] __msan_chain_origin+0x50/0x90 [ 865.607824][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.612914][T18581] get_compat_msghdr+0x108/0x270 [ 865.617829][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.622313][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.626982][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.633032][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.639164][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.644378][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.649203][T18581] do_SYSENTER_32+0x73/0x90 [ 865.653701][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.659996][T18581] [ 865.662297][T18581] Uninit was stored to memory at: [ 865.667312][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.673015][T18581] __msan_chain_origin+0x50/0x90 [ 865.677938][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.683035][T18581] get_compat_msghdr+0x108/0x270 [ 865.687953][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.692447][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.697099][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.703141][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.709269][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.714444][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.719270][T18581] do_SYSENTER_32+0x73/0x90 [ 865.723749][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.730057][T18581] [ 865.732368][T18581] Uninit was stored to memory at: [ 865.737375][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.743165][T18581] __msan_chain_origin+0x50/0x90 [ 865.748105][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.753251][T18581] get_compat_msghdr+0x108/0x270 [ 865.758168][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.762647][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.767319][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.773391][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.779522][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.784714][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.789538][T18581] do_SYSENTER_32+0x73/0x90 [ 865.794017][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.800333][T18581] [ 865.802634][T18581] Uninit was stored to memory at: [ 865.807636][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.813330][T18581] __msan_chain_origin+0x50/0x90 [ 865.818297][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.823386][T18581] get_compat_msghdr+0x108/0x270 [ 865.828314][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.832808][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.837477][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.843570][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.849792][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.854991][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.859829][T18581] do_SYSENTER_32+0x73/0x90 [ 865.864342][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.870643][T18581] [ 865.872944][T18581] Uninit was stored to memory at: [ 865.877970][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.883666][T18581] __msan_chain_origin+0x50/0x90 [ 865.888579][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.893683][T18581] get_compat_msghdr+0x108/0x270 [ 865.898607][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.903101][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.907753][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.913793][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.919923][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.925097][T18581] do_fast_syscall_32+0x6b/0xd0 [ 865.929926][T18581] do_SYSENTER_32+0x73/0x90 [ 865.934404][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 865.940825][T18581] [ 865.943141][T18581] Uninit was stored to memory at: [ 865.948160][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 865.953857][T18581] __msan_chain_origin+0x50/0x90 [ 865.958778][T18581] __get_compat_msghdr+0x5be/0x890 [ 865.963926][T18581] get_compat_msghdr+0x108/0x270 [ 865.968858][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 865.973340][T18581] __sys_recvmmsg+0x4ca/0x510 [ 865.977992][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 865.984033][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 865.990161][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 865.995334][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.000176][T18581] do_SYSENTER_32+0x73/0x90 [ 866.004671][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.011086][T18581] [ 866.013389][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 866.020057][T18581] do_recvmmsg+0xc5/0x1ee0 [ 866.024448][T18581] do_recvmmsg+0xc5/0x1ee0 [ 866.193698][T18581] not chained 3910000 origins [ 866.198549][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 866.207196][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 866.217234][T18581] Call Trace: [ 866.220523][T18581] dump_stack+0x1df/0x240 [ 866.224834][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 866.230569][T18581] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 866.236366][T18581] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 866.242414][T18581] ? do_user_addr_fault+0x1057/0x1600 [ 866.247774][T18581] ? __msan_get_context_state+0x9/0x20 [ 866.253215][T18581] ? idtentry_exit_cond_rcu+0x12/0x50 [ 866.258579][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 866.263667][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 866.269190][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 866.275237][T18581] ? _copy_from_user+0x15b/0x260 [ 866.280154][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 866.285258][T18581] __msan_chain_origin+0x50/0x90 [ 866.290177][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.295277][T18581] get_compat_msghdr+0x108/0x270 [ 866.300212][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.304700][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 866.310316][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 866.315405][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 866.320669][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 866.325409][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 866.330150][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 866.335334][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.340012][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.346058][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 866.352411][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.358556][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.363746][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.368592][T18581] do_SYSENTER_32+0x73/0x90 [ 866.373076][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.379492][T18581] RIP: 0023:0xf7fd3549 [ 866.383533][T18581] Code: Bad RIP value. [ 866.387594][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 866.395980][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 866.403951][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 866.411940][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 866.419911][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 866.427859][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 866.435819][T18581] Uninit was stored to memory at: [ 866.440847][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.446542][T18581] __msan_chain_origin+0x50/0x90 [ 866.451455][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.456561][T18581] get_compat_msghdr+0x108/0x270 [ 866.461491][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.465973][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.470626][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.476667][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.482796][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.487972][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.492798][T18581] do_SYSENTER_32+0x73/0x90 [ 866.497293][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.503610][T18581] [ 866.505915][T18581] Uninit was stored to memory at: [ 866.510917][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.516621][T18581] __msan_chain_origin+0x50/0x90 [ 866.521536][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.526624][T18581] get_compat_msghdr+0x108/0x270 [ 866.531537][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.536030][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.540682][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.546736][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.552890][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.558065][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.562904][T18581] do_SYSENTER_32+0x73/0x90 [ 866.567382][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.573678][T18581] [ 866.575984][T18581] Uninit was stored to memory at: [ 866.580983][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.586678][T18581] __msan_chain_origin+0x50/0x90 [ 866.591591][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.596676][T18581] get_compat_msghdr+0x108/0x270 [ 866.601589][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.606065][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.610733][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.616793][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.622921][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.628093][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.632920][T18581] do_SYSENTER_32+0x73/0x90 [ 866.637416][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.643726][T18581] [ 866.646032][T18581] Uninit was stored to memory at: [ 866.651048][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.657019][T18581] __msan_chain_origin+0x50/0x90 [ 866.661950][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.667044][T18581] get_compat_msghdr+0x108/0x270 [ 866.671962][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.676443][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.681093][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.687149][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.693276][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.698468][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.703294][T18581] do_SYSENTER_32+0x73/0x90 [ 866.707789][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.714102][T18581] [ 866.716404][T18581] Uninit was stored to memory at: [ 866.721415][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.727108][T18581] __msan_chain_origin+0x50/0x90 [ 866.732025][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.737460][T18581] get_compat_msghdr+0x108/0x270 [ 866.742373][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.746851][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.751503][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.757542][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.763673][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.768863][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.773689][T18581] do_SYSENTER_32+0x73/0x90 [ 866.778184][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.784481][T18581] [ 866.786827][T18581] Uninit was stored to memory at: [ 866.791825][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.797536][T18581] __msan_chain_origin+0x50/0x90 [ 866.802449][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.807554][T18581] get_compat_msghdr+0x108/0x270 [ 866.812483][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.816969][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.821624][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.827682][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.833810][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.838986][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.843811][T18581] do_SYSENTER_32+0x73/0x90 [ 866.848289][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.854586][T18581] [ 866.856895][T18581] Uninit was stored to memory at: [ 866.861895][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 866.867604][T18581] __msan_chain_origin+0x50/0x90 [ 866.872517][T18581] __get_compat_msghdr+0x5be/0x890 [ 866.877605][T18581] get_compat_msghdr+0x108/0x270 [ 866.882534][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 866.887030][T18581] __sys_recvmmsg+0x4ca/0x510 [ 866.891683][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 866.897723][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 866.903872][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 866.909065][T18581] do_fast_syscall_32+0x6b/0xd0 [ 866.913892][T18581] do_SYSENTER_32+0x73/0x90 [ 866.918372][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 866.924667][T18581] [ 866.926974][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 866.933642][T18581] do_recvmmsg+0xc5/0x1ee0 [ 866.938163][T18581] do_recvmmsg+0xc5/0x1ee0 [ 867.179514][T18581] not chained 3920000 origins [ 867.184249][T18581] CPU: 0 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 867.192954][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 867.203024][T18581] Call Trace: [ 867.206328][T18581] dump_stack+0x1df/0x240 [ 867.210668][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 867.216409][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 867.221531][T18581] ? release_sock+0x238/0x2a0 [ 867.226219][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 867.231014][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 867.236143][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 867.241698][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 867.247780][T18581] ? _copy_from_user+0x15b/0x260 [ 867.252724][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 867.257841][T18581] __msan_chain_origin+0x50/0x90 [ 867.262788][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.267922][T18581] get_compat_msghdr+0x108/0x270 [ 867.272890][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.277447][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 867.283129][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 867.288250][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 867.293572][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 867.298340][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 867.303104][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 867.308310][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.313000][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.319075][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 867.325379][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.331540][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.336750][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.341608][T18581] do_SYSENTER_32+0x73/0x90 [ 867.346119][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.352481][T18581] RIP: 0023:0xf7fd3549 [ 867.356550][T18581] Code: Bad RIP value. [ 867.360591][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 867.368981][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 867.376931][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 867.384886][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 867.392857][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 867.400807][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 867.408762][T18581] Uninit was stored to memory at: [ 867.413769][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.419463][T18581] __msan_chain_origin+0x50/0x90 [ 867.424383][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.429470][T18581] get_compat_msghdr+0x108/0x270 [ 867.434387][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.438867][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.443519][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.449580][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.455720][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.460905][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.465758][T18581] do_SYSENTER_32+0x73/0x90 [ 867.470242][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.476554][T18581] [ 867.478881][T18581] Uninit was stored to memory at: [ 867.483889][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.489596][T18581] __msan_chain_origin+0x50/0x90 [ 867.494522][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.499621][T18581] get_compat_msghdr+0x108/0x270 [ 867.504536][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.509013][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.513666][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.519707][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.525836][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.531010][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.535854][T18581] do_SYSENTER_32+0x73/0x90 [ 867.540336][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.546632][T18581] [ 867.548936][T18581] Uninit was stored to memory at: [ 867.553940][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.559632][T18581] __msan_chain_origin+0x50/0x90 [ 867.564548][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.569648][T18581] get_compat_msghdr+0x108/0x270 [ 867.574564][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.579040][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.583694][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.589736][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.595863][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.601043][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.605886][T18581] do_SYSENTER_32+0x73/0x90 [ 867.610417][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.616723][T18581] [ 867.619032][T18581] Uninit was stored to memory at: [ 867.624125][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.629911][T18581] __msan_chain_origin+0x50/0x90 [ 867.634861][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.640059][T18581] get_compat_msghdr+0x108/0x270 [ 867.644977][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.649456][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.654107][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.660164][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.666295][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.671470][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.676297][T18581] do_SYSENTER_32+0x73/0x90 [ 867.680776][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.687071][T18581] [ 867.689379][T18581] Uninit was stored to memory at: [ 867.694382][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.700078][T18581] __msan_chain_origin+0x50/0x90 [ 867.705011][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.710097][T18581] get_compat_msghdr+0x108/0x270 [ 867.715025][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.719515][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.724168][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.730322][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.736452][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.741643][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.746468][T18581] do_SYSENTER_32+0x73/0x90 [ 867.750951][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.757269][T18581] [ 867.759583][T18581] Uninit was stored to memory at: [ 867.764588][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.770281][T18581] __msan_chain_origin+0x50/0x90 [ 867.775195][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.780298][T18581] get_compat_msghdr+0x108/0x270 [ 867.785212][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.789691][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.794365][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.800407][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.806553][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.811731][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.816573][T18581] do_SYSENTER_32+0x73/0x90 [ 867.821056][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.827359][T18581] [ 867.829673][T18581] Uninit was stored to memory at: [ 867.834678][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 867.840373][T18581] __msan_chain_origin+0x50/0x90 [ 867.845290][T18581] __get_compat_msghdr+0x5be/0x890 [ 867.850391][T18581] get_compat_msghdr+0x108/0x270 [ 867.855304][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 867.859801][T18581] __sys_recvmmsg+0x4ca/0x510 [ 867.864457][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 867.870499][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 867.876647][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 867.881823][T18581] do_fast_syscall_32+0x6b/0xd0 [ 867.886650][T18581] do_SYSENTER_32+0x73/0x90 [ 867.891145][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 867.897472][T18581] [ 867.899795][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 867.906463][T18581] do_recvmmsg+0xc5/0x1ee0 [ 867.910859][T18581] do_recvmmsg+0xc5/0x1ee0 [ 868.080020][T18581] not chained 3930000 origins [ 868.084758][T18581] CPU: 0 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 868.093432][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 868.103487][T18581] Call Trace: [ 868.106814][T18581] dump_stack+0x1df/0x240 [ 868.111160][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 868.116934][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 868.122059][T18581] ? release_sock+0x238/0x2a0 [ 868.126745][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 868.131521][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 868.136643][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 868.142195][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 868.148314][T18581] ? _copy_from_user+0x15b/0x260 [ 868.153266][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 868.158396][T18581] __msan_chain_origin+0x50/0x90 [ 868.163344][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.168475][T18581] get_compat_msghdr+0x108/0x270 [ 868.173431][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.177954][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 868.183605][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 868.188749][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 868.194044][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 868.198917][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 868.203699][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 868.208916][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.213656][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.219758][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 868.225998][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.232179][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.237371][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.242209][T18581] do_SYSENTER_32+0x73/0x90 [ 868.246711][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.253024][T18581] RIP: 0023:0xf7fd3549 [ 868.257100][T18581] Code: Bad RIP value. [ 868.261246][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 868.269645][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 868.277603][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 868.285569][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 868.293534][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 868.301513][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 868.309486][T18581] Uninit was stored to memory at: [ 868.314506][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.320217][T18581] __msan_chain_origin+0x50/0x90 [ 868.325142][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.330242][T18581] get_compat_msghdr+0x108/0x270 [ 868.335205][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.339713][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.344368][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.350413][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.356550][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.361727][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.366554][T18581] do_SYSENTER_32+0x73/0x90 [ 868.371033][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.377329][T18581] [ 868.379634][T18581] Uninit was stored to memory at: [ 868.384652][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.390357][T18581] __msan_chain_origin+0x50/0x90 [ 868.395288][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.400398][T18581] get_compat_msghdr+0x108/0x270 [ 868.405312][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.409804][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.414470][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.420541][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.426674][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.431868][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.436698][T18581] do_SYSENTER_32+0x73/0x90 [ 868.441179][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.447478][T18581] [ 868.449783][T18581] Uninit was stored to memory at: [ 868.454796][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.460505][T18581] __msan_chain_origin+0x50/0x90 [ 868.465439][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.470537][T18581] get_compat_msghdr+0x108/0x270 [ 868.475465][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.479970][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.484623][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.490683][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.496829][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.502018][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.506871][T18581] do_SYSENTER_32+0x73/0x90 [ 868.511366][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.517691][T18581] [ 868.520028][T18581] Uninit was stored to memory at: [ 868.525052][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.530745][T18581] __msan_chain_origin+0x50/0x90 [ 868.535674][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.540788][T18581] get_compat_msghdr+0x108/0x270 [ 868.545716][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.550210][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.554875][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.560935][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.567067][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.572242][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.577072][T18581] do_SYSENTER_32+0x73/0x90 [ 868.581552][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.587851][T18581] [ 868.590157][T18581] Uninit was stored to memory at: [ 868.595171][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.600880][T18581] __msan_chain_origin+0x50/0x90 [ 868.605809][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.610908][T18581] get_compat_msghdr+0x108/0x270 [ 868.615837][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.620357][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.625028][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.631070][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.637203][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.642378][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.647204][T18581] do_SYSENTER_32+0x73/0x90 [ 868.651684][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.657983][T18581] [ 868.660302][T18581] Uninit was stored to memory at: [ 868.665308][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.671024][T18581] __msan_chain_origin+0x50/0x90 [ 868.675949][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.681181][T18581] get_compat_msghdr+0x108/0x270 [ 868.686112][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.690638][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.695329][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.701440][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.707576][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.712763][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.717623][T18581] do_SYSENTER_32+0x73/0x90 [ 868.722121][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.728422][T18581] [ 868.730746][T18581] Uninit was stored to memory at: [ 868.735758][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 868.741456][T18581] __msan_chain_origin+0x50/0x90 [ 868.746376][T18581] __get_compat_msghdr+0x5be/0x890 [ 868.751465][T18581] get_compat_msghdr+0x108/0x270 [ 868.756387][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 868.760871][T18581] __sys_recvmmsg+0x4ca/0x510 [ 868.765538][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 868.771593][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 868.777728][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 868.782905][T18581] do_fast_syscall_32+0x6b/0xd0 [ 868.787733][T18581] do_SYSENTER_32+0x73/0x90 [ 868.792248][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 868.798568][T18581] [ 868.800875][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 868.807528][T18581] do_recvmmsg+0xc5/0x1ee0 [ 868.811922][T18581] do_recvmmsg+0xc5/0x1ee0 [ 869.009673][T18581] not chained 3940000 origins [ 869.014404][T18581] CPU: 0 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 869.023073][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 869.033129][T18581] Call Trace: [ 869.036438][T18581] dump_stack+0x1df/0x240 [ 869.040782][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 869.046517][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 869.051635][T18581] ? release_sock+0x238/0x2a0 [ 869.056360][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 869.061147][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 869.066269][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 869.071823][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 869.079117][T18581] ? _copy_from_user+0x15b/0x260 [ 869.084061][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 869.089177][T18581] __msan_chain_origin+0x50/0x90 [ 869.094124][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.099252][T18581] get_compat_msghdr+0x108/0x270 [ 869.104203][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.108720][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 869.114369][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 869.119489][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 869.124784][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 869.129554][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 869.134322][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 869.139516][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.144197][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.150256][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 869.156496][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.162656][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.167854][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.172753][T18581] do_SYSENTER_32+0x73/0x90 [ 869.177268][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.183581][T18581] RIP: 0023:0xf7fd3549 [ 869.187634][T18581] Code: Bad RIP value. [ 869.191676][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 869.200070][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 869.208056][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 869.216021][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 869.223998][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 869.232025][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 869.239998][T18581] Uninit was stored to memory at: [ 869.245024][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.250736][T18581] __msan_chain_origin+0x50/0x90 [ 869.255673][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.260780][T18581] get_compat_msghdr+0x108/0x270 [ 869.265720][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.270223][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.274891][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.280945][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.287081][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.292274][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.297104][T18581] do_SYSENTER_32+0x73/0x90 [ 869.301582][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.307882][T18581] [ 869.310189][T18581] Uninit was stored to memory at: [ 869.315197][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.320894][T18581] __msan_chain_origin+0x50/0x90 [ 869.325851][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.330959][T18581] get_compat_msghdr+0x108/0x270 [ 869.335897][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.340395][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.345086][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.351183][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.357321][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.362509][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.367389][T18581] do_SYSENTER_32+0x73/0x90 [ 869.371874][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.378172][T18581] [ 869.380478][T18581] Uninit was stored to memory at: [ 869.385510][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.391223][T18581] __msan_chain_origin+0x50/0x90 [ 869.396162][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.401256][T18581] get_compat_msghdr+0x108/0x270 [ 869.406178][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.410657][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.415311][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.421352][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.427484][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.432701][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.437526][T18581] do_SYSENTER_32+0x73/0x90 [ 869.442005][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.448325][T18581] [ 869.450629][T18581] Uninit was stored to memory at: [ 869.455634][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.461329][T18581] __msan_chain_origin+0x50/0x90 [ 869.466260][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.471362][T18581] get_compat_msghdr+0x108/0x270 [ 869.476280][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.480760][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.485430][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.491484][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.497626][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.502881][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.507736][T18581] do_SYSENTER_32+0x73/0x90 [ 869.512218][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.518518][T18581] [ 869.520828][T18581] Uninit was stored to memory at: [ 869.525861][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.531561][T18581] __msan_chain_origin+0x50/0x90 [ 869.536477][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.541583][T18581] get_compat_msghdr+0x108/0x270 [ 869.546523][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.551022][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.555687][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.561733][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.567903][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.573110][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.577964][T18581] do_SYSENTER_32+0x73/0x90 [ 869.582458][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.588761][T18581] [ 869.591072][T18581] Uninit was stored to memory at: [ 869.596081][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.601777][T18581] __msan_chain_origin+0x50/0x90 [ 869.606707][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.611809][T18581] get_compat_msghdr+0x108/0x270 [ 869.616746][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.621227][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.625898][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.631971][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.638105][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.643294][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.648137][T18581] do_SYSENTER_32+0x73/0x90 [ 869.652617][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.658931][T18581] [ 869.661235][T18581] Uninit was stored to memory at: [ 869.666256][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 869.671949][T18581] __msan_chain_origin+0x50/0x90 [ 869.676890][T18581] __get_compat_msghdr+0x5be/0x890 [ 869.681997][T18581] get_compat_msghdr+0x108/0x270 [ 869.686937][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 869.691429][T18581] __sys_recvmmsg+0x4ca/0x510 [ 869.696088][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 869.702130][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 869.708266][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 869.713457][T18581] do_fast_syscall_32+0x6b/0xd0 [ 869.718306][T18581] do_SYSENTER_32+0x73/0x90 [ 869.722812][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 869.729108][T18581] [ 869.731416][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 869.738072][T18581] do_recvmmsg+0xc5/0x1ee0 [ 869.742465][T18581] do_recvmmsg+0xc5/0x1ee0 [ 869.911825][T18581] not chained 3950000 origins [ 869.916575][T18581] CPU: 0 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 869.925249][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 869.935306][T18581] Call Trace: [ 869.938615][T18581] dump_stack+0x1df/0x240 [ 869.942959][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 869.948693][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 869.953817][T18581] ? release_sock+0x238/0x2a0 [ 869.958536][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 869.963313][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 869.968449][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 869.974053][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 869.980136][T18581] ? _copy_from_user+0x15b/0x260 [ 869.985082][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 869.990201][T18581] __msan_chain_origin+0x50/0x90 [ 869.995154][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.000288][T18581] get_compat_msghdr+0x108/0x270 [ 870.005249][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.009779][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 870.015435][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 870.020559][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 870.025860][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 870.030630][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 870.035410][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 870.040625][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.045327][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.051402][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 870.057647][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.063809][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.069024][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.073884][T18581] do_SYSENTER_32+0x73/0x90 [ 870.078392][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.084719][T18581] RIP: 0023:0xf7fd3549 [ 870.088875][T18581] Code: Bad RIP value. [ 870.092936][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 870.101329][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 870.109431][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 870.117388][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 870.125350][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 870.133317][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 870.141287][T18581] Uninit was stored to memory at: [ 870.146326][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.152024][T18581] __msan_chain_origin+0x50/0x90 [ 870.156954][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.162058][T18581] get_compat_msghdr+0x108/0x270 [ 870.167092][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.171681][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.176354][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.182401][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.188566][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.193743][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.198650][T18581] do_SYSENTER_32+0x73/0x90 [ 870.203162][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.209583][T18581] [ 870.211905][T18581] Uninit was stored to memory at: [ 870.216925][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.222657][T18581] __msan_chain_origin+0x50/0x90 [ 870.227589][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.232682][T18581] get_compat_msghdr+0x108/0x270 [ 870.237621][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.242103][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.246763][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.252808][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.258939][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.264124][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.268998][T18581] do_SYSENTER_32+0x73/0x90 [ 870.273494][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.279790][T18581] [ 870.282093][T18581] Uninit was stored to memory at: [ 870.287099][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.292793][T18581] __msan_chain_origin+0x50/0x90 [ 870.297730][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.302834][T18581] get_compat_msghdr+0x108/0x270 [ 870.307761][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.312248][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.317003][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.323060][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.329204][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.334383][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.339211][T18581] do_SYSENTER_32+0x73/0x90 [ 870.343702][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.350036][T18581] [ 870.352340][T18581] Uninit was stored to memory at: [ 870.357343][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.363046][T18581] __msan_chain_origin+0x50/0x90 [ 870.367972][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.373071][T18581] get_compat_msghdr+0x108/0x270 [ 870.378004][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.382496][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.387168][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.393213][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.399339][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.404526][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.409364][T18581] do_SYSENTER_32+0x73/0x90 [ 870.413845][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.420144][T18581] [ 870.422447][T18581] Uninit was stored to memory at: [ 870.427472][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.433168][T18581] __msan_chain_origin+0x50/0x90 [ 870.438107][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.443204][T18581] get_compat_msghdr+0x108/0x270 [ 870.448129][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.452622][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.457309][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.463375][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.469526][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.474711][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.479538][T18581] do_SYSENTER_32+0x73/0x90 [ 870.484032][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.490347][T18581] [ 870.492687][T18581] Uninit was stored to memory at: [ 870.497711][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.503419][T18581] __msan_chain_origin+0x50/0x90 [ 870.508351][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.513459][T18581] get_compat_msghdr+0x108/0x270 [ 870.518454][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.522939][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.527615][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.533669][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.539825][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.545027][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.549886][T18581] do_SYSENTER_32+0x73/0x90 [ 870.554369][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.560699][T18581] [ 870.563013][T18581] Uninit was stored to memory at: [ 870.568062][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 870.573772][T18581] __msan_chain_origin+0x50/0x90 [ 870.578689][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.583788][T18581] get_compat_msghdr+0x108/0x270 [ 870.588714][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.593201][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.597908][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.603995][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.610149][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.615346][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.620175][T18581] do_SYSENTER_32+0x73/0x90 [ 870.624664][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.630972][T18581] [ 870.633281][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 870.639937][T18581] do_recvmmsg+0xc5/0x1ee0 [ 870.644341][T18581] do_recvmmsg+0xc5/0x1ee0 [ 870.812937][T18581] not chained 3960000 origins [ 870.817682][T18581] CPU: 0 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 870.826356][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 870.836427][T18581] Call Trace: [ 870.839727][T18581] dump_stack+0x1df/0x240 [ 870.844072][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 870.849799][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 870.854922][T18581] ? release_sock+0x238/0x2a0 [ 870.859652][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 870.864564][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 870.869685][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 870.875239][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 870.881322][T18581] ? _copy_from_user+0x15b/0x260 [ 870.886267][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 870.891383][T18581] __msan_chain_origin+0x50/0x90 [ 870.896339][T18581] __get_compat_msghdr+0x5be/0x890 [ 870.901482][T18581] get_compat_msghdr+0x108/0x270 [ 870.906437][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 870.910997][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 870.916678][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 870.921801][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 870.927098][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 870.931867][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 870.936645][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 870.941855][T18581] __sys_recvmmsg+0x4ca/0x510 [ 870.946547][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 870.952612][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 870.958834][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 870.964976][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 870.970164][T18581] do_fast_syscall_32+0x6b/0xd0 [ 870.975026][T18581] do_SYSENTER_32+0x73/0x90 [ 870.979516][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 870.985863][T18581] RIP: 0023:0xf7fd3549 [ 870.989920][T18581] Code: Bad RIP value. [ 870.993971][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 871.002373][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 871.010465][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 871.018527][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 871.026485][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 871.034447][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 871.042419][T18581] Uninit was stored to memory at: [ 871.047432][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.053140][T18581] __msan_chain_origin+0x50/0x90 [ 871.058145][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.063248][T18581] get_compat_msghdr+0x108/0x270 [ 871.068176][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.072659][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.077326][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.083435][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.089578][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.094772][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.100135][T18581] do_SYSENTER_32+0x73/0x90 [ 871.104646][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.110967][T18581] [ 871.113282][T18581] Uninit was stored to memory at: [ 871.118321][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.124040][T18581] __msan_chain_origin+0x50/0x90 [ 871.128956][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.134056][T18581] get_compat_msghdr+0x108/0x270 [ 871.139033][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.143539][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.148215][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.154287][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.160567][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.165803][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.170635][T18581] do_SYSENTER_32+0x73/0x90 [ 871.175128][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.181526][T18581] [ 871.183831][T18581] Uninit was stored to memory at: [ 871.188846][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.194556][T18581] __msan_chain_origin+0x50/0x90 [ 871.199491][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.204581][T18581] get_compat_msghdr+0x108/0x270 [ 871.209514][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.214010][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.218676][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.224721][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.230872][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.236076][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.240915][T18581] do_SYSENTER_32+0x73/0x90 [ 871.245403][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.251703][T18581] [ 871.254017][T18581] Uninit was stored to memory at: [ 871.259059][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.264770][T18581] __msan_chain_origin+0x50/0x90 [ 871.269689][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.274802][T18581] get_compat_msghdr+0x108/0x270 [ 871.279741][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.284230][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.288887][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.294947][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.301091][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.306273][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.311101][T18581] do_SYSENTER_32+0x73/0x90 [ 871.315594][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.321903][T18581] [ 871.324234][T18581] Uninit was stored to memory at: [ 871.329323][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.335040][T18581] __msan_chain_origin+0x50/0x90 [ 871.340094][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.345189][T18581] get_compat_msghdr+0x108/0x270 [ 871.350111][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.354865][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.359537][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.365592][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.371739][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.376921][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.381768][T18581] do_SYSENTER_32+0x73/0x90 [ 871.386250][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.392561][T18581] [ 871.394899][T18581] Uninit was stored to memory at: [ 871.399932][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.405632][T18581] __msan_chain_origin+0x50/0x90 [ 871.410551][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.415653][T18581] get_compat_msghdr+0x108/0x270 [ 871.420581][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.425082][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.429756][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.435812][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.441956][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.447139][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.451993][T18581] do_SYSENTER_32+0x73/0x90 [ 871.456499][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.462796][T18581] [ 871.465118][T18581] Uninit was stored to memory at: [ 871.470138][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 871.475844][T18581] __msan_chain_origin+0x50/0x90 [ 871.480783][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.485884][T18581] get_compat_msghdr+0x108/0x270 [ 871.490797][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.495287][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.499953][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.506002][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.512159][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.517337][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.522256][T18581] do_SYSENTER_32+0x73/0x90 [ 871.526758][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.533164][T18581] [ 871.535493][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 871.542162][T18581] do_recvmmsg+0xc5/0x1ee0 [ 871.546564][T18581] do_recvmmsg+0xc5/0x1ee0 [ 871.777776][T18581] not chained 3970000 origins [ 871.782597][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 871.791261][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 871.801312][T18581] Call Trace: [ 871.804587][T18581] dump_stack+0x1df/0x240 [ 871.808925][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 871.814627][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 871.819719][T18581] ? release_sock+0x238/0x2a0 [ 871.824376][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 871.829122][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 871.834212][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 871.839737][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 871.845785][T18581] ? _copy_from_user+0x15b/0x260 [ 871.850700][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 871.855801][T18581] __msan_chain_origin+0x50/0x90 [ 871.860737][T18581] __get_compat_msghdr+0x5be/0x890 [ 871.865834][T18581] get_compat_msghdr+0x108/0x270 [ 871.870773][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 871.875259][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 871.880894][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 871.885996][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 871.891374][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 871.896131][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 871.900888][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 871.906080][T18581] __sys_recvmmsg+0x4ca/0x510 [ 871.910747][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 871.916795][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 871.923039][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 871.929174][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 871.934383][T18581] do_fast_syscall_32+0x6b/0xd0 [ 871.939230][T18581] do_SYSENTER_32+0x73/0x90 [ 871.943729][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 871.950137][T18581] RIP: 0023:0xf7fd3549 [ 871.954178][T18581] Code: Bad RIP value. [ 871.958216][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 871.966600][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 871.974548][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 871.982499][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 871.990445][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 871.998393][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 872.006348][T18581] Uninit was stored to memory at: [ 872.011369][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.017064][T18581] __msan_chain_origin+0x50/0x90 [ 872.022106][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.027223][T18581] get_compat_msghdr+0x108/0x270 [ 872.032151][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.036635][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.041296][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.047357][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.053489][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.058703][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.063544][T18581] do_SYSENTER_32+0x73/0x90 [ 872.068073][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.074372][T18581] [ 872.076691][T18581] Uninit was stored to memory at: [ 872.081693][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.087386][T18581] __msan_chain_origin+0x50/0x90 [ 872.092300][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.097388][T18581] get_compat_msghdr+0x108/0x270 [ 872.102302][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.106797][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.111451][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.117511][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.123658][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.128844][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.133670][T18581] do_SYSENTER_32+0x73/0x90 [ 872.138150][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.144461][T18581] [ 872.146779][T18581] Uninit was stored to memory at: [ 872.151780][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.157492][T18581] __msan_chain_origin+0x50/0x90 [ 872.162407][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.167511][T18581] get_compat_msghdr+0x108/0x270 [ 872.172424][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.176932][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.181585][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.187646][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.193840][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.199020][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.203857][T18581] do_SYSENTER_32+0x73/0x90 [ 872.208354][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.214652][T18581] [ 872.216964][T18581] Uninit was stored to memory at: [ 872.222105][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.227826][T18581] __msan_chain_origin+0x50/0x90 [ 872.232744][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.237836][T18581] get_compat_msghdr+0x108/0x270 [ 872.242753][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.247250][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.251904][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.257955][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.264100][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.269274][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.274100][T18581] do_SYSENTER_32+0x73/0x90 [ 872.278594][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.284906][T18581] [ 872.287235][T18581] Uninit was stored to memory at: [ 872.292251][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.297949][T18581] __msan_chain_origin+0x50/0x90 [ 872.302863][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.307952][T18581] get_compat_msghdr+0x108/0x270 [ 872.312873][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.317370][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.322023][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.328078][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.334208][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.339385][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.344233][T18581] do_SYSENTER_32+0x73/0x90 [ 872.348711][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.355005][T18581] [ 872.357309][T18581] Uninit was stored to memory at: [ 872.362310][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.368006][T18581] __msan_chain_origin+0x50/0x90 [ 872.372920][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.378017][T18581] get_compat_msghdr+0x108/0x270 [ 872.382968][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.387731][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.392472][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.398517][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.404648][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.409894][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.414795][T18581] do_SYSENTER_32+0x73/0x90 [ 872.419278][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.425708][T18581] [ 872.428160][T18581] Uninit was stored to memory at: [ 872.433190][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.438894][T18581] __msan_chain_origin+0x50/0x90 [ 872.443810][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.448917][T18581] get_compat_msghdr+0x108/0x270 [ 872.453858][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.458339][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.463017][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.469116][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.475250][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.480428][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.485272][T18581] do_SYSENTER_32+0x73/0x90 [ 872.489751][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.496047][T18581] [ 872.498352][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 872.505016][T18581] do_recvmmsg+0xc5/0x1ee0 [ 872.509476][T18581] do_recvmmsg+0xc5/0x1ee0 [ 872.710717][T18581] not chained 3980000 origins [ 872.715452][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 872.724120][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 872.734178][T18581] Call Trace: [ 872.737476][T18581] dump_stack+0x1df/0x240 [ 872.741853][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 872.747584][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 872.752701][T18581] ? release_sock+0x238/0x2a0 [ 872.757388][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 872.762164][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 872.767286][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 872.772840][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 872.778951][T18581] ? _copy_from_user+0x15b/0x260 [ 872.783934][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 872.789056][T18581] __msan_chain_origin+0x50/0x90 [ 872.794004][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.799134][T18581] get_compat_msghdr+0x108/0x270 [ 872.804083][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.808600][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 872.814252][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 872.819371][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 872.824689][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 872.829438][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 872.834181][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 872.839395][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.844059][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.850153][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 872.856418][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.863349][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.868531][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.873359][T18581] do_SYSENTER_32+0x73/0x90 [ 872.877839][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 872.884158][T18581] RIP: 0023:0xf7fd3549 [ 872.888199][T18581] Code: Bad RIP value. [ 872.892238][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 872.900626][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 872.908587][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 872.916533][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 872.924506][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 872.932478][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 872.940778][T18581] Uninit was stored to memory at: [ 872.945784][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 872.951477][T18581] __msan_chain_origin+0x50/0x90 [ 872.956392][T18581] __get_compat_msghdr+0x5be/0x890 [ 872.961495][T18581] get_compat_msghdr+0x108/0x270 [ 872.966422][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 872.970912][T18581] __sys_recvmmsg+0x4ca/0x510 [ 872.975583][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 872.981625][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 872.987755][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 872.992942][T18581] do_fast_syscall_32+0x6b/0xd0 [ 872.997784][T18581] do_SYSENTER_32+0x73/0x90 [ 873.002264][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.008573][T18581] [ 873.010876][T18581] Uninit was stored to memory at: [ 873.015884][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.021584][T18581] __msan_chain_origin+0x50/0x90 [ 873.026498][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.031596][T18581] get_compat_msghdr+0x108/0x270 [ 873.036526][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.041018][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.045672][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.052408][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.058590][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.063813][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.068644][T18581] do_SYSENTER_32+0x73/0x90 [ 873.073300][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.079648][T18581] [ 873.081996][T18581] Uninit was stored to memory at: [ 873.087015][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.092731][T18581] __msan_chain_origin+0x50/0x90 [ 873.097649][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.102737][T18581] get_compat_msghdr+0x108/0x270 [ 873.107679][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.112157][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.116810][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.122852][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.128981][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.134175][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.139001][T18581] do_SYSENTER_32+0x73/0x90 [ 873.143480][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.149791][T18581] [ 873.152092][T18581] Uninit was stored to memory at: [ 873.157093][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.162802][T18581] __msan_chain_origin+0x50/0x90 [ 873.167721][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.172826][T18581] get_compat_msghdr+0x108/0x270 [ 873.177746][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.182243][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.186915][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.193045][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.199188][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.204441][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.209275][T18581] do_SYSENTER_32+0x73/0x90 [ 873.213756][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.220052][T18581] [ 873.222355][T18581] Uninit was stored to memory at: [ 873.227369][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.233077][T18581] __msan_chain_origin+0x50/0x90 [ 873.238035][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.243130][T18581] get_compat_msghdr+0x108/0x270 [ 873.248046][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.252523][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.257179][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.263238][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.269385][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.274571][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.279428][T18581] do_SYSENTER_32+0x73/0x90 [ 873.283917][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.290221][T18581] [ 873.292538][T18581] Uninit was stored to memory at: [ 873.297554][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.303269][T18581] __msan_chain_origin+0x50/0x90 [ 873.308200][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.313287][T18581] get_compat_msghdr+0x108/0x270 [ 873.318198][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.322676][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.327336][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.333377][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.339524][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.344702][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.349544][T18581] do_SYSENTER_32+0x73/0x90 [ 873.354024][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.360451][T18581] [ 873.362765][T18581] Uninit was stored to memory at: [ 873.367992][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.373693][T18581] __msan_chain_origin+0x50/0x90 [ 873.378625][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.383738][T18581] get_compat_msghdr+0x108/0x270 [ 873.388666][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.393146][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.397820][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.403861][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.409989][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.415164][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.419991][T18581] do_SYSENTER_32+0x73/0x90 [ 873.424471][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.430765][T18581] [ 873.433088][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 873.439747][T18581] do_recvmmsg+0xc5/0x1ee0 [ 873.444224][T18581] do_recvmmsg+0xc5/0x1ee0 [ 873.610971][T18581] not chained 3990000 origins [ 873.615706][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 873.624376][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 873.634429][T18581] Call Trace: [ 873.637729][T18581] dump_stack+0x1df/0x240 [ 873.642101][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 873.647833][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 873.652956][T18581] ? release_sock+0x238/0x2a0 [ 873.657637][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 873.662417][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 873.667535][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 873.673088][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 873.679162][T18581] ? _copy_from_user+0x15b/0x260 [ 873.684105][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 873.689221][T18581] __msan_chain_origin+0x50/0x90 [ 873.694165][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.699296][T18581] get_compat_msghdr+0x108/0x270 [ 873.704248][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.708765][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 873.714415][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 873.719536][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 873.724828][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 873.729598][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 873.734365][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 873.739579][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.744245][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.750292][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 873.756527][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.762659][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.767889][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.772749][T18581] do_SYSENTER_32+0x73/0x90 [ 873.777342][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.783648][T18581] RIP: 0023:0xf7fd3549 [ 873.787688][T18581] Code: Bad RIP value. [ 873.791748][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 873.800220][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 873.808186][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 873.816134][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 873.824085][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 873.832049][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 873.840031][T18581] Uninit was stored to memory at: [ 873.845083][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.850795][T18581] __msan_chain_origin+0x50/0x90 [ 873.855726][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.860830][T18581] get_compat_msghdr+0x108/0x270 [ 873.865749][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.870228][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.874886][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.880930][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.887072][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.892256][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.897088][T18581] do_SYSENTER_32+0x73/0x90 [ 873.901574][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.907881][T18581] [ 873.910230][T18581] Uninit was stored to memory at: [ 873.915242][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.920997][T18581] __msan_chain_origin+0x50/0x90 [ 873.925940][T18581] __get_compat_msghdr+0x5be/0x890 [ 873.931051][T18581] get_compat_msghdr+0x108/0x270 [ 873.935969][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 873.940448][T18581] __sys_recvmmsg+0x4ca/0x510 [ 873.945102][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 873.951144][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 873.957289][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 873.962464][T18581] do_fast_syscall_32+0x6b/0xd0 [ 873.967309][T18581] do_SYSENTER_32+0x73/0x90 [ 873.971802][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 873.978099][T18581] [ 873.980418][T18581] Uninit was stored to memory at: [ 873.985421][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 873.991196][T18581] __msan_chain_origin+0x50/0x90 [ 873.996175][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.001311][T18581] get_compat_msghdr+0x108/0x270 [ 874.006236][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.010735][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.015395][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.021448][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.027623][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.032831][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.037673][T18581] do_SYSENTER_32+0x73/0x90 [ 874.042214][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.048518][T18581] [ 874.050828][T18581] Uninit was stored to memory at: [ 874.055887][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.061604][T18581] __msan_chain_origin+0x50/0x90 [ 874.066523][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.071628][T18581] get_compat_msghdr+0x108/0x270 [ 874.076653][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.081269][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.085948][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.091990][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.098124][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.103303][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.108130][T18581] do_SYSENTER_32+0x73/0x90 [ 874.112609][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.118922][T18581] [ 874.121226][T18581] Uninit was stored to memory at: [ 874.126251][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.131961][T18581] __msan_chain_origin+0x50/0x90 [ 874.136907][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.142012][T18581] get_compat_msghdr+0x108/0x270 [ 874.146950][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.151430][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.156090][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.162151][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.168309][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.173582][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.178416][T18581] do_SYSENTER_32+0x73/0x90 [ 874.182898][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.189216][T18581] [ 874.191539][T18581] Uninit was stored to memory at: [ 874.196558][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.202287][T18581] __msan_chain_origin+0x50/0x90 [ 874.207213][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.212322][T18581] get_compat_msghdr+0x108/0x270 [ 874.217246][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.221725][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.226379][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.232421][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.238569][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.243753][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.248627][T18581] do_SYSENTER_32+0x73/0x90 [ 874.253149][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.259445][T18581] [ 874.261765][T18581] Uninit was stored to memory at: [ 874.266770][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.272481][T18581] __msan_chain_origin+0x50/0x90 [ 874.277409][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.282494][T18581] get_compat_msghdr+0x108/0x270 [ 874.287411][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.291894][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.296552][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.302645][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.308801][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.314003][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.318830][T18581] do_SYSENTER_32+0x73/0x90 [ 874.323327][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.329625][T18581] [ 874.331948][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 874.338632][T18581] do_recvmmsg+0xc5/0x1ee0 [ 874.343053][T18581] do_recvmmsg+0xc5/0x1ee0 [ 874.544093][T18581] not chained 4000000 origins [ 874.548830][T18581] CPU: 1 PID: 18581 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 874.557544][T18581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 874.567599][T18581] Call Trace: [ 874.570897][T18581] dump_stack+0x1df/0x240 [ 874.575238][T18581] kmsan_internal_chain_origin+0x6f/0x130 [ 874.580971][T18581] ? _raw_spin_unlock_bh+0x4b/0x60 [ 874.586086][T18581] ? release_sock+0x238/0x2a0 [ 874.590781][T18581] ? sctp_recvmsg+0xd9b/0x1160 [ 874.595563][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 874.600674][T18581] ? kmsan_set_origin_checked+0x95/0xf0 [ 874.606226][T18581] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 874.612301][T18581] ? _copy_from_user+0x15b/0x260 [ 874.617242][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 874.622389][T18581] __msan_chain_origin+0x50/0x90 [ 874.627336][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.632511][T18581] get_compat_msghdr+0x108/0x270 [ 874.637437][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.641924][T18581] ? kmsan_internal_set_origin+0x75/0xb0 [ 874.647543][T18581] ? kmsan_get_metadata+0x4f/0x180 [ 874.652721][T18581] ? __msan_poison_alloca+0xf0/0x120 [ 874.657998][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 874.662739][T18581] ? __sys_recvmmsg+0xb4/0x510 [ 874.667479][T18581] ? kmsan_get_metadata+0x11d/0x180 [ 874.672654][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.677331][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.683377][T18581] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 874.689595][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.695737][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.700918][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.705773][T18581] do_SYSENTER_32+0x73/0x90 [ 874.710254][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.716563][T18581] RIP: 0023:0xf7fd3549 [ 874.720605][T18581] Code: Bad RIP value. [ 874.724649][T18581] RSP: 002b:00000000f5d8c0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 874.733058][T18581] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 874.741022][T18581] RDX: 00000000ffffff1f RSI: 0000000000000000 RDI: 0000000000000000 [ 874.748970][T18581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 874.756940][T18581] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 874.764903][T18581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 874.772874][T18581] Uninit was stored to memory at: [ 874.777883][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.783577][T18581] __msan_chain_origin+0x50/0x90 [ 874.788492][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.793581][T18581] get_compat_msghdr+0x108/0x270 [ 874.798495][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.802984][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.807650][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.813693][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.819823][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.825458][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.830283][T18581] do_SYSENTER_32+0x73/0x90 [ 874.834763][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.841060][T18581] [ 874.843364][T18581] Uninit was stored to memory at: [ 874.848379][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.854072][T18581] __msan_chain_origin+0x50/0x90 [ 874.858985][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.864074][T18581] get_compat_msghdr+0x108/0x270 [ 874.869003][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.873482][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.878133][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.884190][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.890319][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.895494][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.900335][T18581] do_SYSENTER_32+0x73/0x90 [ 874.904816][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.911128][T18581] [ 874.913449][T18581] Uninit was stored to memory at: [ 874.918470][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.924165][T18581] __msan_chain_origin+0x50/0x90 [ 874.929079][T18581] __get_compat_msghdr+0x5be/0x890 [ 874.934183][T18581] get_compat_msghdr+0x108/0x270 [ 874.939096][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 874.943575][T18581] __sys_recvmmsg+0x4ca/0x510 [ 874.948226][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 874.954269][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 874.960397][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 874.965575][T18581] do_fast_syscall_32+0x6b/0xd0 [ 874.970418][T18581] do_SYSENTER_32+0x73/0x90 [ 874.974918][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 874.981218][T18581] [ 874.983520][T18581] Uninit was stored to memory at: [ 874.988520][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 874.994215][T18581] __msan_chain_origin+0x50/0x90 [ 874.999142][T18581] __get_compat_msghdr+0x5be/0x890 [ 875.004246][T18581] get_compat_msghdr+0x108/0x270 [ 875.009171][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 875.013651][T18581] __sys_recvmmsg+0x4ca/0x510 [ 875.018304][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 875.024344][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 875.030472][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 875.035656][T18581] do_fast_syscall_32+0x6b/0xd0 [ 875.040502][T18581] do_SYSENTER_32+0x73/0x90 [ 875.044996][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 875.051319][T18581] [ 875.053651][T18581] Uninit was stored to memory at: [ 875.058726][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 875.064548][T18581] __msan_chain_origin+0x50/0x90 [ 875.069580][T18581] __get_compat_msghdr+0x5be/0x890 [ 875.074729][T18581] get_compat_msghdr+0x108/0x270 [ 875.079652][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 875.084138][T18581] __sys_recvmmsg+0x4ca/0x510 [ 875.088798][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 875.094849][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 875.100983][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 875.106166][T18581] do_fast_syscall_32+0x6b/0xd0 [ 875.110993][T18581] do_SYSENTER_32+0x73/0x90 [ 875.115676][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 875.121979][T18581] [ 875.124294][T18581] Uninit was stored to memory at: [ 875.129371][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 875.135081][T18581] __msan_chain_origin+0x50/0x90 [ 875.140026][T18581] __get_compat_msghdr+0x5be/0x890 [ 875.145121][T18581] get_compat_msghdr+0x108/0x270 [ 875.150126][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 875.154634][T18581] __sys_recvmmsg+0x4ca/0x510 [ 875.159287][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 875.165331][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 875.171474][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 875.176648][T18581] do_fast_syscall_32+0x6b/0xd0 [ 875.181488][T18581] do_SYSENTER_32+0x73/0x90 [ 875.185981][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 875.192279][T18581] [ 875.194582][T18581] Uninit was stored to memory at: [ 875.199710][T18581] kmsan_internal_chain_origin+0xad/0x130 [ 875.205416][T18581] __msan_chain_origin+0x50/0x90 [ 875.210342][T18581] __get_compat_msghdr+0x5be/0x890 [ 875.215431][T18581] get_compat_msghdr+0x108/0x270 [ 875.220362][T18581] do_recvmmsg+0xa6a/0x1ee0 [ 875.224858][T18581] __sys_recvmmsg+0x4ca/0x510 [ 875.229527][T18581] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 875.235570][T18581] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 875.241715][T18581] __do_fast_syscall_32+0x2aa/0x400 [ 875.246890][T18581] do_fast_syscall_32+0x6b/0xd0 [ 875.251717][T18581] do_SYSENTER_32+0x73/0x90 [ 875.256197][T18581] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 875.262512][T18581] [ 875.264817][T18581] Local variable ----msg_sys@do_recvmmsg created at: [ 875.271482][T18581] do_recvmmsg+0xc5/0x1ee0 [ 875.275880][T18581] do_recvmmsg+0xc5/0x1ee0 15:59:05 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:59:05 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x23, &(0x7f0000000000)=ANY=[], &(0x7f0000000280)=0x44b) 15:59:05 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:59:05 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x25, &(0x7f0000000080)=ANY=[@ANYBLOB='j'], &(0x7f0000000040)=0x8) 15:59:05 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:05 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, 0x0, 0x82, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:05 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) accept4(r0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:59:05 executing program 5: 15:59:05 executing program 1: 15:59:05 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:05 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) accept4(r0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:59:05 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:59:05 executing program 5: 15:59:05 executing program 1: 15:59:06 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) accept4(r0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001600)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803}}], 0x500, 0x0, 0x0) 15:59:06 executing program 5: 15:59:06 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:06 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, 0x0, 0x82, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:06 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x303, &(0x7f0000000440)=[{&(0x7f00000015c0)=""/4096, 0x200115bc}], 0x1}}], 0xffffff1f, 0x0, 0x0) 15:59:06 executing program 1: 15:59:06 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) 15:59:06 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x584]}) 15:59:06 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:06 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) 15:59:06 executing program 1: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) r2 = dup3(r1, r0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x82, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x17) 15:59:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:07 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) 15:59:07 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) 15:59:07 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:07 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:07 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600), 0x0, 0x0, 0x0) 15:59:07 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:07 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) 15:59:08 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600), 0x0, 0x0, 0x0) 15:59:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:08 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:08 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) 15:59:08 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha224-generic)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001600), 0x0, 0x0, 0x0) 15:59:08 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:08 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100), 0x0, 0x0, 0x0) 15:59:08 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:08 executing program 4: r0 = syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:09 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:09 executing program 4: r0 = syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:09 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100), 0x0, 0x0, 0x0) 15:59:09 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:09 executing program 4: r0 = syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:10 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:10 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:10 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100), 0x0, 0x0, 0x0) 15:59:10 executing program 4: r0 = syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:10 executing program 4: ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:10 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 15:59:10 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 15:59:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:11 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:11 executing program 4: ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:11 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:11 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 15:59:11 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 15:59:11 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:11 executing program 4: ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:11 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:11 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 15:59:11 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 15:59:11 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:11 executing program 4: r0 = syz_open_dev$ndb(0x0, 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:13 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:13 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(r0, r1, 0x0, 0x8000fffffffe) 15:59:13 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:13 executing program 4: r0 = syz_open_dev$ndb(0x0, 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:13 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:13 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)}}], 0x1, 0x0, 0x0) 15:59:13 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(r0, r1, 0x0, 0x8000fffffffe) 15:59:13 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:13 executing program 4: r0 = syz_open_dev$ndb(0x0, 0x0, 0x0) ioctl$NBD_DO_IT(r0, 0xab06) 15:59:13 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)}}], 0x1, 0x0, 0x0) 15:59:13 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:13 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:14 executing program 4: syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:14 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:14 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:14 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(r0, r1, 0x0, 0x8000fffffffe) 15:59:14 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)}}], 0x1, 0x0, 0x0) 15:59:14 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:15 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:15 executing program 4: syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:15 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:15 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) 15:59:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:16 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x5fffffffd, 0x0) 15:59:16 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:16 executing program 4: syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0) ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab06) 15:59:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:16 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) 15:59:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:17 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:17 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:17 executing program 3: r0 = socket$inet(0x2, 0x2000080001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value, 0x8) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1a000}], 0x1}, 0x0) shutdown(r0, 0x1) recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000440)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) 15:59:17 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:17 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r0, 0x0, 0x1000000c8) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:17 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:17 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:17 executing program 0: sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:18 executing program 0: sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:18 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:18 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:18 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r0, 0x0, 0x1000000c8) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:18 executing program 0: sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:19 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:20 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r0, 0x0, 0x1000000c8) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x5fffffffd, 0x0) 15:59:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:20 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:20 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:21 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x5fffffffd, 0x0) 15:59:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:21 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:21 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:21 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:21 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:21 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:22 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:22 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x5fffffffd, 0x0) 15:59:22 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:22 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:22 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:22 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:22 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:22 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:23 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:23 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x5fffffffd, 0x0) 15:59:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:23 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:23 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:23 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:23 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000081]}) 15:59:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:24 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:24 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 15:59:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f2]}) 15:59:24 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:25 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:25 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:25 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:25 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 15:59:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:25 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:25 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:25 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:26 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:26 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000081]}) 15:59:26 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:26 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82, 0x0) write$binfmt_misc(r1, 0x0, 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 15:59:26 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f2]}) 15:59:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000081]}) 15:59:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f2]}) 15:59:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000081]}) 15:59:27 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:27 executing program 5: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000080)=0x20000100000094, 0x8) sendfile(r0, r0, &(0x7f00000000c0), 0xfeff) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x2f, 0x0, &(0x7f0000000040)) 15:59:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:27 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f2]}) 15:59:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:27 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040), 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001b]}) 15:59:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) write$binfmt_script(r0, &(0x7f0000000140)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendfile(r4, r3, 0x0, 0x100000001) ioctl$sock_inet_sctp_SIOCINQ(r3, 0x541b, &(0x7f0000000040)) 15:59:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:28 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040), 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) [ 898.942731][ T32] audit: type=1804 audit(1595260768.551:681): pid=19517 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir825377596/syzkaller.wEisqr/306/cgroup.controllers" dev="sda1" ino=16291 res=1 15:59:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000103]}) 15:59:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000108]}) 15:59:28 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040), 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000092]}) 15:59:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$erofs(&(0x7f0000000040)='erofs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@nouser_xattr='nouser_xattr'}, {@noacl='noacl'}]}) 15:59:29 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:29 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 15:59:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:29 executing program 5: r0 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r0, &(0x7f0000000080), 0x8) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0) r1 = memfd_create(&(0x7f0000000140)='\xedr!QY\x88=Vx\xa1\xd1<\xdeb\x17\xd3\xe2i\x1d5\x17\xa4\x00\xd8\x02\x9f\x11\xfa\t\x13]\f\xcbo\xc4X\x00\x94/\x96h\xef~Ms\"\x00\x00', 0x0) write$eventfd(r1, &(0x7f0000000080), 0x8) sendfile(r1, r1, &(0x7f00000000c0), 0xfeff) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x0, 0x11, r1, 0x0) 15:59:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x581]}) 15:59:30 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0x400000b1]}) 15:59:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) [ 901.431486][T19642] erofs: (device loop2): erofs_read_superblock: cannot find valid erofs superblock 15:59:31 executing program 2: 15:59:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:31 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:31 executing program 5: 15:59:31 executing program 1: 15:59:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:31 executing program 1: 15:59:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:31 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:32 executing program 2: 15:59:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x400000f1]}) 15:59:32 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:33 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0x40000101]}) 15:59:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:33 executing program 2: 15:59:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:33 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100), 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:34 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100), 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f1]}) 15:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:34 executing program 2: 15:59:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:34 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100), 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f1]}) 15:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000101]}) 15:59:35 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000101]}) 15:59:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x400000f1]}) 15:59:35 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:35 executing program 2: 15:59:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0x40000101]}) 15:59:35 executing program 4: 15:59:35 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:35 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:35 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:36 executing program 4: 15:59:36 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:36 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:36 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:36 executing program 3: 15:59:36 executing program 4: 15:59:37 executing program 2: 15:59:37 executing program 4: 15:59:37 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:37 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:37 executing program 3: 15:59:37 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:37 executing program 3: 15:59:37 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:37 executing program 4: 15:59:37 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:37 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:37 executing program 3: 15:59:38 executing program 2: 15:59:38 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:38 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:38 executing program 3: 15:59:38 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:38 executing program 4: 15:59:38 executing program 3: 15:59:39 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:39 executing program 4: 15:59:39 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:39 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:39 executing program 3: 15:59:39 executing program 2: 15:59:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:39 executing program 4: 15:59:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:39 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:39 executing program 3: 15:59:39 executing program 4: 15:59:39 executing program 3: 15:59:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:40 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:40 executing program 4: 15:59:40 executing program 2: 15:59:40 executing program 3: 15:59:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:40 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:40 executing program 4: 15:59:40 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:40 executing program 4: 15:59:40 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:40 executing program 3: 15:59:40 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:41 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:41 executing program 2: 15:59:41 executing program 4: 15:59:41 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:41 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:41 executing program 3: 15:59:41 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:41 executing program 3: 15:59:41 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:41 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:41 executing program 4: 15:59:41 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:42 executing program 3: 15:59:42 executing program 2: 15:59:42 executing program 4: 15:59:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:42 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:42 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:42 executing program 3: 15:59:42 executing program 4: 15:59:42 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:42 executing program 3: 15:59:42 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:43 executing program 4: 15:59:43 executing program 2: 15:59:43 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:43 executing program 3: 15:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r1, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:43 executing program 4: 15:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:43 executing program 3: 15:59:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:43 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:43 executing program 4: 15:59:44 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x3}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb38", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f", 0xf5}, {&(0x7f00000012c0)}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6e0968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9ae0278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e", 0xbb}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0", 0x1e}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000) [ 914.737777][T20125] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 15:59:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:44 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:44 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000083]}) 15:59:44 executing program 2: prlimit64(0x0, 0xe, 0x0, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x20) pipe(0x0) write(0xffffffffffffffff, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x1, @perf_config_ext, 0x98f72e554e7ce485}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:59:44 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x100000, 0x0) socket(0x0, 0x0, 0x2) 15:59:44 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_BLANKSCREEN(r2, 0x541c, &(0x7f0000000000)) ioctl$TIOCL_UNBLANKSCREEN(r2, 0x541c, &(0x7f0000000180)) 15:59:44 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:44 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:44 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, &(0x7f0000000240)) 15:59:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:45 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100), 0x4) 15:59:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:45 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) close(r0) 15:59:45 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:45 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f0000000100)="ff", 0x1, 0xfffffffffffffffb) keyctl$unlink(0x9, r0, 0xfffffffffffffffb) 15:59:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:45 executing program 3: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r0, 0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="e00000027f000001"], 0x18) 15:59:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:46 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180), 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:46 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000100)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x20, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, {[@mptcp=@add_addr={0x8, 0xa, 0x0, 0xa, 0x0, @empty=0x2}]}}}}}}}}, 0x0) 15:59:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000083]}) 15:59:46 executing program 4: eventfd2(0x0, 0x0) mkdir(0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$bt_hci(r0, 0x0, 0x1, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0506617, &(0x7f0000000240)=ANY=[@ANYBLOB="00000000000000005bdcd8ca670e0d880000000000000000000000000000000000000000000000009e000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000a63d7954809b62bee3b75ac0f752978f6f3b012ee9c0df63de3c19094f6b787935b7d72420796ff08d4b335250dd389fa8fbf813ecfe38441f626e4734fb8c3583f8625fa9cc94cbfeeb1b02201d84a45eea88cdc7574fc6caf86f0b1f6856b4726f8a78435364846250c522c2b6556c207ceef0d0aa359bdafb3a16d2061da7946040b4b2ece951b0a9b90701000000000000003d086b"]) pivot_root(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00') r1 = socket$nl_route(0x10, 0x3, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000200)={0x10001b}) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 15:59:46 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) [ 916.886106][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 916.935843][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 916.945999][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 15:59:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000083]}) [ 917.296057][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 917.312941][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 917.320988][T20219] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 15:59:47 executing program 2: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000002, 0x3, 0x2) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs, 0x6e) 15:59:47 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180), 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:47 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, 0x0) 15:59:47 executing program 3: mkdir(0x0, 0x0) chdir(0x0) symlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 15:59:47 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x541c, 0x0) ioctl$TIOCL_UNBLANKSCREEN(r2, 0x541c, &(0x7f0000000180)) 15:59:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000083]}) 15:59:47 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180), 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:47 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendto$inet(r0, &(0x7f00000012c0)='\f', 0x1, 0x0, 0x0, 0x0) 15:59:47 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2}) 15:59:47 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 15:59:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2}) 15:59:48 executing program 2: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000002, 0x3, 0x2) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs={0x0, 0x0, 0x10000e0}, 0x6e) 15:59:48 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:48 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:48 executing program 4: prlimit64(0x0, 0x0, 0x0, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) pipe(0x0) sched_setattr(0x0, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x98f72e554e7ce485}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:59:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2}) 15:59:48 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0"], 0x18) 15:59:49 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:49 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x0, 0x0, [0xc0000101, 0x0, 0xc001001f]}) 15:59:49 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x8903, &(0x7f00000002c0)) 15:59:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:50 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:50 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:50 executing program 4: prlimit64(0x0, 0x0, 0x0, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) pipe(0x0) sched_setattr(0x0, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) write(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffef3) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000080)={0x8001, 0x9}) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x98f72e554e7ce485}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:59:50 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:50 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000040)=0xffffffff7fffffff, 0x9, 0x0) 15:59:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:50 executing program 4: prlimit64(0x0, 0x0, 0x0, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) pipe(0x0) sched_setattr(0x0, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) write(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffef3) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000080)={0x8001, 0x9}) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x98f72e554e7ce485}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:59:51 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:51 executing program 5: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqn(r0, 0x0, 0xc, &(0x7f0000683ff4)={@multicast2, @remote}, 0xc) 15:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0xc0000101]}) 15:59:51 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:51 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) [ 922.062565][T20398] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 15:59:51 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:51 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0xc001001f]}) 15:59:51 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:51 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$packet(0x11, 0x3, 0x300) syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x800, 0x0) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140)='NLBL_CALIPSO\x00') r3 = dup(r2) setsockopt$packet_int(r3, 0x107, 0x10000000000f, &(0x7f0000006ffc)=0x40000008, 0x4) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f0000000000)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'vlan0\x00', 0x0}) bind$packet(r2, &(0x7f0000000640)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) sendto$inet6(r2, &(0x7f0000000300)="0503d032aafd3e0001a00600c513f7c25975e697b02f08066b2b2ff0dac8897c6b11876d886b143a301817ccd51cc5471d130a6632a88161b6fd8f24286a57c3fe257c3314a3974bb654697f", 0xfdfa, 0x0, 0x0, 0x0) 15:59:51 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:52 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:52 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0xc001001f]}) 15:59:52 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:52 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:52 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) [ 923.374447][T20442] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 15:59:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000200)={0x2, 0x0, [0x0, 0x0, 0xc001001f]}) 15:59:53 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(0x0, 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:53 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:53 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:53 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:53 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:53 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(0x0, 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:53 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup2(r2, r1) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:53 executing program 1: clock_adjtime(0x0, &(0x7f00000004c0)={0xfff, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0xc00}) 15:59:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:53 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) [ 924.751519][T20480] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 15:59:54 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:54 executing program 1: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='syz_tun\x00', 0x4d) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs={0x0, 0x0, 0x10000e0}, 0x6e) 15:59:54 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(0x0, 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:54 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup2(r2, r1) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:54 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:54 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup2(r2, r1) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:55 executing program 1: r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_aout(r3, &(0x7f0000000340)=ANY=[], 0x1) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) r5 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_opts(r5, 0x29, 0x36, &(0x7f0000000080)=ANY=[], 0x8) connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) write$binfmt_misc(r3, &(0x7f0000000100)=ANY=[], 0x4240a2a0) splice(r2, 0x0, r4, 0x0, 0x4ffe0, 0x0) 15:59:55 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:55 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:55 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:55 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:55 executing program 2: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:55 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:55 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:55 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:55 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:56 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:56 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:56 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:56 executing program 5: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:56 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:57 executing program 5: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:57 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(0xffffffffffffffff, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:57 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:57 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:57 executing program 4: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:57 executing program 2: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:57 executing program 5: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:57 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:57 executing program 4: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:57 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:57 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(0xffffffffffffffff, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:57 executing program 4: ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:57 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:57 executing program 5: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:57 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:58 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(0xffffffffffffffff, 0x7fff) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:58 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:58 executing program 2: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:58 executing program 5: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:58 executing program 1: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:58 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:58 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x0) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:58 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:58 executing program 1: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:58 executing program 4: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2286, 0x0) 15:59:58 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:58 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x0) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:58 executing program 5: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:59 executing program 4: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:59 executing program 2: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 15:59:59 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:59 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x0) sendfile(r1, r2, 0x0, 0x8000fffffffe) 15:59:59 executing program 4: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:59 executing program 5: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:59 executing program 1: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:59 executing program 5: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 15:59:59 executing program 4: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x2286, 0x0) 15:59:59 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 15:59:59 executing program 1: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 15:59:59 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 16:00:00 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:00 executing program 1: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 16:00:00 executing program 2: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:00 executing program 4: prlimit64(0x0, 0xe, 0x0, 0x0) r0 = getpid() sched_setattr(r0, 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140)}, 0x20) pipe(0x0) write(0xffffffffffffffff, 0x0, 0x0) sched_setattr(0x0, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x1, @perf_config_ext, 0x98f72e554e7ce485}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x12000004, &(0x7f0000000140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x807a}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 16:00:00 executing program 5: syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)={0x0, 0x600}) 16:00:00 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 16:00:00 executing program 1: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 16:00:00 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:00 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x8a, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x54, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x15, 0x2, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}, @sack={0x5, 0x22, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @sack={0x5, 0x6, [0x0]}, @exp_smc={0xfe, 0x6}, @mptcp=@capable={0x1e, 0xc}]}}}}}}}}, 0x0) 16:00:01 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:01 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r1, 0x7fff) sendfile(0xffffffffffffffff, r1, 0x0, 0x8000fffffffe) 16:00:01 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, 0x0) 16:00:01 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:01 executing program 2: socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:01 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f0000000040)={0x9, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x0, 0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={[0x4]}, 0x8}) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) 16:00:01 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, 0xffffffffffffffff, 0x0, 0x8000fffffffe) 16:00:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:01 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, 0x0) 16:00:01 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:02 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, 0xffffffffffffffff, 0x0, 0x8000fffffffe) 16:00:02 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:02 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:02 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, 0x0) 16:00:02 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) shmctl$IPC_RMID(0x0, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clock_adjtime(0x0, &(0x7f00000004c0)={0x3f}) 16:00:02 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:02 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:02 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, 0xffffffffffffffff, 0x0, 0x8000fffffffe) 16:00:02 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)) 16:00:02 executing program 4: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0x0, r1, 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x1) close(r2) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 16:00:02 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:02 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:03 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) 16:00:03 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x0) 16:00:03 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)) 16:00:03 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) [ 933.659584][T20745] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:00:03 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x0) 16:00:03 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:03 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 16:00:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:03 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000240)) 16:00:03 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10006, 0x80011, r0, 0x0) sendmmsg$alg(r2, &(0x7f0000001a80)=[{0x0, 0x0, 0x0}], 0x1, 0x0) pipe2(&(0x7f0000001600), 0x0) [ 934.249420][T20763] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:00:03 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) sched_setaffinity(0x0, 0x763, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000040)=0xf, 0x4) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000180)=0x2, 0x4) inotify_init() mlock2(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x0) open(0x0, 0x0, 0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ptrace(0xffffffffffffffff, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40046602, 0x0) pread64(0xffffffffffffffff, 0x0, 0x3a, 0x0) ftruncate(r2, 0x7fff) sendfile(r1, r2, 0x0, 0x0) 16:00:04 executing program 4: msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000000300)=""/165) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2800) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00') ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f00000002c0)) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600)='nl80211\x00') sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="11000000", @ANYRES16=r1, @ANYBLOB="000425bd7000ffdbdf251c0000000c0099000000000005000000"], 0x20}}, 0x1000) ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000280)) unshare(0x6e020200) 16:00:04 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:04 executing program 5: r0 = gettid() r1 = creat(&(0x7f0000000280)='./file0\x00', 0x1) prctl$PR_SET_PTRACER(0x59616d61, r0) write$binfmt_script(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="013b45"], 0x191) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r4 = dup2(r3, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bind$bt_sco(r4, &(0x7f0000000000), 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) 16:00:04 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) [ 934.728559][T20782] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 934.770063][T20780] IPVS: ftp: loaded support on port[0] = 21 16:00:04 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x0, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 16:00:04 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) [ 935.300059][T20814] IPVS: ftp: loaded support on port[0] = 21 16:00:05 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 16:00:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) 16:00:05 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000001540)={'vcan0\x00'}) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000064a73419d72ae59fd9117888309b5876e577e83a23afdb41e78aebbf9176011aa823ce448bbe017097de28f08b18ed8735711b20fe92f62772bde7ef5c86afd76c49", @ANYRES16=0x0, @ANYBLOB="00082bbd7000000000006b00000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099007fffffff010000000c00b90007000000040000000800010003000000"], 0x3c}, 0x1, 0x0, 0x0, 0x24084}, 0x240028c5) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) setsockopt$bt_hci_HCI_TIME_STAMP(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000240)=0x3a768ead, 0x4) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$char_usb(r2, &(0x7f0000000640)="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", 0xbb9) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x89a1, &(0x7f0000000140)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x4}) ioctl$sock_inet6_SIOCADDRT(r3, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @local, 0x5d, 0x0, 0x0, 0x500, 0x0, 0xb}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) 16:00:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:05 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x0, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 16:00:05 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 935.594289][ T1264] tipc: TX() has been purged, node left! 16:00:05 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x0, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x2}]}, 0x28}}, 0x0) 16:00:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) [ 935.873591][T20854] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) [ 935.920773][T20855] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:05 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:05 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x20, 0x11, 0x1}, 0x20}}, 0x0) 16:00:05 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) [ 936.421055][T20866] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:06 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:06 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x1}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x8) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000300)='trusted.overlay.redirect\x00', &(0x7f0000000340)='./file1\x00', 0x8, 0x1) perf_event_open(&(0x7f000000a000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2026c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}, 0x8000000200036150, 0x200800007b, 0x0, 0x0, 0x0, 0x10000001, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x2008480, &(0x7f000000a000)) 16:00:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:06 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x20, 0x11, 0x1}, 0x20}}, 0x0) 16:00:06 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:06 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) [ 937.233793][T20884] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:07 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) [ 937.420597][T20890] NFS: Device name not specified 16:00:07 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:07 executing program 0: msgctl$IPC_INFO(0x0, 0x3, &(0x7f00000001c0)=""/178) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x2800) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00') ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f00000002c0)) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600)='nl80211\x00') sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r1, 0x400, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x5}}]}, 0x20}}, 0x1000) unshare(0x6e020200) 16:00:07 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x20, 0x11, 0x1}, 0x20}}, 0x0) 16:00:07 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 937.769479][T20898] IPVS: ftp: loaded support on port[0] = 21 [ 937.827382][T20904] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 937.897507][ T1264] tipc: TX() has been purged, node left! 16:00:07 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:07 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:08 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:08 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x1c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) 16:00:08 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSIGACCEPT(r0, 0x4b4e, 0x30) 16:00:08 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:08 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:08 executing program 5: r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) 16:00:08 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x28, 0x11, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:08 executing program 0: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file1\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000780), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1, {0x7, 0x1e}}, 0x50) read$FUSE(r0, &(0x7f0000001780), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000002840)={0x90, 0x0, 0x2}, 0x90) 16:00:08 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:08 executing program 5: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) 16:00:09 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 16:00:09 executing program 1: 16:00:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:09 executing program 4: r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:09 executing program 5: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) 16:00:09 executing program 1: 16:00:09 executing program 5: r0 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl(r0, 0xffffffffffffffc6, 0x0) 16:00:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:10 executing program 0: [ 940.532546][T20984] not chained 4010000 origins [ 940.537304][T20984] CPU: 1 PID: 20984 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 940.546025][T20984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 940.556096][T20984] Call Trace: [ 940.559399][T20984] dump_stack+0x1df/0x240 [ 940.563743][T20984] kmsan_internal_chain_origin+0x6f/0x130 [ 940.569480][T20984] ? kmsan_get_metadata+0x11d/0x180 [ 940.574695][T20984] ? kmsan_set_origin_checked+0x95/0xf0 [ 940.580268][T20984] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 940.586355][T20984] ? kmsan_get_metadata+0x11d/0x180 [ 940.591568][T20984] ? kmsan_set_origin_checked+0x95/0xf0 [ 940.597144][T20984] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 940.603230][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.608397][T20984] ? kmsan_set_origin_checked+0x95/0xf0 [ 940.613971][T20984] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 940.620059][T20984] ? _copy_from_user+0x15b/0x260 [ 940.625016][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.630145][T20984] __msan_chain_origin+0x50/0x90 [ 940.635108][T20984] __get_compat_msghdr+0x5be/0x890 [ 940.640264][T20984] get_compat_msghdr+0x108/0x270 [ 940.645227][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 940.649932][T20984] ? kmsan_get_metadata+0x11d/0x180 [ 940.655184][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.660320][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.665454][T20984] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 940.671377][T20984] ? kmsan_check_memory+0xd/0x10 [ 940.676329][T20984] ? kmsan_get_metadata+0x11d/0x180 [ 940.681539][T20984] ? kmsan_get_metadata+0x11d/0x180 [ 940.686753][T20984] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 940.692574][T20984] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 940.698740][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.703871][T20984] ? kmsan_get_metadata+0x4f/0x180 [ 940.708996][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 940.714384][T20984] ? __x32_compat_sys_sendmsg+0x70/0x70 [ 940.719937][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 940.725472][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 940.730666][T20984] do_fast_syscall_32+0x6b/0xd0 [ 940.735511][T20984] do_SYSENTER_32+0x73/0x90 [ 940.740005][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 940.746319][T20984] RIP: 0023:0xf7fa8549 [ 940.750366][T20984] Code: Bad RIP value. [ 940.754433][T20984] RSP: 002b:00000000f5da30cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 940.762832][T20984] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140 [ 940.770807][T20984] RDX: 0000000092492805 RSI: 0000000000000000 RDI: 0000000000000000 [ 940.778943][T20984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 940.787066][T20984] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 940.795030][T20984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 940.803018][T20984] Uninit was stored to memory at: [ 940.808033][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 940.813735][T20984] __msan_chain_origin+0x50/0x90 [ 940.818674][T20984] __get_compat_msghdr+0x5be/0x890 [ 940.823776][T20984] get_compat_msghdr+0x108/0x270 [ 940.828701][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 940.833365][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 940.838720][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 940.844258][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 940.849443][T20984] do_fast_syscall_32+0x6b/0xd0 [ 940.854302][T20984] do_SYSENTER_32+0x73/0x90 [ 940.858809][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 940.865111][T20984] [ 940.867423][T20984] Uninit was stored to memory at: [ 940.872434][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 940.878139][T20984] __msan_chain_origin+0x50/0x90 [ 940.883064][T20984] __get_compat_msghdr+0x5be/0x890 [ 940.888177][T20984] get_compat_msghdr+0x108/0x270 [ 940.893118][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 940.897794][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 940.903150][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 940.908697][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 940.913899][T20984] do_fast_syscall_32+0x6b/0xd0 [ 940.918758][T20984] do_SYSENTER_32+0x73/0x90 [ 940.923248][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 940.929552][T20984] [ 940.931885][T20984] Uninit was stored to memory at: [ 940.936918][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 940.942637][T20984] __msan_chain_origin+0x50/0x90 [ 940.947560][T20984] __get_compat_msghdr+0x5be/0x890 [ 940.952654][T20984] get_compat_msghdr+0x108/0x270 [ 940.957579][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 940.962250][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 940.967604][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 940.973135][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 940.978333][T20984] do_fast_syscall_32+0x6b/0xd0 [ 940.983178][T20984] do_SYSENTER_32+0x73/0x90 [ 940.987669][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 940.993974][T20984] [ 940.996290][T20984] Uninit was stored to memory at: [ 941.001339][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 941.007060][T20984] __msan_chain_origin+0x50/0x90 [ 941.012006][T20984] __get_compat_msghdr+0x5be/0x890 [ 941.017113][T20984] get_compat_msghdr+0x108/0x270 [ 941.022042][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 941.026720][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 941.032082][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 941.037616][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 941.042817][T20984] do_fast_syscall_32+0x6b/0xd0 [ 941.047653][T20984] do_SYSENTER_32+0x73/0x90 [ 941.052170][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 941.058631][T20984] [ 941.060950][T20984] Uninit was stored to memory at: [ 941.065971][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 941.071698][T20984] __msan_chain_origin+0x50/0x90 [ 941.076625][T20984] __get_compat_msghdr+0x5be/0x890 [ 941.081732][T20984] get_compat_msghdr+0x108/0x270 [ 941.086659][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 941.091319][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 941.096692][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 941.102224][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 941.107412][T20984] do_fast_syscall_32+0x6b/0xd0 [ 941.112347][T20984] do_SYSENTER_32+0x73/0x90 [ 941.116860][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 941.123181][T20984] [ 941.125490][T20984] Uninit was stored to memory at: [ 941.130499][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 941.136206][T20984] __msan_chain_origin+0x50/0x90 [ 941.141129][T20984] __get_compat_msghdr+0x5be/0x890 [ 941.146228][T20984] get_compat_msghdr+0x108/0x270 [ 941.151151][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 941.155811][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 941.161168][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 941.166701][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 941.171884][T20984] do_fast_syscall_32+0x6b/0xd0 [ 941.176721][T20984] do_SYSENTER_32+0x73/0x90 [ 941.181207][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 941.187509][T20984] [ 941.189820][T20984] Uninit was stored to memory at: [ 941.194834][T20984] kmsan_internal_chain_origin+0xad/0x130 [ 941.200537][T20984] __msan_chain_origin+0x50/0x90 [ 941.205475][T20984] __get_compat_msghdr+0x5be/0x890 [ 941.210574][T20984] get_compat_msghdr+0x108/0x270 [ 941.215517][T20984] __sys_sendmmsg+0x7d5/0xd80 [ 941.220188][T20984] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 941.225696][T20984] __ia32_compat_sys_sendmmsg+0x56/0x70 16:00:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) [ 941.231234][T20984] __do_fast_syscall_32+0x2aa/0x400 [ 941.236445][T20984] do_fast_syscall_32+0x6b/0xd0 [ 941.241305][T20984] do_SYSENTER_32+0x73/0x90 [ 941.245797][T20984] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 941.252109][T20984] [ 941.254420][T20984] Local variable ----msg_sys@__sys_sendmmsg created at: [ 941.261341][T20984] __sys_sendmmsg+0xb7/0xd80 [ 941.265913][T20984] __sys_sendmmsg+0xb7/0xd80 16:00:11 executing program 1: 16:00:11 executing program 5: syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) [ 941.713633][ T1264] tipc: TX() has been purged, node left! 16:00:11 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 16:00:11 executing program 0: 16:00:11 executing program 1: 16:00:12 executing program 4: r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:12 executing program 5: syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) 16:00:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 16:00:12 executing program 1: 16:00:12 executing program 0: 16:00:12 executing program 5: syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffc6, 0x0) 16:00:12 executing program 0: 16:00:12 executing program 1: 16:00:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 16:00:13 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 16:00:13 executing program 1: 16:00:13 executing program 5: r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0x0, 0x0) 16:00:13 executing program 4: r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:13 executing program 0: 16:00:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:14 executing program 1: 16:00:14 executing program 5: r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0x0, 0x0) 16:00:14 executing program 0: 16:00:14 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:14 executing program 0: 16:00:14 executing program 5: r0 = syz_open_dev$dri(&(0x7f00000001c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0x0, 0x0) 16:00:15 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 16:00:15 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0) 16:00:15 executing program 1: 16:00:15 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:15 executing program 0: 16:00:15 executing program 5: 16:00:15 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 16:00:15 executing program 1: 16:00:15 executing program 5: 16:00:15 executing program 0: 16:00:16 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 16:00:16 executing program 0: 16:00:16 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:16 executing program 1: 16:00:16 executing program 5: 16:00:16 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:16 executing program 0: 16:00:16 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 16:00:16 executing program 1: 16:00:17 executing program 5: 16:00:17 executing program 3: 16:00:17 executing program 0: 16:00:17 executing program 1: 16:00:17 executing program 5: 16:00:18 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:18 executing program 0: 16:00:18 executing program 3: 16:00:18 executing program 1: 16:00:18 executing program 5: 16:00:18 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:18 executing program 0: 16:00:18 executing program 5: 16:00:18 executing program 3: 16:00:18 executing program 1: 16:00:18 executing program 0: 16:00:18 executing program 5: 16:00:19 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:19 executing program 3: 16:00:19 executing program 1: 16:00:19 executing program 0: 16:00:19 executing program 5: 16:00:19 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:19 executing program 0: 16:00:19 executing program 3: 16:00:19 executing program 5: 16:00:19 executing program 1: 16:00:19 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:20 executing program 0: 16:00:20 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}]}, 0x34}}, 0x0) 16:00:20 executing program 3: 16:00:20 executing program 1: 16:00:20 executing program 5: 16:00:20 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:20 executing program 0: 16:00:20 executing program 0: 16:00:20 executing program 5: 16:00:20 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:20 executing program 3: 16:00:20 executing program 1: 16:00:20 executing program 0: 16:00:21 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}]}, 0x34}}, 0x0) 16:00:21 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:21 executing program 3: 16:00:21 executing program 5: 16:00:21 executing program 1: 16:00:21 executing program 0: 16:00:21 executing program 5: 16:00:21 executing program 1: 16:00:21 executing program 0: 16:00:21 executing program 3: 16:00:21 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:22 executing program 3: 16:00:22 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}]}, 0x34}}, 0x0) 16:00:22 executing program 1: 16:00:22 executing program 5: 16:00:22 executing program 0: 16:00:22 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:22 executing program 3: 16:00:22 executing program 5: 16:00:22 executing program 1: 16:00:22 executing program 0: 16:00:22 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:22 executing program 3: 16:00:22 executing program 1: 16:00:23 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:23 executing program 5: 16:00:23 executing program 0: 16:00:23 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:23 executing program 3: 16:00:23 executing program 1: 16:00:23 executing program 1: 16:00:23 executing program 5: 16:00:23 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:23 executing program 0: 16:00:23 executing program 3: 16:00:23 executing program 1: [ 954.498850][T21245] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 954.516314][T21245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 954.527116][T21245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:24 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:24 executing program 0: 16:00:24 executing program 5: 16:00:24 executing program 3: 16:00:24 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:24 executing program 1: 16:00:24 executing program 3: 16:00:24 executing program 0: 16:00:24 executing program 5: 16:00:24 executing program 1: 16:00:24 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:24 executing program 3: [ 955.610741][T21269] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 955.628352][T21269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 955.636293][T21269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:25 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 16:00:25 executing program 1: 16:00:25 executing program 5: 16:00:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00'], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:25 executing program 0: 16:00:25 executing program 3: [ 955.957105][T21279] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21279 comm=syz-executor.4 16:00:25 executing program 3: 16:00:25 executing program 0: 16:00:25 executing program 1: 16:00:25 executing program 5: syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 16:00:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00'], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:26 executing program 3: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) pipe(0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfffffdea) socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="17010000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x1d, r3}, 0x10, &(0x7f0000000100)={&(0x7f0000000080)={0x5, 0x821, 0x17, {}, {}, {}, 0x1, @canfd={{}, 0x2d, 0x2, 0x0, 0x0, "42cc78bedaea09f8bb4373b2b27d560cbba964d7d137d3444825d21bf6b4b1e0782ff437042c3b492e80b1f6cfca832c26227af8e40e806299f065b47a24d857"}}, 0x80}}, 0x0) [ 956.438271][T21288] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21288 comm=syz-executor.4 [ 956.674742][T21291] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 956.732772][T21291] device bond1 entered promiscuous mode [ 956.739340][T21291] 8021q: adding VLAN 0 to HW filter on device bond1 [ 956.856321][T21329] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 956.872787][T21329] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 956.880903][T21329] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:26 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) 16:00:26 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a4ef08f666c5d148"}}, 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)={0x7, 0x0, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "0d3271f1eba9c5cc"}}, 0x48}}, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) recvfrom(r0, &(0x7f00000004c0)=""/251, 0xfb, 0x0, 0x0, 0x0) 16:00:26 executing program 5: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$can_bcm(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x1d, r2}, 0x10, &(0x7f0000000100)={&(0x7f0000000080)={0x0, 0x821, 0x0, {}, {}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "42cc78bedaea09f8bb4373b2b27d560cbba964d7d137d3444825d21bf6b4b1e0782ff437042c3b492e80b1f6cfca832c26227af8e40e806299f065b47a24d857"}}, 0x80}}, 0x0) 16:00:26 executing program 0: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x5, 0x859, 0x0, {0x0, 0xea60}, {}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "6dd3d86b5281db9c2e82ed9849435f0135b984fc193ec5cfe6111be2c0cd7230012d879357d686706847550c662ff59d86563d151c3ad617c71d1b73eb774bda"}}, 0x80}}, 0x0) 16:00:26 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00'], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:26 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000200)=[{{&(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_retopts={{0x14, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0xaa}]}}}], 0x18}}], 0x1, 0x0) [ 957.184910][T21342] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21342 comm=syz-executor.4 16:00:27 executing program 3: setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x4c}}, 0x0) 16:00:27 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e00"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000032000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000080)) sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000100), 0xc, 0x0}, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x0, 0x40000007, 0xfffffffffffffffd, 0x0, 0x0, 0x4cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @perf_bp={&(0x7f00000001c0), 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:00:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e20, @multicast2}, 0x10) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x1039c) sendto$inet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) sendto$inet(r0, &(0x7f0000000140)="7c0d111317b1ff8ec8f29f81319ec5b10d0d003f00efd9448dbef1ffb4e3a6af87131512da528f6235fe35d3053b5cb4877c1b89bbf83f6d749d5b00679601a3abdc204cf1ad797252bb0c7b43e3e9763221cb2c8d76f824f4bea338f53aa75703f465e50e434e2193900c39ab79d37cc0ce7a", 0xffffffffffffffd0, 0x401c005, 0x0, 0xffffffffffffff36) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) [ 957.607260][T21347] batman_adv: Cannot find parent device [ 957.743304][T21354] kvm [21352]: vcpu0, guest rIP: 0x135 Hyper-V unhandled rdmsr: 0x40000024 [ 957.785857][T21354] kvm [21352]: vcpu0, guest rIP: 0x145 Hyper-V unhandled rdmsr: 0x4000007e [ 957.820295][T21354] kvm [21352]: vcpu0, guest rIP: 0x145 Hyper-V unhandled rdmsr: 0x4000004e [ 957.873828][T21354] kvm [21352]: vcpu0, guest rIP: 0x145 Hyper-V unhandled rdmsr: 0x4000004e 16:00:27 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e00"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:27 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) [ 958.124889][T21370] kvm [21352]: vcpu0, guest rIP: 0x135 Hyper-V unhandled rdmsr: 0x40000024 [ 958.148212][T21370] kvm [21352]: vcpu0, guest rIP: 0x145 Hyper-V unhandled rdmsr: 0x4000007e [ 958.545504][T21385] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 958.558478][T21385] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 958.567397][T21385] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:28 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) 16:00:28 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x7, &(0x7f00000016c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5b19, 0xffffffffffffffff, &(0x7f0000001700)="f7d75f42894c9e2ec1bffe9a6214868fba3d71ee6f382dd101d94fd537ebab7f390f0a8c2c48dda30b5779f6d23fdf3ae37bae4b4881dcca8e1fa2a471001a71254d2984de66a1077f030fdd459e0dd22a724e0731", 0x55, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x400, r0, &(0x7f00000001c0)="a41bd866ca3247b49d04755888cf66ccadcc56a48f4cdba17823369acfe73fae1e0e92cb67e6bdb7b13e403588796520cf2bbfe53010eb5d553bc54271a30a05db64054768adde0f19a0e8fb082a6e24de553585deee8c7bca7e16fcf21a37684947d320c5cc00525029f808f2c06e2fcbcee4e1bb46bff9e3adb75bf73bcd03bd850c0335da46df270b87b1a5f1633a3057cc19fadff7ac24c565281b1761884b91fb79a727f0a940160428484623d16f1ecbce57b2ab2d38dde147a58580a3ae7528c6efcaa6d094f825a1d7e9137afdc9e1", 0xd3, 0x6, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x94, 0xffffffffffffffff, &(0x7f0000000300)="e94ca7a5bab9a802", 0x8, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0, 0x0, 0x6, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x0, r0, &(0x7f0000000480)="7cee6ab5e62da871f068897fb6bd16e66bfe7dd3d6437179241543863cd2c404302d", 0x22, 0x8001, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x800, 0xffffffffffffffff, &(0x7f0000000580)="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", 0x1000, 0x5, 0x0, 0x3}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x6, 0x3cde, 0xffffffffffffffff, &(0x7f00000015c0)="3597f25648bdf95ac2811752253df1aade9e0a283e3c8724bbec937f6aa6474937916a5ecd9779a92372d218e2b87149eddca458f87d6d50e988563b8257c16e7bf8af576debeb827bbe5560499b3978239db9c7f7fd2453ea486f28567cbded55536216a39281cd5dca7e0abf0213f735bf8d22293ed9b4fd27b79be398f92cf78e5e2e191608f381adeae6de0deb8244b9355166ccf8759f40147ec5467a1fe0cc412f5692842782761ad4949c43652a333ed43e41", 0xb6, 0x5, 0x0, 0x2}]) sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7146d0757", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 16:00:28 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a4ef08f666c5d148"}}, 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)={0x7, 0x0, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "0d3271f1eba9c5cc"}}, 0x48}}, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) recvfrom(r0, &(0x7f00000004c0)=""/251, 0xfb, 0x0, 0x0, 0x0) 16:00:28 executing program 5: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x5, 0x1b91, 0x0, {}, {0x0, 0x2710}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "6d47a06b5281db9c2e82ed9849435f0135b984fc193ec5cfe6111be2c0cd7230012d879357d686706847550c662ff59d86563d151c3ad617c71d1b73eb774bda"}}, 0x80}}, 0x0) 16:00:28 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e00"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:28 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:28 executing program 5: r0 = socket$kcm(0x2, 0x3, 0x2) socket$kcm(0x29, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'hsr0\x00', @remote}) r1 = socket$kcm(0x10, 0x0, 0x4) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$kcm(r1, 0x0, 0x2040) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, r2, 0x0, 0x11, &(0x7f0000000000)='\x01@#:,}vboxnet1$(\x00'}, 0x30) socket$kcm(0x2, 0x3, 0x2) 16:00:28 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e0009"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:28 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) [ 959.404253][T21406] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:29 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e0009"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:29 executing program 5: r0 = socket$kcm(0x2, 0x3, 0x2) socket$kcm(0x29, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'hsr0\x00', @remote}) r1 = socket$kcm(0x10, 0x0, 0x4) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg$kcm(r1, 0x0, 0x2040) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, r2, 0x0, 0x11, &(0x7f0000000000)='\x01@#:,}vboxnet1$(\x00'}, 0x30) socket$kcm(0x2, 0x3, 0x2) 16:00:29 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) [ 959.948194][T21418] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 960.303978][T21424] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 960.320324][T21424] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 960.328290][T21424] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:30 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) 16:00:30 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a4ef08f666c5d148"}}, 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)={0x7, 0x0, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "0d3271f1eba9c5cc"}}, 0x48}}, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) recvfrom(r0, &(0x7f00000004c0)=""/251, 0xfb, 0x0, 0x0, 0x0) 16:00:30 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e0009"], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:30 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:30 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) socket$unix(0x1, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:30 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x7, &(0x7f00000016c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5b19, 0xffffffffffffffff, &(0x7f0000001700)="f7d75f42894c9e2ec1bffe9a6214868fba3d71ee6f382dd101d94fd537ebab7f390f0a8c2c48dda30b5779f6d23fdf3ae37bae4b4881dcca8e1fa2a471001a71254d2984de66a1077f030fdd459e0dd22a724e0731", 0x55, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x400, r0, &(0x7f00000001c0)="a41bd866ca3247b49d04755888cf66ccadcc56a48f4cdba17823369acfe73fae1e0e92cb67e6bdb7b13e403588796520cf2bbfe53010eb5d553bc54271a30a05db64054768adde0f19a0e8fb082a6e24de553585deee8c7bca7e16fcf21a37684947d320c5cc00525029f808f2c06e2fcbcee4e1bb46bff9e3adb75bf73bcd03bd850c0335da46df270b87b1a5f1633a3057cc19fadff7ac24c565281b1761884b91fb79a727f0a940160428484623d16f1ecbce57b2ab2d38dde147a58580a3ae7528c6efcaa6d094f825a1d7e9137afdc9e1", 0xd3, 0x6, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x94, 0xffffffffffffffff, &(0x7f0000000300)="e94ca7a5bab9a802", 0x8, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0, 0x0, 0x6, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x0, r0, &(0x7f0000000480)="7cee6ab5e62da871f068897fb6bd16e66bfe7dd3d6437179241543863cd2c404302d", 0x22, 0x8001, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x800, 0xffffffffffffffff, &(0x7f0000000580)="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", 0x1000, 0x5, 0x0, 0x3}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x6, 0x3cde, 0xffffffffffffffff, &(0x7f00000015c0)="3597f25648bdf95ac2811752253df1aade9e0a283e3c8724bbec937f6aa6474937916a5ecd9779a92372d218e2b87149eddca458f87d6d50e988563b8257c16e7bf8af576debeb827bbe5560499b3978239db9c7f7fd2453ea486f28567cbded55536216a39281cd5dca7e0abf0213f735bf8d22293ed9b4fd27b79be398f92cf78e5e2e191608f381adeae6de0deb8244b9355166ccf8759f40147ec5467a1fe0cc412f5692842782761ad4949c43652a333ed43e41", 0xb6, 0x5, 0x0, 0x2}]) sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7146d0757", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 960.723414][T21437] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 960.764705][T21437] 8021q: adding VLAN 0 to HW filter on device bond1 [ 960.820533][T21441] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 960.859197][T21437] bond1: (slave veth3): Enslaving as an active interface with a down link [ 960.906466][T21455] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:30 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:30 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 961.157878][T21486] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 961.191051][T21437] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 961.226400][T21455] bond1: (slave veth5): Enslaving as an active interface with a down link 16:00:31 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x0, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:31 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) socket$unix(0x1, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:31 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:31 executing program 1: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000740)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a4ef08f666c5d148"}}, 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)={0x7, 0x0, 0x0, {0x77359400}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "0d3271f1eba9c5cc"}}, 0x48}}, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) recvfrom(r0, &(0x7f00000004c0)=""/251, 0xfb, 0x0, 0x0, 0x0) [ 961.873372][T21506] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 961.934361][T21506] 8021q: adding VLAN 0 to HW filter on device bond2 [ 962.043025][T21550] bond2: (slave veth7): Enslaving as an active interface with a down link [ 962.120866][T21506] bond2: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 962.257160][T21555] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 962.274460][T21555] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 962.282390][T21555] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:32 executing program 3: setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:32 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x0, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:32 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x7, &(0x7f00000016c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5b19, 0xffffffffffffffff, 0x0, 0x0, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x400, r0, &(0x7f00000001c0)="a41bd866ca3247b49d04755888cf66ccadcc56a48f4cdba17823369acfe73fae1e0e92cb67e6bdb7b13e403588796520cf2bbfe53010eb5d553bc54271a30a05db64054768adde0f19a0e8fb082a6e24de553585deee8c7bca7e16fcf21a37684947d320c5cc00525029f808f2c06e2fcbcee4e1bb46bff9e3adb75bf73bcd03bd850c0335da46df270b87b1a5f1633a3057", 0x92, 0x6, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x94, 0xffffffffffffffff, &(0x7f0000000300)="e94ca7a5bab9a802", 0x8, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000003c0)="92c7481d17c4a808137a4beb5f70093c2b9c90836f9d701a4f46cb63c1b300243a88c3d3e2d1564030e1ee6183a7599f5c266afda1fcdcc978f1", 0x3a, 0x6, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x0, r0, &(0x7f0000000480)="7cee6ab5e62da871f068897fb6bd16e66bfe7dd3d6437179241543863cd2c404302d0781bd336940457cf2d18357a54025848fd0bc3e7c4bd2", 0x39, 0x8001, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x800, 0xffffffffffffffff, &(0x7f0000000580)="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", 0x1000, 0x5, 0x0, 0x3}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x6, 0x3cde, 0xffffffffffffffff, &(0x7f00000015c0)="3597f25648bdf95ac2811752253df1aade9e0a283e3c8724bbec937f6aa6474937916a5ecd9779a92372d218e2b87149eddca458f87d6d50e988563b8257c16e7bf8af576debeb827bbe5560499b3978239db9c7f7fd2453ea486f28567cbded55536216a39281cd5dca7e0abf0213f735bf8d22293ed9b4fd27b79be398f92cf78e5e2e191608f381adeae6de0deb8244b9355166ccf8759f40147ec5467a1fe0cc412f5692842782761ad4949c43652a333ed43e41", 0xb6, 0x5, 0x0, 0x2}]) sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 16:00:32 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000032000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f00000000c0)="b9800000c03e0f013235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x53}], 0x1, 0x0, 0x0, 0x0) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvram\x00', 0x0, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @perf_bp={0x0, 0xe}, 0x1012a, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:00:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) socket$unix(0x1, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 962.766406][T21578] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 962.881621][T21578] 8021q: adding VLAN 0 to HW filter on device bond3 [ 962.981329][T21583] bond3: (slave veth9): Enslaving as an active interface with a down link [ 963.013494][T21578] bond3: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:32 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x0, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:32 executing program 3: setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000032000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f00000000c0)="b9800000c03e0f013235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x53}], 0x1, 0x0, 0x0, 0x0) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvram\x00', 0x0, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @perf_bp={0x0, 0xe}, 0x1012a, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:00:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) socket$unix(0x1, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:33 executing program 3: setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:33 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x0, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 963.623259][T21652] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 963.711342][T21652] 8021q: adding VLAN 0 to HW filter on device bond4 [ 963.757248][T21655] bond4: (slave veth11): Enslaving as an active interface with a down link 16:00:33 executing program 0: openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) preadv(r0, &(0x7f0000001480)=[{0x0}, {&(0x7f00000002c0)=""/4096, 0x1000}], 0x2, 0x0) [ 963.865827][T21652] bond4: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:33 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x0, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 964.211028][T21706] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 964.228530][T21706] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 964.238184][T21706] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:34 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x7, &(0x7f00000016c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5b19, 0xffffffffffffffff, 0x0, 0x0, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x400, r0, &(0x7f00000001c0)="a41bd866ca3247b49d04755888cf66ccadcc56a48f4cdba17823369acfe73fae1e0e92cb67e6bdb7b13e403588796520cf2bbfe53010eb5d553bc54271a30a05db64054768adde0f19a0e8fb082a6e24de553585deee8c7bca7e16fcf21a37684947d320c5cc00525029f808f2c06e2fcbcee4e1bb46bff9e3adb75bf73bcd03bd850c0335da46df270b87b1a5f1633a3057", 0x92, 0x6, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x94, 0xffffffffffffffff, &(0x7f0000000300)="e94ca7a5bab9a802", 0x8, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000003c0)="92c7481d17c4a808137a4beb5f70093c2b9c90836f9d701a4f46cb63c1b300243a88c3d3e2d1564030e1ee6183a7599f5c266afda1fcdcc978f1", 0x3a, 0x6, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x6, 0x0, r0, &(0x7f0000000480)="7cee6ab5e62da871f068897fb6bd16e66bfe7dd3d6437179241543863cd2c404302d0781bd336940457cf2d18357a54025848fd0bc3e7c4bd2", 0x39, 0x8001, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x800, 0xffffffffffffffff, &(0x7f0000000580)="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", 0x1000, 0x5, 0x0, 0x3}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x6, 0x3cde, 0xffffffffffffffff, &(0x7f00000015c0)="3597f25648bdf95ac2811752253df1aade9e0a283e3c8724bbec937f6aa6474937916a5ecd9779a92372d218e2b87149eddca458f87d6d50e988563b8257c16e7bf8af576debeb827bbe5560499b3978239db9c7f7fd2453ea486f28567cbded55536216a39281cd5dca7e0abf0213f735bf8d22293ed9b4fd27b79be398f92cf78e5e2e191608f381adeae6de0deb8244b9355166ccf8759f40147ec5467a1fe0cc412f5692842782761ad4949c43652a333ed43e41", 0xb6, 0x5, 0x0, 0x2}]) sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 16:00:34 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:34 executing program 3: r0 = socket(0x0, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:34 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) socket$unix(0x1, 0x1, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:34 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) io_submit(0x0, 0x7, &(0x7f00000016c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5b19, 0xffffffffffffffff, &(0x7f0000001700)="f7d75f42894c9e2ec1bffe9a6214868fba3d71ee6f382dd101d94fd537ebab7f390f0a8c2c48dda30b5779f6d23fdf3ae37bae4b4881dcca8e1fa2a471001a71254d2984de66a1077f030fdd459e0dd22a724e0731", 0x55, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x400, r0, &(0x7f00000001c0), 0x0, 0x6, 0x0, 0x3}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x94, 0xffffffffffffffff, &(0x7f0000000300)="e94ca7a5bab9a802", 0x8, 0x7}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x6, 0x0, 0x2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000480)="7cee6ab5e62da871f068897fb6bd16e66bfe7dd3d6437179241543863cd2c404302d0781bd336940457cf2d18357a54025848fd0bc3e7c4bd28d049df04f12f7c8f0ba", 0x43, 0x8001, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x800, 0xffffffffffffffff, &(0x7f0000000580)="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", 0x1000, 0x5, 0x0, 0x3}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x6, 0x3cde, 0xffffffffffffffff, &(0x7f00000015c0)="3597f25648bdf95ac2811752253df1aade9e0a283e3c8724bbec937f6aa6474937916a5ecd9779a92372d218e2b87149eddca458f87d6d50e988563b8257c16e7bf8af576debeb827bbe5560499b3978239db9c7f7fd2453ea486f28567cbded55536216a39281cd5dca7e0abf0213f735bf8d22293ed9b4fd27b79be398f92cf78e5e2e191608f381adeae6de0deb8244b9355166ccf8759f40147ec5467a1fe0cc412f5692842782761ad4949c43652a333ed43e41", 0xb6, 0x5, 0x0, 0x2}]) sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7146d0757", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) 16:00:34 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x0, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 965.018408][T21724] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 965.150561][T21724] 8021q: adding VLAN 0 to HW filter on device bond5 [ 965.205031][T21730] bond5: (slave veth13): Enslaving as an active interface with a down link [ 965.237022][T21746] bond5: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:35 executing program 3: r0 = socket(0x0, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:35 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:35 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:35 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 16:00:35 executing program 3: r0 = socket(0x0, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) [ 965.837348][T21792] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 965.910823][T21792] 8021q: adding VLAN 0 to HW filter on device bond6 [ 965.964095][T21829] bond6: (slave veth15): Enslaving as an active interface with a down link [ 966.000619][T21796] bond6: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:35 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) socket(0x10, 0x80002, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 966.167213][T21839] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 966.184433][T21839] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 966.192294][T21839] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:36 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x5) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8240200005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff77040300000020006000002000000000000040000000000000000000", 0xffffffe5}], 0x2) 16:00:36 executing program 3: r0 = socket(0x40000000002, 0x0, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:36 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB], 0x4c}}, 0x0) 16:00:36 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, 0x0, 0x0, 0x0) [ 966.827889][T21860] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 966.887481][T21860] 8021q: adding VLAN 0 to HW filter on device bond7 [ 966.949066][T21891] bond7: (slave veth17): Enslaving as an active interface with a down link 16:00:36 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e20, @multicast2}, 0x10) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x1039c) socket$inet_icmp(0x2, 0x2, 0x1) sendto$inet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) sendto$inet(r0, &(0x7f0000000140)="7c0d111317b1ff8ec8f29f81319ec5b10d0d003f00efd9448dbef1ffb4e3a6af87131512da528f6235fe35d3053b5cb4877c1b89bbf83f6d749d5b00679601a3abdc204cf1ad797252bb0c7b43e3e9763221cb2c8d76f824f4bea338f53aa75703f465e50e434e2193900c39ab79d37cc0ce7a", 0xffffffffffffffd0, 0x401c005, 0x0, 0xffffffffffffff36) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000100)={0x2a, 0x37, 0x1, {0x0, 0x0, 0x57, 0x0, 0xc, '-%@/\\:]+[+.{'}}, 0x2a) dup2(0xffffffffffffffff, 0xffffffffffffffff) 16:00:36 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8}]}, @IFLA_GROUP={0x8}]}, 0x3c}}, 0x0) 16:00:36 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socket(0x0, 0x0, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) bind$packet(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x300cce, &(0x7f0000000080)={@local, @empty, @val={@val={0x8100}}, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x8}}}}, 0x0) 16:00:36 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, 0x0, 0x0, 0x0) 16:00:36 executing program 3: r0 = socket(0x40000000002, 0x0, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:36 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB], 0x4c}}, 0x0) 16:00:37 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, 0x0, 0x0, 0x0) 16:00:37 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x4, 0x4) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='nv\x00', 0x3) sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x6}, 0x1c) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)=ANY=[@ANYBLOB="00800000d2c5e4a6e15964adf7146d0757", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) [ 967.563190][T21926] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 967.632424][T21926] 8021q: adding VLAN 0 to HW filter on device bond8 16:00:37 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x4c}}, 0x0) [ 967.693717][T21959] bond8: (slave veth19): Enslaving as an active interface with a down link 16:00:37 executing program 3: r0 = socket(0x40000000002, 0x0, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:37 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x0, 0x0) [ 968.050505][T21979] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. 16:00:37 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB], 0x4c}}, 0x0) [ 968.296185][T21979] 8021q: adding VLAN 0 to HW filter on device bond1 [ 968.360474][T22009] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 968.420564][T22009] 8021q: adding VLAN 0 to HW filter on device bond9 16:00:38 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) [ 968.498751][T22024] bond9: (slave veth21): Enslaving as an active interface with a down link 16:00:38 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 968.699590][T21979] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. 16:00:38 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x0, 0x0) 16:00:38 executing program 3: r0 = socket(0x40000000002, 0x3, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:38 executing program 0: r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x20040f7c, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)='\f', 0x1, 0x0, 0x0, 0x0) [ 968.993498][T22072] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:00:38 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) r1 = socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x161) sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f0000000300)={0x2, 0x4e21, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1c000000000000000000000007"], 0x20, 0x5}, 0x0) [ 969.070732][T22072] 8021q: adding VLAN 0 to HW filter on device bond10 [ 969.109709][T22076] bond10: (slave veth23): Enslaving as an active interface with a down link 16:00:38 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x0, 0x0) 16:00:39 executing program 0: r0 = socket$kcm(0x2, 0x3, 0x2) socket$kcm(0x29, 0x2, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'hsr0\x00', @remote}) r1 = socket$kcm(0x10, 0x0, 0x4) sendmsg$kcm(r1, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4000, 0xe, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000000200), 0xa}, 0x1140, 0x0, 0x1f, 0x4, 0x7ff, 0x4, 0x3}, 0x0, 0xc, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000000)='\x01@#:,}vboxnet1$(\x00'}, 0x30) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000040), 0xc) r2 = socket$kcm(0x2, 0x3, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'hsr0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x3}}) 16:00:39 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:39 executing program 3: r0 = socket(0x40000000002, 0x3, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:39 executing program 1: ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="0aa4000038000505d25a80648c63940d0124fc6b10000a400a000048053582c137153e370948018000f01700d1bd", 0x33fe0}], 0x1}, 0x7a000000) 16:00:39 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) [ 969.752133][T22139] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 969.829883][T22139] 8021q: adding VLAN 0 to HW filter on device bond11 [ 970.322660][T22145] bond11: (slave veth25): Enslaving as an active interface with a down link [ 970.341011][T22147] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 970.385630][T22188] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 970.402118][T22188] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 970.410210][T22188] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:40 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) 16:00:40 executing program 1: close(0xffffffffffffffff) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000400)='io.bfq.weight\x00', 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_subtree(r0, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) r2 = socket$kcm(0x2, 0x1000000000000002, 0x0) setsockopt$sock_attach_bpf(r2, 0x1, 0x3e, &(0x7f00000002c0)=r1, 0x161) sendmsg$inet(r2, &(0x7f0000007940)={&(0x7f0000000100)={0x2, 0x4e24, @rand_addr=0x20}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000380), 0xff7a}], 0x1, &(0x7f0000007880)=[@ip_tos_u8={{0x11, 0x34000}}, @ip_pktinfo={{0x1c, 0xfd000000, 0x8, {0x0, @remote, @multicast1}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty}}}, @ip_retopts={{0x24, 0x0, 0x7, {[@ra={0x94, 0x4}, @timestamp={0x44, 0x10, 0x88, 0x0, 0x0, [0x0, 0x0, 0x0]}]}}}, @ip_tos_u8={{0x11, 0xa2ee0000}}], 0x98}, 0x4800) 16:00:40 executing program 3: r0 = socket(0x40000000002, 0x3, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:40 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) 16:00:40 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:40 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) r1 = socket$kcm(0x11, 0x20000000000000a, 0x300) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x1, 0x4, &(0x7f0000000240)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x7, 0x61, 0x0, 0x43}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0x3e2, &(0x7f00001a7f05)=""/251}, 0x34) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000080)={r2, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000)={r3}, 0xc) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r4, 0x4) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0xfffffffffffffe7f, &(0x7f0000000500)="b9ff0300600d698cb89e14f043051fffffff00004002630677fbac14140ee934a0a662079f4b4d2f87e5feca6aab845013f2325f1a39010108098da1924425181aa5", 0x0, 0x100, 0x60000000, 0x0, 0xfffffffffffffe09}, 0x28) 16:00:40 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) 16:00:40 executing program 1: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000005e0200009500000cc1a7ac0dbe00"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 971.010616][T22205] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 971.081878][T22205] 8021q: adding VLAN 0 to HW filter on device bond12 [ 971.152384][T22205] bond12: (slave veth27): Enslaving as an active interface with a down link 16:00:41 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:41 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) 16:00:41 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:41 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000005600)=""/102380, 0x18fec}], 0x1}, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 971.853119][T22269] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 971.909796][T22269] 8021q: adding VLAN 0 to HW filter on device bond13 [ 971.980976][T22291] bond13: (slave veth29): Enslaving as an active interface with a down link [ 972.139524][T22314] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 972.148374][T22314] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 972.161887][T22306] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 972.316041][T22321] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 972.332297][T22321] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 972.340315][T22321] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 972.499439][T22326] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 972.508751][T22326] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 16:00:42 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) 16:00:42 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:42 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffcca}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x18000000000002e0, 0xe80, 0x3580, &(0x7f0000000280)="b95b03b708030000009e40f086dd", 0x0, 0xfd, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x40) getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x13, &(0x7f00000002c0)='@/{--^{/$-&-*-{.$[\x00', 0xffffffffffffffff}, 0x30) 16:00:42 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) 16:00:42 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 972.541220][T22314] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 972.751173][T22338] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:00:42 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000005600)=""/102380, 0x18fec}], 0x1}, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 972.862395][T22338] 8021q: adding VLAN 0 to HW filter on device bond14 [ 972.898828][T22341] bond14: (slave veth31): Enslaving as an active interface with a down link 16:00:42 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001e000901"], 0x20}}, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100)}], 0x1, 0x0) 16:00:42 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:42 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000005600)=""/102380, 0x18fec}], 0x1}, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:42 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 973.354474][T22391] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 973.527515][T22399] 8021q: adding VLAN 0 to HW filter on device bond15 16:00:43 executing program 4: socket$kcm(0x10, 0x2, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x9) r1 = socket$kcm(0x29, 0x5, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8923, &(0x7f0000000200)='wlan1\x00\x1b\x1a\xec\xb5\x12\x03F\xd9\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6l\xe9\xd9;\xea\x84\x13\xdf\xf7\xber\'\x8a\xd5W\xbb\xac%j\x9d\xeb\xba\xe6\xc4\xc4\xa9\xf5\xd5\xa1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8oOArYZ\xe1\xc9\x86\xfe\x88\x9d\xfa\xacJ\x1f\xebp\x00\xfb\xaad\x1a\xa0') r2 = socket$kcm(0x10, 0x2, 0x0) socketpair(0x1, 0x1, 0x9, &(0x7f0000000040)={0xffffffffffffffff}) recvmsg$kcm(r3, &(0x7f0000000600)={&(0x7f0000000140)=@ethernet={0x0, @multicast}, 0x80, &(0x7f0000000080), 0x0, 0x0, 0xffffffffffffff03}, 0x2000) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000002380), 0xc) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000023c0)=r4, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) r5 = perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x2, 0x804, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000500)={0x7, 0x6}, 0xc) r6 = gettid() perf_event_open(0x0, 0x0, 0xd, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001f80)={0x4, 0x70, 0x7f, 0x3f, 0x7, 0x4, 0x0, 0x0, 0xf28c27eb1bbf1846, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x2, @perf_bp={&(0x7f0000001f40)}, 0x40000, 0x3, 0xffffff95, 0x7, 0x400, 0x9, 0x3}, r6, 0xf, r5, 0x8) ioctl$PERF_EVENT_IOC_REFRESH(r5, 0x2402, 0x0) perf_event_open(&(0x7f0000000480)={0x3, 0x70, 0x9, 0x0, 0x1f, 0x80, 0x0, 0x80, 0x104e0, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x2, 0x5}, 0x204, 0xff, 0x7, 0x1, 0xffffffff, 0xe3, 0x9}, 0x0, 0x0, r5, 0x8) sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2e0000001a008104e00f80ecdb4cb8fc02000004a1dc0200810040fb12000200ac14141b40d8000000000000000e", 0x2e}, {&(0x7f0000000540)="07ff97991b9ee0c8447216a2420c4f94217ed6efa2ca765ce08ea0aa2953a0e2d6f178951b34596a64cbc9e3622ee5ed65461155b42713bad481689ebabc713012d416f90c21e29b4db36b651deb492df648a9d4875e93f11c632f79dd831eb2373b9c6f0c124208558382f05557fff5a9d7f17996e35a65817578f5c6a2bc88f64af797dea2e60c92c9c7652266a29edeec2d4db54c33910ccf464cf314c99e00000000000000", 0xa7}, {&(0x7f0000000640)="a6d21f8b8ef00b1ed99a146825bac5dd37ae4067655c5aaeeeaa4293457e1b2897e728abcfdb730e914d50dbe61bde7181f7842c6a25dfee6d072b125a9bd5768cb53f40d24cd302348f6b0e5ae63384b9e44296c6bdb6f5911ab4b03c85ff11d28f8ee792a4f60383d7ed065cf53f4ab587af1723f5cfd979990bb35ec15b0e5d6c54229e0327654cd1de053cf47e438c85bb035fb781754d6dad3042cb74a003c1eeb8c4cdf6d8a7fcbf18653d70afdaebfc480c4d17d5c2e68d8b2776748f2f2a3f06d89959b6de0ae4c099d56e80e8bdbaaac31d8a75", 0xd8}], 0x3, 0x0, 0x0, 0x10}, 0x0) [ 973.713381][T22404] bond15: (slave veth33): Enslaving as an active interface with a down link [ 973.739605][T22440] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 973.756761][T22440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 973.766354][T22440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 16:00:43 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:43 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:43 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000005600)=""/102380, 0x18fec}], 0x1}, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:43 executing program 0: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:43 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000cacbf0b9c4b88449c3a926042512e17e46f7071a463143fb42c20e017feec42107f2e6ddbe1150296c6a6db4afa7c81b2636b1c5fbe24ec88317"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x300}, 0x48) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x10, 0x0}, 0x30) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0xe002000, &(0x7f00000000c0)="b9ff030e5affffff7f9e14f005051fffffff00004000638477fbac141433e000000162079f4b4d2f87e5feca6aab840413f2325f1a390101050a0100010000000000df74e30d7eabe773afef6f6e4798ab117e9f84fa406b913de8ad827a022e1faee50887dc302819a8a3d0cde36b67f337ce8eee124e061f8fea8ab95f1e8f99c7edea980697449b78569ea293c3eed3b28fc3205db63b2c65e77f19ab28c632cc80d9f2f37f9ba67174fffcb5244b0c909eb8e12116bebc47cf97d2ea8acadfb34ca580b64df7c800113e53bae401cd22f50072deabf93dd4d3e626", 0x0, 0x100, 0x0, 0x296, 0x0, &(0x7f0000000000), &(0x7f0000000040)}, 0x28) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) 16:00:43 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:44 executing program 2: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 974.621537][T22469] 8021q: adding VLAN 0 to HW filter on device bond16 16:00:44 executing program 0: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:44 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:44 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000005600)=""/102380, 0x18fec}], 0x1}, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:44 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:45 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:45 executing program 0: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:45 executing program 4: [ 975.529282][T22530] 8021q: adding VLAN 0 to HW filter on device bond17 16:00:45 executing program 0: r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:45 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:45 executing program 4: 16:00:45 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 976.205799][T22592] validate_nla: 15 callbacks suppressed [ 976.205829][T22592] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 976.221399][T22592] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 16:00:46 executing program 2: 16:00:46 executing program 5: socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240), 0x8) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:46 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:46 executing program 0: socket$kcm(0x2b, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:46 executing program 4: 16:00:46 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 976.707862][T22609] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:00:46 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, 0x0, 0x0, 0x0) [ 976.767651][T22609] 8021q: adding VLAN 0 to HW filter on device bond18 16:00:46 executing program 4: 16:00:46 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:46 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:46 executing program 4: 16:00:46 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000180), 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 977.464392][T22673] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 977.509789][T22673] 8021q: adding VLAN 0 to HW filter on device bond19 [ 977.599324][T22706] bond19: (slave veth35): Enslaving as an active interface with a down link 16:00:47 executing program 2: 16:00:47 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, 0x0, 0x0, 0x0) 16:00:47 executing program 0: bpf$PROG_LOAD(0x5, 0x0, 0x0) 16:00:47 executing program 4: 16:00:47 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'\x00', 0x20000005402}) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 977.659288][T22709] bond19: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:47 executing program 4: 16:00:47 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, 0x0, 0x0, 0x0) 16:00:47 executing program 0: bpf$PROG_LOAD(0x5, 0x0, 0x0) 16:00:47 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000540)={0x0, 0x4}, &(0x7f0000000440)=0x8) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 978.237227][T22738] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:00:47 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 978.367568][T22738] 8021q: adding VLAN 0 to HW filter on device bond20 [ 978.410346][T22742] bond20: (slave veth37): Enslaving as an active interface with a down link [ 978.445822][T22746] bond20: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:48 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}], 0x1, 0x0) [ 978.529932][T22784] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 978.572846][T22784] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 16:00:48 executing program 4: 16:00:48 executing program 2: 16:00:48 executing program 0: bpf$PROG_LOAD(0x5, 0x0, 0x0) 16:00:48 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:48 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:48 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}], 0x1, 0x0) 16:00:48 executing program 4: [ 979.077954][T22799] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 979.088279][T22799] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 979.101451][T22801] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 979.204736][T22801] 8021q: adding VLAN 0 to HW filter on device bond21 [ 979.254528][T22805] bond21: (slave veth39): Enslaving as an active interface with a down link [ 979.284014][T22822] bond21: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) 16:00:49 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:49 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}], 0x1, 0x0) 16:00:49 executing program 4: 16:00:49 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x64004) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:49 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:49 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:49 executing program 2: 16:00:49 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 16:00:49 executing program 4: 16:00:49 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x0, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020031000505d25a80648c63940d0524fc60100006402a000000051a82c13715", 0x22}], 0x1}, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:49 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:49 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:50 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 16:00:50 executing program 4: 16:00:50 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:50 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:50 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) socket$kcm(0x10, 0x0, 0x10) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:50 executing program 4: 16:00:50 executing program 2: 16:00:50 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:50 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 16:00:50 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) socket$kcm(0x2b, 0x1, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:50 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:50 executing program 4: [ 981.382850][T22921] validate_nla: 6 callbacks suppressed [ 981.389000][T22921] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 981.399254][T22921] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 981.480470][T22927] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:00:51 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) [ 981.580668][T22927] 8021q: adding VLAN 0 to HW filter on device bond22 16:00:51 executing program 4: [ 981.622764][T22930] bond22: (slave veth41): Enslaving as an active interface with a down link 16:00:51 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:51 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x1, 0x0) 16:00:51 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:51 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) [ 982.121192][T22980] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 982.131816][T22980] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 982.209280][T22984] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 982.241148][T22984] bond23 (uninitialized): Released all slaves [ 982.351109][T22987] bond22: (slave veth43): Enslaving as an active interface with a down link 16:00:52 executing program 2: 16:00:52 executing program 4: 16:00:52 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x1, 0x0) 16:00:52 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:52 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:52 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 982.637573][T23004] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 982.672052][T23004] bond23 (uninitialized): Released all slaves [ 982.699744][T23006] netlink: 'syz-executor.1': attribute type 29 has an invalid length. [ 982.737831][T23007] bond22: (slave veth45): Enslaving as an active interface with a down link 16:00:52 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x3, &(0x7f0000000000)=@framed, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:52 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x1, 0x0) [ 982.768839][T23006] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 16:00:52 executing program 4: 16:00:52 executing program 1: r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:52 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:52 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) [ 983.223122][T23022] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 983.306973][T23022] 8021q: adding VLAN 0 to HW filter on device bond23 16:00:53 executing program 2: perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000000000000000000000000000000a20000000000a010000000010af000000000000000900010073797a300000000070000000120a0100000000000000000000000000040004800900020073797a30000000000900010073797a3000000000080003"], 0xb8}}, 0x0) openat$ipvs(0xffffff9c, 0x0, 0x2, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) 16:00:53 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, 0x0, 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:53 executing program 4: 16:00:53 executing program 1: r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:53 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:53 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:53 executing program 4: r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000340)='wlan1\x00\x1b\x1a\xec\xd8n\xff\xc3\x87\xe2\xa3\x80\x8a\xb2\xd9\xa8L\x06\xb5\x12\x03F\xd9\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6l\xe9\xd9;\xea\x84\x13\xdf\xf7\xber\'\x8a\xd5W\xbb\xac%j\x9d\xeb\xba\xe6\xc4\xc4\xa9\xf5\xd5\xa1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8oOArYZ\xe1\xc9\x86\xfe') r1 = socket$kcm(0x29, 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000040)='wlan1\x00\x1b\x1a\xec\xb5\x12\x03F\xd9U\x1c\xc9%\x9b\xa0\xf5\xee\x16\x1f\xb9\xf2-\xda,C\xfdj\xe3\x8d\xe3\xd6\xe0|6%\xe9\xd9;\x13\xdf\xf7\xber\'\x8a\xd5\xd5\xe1\xf5\\\x9b\xb2\a\xde\xbb\xc18\x84\xb5:f\xcb\xe8%OArYZ\xe1\xc9\x86\xfe\x88\x9d\xfa\xacJ\x1f\xebp\xf5\xfb\xaad\x1a\xa0\xb1\x9c\xac\xe8\xff^9P\xee\x8aG\xdd2') [ 983.806957][T23077] 8021q: adding VLAN 0 to HW filter on device bond24 16:00:53 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, 0x0, 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:53 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:00:53 executing program 3: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000200)='lo\x00', 0x10) sendmmsg$inet(r0, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000001480)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 16:00:53 executing program 1: r0 = socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:54 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000013c0)={0x0, 0x2}, 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000100)=0x6, 0x4) connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @broadcast}, 0x10) sendmmsg(r1, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) [ 984.418298][T23134] 8021q: adding VLAN 0 to HW filter on device bond25 16:00:54 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0x4010ae42, 0x0) 16:00:54 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) sendmmsg(r0, &(0x7f00000002c0), 0x4000000000000d7, 0x0) 16:00:54 executing program 1: socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:54 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:54 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, 0x0, 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) [ 985.378745][T23196] bond26 (uninitialized): Released all slaves 16:00:55 executing program 1: socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 985.494253][T23201] bond22: (slave veth53): Enslaving as an active interface with a down link 16:00:55 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:55 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:55 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:55 executing program 1: socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 986.081581][T23216] bond26 (uninitialized): Released all slaves 16:00:55 executing program 3: r0 = socket$kcm(0x10, 0x2, 0x10) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40305839, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4ca20100, &(0x7f0000000080)=[{&(0x7f0000000840)="2300000025000511d25a80648c63940d0424fc60040018070a001100022f004837153e", 0x23}], 0x1, 0x0, 0x0, 0x5000000}, 0x0) [ 986.136250][T23216] bond22: (slave veth55): Enslaving as an active interface with a down link 16:00:56 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x2, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=@newlink={0x50, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x30, 0x16, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@IFLA_VF_MAC={0x28, 0x3, {0x0, @broadcast}}]}]}]}, 0x50}}, 0x0) 16:00:56 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20010080, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) shutdown(r1, 0x1) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000080)=ANY=[], 0x10) syz_genetlink_get_family_id$SEG6(0x0) close(r1) 16:00:56 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:56 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 16:00:56 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 16:00:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x81a0ae8c, &(0x7f00000000c0)={0x0, 0x0, [0xc0000100, 0x0, 0x3, 0x8, 0x273]}) 16:00:56 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) chdir(&(0x7f0000000240)='./file0\x00') rmdir(&(0x7f0000000400)='./file0\x00') [ 987.062368][T23258] validate_nla: 4 callbacks suppressed [ 987.062395][T23258] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 987.116478][T23258] bond26 (uninitialized): Released all slaves [ 987.168962][T23267] bond22: (slave veth57): Enslaving as an active interface with a down link 16:00:56 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:56 executing program 4: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x18}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0xe, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) 16:00:56 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 16:00:57 executing program 3: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x80001, 0x0) dup2(r0, r1) ioctl$FS_IOC_FSGETXATTR(r1, 0x8942, 0x0) 16:00:57 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:57 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) [ 987.960492][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:00:57 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20010080, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) shutdown(r1, 0x1) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000080)=ANY=[], 0x10) syz_genetlink_get_family_id$SEG6(0x0) close(r1) 16:00:57 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 16:00:57 executing program 3: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r1 = open(&(0x7f0000000140)='./bus\x00', 0x8001161042, 0x0) ftruncate(r1, 0x2008002) lseek(r0, 0x0, 0x3) 16:00:57 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x8, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x79, 0x10, 0xa8}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 16:00:57 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:57 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000180)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) 16:00:58 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400000f000000000000000000", @ANYRES32=r2, @ANYBLOB="19000000000000001c0012000c000100627269646765"], 0x3c}}, 0x0) r3 = socket(0x10, 0x803, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x4}}]}, 0x40}}, 0x0) 16:00:58 executing program 3: r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000080)={0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x95e5d03380103c98}}) 16:00:58 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:58 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2, 0x7}, 0x10) sendmmsg(r1, &(0x7f0000000a40), 0x8000000000000b0, 0x0) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r2, &(0x7f0000000a40), 0x8000000000000b0, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r0, &(0x7f0000000a40), 0x8000000000000b0, 0x0) 16:00:58 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 988.893028][T23340] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. 16:00:58 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000010000108655800000057000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x0) [ 989.008915][T23351] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 989.400721][T23362] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 989.417031][T23362] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 989.424981][T23362] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 989.910657][ C1] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:00:59 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2, 0x7}, 0x10) sendmmsg(r1, &(0x7f0000000a40), 0x8000000000000b0, 0x0) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r2, &(0x7f0000000a40), 0x8000000000000b0, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r0, &(0x7f0000000a40), 0x8000000000000b0, 0x0) 16:00:59 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:00:59 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, 0x0, 0x0) 16:00:59 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:00:59 executing program 3: r0 = socket$inet(0x10, 0x2000000002, 0x0) sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="240000002e0007031dfffd946fa2830020200a0000000000000000e50c1be3a20400007e280000005e00ff03c81f8374b4c125a4ffba16a0aa1c0009b3ebea966cf0554edc7de8ddeb133c2b", 0x4c}], 0x1}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(r0, &(0x7f0000002540)=[{{0x0, 0x4000000, 0x0}}], 0x300, 0x42, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) shutdown(0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xc) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0) 16:00:59 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2, 0x7}, 0x10) sendmmsg(r1, &(0x7f0000000a40), 0x8000000000000b0, 0x0) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r2, &(0x7f0000000a40), 0x8000000000000b0, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000002c0)=@req={0x3fc, 0x0, 0x2}, 0x10) sendmmsg(r0, &(0x7f0000000a40), 0x8000000000000b0, 0x0) [ 990.215578][T23385] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 990.269885][T23385] 8021q: adding VLAN 0 to HW filter on device bond26 16:01:00 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:00 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:00 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:00 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:01:00 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 991.068091][T23447] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 991.163129][T23447] 8021q: adding VLAN 0 to HW filter on device bond27 16:01:00 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00') pread64(r0, 0x0, 0x0, 0x0) 16:01:01 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x0, @broadcast}, 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x98a, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg(r0, &(0x7f00000038c0), 0x4000000000000a8, 0x0) 16:01:01 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:01 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r2], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:01:01 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 991.906893][T23504] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 992.003123][T23504] 8021q: adding VLAN 0 to HW filter on device bond28 16:01:01 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:02 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:02 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:02 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:02 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 992.997075][T23565] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 993.081540][T23565] bond29 (uninitialized): Released all slaves [ 993.149208][T23568] bond22: (slave veth59): Enslaving as an active interface with a down link 16:01:03 executing program 2: 16:01:03 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:03 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:03 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:03 executing program 0: [ 993.705833][T23593] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 993.757550][T23593] bond29 (uninitialized): Released all slaves 16:01:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:03 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 993.827495][T23595] bond22: (slave veth61): Enslaving as an active interface with a down link 16:01:03 executing program 0: 16:01:03 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:03 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x0, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 994.439328][T23611] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 994.469502][T23611] bond29 (uninitialized): Released all slaves [ 994.554697][T23614] bond22: (slave veth63): Enslaving as an active interface with a down link 16:01:04 executing program 2: 16:01:04 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:04 executing program 0: 16:01:04 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:04 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:04 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 994.871904][T23634] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 994.906264][T23634] bond29 (uninitialized): Released all slaves 16:01:04 executing program 0: 16:01:04 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 994.982751][T23637] bond22: (slave veth65): Enslaving as an active interface with a down link 16:01:04 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:04 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:04 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:04 executing program 0: [ 995.446037][T23652] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 995.479920][T23652] bond29 (uninitialized): Released all slaves [ 995.556729][T23652] bond22: (slave veth67): Enslaving as an active interface with a down link 16:01:05 executing program 2: 16:01:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:05 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:05 executing program 0: 16:01:05 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:05 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 995.914346][T23671] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 995.951174][T23671] bond29 (uninitialized): Released all slaves 16:01:05 executing program 0: [ 996.018383][T23676] bond22: (slave veth69): Enslaving as an active interface with a down link 16:01:05 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:05 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:06 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:06 executing program 0: [ 996.639566][T23695] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 996.721678][T23695] 8021q: adding VLAN 0 to HW filter on device bond29 16:01:06 executing program 2: 16:01:06 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:06 executing program 4: r0 = socket(0x10, 0x803, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:06 executing program 0: 16:01:06 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:06 executing program 4: r0 = socket(0x10, 0x803, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:06 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904", 0x17}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:06 executing program 0: [ 997.394480][T23749] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 997.471995][T23749] 8021q: adding VLAN 0 to HW filter on device bond30 16:01:07 executing program 4: r0 = socket(0x10, 0x803, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:07 executing program 2: 16:01:07 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:07 executing program 0: 16:01:07 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:07 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:07 executing program 4: sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:07 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:07 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:07 executing program 0: [ 998.119901][T23805] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 998.200489][T23805] 8021q: adding VLAN 0 to HW filter on device bond31 16:01:08 executing program 2: 16:01:08 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xbf, &(0x7f0000000140)="c4fe9107180000000000000625e4cc8fce6ac0d81ae41ed847a3e30805478fd709162773312dad764a9183a09adf6dfbfeee63ee4eec53c5ac42c0c0d47ede5c3b644848f1764cb5f64c88e20d4afb6ceb3e59b65791820d5a864c774e8ea923e2dea79a37f1b1f6a606563509552f4949fd060b6c4c0c31a0389af9dc860e19922c6afc49268c64c743ad6ec3f78ebaaf9510ed9c70675f8976be8f44e295583e44d716129e4eabb7c9f1d657ec24bda9009643dbc0e47d969a76c031d245"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 16:01:08 executing program 4: sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:08 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, 0x0, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:08 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d", 0x23}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:08 executing program 3: bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 998.900175][T23869] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:01:08 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xad, &(0x7f0000000140)="c4fe9107180000000000000625e4cc8fce6ac0d81ae41ed847a3e30805478fd709162773312dad764a9183a09adf6dfbfeee63ee4eec53c5ac42c0c0d47ede5c3b644848f1764cb5f64c88e20d4afb6ceb3e59b65791820d5a864c774e8ea923e2dea79a37f1b1f6a606563509552f4949fd060b6c4c0c31a0389af9dc860e19922c6afc49268c64c743ad6ec3f78ebaaf9510ed9c70675f8976be8f44e295583e44d716129e4eabb7c9f1d657"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 999.025646][T23869] 8021q: adding VLAN 0 to HW filter on device bond32 16:01:08 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:08 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, 0x0, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:08 executing program 4: sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:08 executing program 0: r0 = socket$inet(0x2, 0x80001, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10) r2 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x2e) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={r3}, &(0x7f0000000040)=0x8) [ 999.333428][T23921] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 999.436361][T23921] 8021q: adding VLAN 0 to HW filter on device bond33 16:01:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/snmp\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:09 executing program 4: r0 = socket(0x0, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:09 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:09 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, 0x0, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:09 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x1ac, &(0x7f0000000240)="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"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1000.079128][T23986] netlink: 'syz-executor.5': attribute type 1 has an invalid length. 16:01:09 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e", 0x29}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1000.208515][T23986] 8021q: adding VLAN 0 to HW filter on device bond34 16:01:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:09 executing program 4: r0 = socket(0x0, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:10 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:10 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1000.739426][T24043] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1000.790986][T24043] 8021q: adding VLAN 0 to HW filter on device bond35 16:01:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/snmp\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:10 executing program 4: r0 = socket(0x0, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:10 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:10 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 1001.283835][T24096] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1001.368735][T24096] 8021q: adding VLAN 0 to HW filter on device bond36 16:01:12 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510bef", 0x2c}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:12 executing program 0: syz_open_dev$sg(0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xf53, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, [], 0xff}]}}) 16:01:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:12 executing program 4: r0 = socket(0x10, 0x0, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/snmp\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:12 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) [ 1003.082105][T24155] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1003.158755][T24155] 8021q: adding VLAN 0 to HW filter on device bond37 16:01:12 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:13 executing program 4: r0 = socket(0x10, 0x0, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:13 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) [ 1003.556688][T24212] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1003.579937][T24212] bond38 (uninitialized): Released all slaves 16:01:13 executing program 0: unshare(0x6c060000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000600)={'security\x00', 0x0, [0x0, 0x2]}, &(0x7f00000000c0)=0x54) [ 1003.696723][T24219] bond22: (slave veth87): Enslaving as an active interface with a down link 16:01:13 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:13 executing program 4: r0 = socket(0x10, 0x0, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:13 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1003.907768][T24229] IPVS: ftp: loaded support on port[0] = 21 [ 1004.163749][T24260] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1004.202207][T24260] bond38 (uninitialized): Released all slaves 16:01:13 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 1004.255632][T24264] bond22: (slave veth89): Enslaving as an active interface with a down link 16:01:14 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cecff0e00fa378b25db4cb904e473730e55cff26d1b0e001d00090000005e510befcc", 0x2d}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) 16:01:14 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040), 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:14 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/snmp\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:14 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000140)="39000000130009006900000000000000ab008000200000004600010707000014190001001000000800005068000000000000ef38bf461e59d7", 0x39}], 0x1) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) 16:01:14 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 1004.733650][ T1264] tipc: TX() has been purged, node left! [ 1004.737842][T24280] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1004.757108][T24280] bond38 (uninitialized): Released all slaves [ 1004.806918][T24280] bond22: (slave veth91): Enslaving as an active interface with a down link 16:01:14 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:14 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, 0x0, &(0x7f0000000200)) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:01:14 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = dup2(r0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioprio_set$pid(0x2, 0x0, 0x7e35) 16:01:14 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0xd, &(0x7f0000000500)="b9ff0300600d698cb89e14f005051fffffff00004000632f77fb0514140ee934a0a662079f4b4d2f87e5feca6aab845013f2325f1a39010108038da1924425181aa5", 0x0, 0x100, 0x60000000, 0xb20c, 0xfffffffffffffe09}, 0x28) 16:01:14 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(0xffffffffffffffff, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 1005.231748][T24301] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1005.266338][T24301] bond38 (uninitialized): Released all slaves [ 1005.341263][T24307] bond22: (slave veth93): Enslaving as an active interface with a down link 16:01:15 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xd1, &(0x7f0000000140)="c4fe9107180000000000000625e4cc8fce6ac0d81ae41ed847a3e30805478fd709162773312dad764a9183a09adf6dfbfeee63ee4eec53c5ac42c0c0d47ede5c3b644848f1764cb5f64c88e20d4afb6ceb3e59b65791820d5a864c774e8ea923e2dea79a37f1b1f6a606563509552f4949fd060b6c4c0c31a0389af9dc860e19922c6afc49268c64c743ad6ec3f78ebaaf9510ed9c70675f8976be8f44e295583e44d716129e4eabb7c9f1d657ec24bda9009643dbc0e47d969a76c031d2450532073c8c8f46bd3ddca9e5ce3f5d46f32a"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 16:01:15 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:15 executing program 2: preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:15 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, 0x0, &(0x7f0000000200)) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) 16:01:15 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:15 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(0xffffffffffffffff, 0x1) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1006.297798][T24336] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1006.330128][T24336] bond38 (uninitialized): Released all slaves 16:01:16 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:16 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1006.383630][T24338] bond22: (slave veth95): Enslaving as an active interface with a down link 16:01:16 executing program 0: unshare(0x20000400) r0 = socket(0x10, 0x803, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000340)={'ip6gre0\x00', 0x0}) 16:01:16 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, 0x0, &(0x7f0000000200)) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x4c}}, 0x0) [ 1006.663856][T24350] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:01:16 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) [ 1006.787337][T24355] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1006.834706][T24355] bond38 (uninitialized): Released all slaves 16:01:16 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1006.904158][T24358] bond22: (slave veth97): Enslaving as an active interface with a down link [ 1007.146491][T24370] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 16:01:18 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:18 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee), 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:18 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) socket$kcm(0x10, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="2e02020025000507d25a80648c63940d0624fc6000810a400c000000051a82c137153e670902018003001700d1bd", 0x33fe0}], 0x1}, 0x0) 16:01:18 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "083ff2", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:18 executing program 1: bind$inet(0xffffffffffffffff, 0x0, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) socket$inet6(0xa, 0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) socket$inet6(0xa, 0x0, 0x0) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0) bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0xfffffefffffffffe, &(0x7f000006ffe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000000c0)='R', 0x1, 0x24008084, 0x0, 0x0) close(r0) 16:01:18 executing program 2: preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) [ 1008.835611][T24384] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1008.852328][T24387] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 1008.882642][T24384] bond38 (uninitialized): Released all slaves [ 1008.955805][T24390] bond22: (slave veth99): Enslaving as an active interface with a down link 16:01:18 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee), 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:18 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) 16:01:18 executing program 0: r0 = syz_open_dev$usbfs(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x908, 0x801) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_driver={0x0, 0x0, 0x0}) [ 1009.139264][T24403] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 16:01:19 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:19 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@newsa={0x140, 0x10, 0x713, 0x0, 0x0, {{@in=@dev, @in6=@mcast2}, {@in6=@dev, 0x0, 0x32}, @in=@multicast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_aead={0x50, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x20, 0x80, "e5ded357"}}]}, 0x140}}, 0x0) 16:01:19 executing program 0: r0 = syz_open_dev$usbfs(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x908, 0x801) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_driver={0x0, 0x0, 0x0}) 16:01:19 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee), 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:19 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1009.647528][T24424] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1009.662523][T24424] bond38 (uninitialized): Released all slaves [ 1009.707454][T24424] bond22: (slave veth101): Enslaving as an active interface with a down link 16:01:19 executing program 2: preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000001140)=""/113, 0x71}], 0x1, 0x100) 16:01:19 executing program 0: r0 = syz_open_dev$usbfs(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x908, 0x801) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_driver={0x0, 0x0, 0x0}) 16:01:19 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00') sendfile(r0, r1, 0x0, 0xa808) 16:01:19 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008506000000000000ff0100000000", @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5000000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="000000699486220008000a00", @ANYRES32=r3], 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB], 0x4c}}, 0x0) 16:01:19 executing program 4: r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000cfefee)="120000001200e7ef00", 0x9, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/140, 0x8c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000d40)=""/151, 0x97}], 0x1}}], 0x2, 0x0, 0x0) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000006c0)=@pptp={0x18, 0x2, {0x0, @loopback}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000c00)=""/130, 0x82}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x2}, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x374, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x14b}, {&(0x7f0000000140)=""/85, 0x20a}, {&(0x7f0000000fc0)=""/4096, 0xf2}, {&(0x7f0000000400)=""/106, 0x2ce}, {&(0x7f0000000740)=""/73, 0x3dd}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x40d}, {&(0x7f0000000000)=""/22, 0xa}], 0x81, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 16:01:19 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}, @exp_smc={0xfe, 0x6}]}}}}}}}}, 0x0) [ 1010.220325][T24445] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 1010.264035][T24444] ===================================================== [ 1010.271037][T24444] BUG: KMSAN: uninit-value in nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1010.279374][T24444] CPU: 0 PID: 24444 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1010.288035][T24444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1010.298080][T24444] Call Trace: [ 1010.301369][T24444] dump_stack+0x1df/0x240 [ 1010.305716][T24444] kmsan_report+0xf7/0x1e0 [ 1010.310129][T24444] __msan_warning+0x58/0xa0 [ 1010.314628][T24444] nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1010.320601][T24444] nf_ct_invert_tuple+0x346/0x590 [ 1010.325619][T24444] init_conntrack+0x116/0x1ff0 [ 1010.330387][T24444] nf_conntrack_in+0x1341/0x26b1 [ 1010.335335][T24444] ipv6_conntrack_local+0x68/0x80 [ 1010.340349][T24444] ? ipv6_conntrack_in+0x80/0x80 [ 1010.345277][T24444] nf_hook_slow+0x16e/0x400 [ 1010.349777][T24444] __ip6_local_out+0x56d/0x750 [ 1010.354536][T24444] ? __ip6_local_out+0x750/0x750 [ 1010.359466][T24444] ip6_local_out+0xa4/0x1d0 [ 1010.363964][T24444] ip6_push_pending_frames+0x213/0x4f0 [ 1010.369417][T24444] rawv6_sendmsg+0x4233/0x5c30 [ 1010.374197][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1010.379406][T24444] ? tomoyo_socket_sendmsg_permission+0x41c/0x4a0 [ 1010.385811][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1010.390999][T24444] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1010.396837][T24444] ? udp_cmsg_send+0x5d0/0x5d0 [ 1010.401622][T24444] ? compat_rawv6_ioctl+0x100/0x100 [ 1010.406809][T24444] inet_sendmsg+0x2d8/0x2e0 [ 1010.411307][T24444] ? inet_send_prepare+0x600/0x600 [ 1010.416410][T24444] kernel_sendmsg+0x384/0x440 [ 1010.421085][T24444] sock_no_sendpage+0x235/0x300 [ 1010.425937][T24444] ? sock_no_mmap+0x30/0x30 [ 1010.430430][T24444] sock_sendpage+0x1e1/0x2c0 [ 1010.435040][T24444] pipe_to_sendpage+0x38c/0x4c0 [ 1010.439878][T24444] ? sock_fasync+0x250/0x250 [ 1010.444472][T24444] __splice_from_pipe+0x565/0xf00 [ 1010.449486][T24444] ? generic_splice_sendpage+0x2d0/0x2d0 [ 1010.455122][T24444] generic_splice_sendpage+0x1d5/0x2d0 [ 1010.460597][T24444] ? iter_file_splice_write+0x1800/0x1800 [ 1010.466325][T24444] direct_splice_actor+0x1fd/0x580 [ 1010.471432][T24444] ? kmsan_get_metadata+0x4f/0x180 [ 1010.476537][T24444] splice_direct_to_actor+0x6b2/0xf50 [ 1010.481922][T24444] ? do_splice_direct+0x580/0x580 [ 1010.486953][T24444] do_splice_direct+0x342/0x580 [ 1010.491826][T24444] do_sendfile+0x101b/0x1d40 [ 1010.496423][T24444] __se_compat_sys_sendfile+0x301/0x3c0 [ 1010.501979][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1010.507164][T24444] ? __ia32_sys_sendfile64+0x70/0x70 [ 1010.512436][T24444] __ia32_compat_sys_sendfile+0x56/0x70 [ 1010.517971][T24444] __do_fast_syscall_32+0x2aa/0x400 [ 1010.523167][T24444] do_fast_syscall_32+0x6b/0xd0 [ 1010.528018][T24444] do_SYSENTER_32+0x73/0x90 [ 1010.532527][T24444] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1010.538860][T24444] RIP: 0023:0xf7f12549 [ 1010.542911][T24444] Code: Bad RIP value. [ 1010.546963][T24444] RSP: 002b:00000000f5d0d0cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb [ 1010.555378][T24444] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000004 [ 1010.563336][T24444] RDX: 0000000000000000 RSI: 000000000000a808 RDI: 0000000000000000 [ 1010.571301][T24444] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1010.579259][T24444] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1010.587234][T24444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1010.595218][T24444] [ 1010.597527][T24444] Uninit was stored to memory at: [ 1010.602544][T24444] kmsan_internal_chain_origin+0xad/0x130 [ 1010.608253][T24444] __msan_chain_origin+0x50/0x90 [ 1010.613198][T24444] icmp_pkt_to_tuple+0x35a/0x400 [ 1010.618119][T24444] nf_ct_get_tuple+0xb9a/0x1530 [ 1010.622979][T24444] nf_conntrack_in+0x6e0/0x26b1 [ 1010.627814][T24444] ipv6_conntrack_local+0x68/0x80 [ 1010.632826][T24444] nf_hook_slow+0x16e/0x400 [ 1010.637341][T24444] __ip6_local_out+0x56d/0x750 [ 1010.642105][T24444] ip6_local_out+0xa4/0x1d0 [ 1010.646615][T24444] ip6_push_pending_frames+0x213/0x4f0 [ 1010.652063][T24444] rawv6_sendmsg+0x4233/0x5c30 [ 1010.656816][T24444] inet_sendmsg+0x2d8/0x2e0 [ 1010.661306][T24444] kernel_sendmsg+0x384/0x440 [ 1010.665971][T24444] sock_no_sendpage+0x235/0x300 [ 1010.670829][T24444] sock_sendpage+0x1e1/0x2c0 [ 1010.675432][T24444] pipe_to_sendpage+0x38c/0x4c0 [ 1010.680289][T24444] __splice_from_pipe+0x565/0xf00 [ 1010.685300][T24444] generic_splice_sendpage+0x1d5/0x2d0 [ 1010.690760][T24444] direct_splice_actor+0x1fd/0x580 [ 1010.695856][T24444] splice_direct_to_actor+0x6b2/0xf50 [ 1010.701214][T24444] do_splice_direct+0x342/0x580 [ 1010.706065][T24444] do_sendfile+0x101b/0x1d40 [ 1010.710658][T24444] __se_compat_sys_sendfile+0x301/0x3c0 [ 1010.716190][T24444] __ia32_compat_sys_sendfile+0x56/0x70 [ 1010.721719][T24444] __do_fast_syscall_32+0x2aa/0x400 [ 1010.726903][T24444] do_fast_syscall_32+0x6b/0xd0 [ 1010.731740][T24444] do_SYSENTER_32+0x73/0x90 [ 1010.736246][T24444] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1010.742548][T24444] [ 1010.744861][T24444] Uninit was stored to memory at: [ 1010.749892][T24444] kmsan_internal_chain_origin+0xad/0x130 [ 1010.755597][T24444] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 1010.761562][T24444] kmsan_memcpy_metadata+0xb/0x10 [ 1010.766577][T24444] __msan_memcpy+0x43/0x50 [ 1010.770981][T24444] csum_partial_copy+0xae/0x100 [ 1010.775815][T24444] csum_and_copy_from_iter_full+0xdca/0x1800 [ 1010.781782][T24444] ip_generic_getfrag+0x1fb/0x3c0 [ 1010.786813][T24444] raw6_getfrag+0x552/0x600 [ 1010.791303][T24444] __ip6_append_data+0x507b/0x6320 [ 1010.796420][T24444] ip6_append_data+0x3cb/0x660 [ 1010.801169][T24444] rawv6_sendmsg+0x32bb/0x5c30 [ 1010.805953][T24444] inet_sendmsg+0x2d8/0x2e0 [ 1010.810473][T24444] kernel_sendmsg+0x384/0x440 [ 1010.815136][T24444] sock_no_sendpage+0x235/0x300 [ 1010.819977][T24444] sock_sendpage+0x1e1/0x2c0 [ 1010.824573][T24444] pipe_to_sendpage+0x38c/0x4c0 [ 1010.829407][T24444] __splice_from_pipe+0x565/0xf00 [ 1010.834434][T24444] generic_splice_sendpage+0x1d5/0x2d0 [ 1010.839897][T24444] direct_splice_actor+0x1fd/0x580 [ 1010.844996][T24444] splice_direct_to_actor+0x6b2/0xf50 [ 1010.850375][T24444] do_splice_direct+0x342/0x580 [ 1010.855227][T24444] do_sendfile+0x101b/0x1d40 [ 1010.859803][T24444] __se_compat_sys_sendfile+0x301/0x3c0 [ 1010.865350][T24444] __ia32_compat_sys_sendfile+0x56/0x70 [ 1010.870882][T24444] __do_fast_syscall_32+0x2aa/0x400 [ 1010.876068][T24444] do_fast_syscall_32+0x6b/0xd0 [ 1010.880920][T24444] do_SYSENTER_32+0x73/0x90 [ 1010.885407][T24444] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1010.891884][T24444] [ 1010.894195][T24444] Uninit was created at: [ 1010.898423][T24444] kmsan_save_stack_with_flags+0x3c/0x90 [ 1010.904058][T24444] kmsan_alloc_page+0xb9/0x180 [ 1010.908825][T24444] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 1010.914357][T24444] alloc_pages_current+0x672/0x990 [ 1010.919453][T24444] push_pipe+0x605/0xb70 [ 1010.923677][T24444] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 1010.929380][T24444] do_splice_to+0x4fc/0x14f0 [ 1010.933956][T24444] splice_direct_to_actor+0x45c/0xf50 [ 1010.939313][T24444] do_splice_direct+0x342/0x580 [ 1010.944165][T24444] do_sendfile+0x101b/0x1d40 [ 1010.948757][T24444] __se_compat_sys_sendfile+0x301/0x3c0 [ 1010.954300][T24444] __ia32_compat_sys_sendfile+0x56/0x70 [ 1010.959829][T24444] __do_fast_syscall_32+0x2aa/0x400 [ 1010.965012][T24444] do_fast_syscall_32+0x6b/0xd0 [ 1010.969859][T24444] do_SYSENTER_32+0x73/0x90 [ 1010.974349][T24444] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1010.980653][T24444] ===================================================== [ 1010.987568][T24444] Disabling lock debugging due to kernel taint [ 1010.993706][T24444] Kernel panic - not syncing: panic_on_warn set ... [ 1011.000304][T24444] CPU: 0 PID: 24444 Comm: syz-executor.1 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 1011.010360][T24444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1011.020414][T24444] Call Trace: [ 1011.023713][T24444] dump_stack+0x1df/0x240 [ 1011.028037][T24444] panic+0x3d5/0xc3e [ 1011.031941][T24444] kmsan_report+0x1df/0x1e0 [ 1011.036455][T24444] __msan_warning+0x58/0xa0 [ 1011.040964][T24444] nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1011.046947][T24444] nf_ct_invert_tuple+0x346/0x590 [ 1011.051973][T24444] init_conntrack+0x116/0x1ff0 [ 1011.056765][T24444] nf_conntrack_in+0x1341/0x26b1 [ 1011.061718][T24444] ipv6_conntrack_local+0x68/0x80 [ 1011.066739][T24444] ? ipv6_conntrack_in+0x80/0x80 [ 1011.071699][T24444] nf_hook_slow+0x16e/0x400 [ 1011.076206][T24444] __ip6_local_out+0x56d/0x750 [ 1011.080983][T24444] ? __ip6_local_out+0x750/0x750 [ 1011.085956][T24444] ip6_local_out+0xa4/0x1d0 [ 1011.090457][T24444] ip6_push_pending_frames+0x213/0x4f0 [ 1011.095913][T24444] rawv6_sendmsg+0x4233/0x5c30 [ 1011.100675][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1011.105900][T24444] ? tomoyo_socket_sendmsg_permission+0x41c/0x4a0 [ 1011.112313][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1011.117507][T24444] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1011.123308][T24444] ? udp_cmsg_send+0x5d0/0x5d0 [ 1011.128059][T24444] ? compat_rawv6_ioctl+0x100/0x100 [ 1011.133247][T24444] inet_sendmsg+0x2d8/0x2e0 [ 1011.137760][T24444] ? inet_send_prepare+0x600/0x600 [ 1011.142874][T24444] kernel_sendmsg+0x384/0x440 [ 1011.147562][T24444] sock_no_sendpage+0x235/0x300 [ 1011.152427][T24444] ? sock_no_mmap+0x30/0x30 [ 1011.156942][T24444] sock_sendpage+0x1e1/0x2c0 [ 1011.161532][T24444] pipe_to_sendpage+0x38c/0x4c0 [ 1011.166370][T24444] ? sock_fasync+0x250/0x250 [ 1011.170971][T24444] __splice_from_pipe+0x565/0xf00 [ 1011.176002][T24444] ? generic_splice_sendpage+0x2d0/0x2d0 [ 1011.181643][T24444] generic_splice_sendpage+0x1d5/0x2d0 [ 1011.187099][T24444] ? iter_file_splice_write+0x1800/0x1800 [ 1011.192823][T24444] direct_splice_actor+0x1fd/0x580 [ 1011.197943][T24444] ? kmsan_get_metadata+0x4f/0x180 [ 1011.203063][T24444] splice_direct_to_actor+0x6b2/0xf50 [ 1011.208423][T24444] ? do_splice_direct+0x580/0x580 [ 1011.213474][T24444] do_splice_direct+0x342/0x580 [ 1011.218411][T24444] do_sendfile+0x101b/0x1d40 [ 1011.223028][T24444] __se_compat_sys_sendfile+0x301/0x3c0 [ 1011.228602][T24444] ? kmsan_get_metadata+0x11d/0x180 [ 1011.233801][T24444] ? __ia32_sys_sendfile64+0x70/0x70 [ 1011.239074][T24444] __ia32_compat_sys_sendfile+0x56/0x70 [ 1011.244619][T24444] __do_fast_syscall_32+0x2aa/0x400 [ 1011.249810][T24444] do_fast_syscall_32+0x6b/0xd0 [ 1011.254670][T24444] do_SYSENTER_32+0x73/0x90 [ 1011.259169][T24444] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 1011.265499][T24444] RIP: 0023:0xf7f12549 [ 1011.269548][T24444] Code: Bad RIP value. [ 1011.273596][T24444] RSP: 002b:00000000f5d0d0cc EFLAGS: 00000296 ORIG_RAX: 00000000000000bb [ 1011.281994][T24444] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000004 [ 1011.289953][T24444] RDX: 0000000000000000 RSI: 000000000000a808 RDI: 0000000000000000 [ 1011.297910][T24444] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1011.305884][T24444] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1011.313867][T24444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1011.323379][T24444] Kernel Offset: 0x14800000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 1011.334999][T24444] Rebooting in 86400 seconds..