x1000, 0xfffffffb, 0xeb, 0x3f, 0x3f, 0xffff, 0xe80, 0x3, 0x0, 0x0, 0xa7, 0x119977cd, 0x3, 0x1, 0x6, 0xdce, 0x2, 0x86e2, 0xbb14, 0x8001, 0x7, 0x1, 0x8, 0x81, 0x3, 0x5, 0x4, 0x0, 0x5, 0x3, 0xf7d7, 0xfffffff9, 0xfffffffb, 0x5, 0x52f, 0x8, 0x3, 0x3ff, 0x401, 0xfffffffd, 0x100, 0x3, 0x4, 0x4, 0x82, 0x8, 0x8, 0x3, 0x5, 0x6, 0xffffffff, 0x10000, 0x5, 0x4, 0x3, 0xa8, 0x627, 0x9, 0xf4, 0x8000, 0x10001, 0xd545, 0x2, 0x6, 0x3, 0x8, 0x9, 0x7, 0x7ff, 0x9, 0x24000000, 0x20, 0xf8000000, 0x5, 0x4, 0x81, 0x1ff, 0x5, 0x0, 0x8, 0x80000000, 0x7fffffff, 0x7f, 0x9, 0x1, 0x1, 0x20, 0x9285, 0x2, 0x11d, 0x3, 0x1, 0x0, 0xffff, 0xfffffffc, 0x7, 0x3d, 0x7, 0x8, 0x3f, 0x5, 0x8000, 0x0, 0x9, 0xdd9, 0x7, 0xfffffff8, 0x1, 0x4e, 0x1, 0x6, 0x401, 0x2, 0x68a, 0x5, 0x22e, 0x5f, 0x0, 0xffff, 0x1, 0xf0, 0x5, 0x8, 0x4, 0x2, 0xe7fb, 0x7, 0x1, 0x8, 0x4, 0x4, 0x3, 0xf6, 0x1f, 0x0, 0x1, 0x4, 0x80, 0x20, 0x6, 0x3219, 0x6, 0x200, 0x4, 0x0, 0x1, 0x7ff, 0xff, 0x10001, 0x10000, 0x1, 0x0, 0x7ff, 0x1, 0x1, 0x1, 0x0, 0xfffffff9, 0x8000, 0x4, 0x372, 0x7fffffff, 0x8001, 0x17e, 0xfffff001, 0x9, 0x3f, 0x5, 0x9, 0x3f, 0x2, 0x6, 0x1ff, 0x1, 0xfff, 0x6, 0xcf52, 0x81, 0x1ff, 0x3, 0x8000, 0x6, 0x49, 0x7, 0x8, 0x1f, 0x80000001, 0x9, 0x3c2, 0x0, 0x3b9, 0xfff, 0x100, 0xe12, 0xffff, 0x6c1c, 0x2, 0x800, 0x86e, 0x8, 0x5, 0xc31, 0x7fffffff, 0x7fff, 0x7ff, 0x4, 0x3e7, 0x6, 0x101, 0x20, 0x3ff, 0x3, 0x8, 0x81, 0x1, 0x7fffffff, 0x4, 0xffffffc1, 0x9, 0x5, 0x3, 0xff, 0x6, 0xfffffe01, 0x3000000, 0xfffffffc, 0x4, 0xfffffffd, 0x4, 0x8, 0x0, 0x47, 0x4, 0x8, 0x100, 0x6, 0xffff0000, 0x400, 0xfabc, 0x6, 0x5, 0xfff, 0xc00000, 0x46, 0x9, 0xf26, 0x6, 0x6, 0x7, 0xe00, 0x5, 0x6, 0x401, 0x7fffffff, 0x10001, 0x3ff]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x81}]]}, {0xbc, 0x6, "40a8e06eef220b7f0939536b4f4092963cd3bc70d64b9917d00f74c183c3ceec0508d3087105b8a5ff58ce45fa6d83aa1c727a97fff3395c0dd5bcdc9f2fac528d94e11aa0f292bab27031a4868bea865a3d30292ba3d8707a14323390b21bdc3d4442adaf441ece1d3426a3172451ccfc5591a06687497831112c95e56cea6d1dd8472acd8f1c056c85660333b1b4d7576cdebd5863175403b9ec3c9a1570e9084547fce55eba8a66100784c4784e96fd272617d4544315"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_csum={0xb0, 0xa, 0x0, 0x0, {{0x9, 0x1, 'csum\x00'}, {0x74, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x4b2, 0x3, 0x3, 0x1}, 0x5b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0xaf, 0x7ff, 0x10000000, 0xe3f, 0xffffff01}, 0x47}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1a1dd95f, 0x8, 0x5, 0x7, 0xb48}, 0x67}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x6, 0x4, 0x10001, 0x7}, 0xd}}]}, {0x14, 0x6, "049c3ad3e2263c5ce2ce5f63e5042c55"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0xdc, 0x18, 0x0, 0x0, {{0x8, 0x1, 'bpf\x00'}, {0xc, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}]}, {0xaa, 0x6, "ed9dab10f0c4702e02830cf88d9aa22f5dc1fb3356c855c7bc72212bce58c1500e0be8befb960be9c118559b698be5eca9a8fb6a991b38c21396ee5c7fbffae39567bddabc1504f1dfb0eac23fc45c0932a70fefb7d1d6c2409a021918a413149be9fd175b712ecf19db39cd46f4e8d91d5337be4a6026ba446f72a7e6358d350df24817d6f04834ad895cefe19f69c069ba95f6d7261e79d5558fc3f23ed8bbc4b0b35a4d61"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_vlan={0x84, 0x1a, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0x1c, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x5}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x7}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x2}]}, {0x3f, 0x6, "0c5ade03791d580a13eff1377a0ad9da810df0d05dc5c71cdc0cbfdc6f10e19e5c1c9a5c11a33fd09a0eb95780e558bed15892d0610c92943310d9"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_xt={0x100, 0x3, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x30, 0x2, 0x0, 0x1, [@TCA_IPT_INDEX={0x8, 0x3, 0x80}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0xaa, 0x6, "fc004ea5ccd5066e8488b52d5b7bf4f9eee25ae1f69145c9d2438dcfdcf2c3e04e7872ea871142fb5450c9842cca7f8c0c285c329470388c6ffbc98e22a40aa788c9f78c5d181556a3294124c6c8d310b8358ecc89dd7e13c98195b85d757b8acf0e53a6574626c8c812e1e4ae979b8a0aa2b0a684debbb101ec2ce42150339d7a1a68642b534fca35bd0df4a835ea4b982d008b3b70a40fee811b605cecb86ef8f31d8c401c"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_tunnel_key={0x84, 0x1c, 0x0, 0x0, {{0xf, 0x1, 'tunnel_key\x00'}, {0x3c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @multicast1}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @broadcast}, @TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x21}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e21}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0xc460}]}, {0x1b, 0x6, "7ff34f48943e0890dc3ed9a1f174db31901d49e5e0e4a2"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ife={0x1050, 0x14, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x7ff, 0x2, 0x8, 0xbe}, 0x1}}, @TCA_IFE_TYPE={0x6, 0x5, 0x3}]}, {0x1004, 0x6, "1a4a6b35f8d6932ff7913ba434124c8557d0a7169cd5f74de29abe70d7040fcc4ff9ec7eeadc9cb99f5f70a41bea4e4f2aefa2af624d447b9f5cc6ab7f9d5d82c2818a9f17ac419d34993548024c0072eb63bcc2f83748efe707f641fbe8701babef9027e4868ee51e83e4ed7689b631c5cc65d6908c8ebb3593d22815f695368e26c4faaaa8d8b53c44f91db1ee753167aec2acfa7b3700d1364744a251a8201bbd967179e0a9a671e28e30e196db8956f826afba72f889ee2394a101ded0a5349657d7acea102fe9edf75e723bd827f77024d266631387b476bb5f07430779e671fada0dd30647e0e5cf93e2745d6c87f7a18616854687bc5be04ce2368289591d983dcbf9131de9097b2b44691e5064a21463c255efa9869bba7dc8fbda2096100636e226b27660ac1b532934798b571f0740244123c38268725189ca82e9da35925255e72c002da148f38fa1ee901f3d9bf203430091676a57433caa82eabe8391bd4d34a7ecffd68911a158d4288aa4e2aeb424a291b86ed2dcb920637a7cf5b17fae485a93d47088e096c087d40d54176860ab1bbe5d3d5fc0a09cc02889af6f268bae56e4180eb8125cb3e9a8c00c271126847e209a8efc531ef67f9b2e5119a35bd74b6fc1ba27e6f668d2e8b1d7c11956a355fb96363dda41106f7710b6c1c08a9715d637cbf5aeaf50d84582774d39b3aec47b221276edddc855420f172fdc38c56961fc5ebf20cd383910497f2cdab2a2a199f15f768e4f44b99273e763aba1429be2db3076a2094de85d38163be3abe43dc50267bfb4bfd2db23b46b4b067569022a5305c67b0a9497935abbcef8f53a44c6808f578f6dd55d08db8b7393c99772f722a30e8c55882fd9bb66992e9345818987bd466015b12424227622cd8b51de42f12912edc707708e691ea414cdf3c4faef9b1c077ef4434a5697f42e14a24850589385610da00fab8b4672675dd49e3dec0e50b3facdcf959850330b98b4699ca37f7b72ddd52745679327aa30e993800293e23cdd8b9e610e75d26cc22f58913f8f54efc8b741d725d363bc3bc197e70d7f0f98ff5771f30318e8c71a5c55355eb1425784b851ac3a36c7ea4e314f57849000c1fe9edd6da6a156d9c4c2d28a86e9bde9ca286bb10297baca0eb5c94f5897907ee611c6cfce33f048b7b22b1eaad2faa2291d3f621a56f2618bbbf1be853351a8b18d1df0b0f3f999f108572ed0fcbb9bf88b25c2aaefee35e9b940f993dd21d78830a9c6eac29c7c5446bbe236a2116f958f3d7b432ab6470fae1461aa637a9cb749f14bc3fb71fafbf9f4f29b388eaba86c846387f18af8711533b0bbafd7c10b8f8bce2e1d03c09c05c19d14751ff20bcff559397bfee7303a45220a755b3493404fa33a1913d6f38a7d67f18a7479fd6460acb525de3217ddedb6cf9e50f48b89dfca8694f9ee6b92a6aff6c6926c4be90031ff2a2a0f4b987cefc35a04614e045380fd54d923c29aa01011ab77f729d1868e4567baad7c1abe68c1c4c3fff93a9f7c67c4574461248b011a4e453fcebe5748461c6ca4f67c2e4e3020bfd76a7e5f4e7a4a322a27f41ded1d45541ee1eb9d676fddcdab3c93a1498d468b0adfb21e99aa0e9b9078849b1c2909802a24708de1dc25a64860920bbd49f557d14270b2f2e78f302cb111d8686670df85304edc4b0691f366343fbf7582f2c8fc81067560eefb85548fe40c5654c93b2d4a3b694734c84b96051d8e485b5ad634a330f417cf5c4889390f7c374b1d63233c03ceb9c2df2de0cab8856d020d92f26d40aeb644aa53f3d4602e454954005e959b346b11f8fc57c30acf93be467a8c391a7e98813336c2c3b535206e3fcde1367549ba1425ff0a0c551aa2a4f3e85483c833940417d47cdcd4abfef815b38cb73a11c550ca809306f90b99812ae645963fb25a612fe387004bb18cff7278448fbc2a9a854135815c764ca17d1d0653bcbe594308c6b6926e0f1e28334b3056334b63213064d8aa4542d4f4b3b987663ceb405c15cd6e5dfa8cb0b690449780ee81d3cd48d9f1bbe8a2d05e9cb81991124e3e8d3fff2be56f8c6d8f713d8dc187a6c82050dd306e0dd0dd9f3375a0c35df301530ad145a0ddc1ffc5eb6dca6bc4e1ac384186a357384e71279ac6ba1a6c2d4f91b433da28dabeaa20a691b93b5ff2a336a8cea2c5080811e9f520160bed2169638815b8985c84a8e309dd38855c2f73b813801b67fc09d84096ca736121861984d427fbf2958abd0c2d186de5b8e374e9b9e34aeb5aca8b7a9d490a3f169705985949b9ec25ada9025f1397322f9670b2858b3e2f207d3b75e703d4c648e23d28ef5f64f71bfc875d4df4152f24434d9eabc37333ac2d77dfecf74b2991d3c7cbe588a83aced143ee42f9f8552593348678827165d928dae0d7501c02ff4ed04d177b0418b0058feda3f0d6fa7cafb5ae6a0cab687911d6fbd6fd486d74a63f722eeb6da8f3a8ed07a9b3a0c534ebd5dd79b019a532e87e48ba423e0ddc76d394c772b2556910b6d797794cea6949795523a89a0f689a342d136e8d3a41d45292312e2231a9145e65b3304d614657699e2bd4acbeb6ebcc033edf12dcb6504743145c0a54777940245ef9edb064f03fdb640108c6aa1af8c019bf0ada25679ab8930dd61f4b880fd4cf9da7a0db4a02179156a17cf6f5406748d9a0d04dae2ff2e5bc4d02e5569eaab4b4e40b3c929d514dee69714d369f2b51354898f857d752b57f405008582b6ff5a0840264a2981796661caf34da6ac419293e8f95d7ee95b65c0972b18bb4d9534f94abbf2ae8558f4dfc618ffca70c0ba94393b9d5f3be74219f1a779739094706537cb9d8c870d60795b3eac79da0c1301adcb07447eaabe80e1331e29e0f8d52c32d8eaf431b6eb82d9bf7396e528fb10a5e38a7d6b9554e8e099bd62aa56aa03015e00af4a26f629c2f0287b492db54f4ab5547ab736f7074897fb5b0b771094ad6bd638889cab8b442a2e8a1dbeb18145adeb382f40f3e2ae385553a9e52d2fa69ccc99d438735d3de275c7204f5e6a894c144ad8b2c4aeffe019ed94944815ffcffc066437200244a0bbd963574281506915516717949e0fefc0a42cc43be1b017c6c409135006b9a1a93d3c9b900e09a996a3bf2614f52425ddddccad8b05c6d2505897420f58c29efec019bdd2716dd8efc52d7b4f444185d165af50121d968d607739f81e8544c47ee762601922fe44f80a3adf87f4264842eb6e09ab9863f70e5fbc06d1c4de83c0cc3755fa955c27b5ffd5b9673d1dea08627114366ab870eee5641c601b7071a71d100a3b30ea4bc207c238ddd0b90d8ef8f5d457c1929962a2524248916a671fefe6bfab016274c90f74ffb7c0d1d5359bf385537037da35709a59daa4d937db9824d0ddf0c3c3d1f5bcf71a9677df386c225354347efec2be3d95fd808a5e9cda21829565d164d47047b9f7c559bc34ce2f52f62d87af7d1317a73820f8b18f4cb5c8c4e9840681725d39f0b1fb6232a68a36660a0bbe59c81cc4803cc48389d4425a37880a91c55f86f316df7717f8e96b650c233526f2c4d9fc51e66924efd41ab2a49b9d1c0ae59291fc1395da4735e6cc785949487e7983914142f763eeef3cf09d8491b175f7ab21d768eff74f1e516c5f35514ed63b58da893d460db489333bb86f9655c02accb62651b2e9e547b1906f62fc77c8490532a2390f6587590508e6058ca9ede15d00d329c4889100d8bbebedda5d690ac650829170457c1ab4fea60963b257a105ff42bb3e969a75fedee3df5ed4632c2cb310ed96904a8189d792aee9c37979e5349d461885b9a851321742d1b79d5d0ce3353bff7836427cd0e43bdb72e79c641b99e6595e053921d2e86b7650a065aac0972ea4613952f5d890ff562009228ad163801cde711e788a60375806982986a6f55b7032f16c30bde66c8c4a8869ec7e9a61c629d91ca8569454a363e00408f298a5c54f0783c176ca7202efec2d9fa8967578c531bb8cb7f65466f20a0d39ba7a9a07eec758cc23edbd0e4103f3b6a82edab3276353d945594efd06cd0a12eb4b7b1621d157a7cab36da7e48203288d36d8714240e552a0a149fc9af9a9f82ec5b1bd9544c856d3513815904d4eb43d8d907b88b7fd3efb596e7a4297cbbd660ab33ce5a3ba802a1fde2b20dc35550a83c9eb25994055e19935485c75dbcc2dc607bd3865a0680c3379b7aac7025cb4b40711250439d7d0511c1600e381f64eb0631e34e63a0a0fd3bc2f58565d5cc5670efddcdd5ba65a1d0ffe18de36b88851fddeb9b892a10df0419c2c76efd37e7c5f07b50110cf26eb7e0bf96da001249f931345668ed56d30286b34d64d4df9b49407f7e591ba3780d6205cb7f8f22fe55af8f2a98415c44000e63c4181004089f1b1f0c832bdd84712e40105edf0088e87ffa2fb8e068de0e66af7fc6fac0f0ed1456d67c8141023fcb6265e15a469d03e3c60318de5f03532fb7282a4cbcf97b5a8fca3a634b618a286ebcb96193d6ac3ae3001fb38f75affb44a7d6471e3c7bd9d223d654aff8d0c55e369d1680733932f727eae494be725df264dc2dc9f579a804e394e5c43ea1dc720a58d62ef46345c8d3fc9388dd9b4de6db1f9713909fef9a8aae518fdef3290828473007da30daf486e573348f906d36782c36b55ce7a73985209c4b850d1f9398973d318ba6bc74e078df1a362b6e0e395d1bb9b0ae8e1287e9861cdc8b6890b9a810de5285905415aeb7a4b26d6f6397f32da55aff2397a11121e860b98178e55c83805ac0a34b36d08e0a434d36d7c6af26c8a7a44b1c8cf93d4aae2944a5b0bf55234b4c4105cf1294eee9226ec9253edce3adf48f37e2bce35ec54ac25058fcc5f46699f9470457fca226326e38aef824e48082deb1183db40824648068144904fbd5eedef7e79d53ffe6d34f0e7f6826eaeefb4e57067d15eea85e3c0c8c035f1a251052fc5069011bd8bffae046f69bae07fc1cd148a7eb481ec540766397f6f7bfc36e4ad633b0f28cc0a536cb7d97d94379e234888c438dc7e415349334ee1315d7ba2e938ca160822087cc03bd638872fcb90db77ef5e42bf78b7d4658c107c0e291dc76288a83589f80eef68e74674f42635d2ad0135875b24efd47037bb3c538ebbe20cb2200ec7a7b48e7e3946b454a3bf35c42c2fcc2240dcdb1c7c16fc1d8d8a2847950104d34dc9209859ff06d8bccc05eeab60cfb4b283949b460da395d84b9cf2319275ed3ad86696801cd9381b905ca3034811355727f978df8accc007c0e69f9a593168a14ff2e0e09f4e9ea45b47369df563fb136b4efd9afc4edd1c1516fe4dc1941d7156537d9bf58957f9f1c36b4b462a5002eb79aa889725b42e01cf1fb3661f81909e74daab53373999591212ae2a9c3511fdbd4e2fe0b1276700a1f6d20020024d77a11c1fee38cbedc9dc27951df015f929224daeb57ecb8c48d0a4a06d27f79de679dde6c51a6b07d1c8ac7b7687681a8a83526964e972937e9429e04a3e8e3e8c6297eb9d89a6c7171dfbc16a70e0c0d13e024141f1202bf1b6b3c5df9273133472bcd81711e50eb608b0a962d9cb6c5963a1a63f175fde0e16f168e68796bafc02c765abbda5cf425cbf10b79e0e04c93e3ede85b8e36cdefd5593a78ce4a2c382ebd56a050181c0908a74453bc5b2fc4bf833255412af014c70758c878ae7b5bf3ccbd5db97d09a30d5342a16304286d61fccd25f18fc6a4733356db951339dcafbe8c0a"}, {0xc}, {0xc, 0x8, {0x3}}}}, @m_vlan={0xd8, 0x1f, 0x0, 0x0, {{0x9, 0x1, 'vlan\x00'}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x155}]}, {0xa3, 0x6, "fb40d888c089f35408890d34f6932497c0f041fe94d52c1514fb53503bb944281cb87426cdffd9c87a5ebf75862bcb87fe187cfb1791cfb0549a05fd801c99c895d811d143ad871bcb0f7699602089f1b3af7aa0ecd44153b02c6188158eefcc1ca4bc25ae81b234d95a0ab1826e041bc768f6c3a82a1ff3c51b15f0eef2f8f35c28337677582da6c9292a329856fd9cdc18deffef2d187829baa08358b892"}, {0xc}, {0xc, 0x8, {0x4, 0x3}}}}, @m_skbmod={0x114, 0x7, 0x0, 0x0, {{0xb, 0x1, 'skbmod\x00'}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @remote}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="04e70eca6a7a"}]}, {0xc2, 0x6, "c7b13d5b644d9da076a2683d3cc971a394fbf1e1ba273929cdb3db811232e43534257b086b588c3ea1a73decb4c848c5aba51c7e32e47d9648f88d5725d8125038847d2d95892cf05e78293df9fb1d8d8cf25d7e4e5f1ef85a27fdebbc9b993fe0581ac19f33a002d01b4d580c3e7af2d1cdb728407e057074c5d9e2bbfd19dc6bc29da8b52657e7038e91747d81c48b6536fad107950005006f09588b966a2f65e595668f917d2ecf2343ab80614b68638a46ab198554484e2f2853ac50"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, @TCA_U32_INDEV={0x14, 0x8, 'caif0\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'vlan1\x00'}]}}, @TCA_RATE={0x6, 0x5, {0x7f, 0xf8}}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6, 0x5, {0xe2, 0x84}}, @TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x86e0}, 0x1, 0x0, 0x0, 0x20}, 0x80) getsockopt$CAN_RAW_FD_FRAMES(r1, 0x65, 0x5, &(0x7f0000000000), &(0x7f0000000080)=0x4) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f00000000c0)=0x9, 0x4) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040), 0x4) 09:44:39 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000100)="0201550020250a100000ff4500024000ffffff8200008877007200300700a5ffffff00000000008000da55aa833069ae859ad211bc2c944df49037bba1445918473cca792819f4e91469a0c0f9ff588614f692402f6ec4eb5301f3fbee78b9e14ea11fc0fbd5de1f6eb1255c8cf4f37cc68125a7ddce4ce49c27d771a7c5d51663b36ccbda8372322a9c0a6759467eb06465fd279975cc0f", 0x98, 0x1c0}]) [ 428.505276][T14385] not chained 60000 origins [ 428.509939][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 428.518631][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 428.528703][T14385] Call Trace: [ 428.532009][T14385] dump_stack+0x1df/0x240 [ 428.536360][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 428.542128][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 428.547245][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 428.552802][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 428.558882][T14385] ? _copy_from_user+0x15b/0x260 [ 428.563826][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 428.568951][T14385] __msan_chain_origin+0x50/0x90 [ 428.573904][T14385] __get_compat_msghdr+0x5be/0x890 [ 428.579073][T14385] get_compat_msghdr+0x108/0x270 [ 428.584036][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 428.588564][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 428.594228][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 428.599354][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 428.604998][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 428.610382][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 428.615152][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 428.619921][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 428.625130][T14385] __sys_recvmmsg+0x4ca/0x510 [ 428.629835][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 428.635918][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 428.642164][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 428.648324][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 428.653553][T14385] do_fast_syscall_32+0x6b/0xd0 [ 428.658417][T14385] do_SYSENTER_32+0x73/0x90 [ 428.662929][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 428.669257][T14385] RIP: 0023:0xf7f3c549 [ 428.673314][T14385] Code: Bad RIP value. [ 428.677380][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 428.685797][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 428.693768][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 428.701738][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 428.709707][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 428.717678][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 428.725666][T14385] Uninit was stored to memory at: [ 428.730706][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 428.736425][T14385] __msan_chain_origin+0x50/0x90 [ 428.741369][T14385] __get_compat_msghdr+0x5be/0x890 [ 428.746488][T14385] get_compat_msghdr+0x108/0x270 [ 428.751428][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 428.755928][T14385] __sys_recvmmsg+0x4ca/0x510 [ 428.760606][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 428.766669][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 428.772841][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 428.778042][T14385] do_fast_syscall_32+0x6b/0xd0 [ 428.782893][T14385] do_SYSENTER_32+0x73/0x90 [ 428.787395][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 428.793726][T14385] [ 428.796077][T14385] Uninit was stored to memory at: [ 428.801103][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 428.806822][T14385] __msan_chain_origin+0x50/0x90 [ 428.811763][T14385] __get_compat_msghdr+0x5be/0x890 [ 428.816879][T14385] get_compat_msghdr+0x108/0x270 [ 428.821818][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 428.826322][T14385] __sys_recvmmsg+0x4ca/0x510 [ 428.831008][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 428.837073][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 428.843228][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 428.848430][T14385] do_fast_syscall_32+0x6b/0xd0 [ 428.853280][T14385] do_SYSENTER_32+0x73/0x90 [ 428.857792][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 428.864136][T14385] [ 428.866459][T14385] Uninit was stored to memory at: [ 428.871488][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 428.877206][T14385] __msan_chain_origin+0x50/0x90 [ 428.882166][T14385] __get_compat_msghdr+0x5be/0x890 [ 428.887293][T14385] get_compat_msghdr+0x108/0x270 [ 428.892228][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 428.896729][T14385] __sys_recvmmsg+0x4ca/0x510 [ 428.901408][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 428.907482][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 428.913637][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 428.918858][T14385] do_fast_syscall_32+0x6b/0xd0 [ 428.923712][T14385] do_SYSENTER_32+0x73/0x90 [ 428.928215][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 428.934527][T14385] [ 428.936867][T14385] Uninit was stored to memory at: [ 428.941897][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 428.947637][T14385] __msan_chain_origin+0x50/0x90 [ 428.952582][T14385] __get_compat_msghdr+0x5be/0x890 [ 428.957711][T14385] get_compat_msghdr+0x108/0x270 [ 428.962649][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 428.967150][T14385] __sys_recvmmsg+0x4ca/0x510 [ 428.971829][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 428.977893][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 428.984046][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 428.989268][T14385] do_fast_syscall_32+0x6b/0xd0 [ 428.994118][T14385] do_SYSENTER_32+0x73/0x90 [ 428.998631][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 429.004962][T14385] [ 429.007281][T14385] Uninit was stored to memory at: [ 429.012308][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 429.018049][T14385] __msan_chain_origin+0x50/0x90 [ 429.023009][T14385] __get_compat_msghdr+0x5be/0x890 [ 429.028122][T14385] get_compat_msghdr+0x108/0x270 [ 429.033081][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 429.037583][T14385] __sys_recvmmsg+0x4ca/0x510 [ 429.042264][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 429.048328][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 429.054485][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 429.059688][T14385] do_fast_syscall_32+0x6b/0xd0 [ 429.064541][T14385] do_SYSENTER_32+0x73/0x90 [ 429.069044][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 429.075359][T14385] [ 429.077680][T14385] Uninit was stored to memory at: [ 429.082709][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 429.088436][T14385] __msan_chain_origin+0x50/0x90 [ 429.093373][T14385] __get_compat_msghdr+0x5be/0x890 [ 429.098487][T14385] get_compat_msghdr+0x108/0x270 [ 429.103422][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 429.107923][T14385] __sys_recvmmsg+0x4ca/0x510 [ 429.112602][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 429.119029][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 429.125202][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 429.130420][T14385] do_fast_syscall_32+0x6b/0xd0 [ 429.135288][T14385] do_SYSENTER_32+0x73/0x90 [ 429.139792][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 429.146107][T14385] [ 429.148428][T14385] Uninit was stored to memory at: [ 429.153451][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 429.159167][T14385] __msan_chain_origin+0x50/0x90 [ 429.164116][T14385] __get_compat_msghdr+0x5be/0x890 [ 429.169247][T14385] get_compat_msghdr+0x108/0x270 [ 429.174197][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 429.178698][T14385] __sys_recvmmsg+0x4ca/0x510 [ 429.183374][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 429.189444][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 429.195602][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 429.200819][T14385] do_fast_syscall_32+0x6b/0xd0 [ 429.205673][T14385] do_SYSENTER_32+0x73/0x90 [ 429.210175][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 429.216488][T14385] [ 429.218810][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 429.225508][T14385] do_recvmmsg+0xc5/0x1ee0 [ 429.229925][T14385] do_recvmmsg+0xc5/0x1ee0 09:44:40 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x0, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 429.462120][T14393] Dev loop0: unable to read RDB block 1 [ 429.468139][T14393] loop0: unable to read partition table [ 429.473997][T14393] loop0: partition table beyond EOD, truncated [ 429.482562][T14393] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) 09:44:40 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') r1 = socket(0x2a, 0xa, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0) ioctl$GIO_CMAP(0xffffffffffffffff, 0x4b70, &(0x7f0000001340)) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0) write$FUSE_IOCTL(r2, &(0x7f00000000c0)={0x20, 0xfffffffffffffffe, 0x8, {0x9, 0x4, 0x3, 0x80000000}}, 0x20) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r1, 0x114, 0xa, &(0x7f0000000080)={0x2, "2dce"}, 0x3) r3 = openat$dlm_plock(0xffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x143000, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r4, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={r4}) r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000180)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r5, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0xc4, r6, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x20}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x2e}}}, @NLBL_UNLABEL_A_SECCTX={0x20, 0x7, 'system_u:object_r:cert_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010100}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010102}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_passwd_var_run_t:s0\x00'}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4044092}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r3, &(0x7f0000001300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f0000001280)={0x60, r6, 0x400, 0x703d2a, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'team0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x1f, 0x7, 'system_u:object_r:tmp_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x8080) r7 = openat$pidfd(0xffffff9c, &(0x7f0000000000)='/proc/self\x00', 0x200, 0x0) ioctl$FIGETBSZ(r7, 0x2, &(0x7f0000000040)) preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x35d) [ 429.595034][ T4885] Dev loop0: unable to read RDB block 1 [ 429.601148][ T4885] loop0: unable to read partition table [ 429.607023][ T4885] loop0: partition table beyond EOD, truncated [ 429.973279][T14385] not chained 70000 origins [ 429.977871][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 429.986565][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 429.996650][T14385] Call Trace: [ 430.000000][T14385] dump_stack+0x1df/0x240 [ 430.004353][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 430.010307][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 430.015452][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 430.021449][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 430.027533][T14385] ? _copy_from_user+0x15b/0x260 [ 430.032477][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 430.037600][T14385] __msan_chain_origin+0x50/0x90 [ 430.042553][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.047701][T14385] get_compat_msghdr+0x108/0x270 [ 430.052658][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.057181][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 430.062846][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 430.067962][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 430.073602][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 430.078899][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 430.083662][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 430.088429][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 430.093631][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.098333][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.104416][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 430.110663][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.116825][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.122050][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.126912][T14385] do_SYSENTER_32+0x73/0x90 [ 430.131422][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.137750][T14385] RIP: 0023:0xf7f3c549 [ 430.141810][T14385] Code: Bad RIP value. [ 430.145873][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 430.154287][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 430.162260][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 430.170229][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 430.178197][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 430.186166][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 430.194154][T14385] Uninit was stored to memory at: [ 430.199194][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.204921][T14385] __msan_chain_origin+0x50/0x90 [ 430.209868][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.214987][T14385] get_compat_msghdr+0x108/0x270 [ 430.219934][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.224446][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.229135][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.235209][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.241372][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.246581][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.251437][T14385] do_SYSENTER_32+0x73/0x90 [ 430.255941][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.262253][T14385] [ 430.264574][T14385] Uninit was stored to memory at: [ 430.269603][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.275320][T14385] __msan_chain_origin+0x50/0x90 [ 430.280259][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.285456][T14385] get_compat_msghdr+0x108/0x270 [ 430.290396][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.294906][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.299595][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.305658][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.311807][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.317009][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.321864][T14385] do_SYSENTER_32+0x73/0x90 [ 430.326369][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.332684][T14385] [ 430.335007][T14385] Uninit was stored to memory at: [ 430.340040][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.345760][T14385] __msan_chain_origin+0x50/0x90 [ 430.350722][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.355862][T14385] get_compat_msghdr+0x108/0x270 [ 430.360810][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.365323][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.370008][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.376078][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.382238][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.387443][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.392322][T14385] do_SYSENTER_32+0x73/0x90 [ 430.396826][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.403234][T14385] [ 430.405556][T14385] Uninit was stored to memory at: [ 430.410586][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.416307][T14385] __msan_chain_origin+0x50/0x90 [ 430.421248][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.426381][T14385] get_compat_msghdr+0x108/0x270 [ 430.431322][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.435827][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.440508][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.446577][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.452730][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.457936][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.462785][T14385] do_SYSENTER_32+0x73/0x90 [ 430.467286][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.473617][T14385] [ 430.475934][T14385] Uninit was stored to memory at: [ 430.480960][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.486703][T14385] __msan_chain_origin+0x50/0x90 [ 430.491645][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.496754][T14385] get_compat_msghdr+0x108/0x270 [ 430.501691][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.506191][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.510870][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.516935][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.523088][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.528284][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.533129][T14385] do_SYSENTER_32+0x73/0x90 [ 430.537632][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.543947][T14385] [ 430.546267][T14385] Uninit was stored to memory at: [ 430.551291][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.557006][T14385] __msan_chain_origin+0x50/0x90 [ 430.561945][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.567053][T14385] get_compat_msghdr+0x108/0x270 [ 430.571989][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.576491][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.581168][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.587232][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.593384][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.598586][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.603435][T14385] do_SYSENTER_32+0x73/0x90 [ 430.607936][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.614245][T14385] [ 430.616565][T14385] Uninit was stored to memory at: [ 430.621594][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 430.627313][T14385] __msan_chain_origin+0x50/0x90 [ 430.632257][T14385] __get_compat_msghdr+0x5be/0x890 [ 430.637371][T14385] get_compat_msghdr+0x108/0x270 [ 430.642311][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 430.646815][T14385] __sys_recvmmsg+0x4ca/0x510 [ 430.651586][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 430.657651][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 430.663805][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 430.669011][T14385] do_fast_syscall_32+0x6b/0xd0 [ 430.673868][T14385] do_SYSENTER_32+0x73/0x90 [ 430.678377][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 430.684777][T14385] [ 430.687100][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 430.693795][T14385] do_recvmmsg+0xc5/0x1ee0 [ 430.698234][T14385] do_recvmmsg+0xc5/0x1ee0 09:44:41 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00'}) getsockopt$inet_mreqsrc(r0, 0x0, 0x26, &(0x7f00000000c0)={@rand_addr, @local, @private}, &(0x7f0000000100)=0xc) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000780)={0x0, 0x3, &(0x7f0000000740)={&(0x7f0000000000)={0x2c, r3, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x11, 0x2, 0x8001) bind(r5, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r4, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="400000001000010800"/20, @ANYRES32=r6, @ANYBLOB="000000180016801400018010000500e1ffff80000006000000000008000400"/40], 0x40}}, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x5c, r3, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x200040c0) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r7, 0x0) ioctl$UI_GET_VERSION(r7, 0x8004552d, &(0x7f0000000080)) 09:44:42 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r3, 0x0, 0x0) chown(&(0x7f0000000000)='./file0\x00', r1, r3) 09:44:42 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r2, 0x0) ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000000)=0x9) 09:44:43 executing program 5: semget$private(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r1 = fanotify_init(0x0, 0x0) read(r1, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_genetlink_get_family_id$ethtool(0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 09:44:43 executing program 2: syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040)={'#! ', './file0', [{0x20, 'net/igmp\x00'}, {}, {0x20, 'net/igmp\x00'}, {0x20, '\x1b'}, {0x20, 'net/igmp\x00'}], 0xa, "a5f4056137d08e6e10dcb9fd05ceb1b250e49be610524c5cdf79ff38946fc700be0a338e86248bce7631803aa09fd436cbc893f2588f1a56366f170537b1"}, 0x6a) r0 = socket$xdp(0x2c, 0x3, 0x0) preadv(r0, &(0x7f0000000000)=[{&(0x7f0000001280)=""/4097, 0x1001}], 0x1, 0x359) 09:44:43 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) arch_prctl$ARCH_GET_CPUID(0x1011) 09:44:43 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x0, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 432.679302][T14437] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.0'. [ 432.701216][T14385] not chained 80000 origins [ 432.705755][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 432.714422][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 432.724479][T14385] Call Trace: [ 432.727793][T14385] dump_stack+0x1df/0x240 [ 432.732156][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 432.737932][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 432.743067][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 432.748654][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 432.754751][T14385] ? _copy_from_user+0x15b/0x260 [ 432.759701][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 432.764821][T14385] __msan_chain_origin+0x50/0x90 [ 432.769789][T14385] __get_compat_msghdr+0x5be/0x890 [ 432.774950][T14385] get_compat_msghdr+0x108/0x270 [ 432.779921][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 432.784453][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 432.790127][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 432.795248][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 432.800896][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 432.806185][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 432.810931][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 432.815682][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 432.820867][T14385] __sys_recvmmsg+0x4ca/0x510 [ 432.825644][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 432.831717][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 432.837979][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 432.844149][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 432.849373][T14385] do_fast_syscall_32+0x6b/0xd0 [ 432.854250][T14385] do_SYSENTER_32+0x73/0x90 [ 432.858762][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 432.865081][T14385] RIP: 0023:0xf7f3c549 [ 432.869130][T14385] Code: Bad RIP value. [ 432.873200][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 432.881615][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 432.889580][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 432.897554][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 432.905529][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 432.914536][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 432.922514][T14385] Uninit was stored to memory at: [ 432.927551][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 432.933283][T14385] __msan_chain_origin+0x50/0x90 [ 432.938224][T14385] __get_compat_msghdr+0x5be/0x890 [ 432.943336][T14385] get_compat_msghdr+0x108/0x270 [ 432.948266][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 432.952776][T14385] __sys_recvmmsg+0x4ca/0x510 [ 432.957460][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 432.963523][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 432.969659][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 432.974860][T14385] do_fast_syscall_32+0x6b/0xd0 [ 432.979723][T14385] do_SYSENTER_32+0x73/0x90 [ 432.984223][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 432.990534][T14385] [ 432.992851][T14385] Uninit was stored to memory at: [ 432.997947][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.003657][T14385] __msan_chain_origin+0x50/0x90 [ 433.008603][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.013720][T14385] get_compat_msghdr+0x108/0x270 [ 433.018659][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.023202][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.027880][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.033943][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.040094][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.045276][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.050107][T14385] do_SYSENTER_32+0x73/0x90 [ 433.054609][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.060921][T14385] [ 433.063289][T14385] Uninit was stored to memory at: [ 433.068309][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.074040][T14385] __msan_chain_origin+0x50/0x90 [ 433.078959][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.084064][T14385] get_compat_msghdr+0x108/0x270 [ 433.089008][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.093505][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.098166][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.104223][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.110384][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.115571][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.120416][T14385] do_SYSENTER_32+0x73/0x90 [ 433.124919][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.131233][T14385] [ 433.133548][T14385] Uninit was stored to memory at: [ 433.138566][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.144281][T14385] __msan_chain_origin+0x50/0x90 [ 433.149213][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.154316][T14385] get_compat_msghdr+0x108/0x270 [ 433.159278][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.163766][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.168434][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.174503][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.180672][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.185858][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.190693][T14385] do_SYSENTER_32+0x73/0x90 [ 433.195185][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.201486][T14385] [ 433.203792][T14385] Uninit was stored to memory at: [ 433.208815][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.214543][T14385] __msan_chain_origin+0x50/0x90 [ 433.219493][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.224615][T14385] get_compat_msghdr+0x108/0x270 [ 433.229553][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.234050][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.238728][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.244818][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.250973][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.256153][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.260991][T14385] do_SYSENTER_32+0x73/0x90 [ 433.265478][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.271822][T14385] [ 433.274172][T14385] Uninit was stored to memory at: [ 433.279272][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.285021][T14385] __msan_chain_origin+0x50/0x90 [ 433.289942][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.295044][T14385] get_compat_msghdr+0x108/0x270 [ 433.299988][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.304496][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.309174][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.315249][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.321412][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.326613][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.331462][T14385] do_SYSENTER_32+0x73/0x90 [ 433.335964][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.342296][T14385] [ 433.344617][T14385] Uninit was stored to memory at: [ 433.349646][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 433.355364][T14385] __msan_chain_origin+0x50/0x90 [ 433.360303][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.365416][T14385] get_compat_msghdr+0x108/0x270 [ 433.370360][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.374869][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.379546][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.385650][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 433.391814][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 433.397017][T14385] do_fast_syscall_32+0x6b/0xd0 [ 433.401873][T14385] do_SYSENTER_32+0x73/0x90 [ 433.406377][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 433.412695][T14385] [ 433.415019][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 433.421702][T14385] do_recvmmsg+0xc5/0x1ee0 [ 433.426122][T14385] do_recvmmsg+0xc5/0x1ee0 [ 433.498188][T14437] loop0: p1[EZD] p2 p3 p4 [ 433.502684][T14437] loop0: partition table partially beyond EOD, truncated [ 433.511171][T14437] loop0: p1 start 4106 is beyond EOD, truncated [ 433.517544][T14437] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 433.557838][T14437] loop0: p3 start 225 is beyond EOD, truncated [ 433.564091][T14437] loop0: p4 size 3657465856 extends beyond EOD, truncated [ 433.867270][T14385] not chained 90000 origins [ 433.871828][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 433.880588][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 433.890653][T14385] Call Trace: [ 433.893966][T14385] dump_stack+0x1df/0x240 [ 433.898323][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 433.904100][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 433.909225][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 433.914811][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 433.920895][T14385] ? _copy_from_user+0x15b/0x260 [ 433.925839][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 433.930962][T14385] __msan_chain_origin+0x50/0x90 [ 433.935914][T14385] __get_compat_msghdr+0x5be/0x890 [ 433.941066][T14385] get_compat_msghdr+0x108/0x270 [ 433.946216][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 433.950747][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 433.956414][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 433.961536][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 433.967174][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 433.972471][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 433.977239][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 433.982008][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 433.987238][T14385] __sys_recvmmsg+0x4ca/0x510 [ 433.991948][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 433.998031][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 434.004280][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.010442][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.015658][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.020518][T14385] do_SYSENTER_32+0x73/0x90 [ 434.025034][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.031362][T14385] RIP: 0023:0xf7f3c549 [ 434.035419][T14385] Code: Bad RIP value. [ 434.039491][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 434.047918][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 434.055886][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 434.063852][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 434.071823][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 434.079789][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 434.087773][T14385] Uninit was stored to memory at: [ 434.092803][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.098520][T14385] __msan_chain_origin+0x50/0x90 [ 434.103459][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.108572][T14385] get_compat_msghdr+0x108/0x270 [ 434.113511][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.118011][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.122689][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.128774][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.134924][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.140127][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.144975][T14385] do_SYSENTER_32+0x73/0x90 [ 434.149478][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.155791][T14385] [ 434.158108][T14385] Uninit was stored to memory at: [ 434.163132][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.168849][T14385] __msan_chain_origin+0x50/0x90 [ 434.173790][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.178901][T14385] get_compat_msghdr+0x108/0x270 [ 434.183841][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.188371][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.193052][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.199122][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.205277][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.210483][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.215336][T14385] do_SYSENTER_32+0x73/0x90 [ 434.219848][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.226161][T14385] [ 434.228479][T14385] Uninit was stored to memory at: [ 434.233503][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.239218][T14385] __msan_chain_origin+0x50/0x90 [ 434.244158][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.249270][T14385] get_compat_msghdr+0x108/0x270 [ 434.254206][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.258737][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.263412][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.269480][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.275633][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.280835][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.285689][T14385] do_SYSENTER_32+0x73/0x90 [ 434.290191][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.296506][T14385] [ 434.298828][T14385] Uninit was stored to memory at: [ 434.303856][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.309594][T14385] __msan_chain_origin+0x50/0x90 [ 434.314536][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.319649][T14385] get_compat_msghdr+0x108/0x270 [ 434.324592][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.329100][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.333777][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.339848][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.346003][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.351204][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.356056][T14385] do_SYSENTER_32+0x73/0x90 [ 434.360557][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.366872][T14385] [ 434.369191][T14385] Uninit was stored to memory at: [ 434.374231][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.379951][T14385] __msan_chain_origin+0x50/0x90 [ 434.384889][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.390010][T14385] get_compat_msghdr+0x108/0x270 [ 434.394971][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.399474][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.404150][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.410218][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.416382][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.421585][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.426519][T14385] do_SYSENTER_32+0x73/0x90 [ 434.431028][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.437354][T14385] [ 434.439682][T14385] Uninit was stored to memory at: [ 434.444724][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.450442][T14385] __msan_chain_origin+0x50/0x90 [ 434.455387][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.460500][T14385] get_compat_msghdr+0x108/0x270 [ 434.465436][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.469939][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.474616][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.480680][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.486830][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.492029][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.496877][T14385] do_SYSENTER_32+0x73/0x90 [ 434.501382][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.507700][T14385] [ 434.510018][T14385] Uninit was stored to memory at: [ 434.515041][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 434.520758][T14385] __msan_chain_origin+0x50/0x90 [ 434.525708][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.530821][T14385] get_compat_msghdr+0x108/0x270 [ 434.535755][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.540261][T14385] __sys_recvmmsg+0x4ca/0x510 [ 434.544934][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 434.550997][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 434.557150][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 434.562348][T14385] do_fast_syscall_32+0x6b/0xd0 [ 434.567202][T14385] do_SYSENTER_32+0x73/0x90 [ 434.571718][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 434.578034][T14385] [ 434.580358][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 434.587032][T14385] do_recvmmsg+0xc5/0x1ee0 [ 434.591444][T14385] do_recvmmsg+0xc5/0x1ee0 [ 434.909763][T14385] not chained 100000 origins [ 434.914399][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 434.923066][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 434.933123][T14385] Call Trace: [ 434.936540][T14385] dump_stack+0x1df/0x240 [ 434.940898][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 434.946687][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 434.951809][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 434.957368][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 434.963460][T14385] ? _copy_from_user+0x15b/0x260 [ 434.968583][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 434.973706][T14385] __msan_chain_origin+0x50/0x90 [ 434.978661][T14385] __get_compat_msghdr+0x5be/0x890 [ 434.983809][T14385] get_compat_msghdr+0x108/0x270 [ 434.988778][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 434.993312][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 434.998978][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 435.004098][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 435.009743][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 435.015054][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 435.019830][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 435.024609][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 435.029822][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.034546][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.040633][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 435.046914][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.053081][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.058305][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.063178][T14385] do_SYSENTER_32+0x73/0x90 [ 435.067695][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.074025][T14385] RIP: 0023:0xf7f3c549 [ 435.078176][T14385] Code: Bad RIP value. [ 435.082244][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 435.090657][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 435.098631][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 435.106608][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 435.114581][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 435.122558][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 435.130552][T14385] Uninit was stored to memory at: [ 435.135594][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.141321][T14385] __msan_chain_origin+0x50/0x90 [ 435.146270][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.151388][T14385] get_compat_msghdr+0x108/0x270 [ 435.156337][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.160849][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.165537][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.171606][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.177766][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.182968][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.187826][T14385] do_SYSENTER_32+0x73/0x90 [ 435.192342][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.198666][T14385] [ 435.200993][T14385] Uninit was stored to memory at: [ 435.206031][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.211790][T14385] __msan_chain_origin+0x50/0x90 [ 435.216745][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.221873][T14385] get_compat_msghdr+0x108/0x270 [ 435.226822][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.231335][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.236019][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.242092][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.248251][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.253461][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.258324][T14385] do_SYSENTER_32+0x73/0x90 [ 435.262831][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.269152][T14385] [ 435.271474][T14385] Uninit was stored to memory at: [ 435.276508][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.282232][T14385] __msan_chain_origin+0x50/0x90 [ 435.287176][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.292290][T14385] get_compat_msghdr+0x108/0x270 [ 435.297234][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.301734][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.306388][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.312432][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.318564][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.323746][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.328575][T14385] do_SYSENTER_32+0x73/0x90 [ 435.333060][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.339364][T14385] [ 435.341715][T14385] Uninit was stored to memory at: [ 435.346751][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.352476][T14385] __msan_chain_origin+0x50/0x90 [ 435.357401][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.362492][T14385] get_compat_msghdr+0x108/0x270 [ 435.367411][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.371891][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.376545][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.382590][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.388730][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.393914][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.398744][T14385] do_SYSENTER_32+0x73/0x90 [ 435.403225][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.409534][T14385] [ 435.411839][T14385] Uninit was stored to memory at: [ 435.416856][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.422560][T14385] __msan_chain_origin+0x50/0x90 [ 435.427509][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.432627][T14385] get_compat_msghdr+0x108/0x270 [ 435.437546][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.442028][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.446681][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.452726][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.458876][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.464055][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.468888][T14385] do_SYSENTER_32+0x73/0x90 [ 435.473368][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.479666][T14385] [ 435.481976][T14385] Uninit was stored to memory at: [ 435.486985][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.492681][T14385] __msan_chain_origin+0x50/0x90 [ 435.497600][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.502692][T14385] get_compat_msghdr+0x108/0x270 [ 435.507610][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.512089][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.516744][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.522788][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.528921][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.534095][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.538939][T14385] do_SYSENTER_32+0x73/0x90 [ 435.543419][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.549715][T14385] [ 435.552019][T14385] Uninit was stored to memory at: [ 435.557023][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 435.562724][T14385] __msan_chain_origin+0x50/0x90 [ 435.567662][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.572757][T14385] get_compat_msghdr+0x108/0x270 [ 435.577691][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.582177][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.586834][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.592909][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.599060][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.604240][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.609070][T14385] do_SYSENTER_32+0x73/0x90 [ 435.613551][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.619850][T14385] [ 435.622161][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 435.628829][T14385] do_recvmmsg+0xc5/0x1ee0 [ 435.633225][T14385] do_recvmmsg+0xc5/0x1ee0 [ 435.805513][T14385] not chained 110000 origins [ 435.810150][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 435.818820][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 435.828874][T14385] Call Trace: [ 435.832184][T14385] dump_stack+0x1df/0x240 [ 435.836536][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 435.842312][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 435.847521][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 435.853055][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 435.859125][T14385] ? _copy_from_user+0x15b/0x260 [ 435.864060][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 435.869170][T14385] __msan_chain_origin+0x50/0x90 [ 435.874127][T14385] __get_compat_msghdr+0x5be/0x890 [ 435.879252][T14385] get_compat_msghdr+0x108/0x270 [ 435.884182][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 435.888684][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 435.894345][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 435.899450][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 435.905097][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 435.910375][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 435.915120][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 435.919867][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 435.925048][T14385] __sys_recvmmsg+0x4ca/0x510 [ 435.929740][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 435.935876][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 435.942094][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 435.948230][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 435.953417][T14385] do_fast_syscall_32+0x6b/0xd0 [ 435.958254][T14385] do_SYSENTER_32+0x73/0x90 [ 435.962738][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 435.969051][T14385] RIP: 0023:0xf7f3c549 [ 435.973106][T14385] Code: Bad RIP value. [ 435.977146][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 435.985533][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 435.993500][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 436.001467][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 436.009433][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 436.017390][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 436.025356][T14385] Uninit was stored to memory at: [ 436.030374][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.036075][T14385] __msan_chain_origin+0x50/0x90 [ 436.041014][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.046109][T14385] get_compat_msghdr+0x108/0x270 [ 436.051057][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.055544][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.060464][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.066521][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.072663][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.077881][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.082724][T14385] do_SYSENTER_32+0x73/0x90 [ 436.087219][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.093536][T14385] [ 436.095879][T14385] Uninit was stored to memory at: [ 436.100887][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.106589][T14385] __msan_chain_origin+0x50/0x90 [ 436.111528][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.116635][T14385] get_compat_msghdr+0x108/0x270 [ 436.121554][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.126034][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.130692][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.136737][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.142890][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.148071][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.152896][T14385] do_SYSENTER_32+0x73/0x90 [ 436.157381][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.163674][T14385] [ 436.165976][T14385] Uninit was stored to memory at: [ 436.171002][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.176718][T14385] __msan_chain_origin+0x50/0x90 [ 436.181636][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.186723][T14385] get_compat_msghdr+0x108/0x270 [ 436.191653][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.196148][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.200815][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.206903][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.213039][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.218219][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.223064][T14385] do_SYSENTER_32+0x73/0x90 [ 436.227569][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.233867][T14385] [ 436.236174][T14385] Uninit was stored to memory at: [ 436.241229][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.246927][T14385] __msan_chain_origin+0x50/0x90 [ 436.251852][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.256946][T14385] get_compat_msghdr+0x108/0x270 [ 436.262270][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.266759][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.271438][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.277517][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.283649][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.288828][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.293657][T14385] do_SYSENTER_32+0x73/0x90 [ 436.298154][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.304464][T14385] [ 436.306795][T14385] Uninit was stored to memory at: [ 436.312251][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.317963][T14385] __msan_chain_origin+0x50/0x90 [ 436.322897][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.327999][T14385] get_compat_msghdr+0x108/0x270 [ 436.332918][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.337403][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.342063][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.348110][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.354274][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.359498][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.364323][T14385] do_SYSENTER_32+0x73/0x90 [ 436.368803][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.375111][T14385] [ 436.377424][T14385] Uninit was stored to memory at: [ 436.382437][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.388137][T14385] __msan_chain_origin+0x50/0x90 [ 436.393054][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.398147][T14385] get_compat_msghdr+0x108/0x270 [ 436.403171][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.407667][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.412356][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.418432][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.424595][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.429778][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.434617][T14385] do_SYSENTER_32+0x73/0x90 [ 436.439137][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.445455][T14385] [ 436.447761][T14385] Uninit was stored to memory at: [ 436.452770][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.458471][T14385] __msan_chain_origin+0x50/0x90 [ 436.463433][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.468530][T14385] get_compat_msghdr+0x108/0x270 [ 436.473495][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.477981][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.482648][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.488698][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.494877][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.500066][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.504899][T14385] do_SYSENTER_32+0x73/0x90 [ 436.509393][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.515702][T14385] [ 436.518015][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 436.524726][T14385] do_recvmmsg+0xc5/0x1ee0 [ 436.529137][T14385] do_recvmmsg+0xc5/0x1ee0 [ 436.639918][T14385] not chained 120000 origins [ 436.644548][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 436.653216][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 436.663272][T14385] Call Trace: [ 436.666581][T14385] dump_stack+0x1df/0x240 [ 436.670935][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 436.676710][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 436.681865][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 436.687424][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 436.693510][T14385] ? _copy_from_user+0x15b/0x260 [ 436.698457][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 436.703582][T14385] __msan_chain_origin+0x50/0x90 [ 436.708574][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.713725][T14385] get_compat_msghdr+0x108/0x270 [ 436.718693][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.723224][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 436.728932][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 436.734057][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 436.739729][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 436.745067][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 436.749872][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 436.754648][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 436.759868][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.764578][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.770668][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 436.776919][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.783114][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.788337][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.793208][T14385] do_SYSENTER_32+0x73/0x90 [ 436.797725][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.804053][T14385] RIP: 0023:0xf7f3c549 [ 436.808117][T14385] Code: Bad RIP value. [ 436.812181][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 436.820602][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 436.828579][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 436.836547][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 436.844612][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 436.852586][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 436.860583][T14385] Uninit was stored to memory at: [ 436.865628][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.871529][T14385] __msan_chain_origin+0x50/0x90 [ 436.876482][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.881605][T14385] get_compat_msghdr+0x108/0x270 [ 436.886555][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.891067][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.895767][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.901851][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.908017][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.913222][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.918082][T14385] do_SYSENTER_32+0x73/0x90 [ 436.922590][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.928910][T14385] [ 436.931234][T14385] Uninit was stored to memory at: [ 436.936274][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 436.942002][T14385] __msan_chain_origin+0x50/0x90 [ 436.946946][T14385] __get_compat_msghdr+0x5be/0x890 [ 436.952064][T14385] get_compat_msghdr+0x108/0x270 [ 436.957011][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 436.961521][T14385] __sys_recvmmsg+0x4ca/0x510 [ 436.966209][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 436.972280][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 436.978439][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 436.983643][T14385] do_fast_syscall_32+0x6b/0xd0 [ 436.988499][T14385] do_SYSENTER_32+0x73/0x90 [ 436.993011][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 436.999329][T14385] [ 437.001656][T14385] Uninit was stored to memory at: [ 437.006690][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.012403][T14385] __msan_chain_origin+0x50/0x90 [ 437.017354][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.022460][T14385] get_compat_msghdr+0x108/0x270 [ 437.027381][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.031876][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.036531][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.042576][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.048713][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.053890][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.058734][T14385] do_SYSENTER_32+0x73/0x90 [ 437.063230][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.069534][T14385] [ 437.071854][T14385] Uninit was stored to memory at: [ 437.076871][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.082580][T14385] __msan_chain_origin+0x50/0x90 [ 437.087526][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.092631][T14385] get_compat_msghdr+0x108/0x270 [ 437.097579][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.102075][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.106737][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.112781][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.118949][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.124171][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.129006][T14385] do_SYSENTER_32+0x73/0x90 [ 437.133499][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.139800][T14385] [ 437.142129][T14385] Uninit was stored to memory at: [ 437.147158][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.152870][T14385] __msan_chain_origin+0x50/0x90 [ 437.157801][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.162921][T14385] get_compat_msghdr+0x108/0x270 [ 437.167845][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.172325][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.176990][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.183063][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.189224][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.194430][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.199271][T14385] do_SYSENTER_32+0x73/0x90 [ 437.203766][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.210067][T14385] [ 437.212371][T14385] Uninit was stored to memory at: [ 437.217397][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.223115][T14385] __msan_chain_origin+0x50/0x90 [ 437.228037][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.233128][T14385] get_compat_msghdr+0x108/0x270 [ 437.238064][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.242572][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.247255][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.253337][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.259482][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.264674][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.269512][T14385] do_SYSENTER_32+0x73/0x90 [ 437.273991][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.280286][T14385] [ 437.282590][T14385] Uninit was stored to memory at: [ 437.287608][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.293325][T14385] __msan_chain_origin+0x50/0x90 [ 437.298259][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.303376][T14385] get_compat_msghdr+0x108/0x270 [ 437.308324][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.312821][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.317495][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.323555][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.329694][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.334894][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.339754][T14385] do_SYSENTER_32+0x73/0x90 [ 437.344293][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.350596][T14385] [ 437.352955][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 437.360578][T14385] do_recvmmsg+0xc5/0x1ee0 [ 437.365017][T14385] do_recvmmsg+0xc5/0x1ee0 [ 437.464883][T14385] not chained 130000 origins [ 437.469549][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 437.478216][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 437.488270][T14385] Call Trace: [ 437.491575][T14385] dump_stack+0x1df/0x240 [ 437.495924][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 437.501697][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 437.506821][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 437.512387][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 437.518479][T14385] ? _copy_from_user+0x15b/0x260 [ 437.523426][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 437.528549][T14385] __msan_chain_origin+0x50/0x90 [ 437.533507][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.538695][T14385] get_compat_msghdr+0x108/0x270 [ 437.543663][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.548195][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 437.553868][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 437.559022][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 437.564686][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 437.569985][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 437.574759][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 437.579571][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 437.584786][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.589602][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.595692][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 437.601946][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.608113][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.613335][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.618205][T14385] do_SYSENTER_32+0x73/0x90 [ 437.622721][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.629053][T14385] RIP: 0023:0xf7f3c549 [ 437.633144][T14385] Code: Bad RIP value. [ 437.637213][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 437.645634][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 437.653640][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 437.661650][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 437.669613][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 437.677578][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 437.685550][T14385] Uninit was stored to memory at: [ 437.690563][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.696287][T14385] __msan_chain_origin+0x50/0x90 [ 437.701209][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.706297][T14385] get_compat_msghdr+0x108/0x270 [ 437.711251][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.715734][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.720427][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.726468][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.732611][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.737817][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.742670][T14385] do_SYSENTER_32+0x73/0x90 [ 437.747167][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.753522][T14385] [ 437.755832][T14385] Uninit was stored to memory at: [ 437.760863][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.766563][T14385] __msan_chain_origin+0x50/0x90 [ 437.771486][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.776581][T14385] get_compat_msghdr+0x108/0x270 [ 437.781506][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.786003][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.790682][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.796732][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.802870][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.808069][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.812956][T14385] do_SYSENTER_32+0x73/0x90 [ 437.817440][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.823738][T14385] [ 437.826042][T14385] Uninit was stored to memory at: [ 437.831052][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.836760][T14385] __msan_chain_origin+0x50/0x90 [ 437.841714][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.846820][T14385] get_compat_msghdr+0x108/0x270 [ 437.851757][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.856255][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.860913][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.866958][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.873094][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.878277][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.883121][T14385] do_SYSENTER_32+0x73/0x90 [ 437.887632][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.893940][T14385] [ 437.896260][T14385] Uninit was stored to memory at: [ 437.901267][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.906965][T14385] __msan_chain_origin+0x50/0x90 [ 437.911898][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.916987][T14385] get_compat_msghdr+0x108/0x270 [ 437.921907][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.926388][T14385] __sys_recvmmsg+0x4ca/0x510 [ 437.931048][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 437.937092][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 437.943236][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 437.948427][T14385] do_fast_syscall_32+0x6b/0xd0 [ 437.953281][T14385] do_SYSENTER_32+0x73/0x90 [ 437.957814][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 437.964136][T14385] [ 437.966475][T14385] Uninit was stored to memory at: [ 437.971497][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 437.977222][T14385] __msan_chain_origin+0x50/0x90 [ 437.982155][T14385] __get_compat_msghdr+0x5be/0x890 [ 437.987261][T14385] get_compat_msghdr+0x108/0x270 [ 437.992229][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 437.996708][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.001364][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.007419][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.013562][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.018758][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.023591][T14385] do_SYSENTER_32+0x73/0x90 [ 438.028087][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.034396][T14385] [ 438.036701][T14385] Uninit was stored to memory at: [ 438.041708][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.047420][T14385] __msan_chain_origin+0x50/0x90 [ 438.052351][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.057455][T14385] get_compat_msghdr+0x108/0x270 [ 438.062388][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.066873][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.071546][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.077620][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.083771][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.088966][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.093807][T14385] do_SYSENTER_32+0x73/0x90 [ 438.098305][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.104614][T14385] [ 438.106915][T14385] Uninit was stored to memory at: [ 438.111919][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.117629][T14385] __msan_chain_origin+0x50/0x90 [ 438.122564][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.127670][T14385] get_compat_msghdr+0x108/0x270 [ 438.132612][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.137100][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.141772][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.147829][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.153982][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.159179][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.164009][T14385] do_SYSENTER_32+0x73/0x90 [ 438.168503][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.174816][T14385] [ 438.177130][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 438.183800][T14385] do_recvmmsg+0xc5/0x1ee0 [ 438.188214][T14385] do_recvmmsg+0xc5/0x1ee0 [ 438.292337][T14385] not chained 140000 origins [ 438.296976][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 438.305642][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 438.315696][T14385] Call Trace: [ 438.318998][T14385] dump_stack+0x1df/0x240 [ 438.323350][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 438.329124][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 438.334247][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 438.339807][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 438.345921][T14385] ? _copy_from_user+0x15b/0x260 [ 438.350874][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 438.356016][T14385] __msan_chain_origin+0x50/0x90 [ 438.360978][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.366132][T14385] get_compat_msghdr+0x108/0x270 [ 438.371098][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.375632][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 438.381304][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 438.386433][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 438.392081][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 438.397381][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 438.402153][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 438.406929][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 438.412142][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.416851][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.422943][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 438.429195][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.435359][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.440582][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.445453][T14385] do_SYSENTER_32+0x73/0x90 [ 438.449968][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.456300][T14385] RIP: 0023:0xf7f3c549 [ 438.460361][T14385] Code: Bad RIP value. [ 438.464443][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 438.472860][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 438.480847][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 438.488840][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 438.496917][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 438.504906][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 438.512919][T14385] Uninit was stored to memory at: [ 438.517961][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.523685][T14385] __msan_chain_origin+0x50/0x90 [ 438.528633][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.533750][T14385] get_compat_msghdr+0x108/0x270 [ 438.538694][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.543201][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.547890][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.553960][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.560117][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.565321][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.570175][T14385] do_SYSENTER_32+0x73/0x90 [ 438.574688][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.581001][T14385] [ 438.583324][T14385] Uninit was stored to memory at: [ 438.588356][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.594110][T14385] __msan_chain_origin+0x50/0x90 [ 438.599055][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.604174][T14385] get_compat_msghdr+0x108/0x270 [ 438.609121][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.613619][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.618293][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.624364][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.630511][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.635687][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.640553][T14385] do_SYSENTER_32+0x73/0x90 [ 438.645038][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.651337][T14385] [ 438.653642][T14385] Uninit was stored to memory at: [ 438.658665][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.664382][T14385] __msan_chain_origin+0x50/0x90 [ 438.669304][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.674393][T14385] get_compat_msghdr+0x108/0x270 [ 438.679321][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.683815][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.688474][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.694518][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.700653][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.705847][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.710715][T14385] do_SYSENTER_32+0x73/0x90 [ 438.715214][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.721530][T14385] [ 438.723877][T14385] Uninit was stored to memory at: [ 438.728954][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.734684][T14385] __msan_chain_origin+0x50/0x90 [ 438.739639][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.744764][T14385] get_compat_msghdr+0x108/0x270 [ 438.749703][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.754202][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.758891][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.764992][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.771136][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.776313][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.781145][T14385] do_SYSENTER_32+0x73/0x90 [ 438.785642][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.791939][T14385] [ 438.794246][T14385] Uninit was stored to memory at: [ 438.799262][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.804977][T14385] __msan_chain_origin+0x50/0x90 [ 438.809914][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.815011][T14385] get_compat_msghdr+0x108/0x270 [ 438.819933][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.824434][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.829107][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.835165][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.841309][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.846504][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.851340][T14385] do_SYSENTER_32+0x73/0x90 [ 438.855819][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.862122][T14385] [ 438.864428][T14385] Uninit was stored to memory at: [ 438.869449][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.875145][T14385] __msan_chain_origin+0x50/0x90 [ 438.880065][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.885158][T14385] get_compat_msghdr+0x108/0x270 [ 438.890090][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.894600][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.899277][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.905347][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.911508][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.916697][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.921533][T14385] do_SYSENTER_32+0x73/0x90 [ 438.926015][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 438.932315][T14385] [ 438.934637][T14385] Uninit was stored to memory at: [ 438.939657][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 438.945375][T14385] __msan_chain_origin+0x50/0x90 [ 438.950314][T14385] __get_compat_msghdr+0x5be/0x890 [ 438.955528][T14385] get_compat_msghdr+0x108/0x270 [ 438.960473][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 438.964979][T14385] __sys_recvmmsg+0x4ca/0x510 [ 438.969652][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 438.975702][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 438.981841][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 438.987040][T14385] do_fast_syscall_32+0x6b/0xd0 [ 438.991894][T14385] do_SYSENTER_32+0x73/0x90 [ 438.996383][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.002698][T14385] [ 439.005022][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 439.011685][T14385] do_recvmmsg+0xc5/0x1ee0 [ 439.016097][T14385] do_recvmmsg+0xc5/0x1ee0 [ 439.116091][T14385] not chained 150000 origins [ 439.120727][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 439.129422][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 439.139490][T14385] Call Trace: [ 439.142801][T14385] dump_stack+0x1df/0x240 [ 439.147152][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 439.152951][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 439.158081][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 439.163649][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 439.169743][T14385] ? _copy_from_user+0x15b/0x260 [ 439.174704][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 439.179833][T14385] __msan_chain_origin+0x50/0x90 [ 439.184793][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.189943][T14385] get_compat_msghdr+0x108/0x270 [ 439.194915][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.199449][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 439.205118][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 439.210247][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 439.215904][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 439.221216][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 439.225994][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 439.230771][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 439.236011][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.240722][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.246810][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 439.253066][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.259239][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.264465][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.269336][T14385] do_SYSENTER_32+0x73/0x90 [ 439.273856][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.280198][T14385] RIP: 0023:0xf7f3c549 [ 439.284261][T14385] Code: Bad RIP value. [ 439.288328][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 439.296751][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 439.304732][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 439.312712][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 439.320684][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 439.328644][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 439.336616][T14385] Uninit was stored to memory at: [ 439.341639][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.347366][T14385] __msan_chain_origin+0x50/0x90 [ 439.352294][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.357401][T14385] get_compat_msghdr+0x108/0x270 [ 439.362342][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.366825][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.371481][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.377556][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.383722][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.388947][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.393797][T14385] do_SYSENTER_32+0x73/0x90 [ 439.398301][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.404632][T14385] [ 439.406938][T14385] Uninit was stored to memory at: [ 439.411947][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.417656][T14385] __msan_chain_origin+0x50/0x90 [ 439.422590][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.427715][T14385] get_compat_msghdr+0x108/0x270 [ 439.432666][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.437168][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.441850][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.447906][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.454036][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.459224][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.464064][T14385] do_SYSENTER_32+0x73/0x90 [ 439.468547][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.474846][T14385] [ 439.477156][T14385] Uninit was stored to memory at: [ 439.482187][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.487911][T14385] __msan_chain_origin+0x50/0x90 [ 439.492869][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.497985][T14385] get_compat_msghdr+0x108/0x270 [ 439.502925][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.507430][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.512097][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.518152][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.524300][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.529519][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.534378][T14385] do_SYSENTER_32+0x73/0x90 [ 439.538863][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.545261][T14385] [ 439.547571][T14385] Uninit was stored to memory at: [ 439.552632][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.558341][T14385] __msan_chain_origin+0x50/0x90 [ 439.563274][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.568378][T14385] get_compat_msghdr+0x108/0x270 [ 439.573307][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.577799][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.582473][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.588520][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.594653][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.599856][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.604699][T14385] do_SYSENTER_32+0x73/0x90 [ 439.609192][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.615503][T14385] [ 439.617814][T14385] Uninit was stored to memory at: [ 439.622865][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.628572][T14385] __msan_chain_origin+0x50/0x90 [ 439.633494][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.638606][T14385] get_compat_msghdr+0x108/0x270 [ 439.643557][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.648058][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.652746][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.658814][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.664977][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.670164][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.674995][T14385] do_SYSENTER_32+0x73/0x90 [ 439.679480][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.685776][T14385] [ 439.688089][T14385] Uninit was stored to memory at: [ 439.693107][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.698803][T14385] __msan_chain_origin+0x50/0x90 [ 439.703726][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.708834][T14385] get_compat_msghdr+0x108/0x270 [ 439.713769][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.718266][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.722948][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.729018][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.735168][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.740350][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.745182][T14385] do_SYSENTER_32+0x73/0x90 [ 439.755489][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.761804][T14385] [ 439.764111][T14385] Uninit was stored to memory at: [ 439.769120][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 439.774818][T14385] __msan_chain_origin+0x50/0x90 [ 439.779748][T14385] __get_compat_msghdr+0x5be/0x890 [ 439.784844][T14385] get_compat_msghdr+0x108/0x270 [ 439.789766][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 439.794244][T14385] __sys_recvmmsg+0x4ca/0x510 [ 439.798913][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 439.804972][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 439.811122][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 439.816301][T14385] do_fast_syscall_32+0x6b/0xd0 [ 439.821148][T14385] do_SYSENTER_32+0x73/0x90 [ 439.825649][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 439.831954][T14385] [ 439.834275][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 439.840941][T14385] do_recvmmsg+0xc5/0x1ee0 [ 439.845372][T14385] do_recvmmsg+0xc5/0x1ee0 [ 439.943719][T14385] not chained 160000 origins [ 439.948352][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 439.957018][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 439.967074][T14385] Call Trace: [ 439.970379][T14385] dump_stack+0x1df/0x240 [ 439.974732][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 439.980503][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 439.985625][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 439.991181][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 439.997266][T14385] ? _copy_from_user+0x15b/0x260 [ 440.002227][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 440.007349][T14385] __msan_chain_origin+0x50/0x90 [ 440.012305][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.017452][T14385] get_compat_msghdr+0x108/0x270 [ 440.022451][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.026991][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 440.032663][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 440.037786][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 440.043435][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 440.048735][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 440.053507][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 440.058287][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 440.063504][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.068211][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.074299][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 440.080554][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.086726][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.091953][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.096820][T14385] do_SYSENTER_32+0x73/0x90 [ 440.101349][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.107682][T14385] RIP: 0023:0xf7f3c549 [ 440.111767][T14385] Code: Bad RIP value. [ 440.115840][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 440.124256][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 440.132231][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 440.140206][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 440.148180][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 440.156153][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 440.164147][T14385] Uninit was stored to memory at: [ 440.169185][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.174917][T14385] __msan_chain_origin+0x50/0x90 [ 440.179874][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.185035][T14385] get_compat_msghdr+0x108/0x270 [ 440.189982][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.194491][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.199174][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.205252][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.211416][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.216632][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.221491][T14385] do_SYSENTER_32+0x73/0x90 [ 440.225999][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.232334][T14385] [ 440.234656][T14385] Uninit was stored to memory at: [ 440.239670][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.245367][T14385] __msan_chain_origin+0x50/0x90 [ 440.250310][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.255424][T14385] get_compat_msghdr+0x108/0x270 [ 440.260364][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.264888][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.269568][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.275629][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.281767][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.286950][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.291808][T14385] do_SYSENTER_32+0x73/0x90 [ 440.296290][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.302607][T14385] [ 440.304926][T14385] Uninit was stored to memory at: [ 440.309932][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.315627][T14385] __msan_chain_origin+0x50/0x90 [ 440.320546][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.325639][T14385] get_compat_msghdr+0x108/0x270 [ 440.330558][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.335047][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.339710][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.345756][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.351895][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.357089][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.361932][T14385] do_SYSENTER_32+0x73/0x90 [ 440.366411][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.372712][T14385] [ 440.375073][T14385] Uninit was stored to memory at: [ 440.380091][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.385918][T14385] __msan_chain_origin+0x50/0x90 [ 440.390853][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.395966][T14385] get_compat_msghdr+0x108/0x270 [ 440.400889][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.405372][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.410028][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.416100][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.422234][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.427443][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.432283][T14385] do_SYSENTER_32+0x73/0x90 [ 440.436763][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.443075][T14385] [ 440.445381][T14385] Uninit was stored to memory at: [ 440.450387][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.456096][T14385] __msan_chain_origin+0x50/0x90 [ 440.461018][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.466110][T14385] get_compat_msghdr+0x108/0x270 [ 440.471044][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.475536][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.480204][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.486277][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.492422][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.497627][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.502472][T14385] do_SYSENTER_32+0x73/0x90 [ 440.506959][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.513290][T14385] [ 440.515624][T14385] Uninit was stored to memory at: [ 440.520656][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.526378][T14385] __msan_chain_origin+0x50/0x90 [ 440.531331][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.536435][T14385] get_compat_msghdr+0x108/0x270 [ 440.541354][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.545851][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.550515][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.556576][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.562710][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.567908][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.572750][T14385] do_SYSENTER_32+0x73/0x90 [ 440.577246][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.583543][T14385] [ 440.585845][T14385] Uninit was stored to memory at: [ 440.590871][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 440.596583][T14385] __msan_chain_origin+0x50/0x90 [ 440.601512][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.606619][T14385] get_compat_msghdr+0x108/0x270 [ 440.611548][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.616045][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.620703][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.626759][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.632893][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.638076][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.642907][T14385] do_SYSENTER_32+0x73/0x90 [ 440.647397][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.653718][T14385] [ 440.656024][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 440.662681][T14385] do_recvmmsg+0xc5/0x1ee0 [ 440.667087][T14385] do_recvmmsg+0xc5/0x1ee0 [ 440.773134][T14385] not chained 170000 origins [ 440.777767][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 440.786433][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 440.796488][T14385] Call Trace: [ 440.799797][T14385] dump_stack+0x1df/0x240 [ 440.804185][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 440.809984][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 440.815110][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 440.820669][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 440.826754][T14385] ? _copy_from_user+0x15b/0x260 [ 440.831701][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 440.836824][T14385] __msan_chain_origin+0x50/0x90 [ 440.841783][T14385] __get_compat_msghdr+0x5be/0x890 [ 440.846938][T14385] get_compat_msghdr+0x108/0x270 [ 440.851911][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 440.856453][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 440.862121][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 440.867244][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 440.872898][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 440.878204][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 440.883007][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 440.887780][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 440.893077][T14385] __sys_recvmmsg+0x4ca/0x510 [ 440.897784][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 440.903897][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 440.910147][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 440.916310][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 440.921531][T14385] do_fast_syscall_32+0x6b/0xd0 [ 440.926394][T14385] do_SYSENTER_32+0x73/0x90 [ 440.930913][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 440.937244][T14385] RIP: 0023:0xf7f3c549 [ 440.941306][T14385] Code: Bad RIP value. [ 440.945373][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 440.953793][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 440.961772][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 440.969755][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 440.977730][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 440.985705][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 440.993703][T14385] Uninit was stored to memory at: [ 440.998740][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.004464][T14385] __msan_chain_origin+0x50/0x90 [ 441.009410][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.014528][T14385] get_compat_msghdr+0x108/0x270 [ 441.019482][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.023966][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.028635][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.034693][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.040852][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.046052][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.050897][T14385] do_SYSENTER_32+0x73/0x90 [ 441.055411][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.061724][T14385] [ 441.064043][T14385] Uninit was stored to memory at: [ 441.069053][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.074753][T14385] __msan_chain_origin+0x50/0x90 [ 441.079675][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.084769][T14385] get_compat_msghdr+0x108/0x270 [ 441.089719][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.094202][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.098858][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.104910][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.111044][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.116236][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.121072][T14385] do_SYSENTER_32+0x73/0x90 [ 441.125555][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.131878][T14385] [ 441.134198][T14385] Uninit was stored to memory at: [ 441.139231][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.144948][T14385] __msan_chain_origin+0x50/0x90 [ 441.149887][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.154994][T14385] get_compat_msghdr+0x108/0x270 [ 441.159928][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.164432][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.169093][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.175138][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.181272][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.186450][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.191278][T14385] do_SYSENTER_32+0x73/0x90 [ 441.195773][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.202085][T14385] [ 441.204401][T14385] Uninit was stored to memory at: [ 441.209408][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.215123][T14385] __msan_chain_origin+0x50/0x90 [ 441.220043][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.225130][T14385] get_compat_msghdr+0x108/0x270 [ 441.230052][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.234551][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.239225][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.245272][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.251432][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.256624][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.261467][T14385] do_SYSENTER_32+0x73/0x90 [ 441.265962][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.272258][T14385] [ 441.274559][T14385] Uninit was stored to memory at: [ 441.279572][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.285268][T14385] __msan_chain_origin+0x50/0x90 [ 441.290204][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.295293][T14385] get_compat_msghdr+0x108/0x270 [ 441.300224][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.304703][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.309358][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.315413][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.321545][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.326836][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.331668][T14385] do_SYSENTER_32+0x73/0x90 [ 441.336150][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.342460][T14385] [ 441.344764][T14385] Uninit was stored to memory at: [ 441.349773][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.355469][T14385] __msan_chain_origin+0x50/0x90 [ 441.360421][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.365526][T14385] get_compat_msghdr+0x108/0x270 [ 441.370461][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.374957][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.379625][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.385690][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.391829][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.397023][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.401871][T14385] do_SYSENTER_32+0x73/0x90 [ 441.406352][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.412649][T14385] [ 441.414953][T14385] Uninit was stored to memory at: [ 441.419960][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.425657][T14385] __msan_chain_origin+0x50/0x90 [ 441.430578][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.435668][T14385] get_compat_msghdr+0x108/0x270 [ 441.440591][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.445075][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.449734][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.455779][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.461912][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.467104][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.471957][T14385] do_SYSENTER_32+0x73/0x90 [ 441.476455][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.482755][T14385] [ 441.485073][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 441.491769][T14385] do_recvmmsg+0xc5/0x1ee0 [ 441.496165][T14385] do_recvmmsg+0xc5/0x1ee0 [ 441.592246][T14385] not chained 180000 origins [ 441.596887][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 441.605566][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 441.615624][T14385] Call Trace: [ 441.618930][T14385] dump_stack+0x1df/0x240 [ 441.623286][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 441.629062][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 441.634183][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 441.639746][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 441.645834][T14385] ? _copy_from_user+0x15b/0x260 [ 441.650790][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 441.655912][T14385] __msan_chain_origin+0x50/0x90 [ 441.661039][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.666188][T14385] get_compat_msghdr+0x108/0x270 [ 441.671153][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.675687][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 441.681356][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 441.686533][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 441.692184][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 441.697487][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 441.702257][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 441.707029][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 441.712327][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.717038][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.723123][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 441.729376][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.735541][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.740765][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.745633][T14385] do_SYSENTER_32+0x73/0x90 [ 441.750152][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.756480][T14385] RIP: 0023:0xf7f3c549 [ 441.760561][T14385] Code: Bad RIP value. [ 441.764629][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 441.773047][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 441.781022][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 441.788994][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 441.796969][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 441.804945][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 441.812939][T14385] Uninit was stored to memory at: [ 441.817977][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.823701][T14385] __msan_chain_origin+0x50/0x90 [ 441.828650][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.833765][T14385] get_compat_msghdr+0x108/0x270 [ 441.838713][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.843222][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.847906][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.853976][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.860141][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.865350][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.870208][T14385] do_SYSENTER_32+0x73/0x90 [ 441.874717][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.881039][T14385] [ 441.883375][T14385] Uninit was stored to memory at: [ 441.888396][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.894110][T14385] __msan_chain_origin+0x50/0x90 [ 441.899045][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.904137][T14385] get_compat_msghdr+0x108/0x270 [ 441.909066][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.913574][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.918256][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.924315][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 441.930462][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 441.935653][T14385] do_fast_syscall_32+0x6b/0xd0 [ 441.940485][T14385] do_SYSENTER_32+0x73/0x90 [ 441.944967][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 441.951264][T14385] [ 441.953566][T14385] Uninit was stored to memory at: [ 441.958580][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 441.964306][T14385] __msan_chain_origin+0x50/0x90 [ 441.969236][T14385] __get_compat_msghdr+0x5be/0x890 [ 441.974341][T14385] get_compat_msghdr+0x108/0x270 [ 441.979261][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 441.983755][T14385] __sys_recvmmsg+0x4ca/0x510 [ 441.988424][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 441.994493][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.000641][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.005822][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.010655][T14385] do_SYSENTER_32+0x73/0x90 [ 442.015135][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.021441][T14385] [ 442.023763][T14385] Uninit was stored to memory at: [ 442.028786][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.034509][T14385] __msan_chain_origin+0x50/0x90 [ 442.039456][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.044562][T14385] get_compat_msghdr+0x108/0x270 [ 442.049493][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.054004][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.058664][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.064713][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.070850][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.076033][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.080872][T14385] do_SYSENTER_32+0x73/0x90 [ 442.085356][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.091655][T14385] [ 442.093957][T14385] Uninit was stored to memory at: [ 442.098962][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.104662][T14385] __msan_chain_origin+0x50/0x90 [ 442.109592][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.114699][T14385] get_compat_msghdr+0x108/0x270 [ 442.119620][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.124102][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.128772][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.134830][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.140980][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.146172][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.151015][T14385] do_SYSENTER_32+0x73/0x90 [ 442.155514][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.161811][T14385] [ 442.164113][T14385] Uninit was stored to memory at: [ 442.169125][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.174832][T14385] __msan_chain_origin+0x50/0x90 [ 442.179752][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.184867][T14385] get_compat_msghdr+0x108/0x270 [ 442.189788][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.194269][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.198928][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.204974][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.211123][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.216301][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.221134][T14385] do_SYSENTER_32+0x73/0x90 [ 442.225627][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.231928][T14385] [ 442.234241][T14385] Uninit was stored to memory at: [ 442.239262][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.244973][T14385] __msan_chain_origin+0x50/0x90 [ 442.249905][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.255028][T14385] get_compat_msghdr+0x108/0x270 [ 442.259951][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.264434][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.269100][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.275158][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.281292][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.286469][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.291314][T14385] do_SYSENTER_32+0x73/0x90 [ 442.295794][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.302092][T14385] [ 442.304412][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 442.311064][T14385] do_recvmmsg+0xc5/0x1ee0 [ 442.315453][T14385] do_recvmmsg+0xc5/0x1ee0 [ 442.412640][T14385] not chained 190000 origins [ 442.417277][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 442.426085][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 442.436146][T14385] Call Trace: [ 442.439451][T14385] dump_stack+0x1df/0x240 [ 442.443805][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 442.449572][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 442.454696][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 442.460256][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 442.466343][T14385] ? _copy_from_user+0x15b/0x260 [ 442.471292][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 442.476416][T14385] __msan_chain_origin+0x50/0x90 [ 442.481372][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.486523][T14385] get_compat_msghdr+0x108/0x270 [ 442.491489][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.496058][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 442.501731][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 442.506857][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 442.512504][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 442.517806][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 442.522579][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 442.527352][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 442.532564][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.537278][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.543404][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 442.549657][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.555824][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.561052][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.565923][T14385] do_SYSENTER_32+0x73/0x90 [ 442.570446][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.576780][T14385] RIP: 0023:0xf7f3c549 [ 442.580847][T14385] Code: Bad RIP value. [ 442.584917][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 442.593339][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 442.601321][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 442.609301][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 442.617275][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 442.625270][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 442.633264][T14385] Uninit was stored to memory at: [ 442.638302][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.644023][T14385] __msan_chain_origin+0x50/0x90 [ 442.648966][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.654084][T14385] get_compat_msghdr+0x108/0x270 [ 442.659025][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.663530][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.668230][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.674303][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.680461][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.685669][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.690522][T14385] do_SYSENTER_32+0x73/0x90 [ 442.695027][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.701345][T14385] [ 442.703663][T14385] Uninit was stored to memory at: [ 442.708669][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.714365][T14385] __msan_chain_origin+0x50/0x90 [ 442.719295][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.724396][T14385] get_compat_msghdr+0x108/0x270 [ 442.729313][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.733791][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.738458][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.744515][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.750650][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.755827][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.760660][T14385] do_SYSENTER_32+0x73/0x90 [ 442.765139][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.771472][T14385] [ 442.773803][T14385] Uninit was stored to memory at: [ 442.778821][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.784552][T14385] __msan_chain_origin+0x50/0x90 [ 442.789480][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.794572][T14385] get_compat_msghdr+0x108/0x270 [ 442.799501][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.804010][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.808692][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.814751][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.820914][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.826094][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.830934][T14385] do_SYSENTER_32+0x73/0x90 [ 442.835416][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.841717][T14385] [ 442.844021][T14385] Uninit was stored to memory at: [ 442.849039][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.854747][T14385] __msan_chain_origin+0x50/0x90 [ 442.859670][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.864775][T14385] get_compat_msghdr+0x108/0x270 [ 442.869694][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.874176][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.878847][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.884903][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.891053][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.896247][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.901090][T14385] do_SYSENTER_32+0x73/0x90 [ 442.905572][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.911882][T14385] [ 442.914210][T14385] Uninit was stored to memory at: [ 442.919245][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.924960][T14385] __msan_chain_origin+0x50/0x90 [ 442.929884][T14385] __get_compat_msghdr+0x5be/0x890 [ 442.934987][T14385] get_compat_msghdr+0x108/0x270 [ 442.939920][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 442.944398][T14385] __sys_recvmmsg+0x4ca/0x510 [ 442.949055][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 442.955100][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 442.961236][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 442.966442][T14385] do_fast_syscall_32+0x6b/0xd0 [ 442.971280][T14385] do_SYSENTER_32+0x73/0x90 [ 442.975777][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 442.982074][T14385] [ 442.984379][T14385] Uninit was stored to memory at: [ 442.989398][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 442.995095][T14385] __msan_chain_origin+0x50/0x90 [ 443.000020][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.005110][T14385] get_compat_msghdr+0x108/0x270 [ 443.010040][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.014524][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.019191][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.025261][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.031420][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.036632][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.041474][T14385] do_SYSENTER_32+0x73/0x90 [ 443.045959][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.052267][T14385] [ 443.054571][T14385] Uninit was stored to memory at: [ 443.059582][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.065278][T14385] __msan_chain_origin+0x50/0x90 [ 443.070215][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.075315][T14385] get_compat_msghdr+0x108/0x270 [ 443.080246][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.084728][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.089395][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.095462][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.101596][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.106772][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.111601][T14385] do_SYSENTER_32+0x73/0x90 [ 443.116078][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.122371][T14385] [ 443.124676][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 443.131340][T14385] do_recvmmsg+0xc5/0x1ee0 [ 443.135766][T14385] do_recvmmsg+0xc5/0x1ee0 [ 443.234077][T14385] not chained 200000 origins [ 443.238711][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 443.247382][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 443.257446][T14385] Call Trace: [ 443.260755][T14385] dump_stack+0x1df/0x240 [ 443.265108][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 443.270894][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 443.276024][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 443.281591][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 443.287680][T14385] ? _copy_from_user+0x15b/0x260 [ 443.292628][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 443.297755][T14385] __msan_chain_origin+0x50/0x90 [ 443.302709][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.307868][T14385] get_compat_msghdr+0x108/0x270 [ 443.312847][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.317383][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 443.323048][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 443.328171][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 443.333814][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 443.339123][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 443.343906][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 443.348683][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 443.353899][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.358607][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.364696][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 443.370951][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.377120][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.382348][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.387215][T14385] do_SYSENTER_32+0x73/0x90 [ 443.391737][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.398074][T14385] RIP: 0023:0xf7f3c549 [ 443.402146][T14385] Code: Bad RIP value. [ 443.406217][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 443.414633][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 443.422613][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 443.430592][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 443.438570][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 443.446546][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 443.454543][T14385] Uninit was stored to memory at: [ 443.459597][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.465324][T14385] __msan_chain_origin+0x50/0x90 [ 443.470272][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.475396][T14385] get_compat_msghdr+0x108/0x270 [ 443.480343][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.484859][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.489545][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.495617][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.501779][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.506983][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.511848][T14385] do_SYSENTER_32+0x73/0x90 [ 443.516354][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.522671][T14385] [ 443.524991][T14385] Uninit was stored to memory at: [ 443.529997][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.535727][T14385] __msan_chain_origin+0x50/0x90 [ 443.540645][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.545737][T14385] get_compat_msghdr+0x108/0x270 [ 443.550657][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.555136][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.559826][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.565873][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.572034][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.577223][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.582078][T14385] do_SYSENTER_32+0x73/0x90 [ 443.586582][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.592877][T14385] [ 443.595181][T14385] Uninit was stored to memory at: [ 443.600231][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.605929][T14385] __msan_chain_origin+0x50/0x90 [ 443.610851][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.615941][T14385] get_compat_msghdr+0x108/0x270 [ 443.620902][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.625385][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.630045][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.636090][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.642254][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.647460][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.652304][T14385] do_SYSENTER_32+0x73/0x90 [ 443.656784][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.663089][T14385] [ 443.665392][T14385] Uninit was stored to memory at: [ 443.670397][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.676091][T14385] __msan_chain_origin+0x50/0x90 [ 443.681008][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.686096][T14385] get_compat_msghdr+0x108/0x270 [ 443.691027][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.695523][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.700191][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.706273][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.712423][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.717614][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.722457][T14385] do_SYSENTER_32+0x73/0x90 [ 443.726953][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.733263][T14385] [ 443.735584][T14385] Uninit was stored to memory at: [ 443.740591][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.746288][T14385] __msan_chain_origin+0x50/0x90 [ 443.751226][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.756316][T14385] get_compat_msghdr+0x108/0x270 [ 443.761245][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.765727][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.770384][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.776454][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.782589][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.787781][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.792626][T14385] do_SYSENTER_32+0x73/0x90 [ 443.797121][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.803443][T14385] [ 443.805747][T14385] Uninit was stored to memory at: [ 443.810767][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.816481][T14385] __msan_chain_origin+0x50/0x90 [ 443.821421][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.826528][T14385] get_compat_msghdr+0x108/0x270 [ 443.831452][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.835935][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.840593][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.846642][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.852788][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.858058][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.862890][T14385] do_SYSENTER_32+0x73/0x90 [ 443.867382][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.873692][T14385] [ 443.875996][T14385] Uninit was stored to memory at: [ 443.881001][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 443.886699][T14385] __msan_chain_origin+0x50/0x90 [ 443.891621][T14385] __get_compat_msghdr+0x5be/0x890 [ 443.896714][T14385] get_compat_msghdr+0x108/0x270 [ 443.901635][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 443.906113][T14385] __sys_recvmmsg+0x4ca/0x510 [ 443.910780][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 443.916855][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 443.923002][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 443.928194][T14385] do_fast_syscall_32+0x6b/0xd0 [ 443.933049][T14385] do_SYSENTER_32+0x73/0x90 [ 443.937531][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 443.943831][T14385] [ 443.946144][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 443.952809][T14385] do_recvmmsg+0xc5/0x1ee0 [ 443.957253][T14385] do_recvmmsg+0xc5/0x1ee0 [ 444.069911][T14385] not chained 210000 origins [ 444.074547][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 444.083215][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 444.093281][T14385] Call Trace: [ 444.096585][T14385] dump_stack+0x1df/0x240 [ 444.100937][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 444.106710][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 444.111837][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 444.117407][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 444.123496][T14385] ? _copy_from_user+0x15b/0x260 [ 444.128443][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 444.134106][T14385] __msan_chain_origin+0x50/0x90 [ 444.139065][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.144214][T14385] get_compat_msghdr+0x108/0x270 [ 444.149178][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.153972][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 444.159645][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 444.164774][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 444.170424][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 444.175728][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 444.180506][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 444.185281][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 444.190498][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.195205][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.201294][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 444.207545][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.213715][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.218940][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.223804][T14385] do_SYSENTER_32+0x73/0x90 [ 444.228325][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.234663][T14385] RIP: 0023:0xf7f3c549 [ 444.238729][T14385] Code: Bad RIP value. [ 444.242794][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 444.251215][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 444.259193][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 444.267168][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 444.275142][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 444.283124][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 444.291214][T14385] Uninit was stored to memory at: [ 444.296257][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.302419][T14385] __msan_chain_origin+0x50/0x90 [ 444.307370][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.312495][T14385] get_compat_msghdr+0x108/0x270 [ 444.317443][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.321957][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.326643][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.332721][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.338887][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.344105][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.348971][T14385] do_SYSENTER_32+0x73/0x90 [ 444.353479][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.359797][T14385] [ 444.362125][T14385] Uninit was stored to memory at: [ 444.367159][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.372881][T14385] __msan_chain_origin+0x50/0x90 [ 444.377831][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.382960][T14385] get_compat_msghdr+0x108/0x270 [ 444.387911][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.392424][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.397108][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.403175][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.409331][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.414535][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.419389][T14385] do_SYSENTER_32+0x73/0x90 [ 444.423890][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.430201][T14385] [ 444.432518][T14385] Uninit was stored to memory at: [ 444.437541][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.443259][T14385] __msan_chain_origin+0x50/0x90 [ 444.448197][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.453308][T14385] get_compat_msghdr+0x108/0x270 [ 444.458268][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.462770][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.467448][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.473512][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.479665][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.484870][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.489725][T14385] do_SYSENTER_32+0x73/0x90 [ 444.494226][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.500540][T14385] [ 444.502862][T14385] Uninit was stored to memory at: [ 444.507914][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.513637][T14385] __msan_chain_origin+0x50/0x90 [ 444.518583][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.523696][T14385] get_compat_msghdr+0x108/0x270 [ 444.528638][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.533139][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.537818][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.543886][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.550039][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.555239][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.560088][T14385] do_SYSENTER_32+0x73/0x90 [ 444.564589][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.570899][T14385] [ 444.573217][T14385] Uninit was stored to memory at: [ 444.578240][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.583958][T14385] __msan_chain_origin+0x50/0x90 [ 444.588898][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.594012][T14385] get_compat_msghdr+0x108/0x270 [ 444.598952][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.603457][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.608145][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.614216][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.620378][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.625587][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.630442][T14385] do_SYSENTER_32+0x73/0x90 [ 444.634950][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.641260][T14385] [ 444.643580][T14385] Uninit was stored to memory at: [ 444.648607][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.654326][T14385] __msan_chain_origin+0x50/0x90 [ 444.659264][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.664392][T14385] get_compat_msghdr+0x108/0x270 [ 444.669347][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.673863][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.678538][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.684609][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.690768][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.695966][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.700820][T14385] do_SYSENTER_32+0x73/0x90 [ 444.705415][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.711731][T14385] [ 444.714052][T14385] Uninit was stored to memory at: [ 444.719108][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 444.724832][T14385] __msan_chain_origin+0x50/0x90 [ 444.729784][T14385] __get_compat_msghdr+0x5be/0x890 [ 444.734906][T14385] get_compat_msghdr+0x108/0x270 [ 444.739858][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 444.744366][T14385] __sys_recvmmsg+0x4ca/0x510 [ 444.749047][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 444.755123][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 444.761284][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 444.766489][T14385] do_fast_syscall_32+0x6b/0xd0 [ 444.771344][T14385] do_SYSENTER_32+0x73/0x90 [ 444.775856][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 444.782176][T14385] [ 444.784530][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 444.791213][T14385] do_recvmmsg+0xc5/0x1ee0 [ 444.795630][T14385] do_recvmmsg+0xc5/0x1ee0 [ 444.942056][T14385] not chained 220000 origins [ 444.946693][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 444.955367][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 444.965426][T14385] Call Trace: [ 444.968734][T14385] dump_stack+0x1df/0x240 [ 444.973087][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 444.978867][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 444.983990][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 444.989562][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 444.995652][T14385] ? _copy_from_user+0x15b/0x260 [ 445.000602][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 445.005728][T14385] __msan_chain_origin+0x50/0x90 [ 445.010688][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.015839][T14385] get_compat_msghdr+0x108/0x270 [ 445.020813][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.025351][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 445.031028][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 445.036153][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 445.041801][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 445.047104][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 445.051879][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 445.056655][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 445.061879][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.066587][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.072673][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 445.078927][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.085094][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.090314][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.095183][T14385] do_SYSENTER_32+0x73/0x90 [ 445.099735][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.106065][T14385] RIP: 0023:0xf7f3c549 [ 445.110130][T14385] Code: Bad RIP value. [ 445.114198][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 445.122619][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 445.130622][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 445.138607][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 445.146595][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 445.154553][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 445.162545][T14385] Uninit was stored to memory at: [ 445.167579][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.173302][T14385] __msan_chain_origin+0x50/0x90 [ 445.178225][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.183322][T14385] get_compat_msghdr+0x108/0x270 [ 445.188262][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.192765][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.197424][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.203496][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.209640][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.214835][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.219694][T14385] do_SYSENTER_32+0x73/0x90 [ 445.224295][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.230596][T14385] [ 445.232913][T14385] Uninit was stored to memory at: [ 445.237921][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.243620][T14385] __msan_chain_origin+0x50/0x90 [ 445.248555][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.253678][T14385] get_compat_msghdr+0x108/0x270 [ 445.258626][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.263129][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.267805][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.273882][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.280036][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.285218][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.290051][T14385] do_SYSENTER_32+0x73/0x90 [ 445.294548][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.300845][T14385] [ 445.303154][T14385] Uninit was stored to memory at: [ 445.308168][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.313920][T14385] __msan_chain_origin+0x50/0x90 [ 445.318878][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.323969][T14385] get_compat_msghdr+0x108/0x270 [ 445.328902][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.333398][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.338054][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.344098][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.350244][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.355435][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.360281][T14385] do_SYSENTER_32+0x73/0x90 [ 445.364777][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.371078][T14385] [ 445.373394][T14385] Uninit was stored to memory at: [ 445.378415][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.384127][T14385] __msan_chain_origin+0x50/0x90 [ 445.389060][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.394196][T14385] get_compat_msghdr+0x108/0x270 [ 445.399115][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.403599][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.408266][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.414323][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.420455][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.425633][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.430464][T14385] do_SYSENTER_32+0x73/0x90 [ 445.434956][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.441254][T14385] [ 445.443572][T14385] Uninit was stored to memory at: [ 445.448590][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.454300][T14385] __msan_chain_origin+0x50/0x90 [ 445.459235][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.464330][T14385] get_compat_msghdr+0x108/0x270 [ 445.469268][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.473784][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.478471][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.484549][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.490704][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.495902][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.500751][T14385] do_SYSENTER_32+0x73/0x90 [ 445.505234][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.511532][T14385] [ 445.513849][T14385] Uninit was stored to memory at: [ 445.518866][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.524578][T14385] __msan_chain_origin+0x50/0x90 [ 445.529497][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.534588][T14385] get_compat_msghdr+0x108/0x270 [ 445.539517][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.544002][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.548670][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.554740][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.560877][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.566056][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.570890][T14385] do_SYSENTER_32+0x73/0x90 [ 445.575372][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.581680][T14385] [ 445.584016][T14385] Uninit was stored to memory at: [ 445.589040][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.594775][T14385] __msan_chain_origin+0x50/0x90 [ 445.599717][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.604836][T14385] get_compat_msghdr+0x108/0x270 [ 445.609782][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.614264][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.618933][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.624978][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.631113][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.636293][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.641122][T14385] do_SYSENTER_32+0x73/0x90 [ 445.645605][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.651903][T14385] [ 445.654208][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 445.660880][T14385] do_recvmmsg+0xc5/0x1ee0 [ 445.665287][T14385] do_recvmmsg+0xc5/0x1ee0 [ 445.765103][T14385] not chained 230000 origins [ 445.769741][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 445.778406][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 445.788461][T14385] Call Trace: [ 445.791767][T14385] dump_stack+0x1df/0x240 [ 445.796119][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 445.801902][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 445.807026][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 445.812585][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 445.818672][T14385] ? _copy_from_user+0x15b/0x260 [ 445.823618][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 445.828740][T14385] __msan_chain_origin+0x50/0x90 [ 445.833699][T14385] __get_compat_msghdr+0x5be/0x890 [ 445.840937][T14385] get_compat_msghdr+0x108/0x270 [ 445.845909][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 445.850444][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 445.856129][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 445.861254][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 445.866904][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 445.872205][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 445.876977][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 445.881750][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 445.886966][T14385] __sys_recvmmsg+0x4ca/0x510 [ 445.891703][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 445.897783][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 445.904205][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 445.910373][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 445.915597][T14385] do_fast_syscall_32+0x6b/0xd0 [ 445.920466][T14385] do_SYSENTER_32+0x73/0x90 [ 445.924985][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 445.931315][T14385] RIP: 0023:0xf7f3c549 [ 445.935377][T14385] Code: Bad RIP value. [ 445.939446][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 445.947870][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 445.955845][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 445.963828][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 445.971818][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 445.979800][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 445.987801][T14385] Uninit was stored to memory at: [ 445.992838][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 445.998576][T14385] __msan_chain_origin+0x50/0x90 [ 446.003523][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.008641][T14385] get_compat_msghdr+0x108/0x270 [ 446.013587][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.018098][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.022878][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.028959][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.035131][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.040347][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.045200][T14385] do_SYSENTER_32+0x73/0x90 [ 446.049711][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.056036][T14385] [ 446.058361][T14385] Uninit was stored to memory at: [ 446.063399][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.069126][T14385] __msan_chain_origin+0x50/0x90 [ 446.074072][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.079190][T14385] get_compat_msghdr+0x108/0x270 [ 446.084134][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.088644][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.093326][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.099424][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.105586][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.110782][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.115611][T14385] do_SYSENTER_32+0x73/0x90 [ 446.120108][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.126422][T14385] [ 446.128743][T14385] Uninit was stored to memory at: [ 446.133783][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.139496][T14385] __msan_chain_origin+0x50/0x90 [ 446.144430][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.149520][T14385] get_compat_msghdr+0x108/0x270 [ 446.154434][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.165257][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.169915][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.175959][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.182104][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.187285][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.192130][T14385] do_SYSENTER_32+0x73/0x90 [ 446.196612][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.202922][T14385] [ 446.205326][T14385] Uninit was stored to memory at: [ 446.210335][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.216034][T14385] __msan_chain_origin+0x50/0x90 [ 446.220956][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.226066][T14385] get_compat_msghdr+0x108/0x270 [ 446.230983][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.235553][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.240222][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.246282][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.252416][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.257626][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.262470][T14385] do_SYSENTER_32+0x73/0x90 [ 446.266964][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.273273][T14385] [ 446.275579][T14385] Uninit was stored to memory at: [ 446.280588][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.286285][T14385] __msan_chain_origin+0x50/0x90 [ 446.291203][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.296291][T14385] get_compat_msghdr+0x108/0x270 [ 446.301212][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.305697][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.310368][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.316428][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.322575][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.327763][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.332629][T14385] do_SYSENTER_32+0x73/0x90 [ 446.337136][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.343454][T14385] [ 446.345765][T14385] Uninit was stored to memory at: [ 446.350797][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.356526][T14385] __msan_chain_origin+0x50/0x90 [ 446.361463][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.366566][T14385] get_compat_msghdr+0x108/0x270 [ 446.371488][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.375971][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.380642][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.386721][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.392895][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.398091][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.402974][T14385] do_SYSENTER_32+0x73/0x90 [ 446.407459][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.413759][T14385] [ 446.416099][T14385] Uninit was stored to memory at: [ 446.421110][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.426822][T14385] __msan_chain_origin+0x50/0x90 [ 446.431761][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.436890][T14385] get_compat_msghdr+0x108/0x270 [ 446.441836][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.446338][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.451013][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.457093][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.463266][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.468480][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.473328][T14385] do_SYSENTER_32+0x73/0x90 [ 446.477828][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.484149][T14385] [ 446.486459][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 446.493134][T14385] do_recvmmsg+0xc5/0x1ee0 [ 446.497569][T14385] do_recvmmsg+0xc5/0x1ee0 [ 446.604109][T14385] not chained 240000 origins [ 446.608744][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 446.617417][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 446.627483][T14385] Call Trace: [ 446.630793][T14385] dump_stack+0x1df/0x240 [ 446.635155][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 446.640943][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 446.646080][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 446.651655][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 446.657752][T14385] ? _copy_from_user+0x15b/0x260 [ 446.662711][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 446.667840][T14385] __msan_chain_origin+0x50/0x90 [ 446.672841][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.678013][T14385] get_compat_msghdr+0x108/0x270 [ 446.682989][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.687528][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 446.693221][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 446.698369][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 446.704038][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 446.709358][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 446.714137][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 446.718920][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 446.724143][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.728856][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.734956][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 446.741224][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.747439][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.752674][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.757553][T14385] do_SYSENTER_32+0x73/0x90 [ 446.762083][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.768428][T14385] RIP: 0023:0xf7f3c549 [ 446.772495][T14385] Code: Bad RIP value. [ 446.776566][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 446.784991][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 446.792986][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 446.800985][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 446.808981][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 446.816972][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 446.824984][T14385] Uninit was stored to memory at: [ 446.830022][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.835729][T14385] __msan_chain_origin+0x50/0x90 [ 446.840659][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.845760][T14385] get_compat_msghdr+0x108/0x270 [ 446.850686][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.855176][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.859947][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.866009][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.872159][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.877369][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.882222][T14385] do_SYSENTER_32+0x73/0x90 [ 446.886721][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.893047][T14385] [ 446.895358][T14385] Uninit was stored to memory at: [ 446.900387][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.906125][T14385] __msan_chain_origin+0x50/0x90 [ 446.911065][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.916201][T14385] get_compat_msghdr+0x108/0x270 [ 446.921139][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.925681][T14385] __sys_recvmmsg+0x4ca/0x510 [ 446.930367][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 446.936449][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 446.942616][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 446.947804][T14385] do_fast_syscall_32+0x6b/0xd0 [ 446.952645][T14385] do_SYSENTER_32+0x73/0x90 [ 446.957156][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 446.963474][T14385] [ 446.965783][T14385] Uninit was stored to memory at: [ 446.970816][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 446.976518][T14385] __msan_chain_origin+0x50/0x90 [ 446.981457][T14385] __get_compat_msghdr+0x5be/0x890 [ 446.986548][T14385] get_compat_msghdr+0x108/0x270 [ 446.991469][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 446.995952][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.000627][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.006703][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.012861][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.018105][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.022990][T14385] do_SYSENTER_32+0x73/0x90 [ 447.027490][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.033794][T14385] [ 447.036122][T14385] Uninit was stored to memory at: [ 447.041151][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.046906][T14385] __msan_chain_origin+0x50/0x90 [ 447.051860][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.056981][T14385] get_compat_msghdr+0x108/0x270 [ 447.061913][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.066393][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.071069][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.077128][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.083273][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.088451][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.093278][T14385] do_SYSENTER_32+0x73/0x90 [ 447.097771][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.104080][T14385] [ 447.106382][T14385] Uninit was stored to memory at: [ 447.111392][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.117116][T14385] __msan_chain_origin+0x50/0x90 [ 447.122066][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.127184][T14385] get_compat_msghdr+0x108/0x270 [ 447.132129][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.136816][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.141486][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.147543][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.153705][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.158988][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.163832][T14385] do_SYSENTER_32+0x73/0x90 [ 447.168317][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.177840][T14385] [ 447.180166][T14385] Uninit was stored to memory at: [ 447.185174][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.190905][T14385] __msan_chain_origin+0x50/0x90 [ 447.195952][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.201045][T14385] get_compat_msghdr+0x108/0x270 [ 447.205969][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.210451][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.215113][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.221178][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.227330][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.232543][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.237390][T14385] do_SYSENTER_32+0x73/0x90 [ 447.241898][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.248200][T14385] [ 447.250519][T14385] Uninit was stored to memory at: [ 447.255526][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.261235][T14385] __msan_chain_origin+0x50/0x90 [ 447.266170][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.271263][T14385] get_compat_msghdr+0x108/0x270 [ 447.276198][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.280683][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.285337][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.291395][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.297540][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.302734][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.307565][T14385] do_SYSENTER_32+0x73/0x90 [ 447.312046][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.318348][T14385] [ 447.320666][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 447.327337][T14385] do_recvmmsg+0xc5/0x1ee0 [ 447.331832][T14385] do_recvmmsg+0xc5/0x1ee0 [ 447.429732][T14385] not chained 250000 origins [ 447.434370][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 447.443042][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 447.453103][T14385] Call Trace: [ 447.456409][T14385] dump_stack+0x1df/0x240 [ 447.460764][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 447.466533][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 447.471660][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 447.477220][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 447.483304][T14385] ? _copy_from_user+0x15b/0x260 [ 447.488251][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 447.493371][T14385] __msan_chain_origin+0x50/0x90 [ 447.498336][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.503479][T14385] get_compat_msghdr+0x108/0x270 [ 447.508447][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.512984][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 447.518664][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 447.523783][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 447.529424][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 447.534719][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 447.539485][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 447.544251][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 447.549458][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.554163][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.560241][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 447.566485][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.572646][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.577869][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.582728][T14385] do_SYSENTER_32+0x73/0x90 [ 447.587590][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.593915][T14385] RIP: 0023:0xf7f3c549 [ 447.597977][T14385] Code: Bad RIP value. [ 447.602039][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 447.610451][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 447.618420][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 447.626387][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 447.634356][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 447.642330][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 447.650321][T14385] Uninit was stored to memory at: [ 447.655351][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.661067][T14385] __msan_chain_origin+0x50/0x90 [ 447.666006][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.671115][T14385] get_compat_msghdr+0x108/0x270 [ 447.676048][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.680552][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.685226][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.691292][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.697452][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.702656][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.707506][T14385] do_SYSENTER_32+0x73/0x90 [ 447.712009][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.718322][T14385] [ 447.720646][T14385] Uninit was stored to memory at: [ 447.725675][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.731399][T14385] __msan_chain_origin+0x50/0x90 [ 447.736339][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.741545][T14385] get_compat_msghdr+0x108/0x270 [ 447.746488][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.751001][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.755727][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.761804][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.767976][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.773192][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.778216][T14385] do_SYSENTER_32+0x73/0x90 [ 447.782718][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.789031][T14385] [ 447.791351][T14385] Uninit was stored to memory at: [ 447.796395][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.802111][T14385] __msan_chain_origin+0x50/0x90 [ 447.807053][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.812234][T14385] get_compat_msghdr+0x108/0x270 [ 447.817172][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.821676][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.826352][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.832416][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.838567][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.843766][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.848622][T14385] do_SYSENTER_32+0x73/0x90 [ 447.853123][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.859433][T14385] [ 447.861754][T14385] Uninit was stored to memory at: [ 447.866783][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.872500][T14385] __msan_chain_origin+0x50/0x90 [ 447.877439][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.882550][T14385] get_compat_msghdr+0x108/0x270 [ 447.887493][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.891999][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.896676][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.902754][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.908911][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.914108][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.918957][T14385] do_SYSENTER_32+0x73/0x90 [ 447.923458][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 447.929771][T14385] [ 447.932091][T14385] Uninit was stored to memory at: [ 447.937119][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 447.942840][T14385] __msan_chain_origin+0x50/0x90 [ 447.947785][T14385] __get_compat_msghdr+0x5be/0x890 [ 447.952902][T14385] get_compat_msghdr+0x108/0x270 [ 447.957870][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 447.962375][T14385] __sys_recvmmsg+0x4ca/0x510 [ 447.967049][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 447.973131][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 447.979287][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 447.984485][T14385] do_fast_syscall_32+0x6b/0xd0 [ 447.989334][T14385] do_SYSENTER_32+0x73/0x90 [ 447.993834][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.000151][T14385] [ 448.002469][T14385] Uninit was stored to memory at: [ 448.007492][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.013208][T14385] __msan_chain_origin+0x50/0x90 [ 448.018151][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.023264][T14385] get_compat_msghdr+0x108/0x270 [ 448.028209][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.032720][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.037411][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.043518][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.049703][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.054923][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.059789][T14385] do_SYSENTER_32+0x73/0x90 [ 448.064294][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.070610][T14385] [ 448.072946][T14385] Uninit was stored to memory at: [ 448.077982][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.083707][T14385] __msan_chain_origin+0x50/0x90 [ 448.088652][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.093766][T14385] get_compat_msghdr+0x108/0x270 [ 448.098710][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.103216][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.107898][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.113967][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.120149][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.125354][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.130226][T14385] do_SYSENTER_32+0x73/0x90 [ 448.134747][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.141076][T14385] [ 448.143402][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 448.150074][T14385] do_recvmmsg+0xc5/0x1ee0 [ 448.154491][T14385] do_recvmmsg+0xc5/0x1ee0 [ 448.335431][T14385] not chained 260000 origins [ 448.340067][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 448.348741][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 448.358798][T14385] Call Trace: [ 448.362102][T14385] dump_stack+0x1df/0x240 [ 448.366453][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 448.372231][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 448.377359][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 448.382920][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 448.389008][T14385] ? _copy_from_user+0x15b/0x260 [ 448.393960][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 448.399081][T14385] __msan_chain_origin+0x50/0x90 [ 448.404039][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.409190][T14385] get_compat_msghdr+0x108/0x270 [ 448.414159][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.418696][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 448.424431][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 448.429554][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 448.435201][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 448.440504][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 448.445297][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 448.450074][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 448.455459][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.460164][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.466250][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 448.472500][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.478668][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.483888][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.488759][T14385] do_SYSENTER_32+0x73/0x90 [ 448.493276][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.499605][T14385] RIP: 0023:0xf7f3c549 [ 448.503671][T14385] Code: Bad RIP value. [ 448.507737][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 448.516154][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 448.524127][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 448.532100][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 448.540075][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 448.548049][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 448.556042][T14385] Uninit was stored to memory at: [ 448.561089][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.566812][T14385] __msan_chain_origin+0x50/0x90 [ 448.571759][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.576874][T14385] get_compat_msghdr+0x108/0x270 [ 448.581821][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.586329][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.591011][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.597082][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.603241][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.608629][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.613483][T14385] do_SYSENTER_32+0x73/0x90 [ 448.617992][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.624312][T14385] [ 448.626637][T14385] Uninit was stored to memory at: [ 448.631668][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.637393][T14385] __msan_chain_origin+0x50/0x90 [ 448.642337][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.647516][T14385] get_compat_msghdr+0x108/0x270 [ 448.652460][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.656969][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.661654][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.667724][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.673884][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.679099][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.683944][T14385] do_SYSENTER_32+0x73/0x90 [ 448.688427][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.695505][T14385] [ 448.697810][T14385] Uninit was stored to memory at: [ 448.702814][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.708512][T14385] __msan_chain_origin+0x50/0x90 [ 448.713428][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.718516][T14385] get_compat_msghdr+0x108/0x270 [ 448.723431][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.727914][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.732569][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.738615][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.744756][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.749978][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.754813][T14385] do_SYSENTER_32+0x73/0x90 [ 448.759297][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.765594][T14385] [ 448.767915][T14385] Uninit was stored to memory at: [ 448.772920][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.778617][T14385] __msan_chain_origin+0x50/0x90 [ 448.783533][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.788622][T14385] get_compat_msghdr+0x108/0x270 [ 448.793550][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.798033][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.802691][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.808735][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.814869][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.820048][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.824875][T14385] do_SYSENTER_32+0x73/0x90 [ 448.829355][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.835649][T14385] [ 448.837951][T14385] Uninit was stored to memory at: [ 448.842970][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.848668][T14385] __msan_chain_origin+0x50/0x90 [ 448.853597][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.858685][T14385] get_compat_msghdr+0x108/0x270 [ 448.863597][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.868077][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.872728][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.878786][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.884934][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.890117][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.894947][T14385] do_SYSENTER_32+0x73/0x90 [ 448.899428][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.905723][T14385] [ 448.908030][T14385] Uninit was stored to memory at: [ 448.913035][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.918735][T14385] __msan_chain_origin+0x50/0x90 [ 448.923658][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.928762][T14385] get_compat_msghdr+0x108/0x270 [ 448.933678][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 448.938159][T14385] __sys_recvmmsg+0x4ca/0x510 [ 448.942815][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 448.948864][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 448.954995][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 448.960177][T14385] do_fast_syscall_32+0x6b/0xd0 [ 448.965011][T14385] do_SYSENTER_32+0x73/0x90 [ 448.969494][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 448.975801][T14385] [ 448.978105][T14385] Uninit was stored to memory at: [ 448.983108][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 448.988819][T14385] __msan_chain_origin+0x50/0x90 [ 448.993756][T14385] __get_compat_msghdr+0x5be/0x890 [ 448.998863][T14385] get_compat_msghdr+0x108/0x270 [ 449.003784][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.008266][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.012920][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.019009][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.025140][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.030316][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.035144][T14385] do_SYSENTER_32+0x73/0x90 [ 449.039642][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.045940][T14385] [ 449.048258][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 449.054911][T14385] do_recvmmsg+0xc5/0x1ee0 [ 449.059315][T14385] do_recvmmsg+0xc5/0x1ee0 [ 449.205950][T14385] not chained 270000 origins [ 449.210584][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 449.219252][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 449.229306][T14385] Call Trace: [ 449.232613][T14385] dump_stack+0x1df/0x240 [ 449.236963][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 449.242737][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 449.247867][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 449.253430][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 449.259533][T14385] ? _copy_from_user+0x15b/0x260 [ 449.264503][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 449.269626][T14385] __msan_chain_origin+0x50/0x90 [ 449.274567][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.279712][T14385] get_compat_msghdr+0x108/0x270 [ 449.284645][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.289141][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 449.294769][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 449.299901][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 449.305515][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 449.310785][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 449.315557][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 449.320301][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 449.325480][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.330151][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.336200][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 449.342423][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.348561][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.353746][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.358579][T14385] do_SYSENTER_32+0x73/0x90 [ 449.363066][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.369372][T14385] RIP: 0023:0xf7f3c549 [ 449.373476][T14385] Code: Bad RIP value. [ 449.377525][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 449.385924][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 449.393881][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 449.401833][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 449.409810][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 449.417775][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 449.425740][T14385] Uninit was stored to memory at: [ 449.430747][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.436457][T14385] __msan_chain_origin+0x50/0x90 [ 449.441387][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.446477][T14385] get_compat_msghdr+0x108/0x270 [ 449.451394][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.455877][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.460545][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.466599][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.472732][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.477921][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.482762][T14385] do_SYSENTER_32+0x73/0x90 [ 449.487247][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.493552][T14385] [ 449.495863][T14385] Uninit was stored to memory at: [ 449.500870][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.506577][T14385] __msan_chain_origin+0x50/0x90 [ 449.511500][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.516599][T14385] get_compat_msghdr+0x108/0x270 [ 449.521517][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.525999][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.530655][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.536714][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.542845][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.548040][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.552868][T14385] do_SYSENTER_32+0x73/0x90 [ 449.557350][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.563645][T14385] [ 449.565947][T14385] Uninit was stored to memory at: [ 449.570973][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.576686][T14385] __msan_chain_origin+0x50/0x90 [ 449.581603][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.586693][T14385] get_compat_msghdr+0x108/0x270 [ 449.591612][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.596108][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.600765][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.606812][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.613030][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.618208][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.623037][T14385] do_SYSENTER_32+0x73/0x90 [ 449.627519][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.633815][T14385] [ 449.636116][T14385] Uninit was stored to memory at: [ 449.641133][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.646831][T14385] __msan_chain_origin+0x50/0x90 [ 449.651764][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.656859][T14385] get_compat_msghdr+0x108/0x270 [ 449.661778][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.666275][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.670931][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.676975][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.683108][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.688285][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.693111][T14385] do_SYSENTER_32+0x73/0x90 [ 449.697594][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.703902][T14385] [ 449.706203][T14385] Uninit was stored to memory at: [ 449.711207][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.716907][T14385] __msan_chain_origin+0x50/0x90 [ 449.721822][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.726911][T14385] get_compat_msghdr+0x108/0x270 [ 449.731830][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.736311][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.740966][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.747013][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.753147][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.758326][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.763163][T14385] do_SYSENTER_32+0x73/0x90 [ 449.767646][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.773945][T14385] [ 449.776263][T14385] Uninit was stored to memory at: [ 449.781279][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.787001][T14385] __msan_chain_origin+0x50/0x90 [ 449.791925][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.797019][T14385] get_compat_msghdr+0x108/0x270 [ 449.801938][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.806435][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.811092][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.817142][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.823275][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.828455][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.833285][T14385] do_SYSENTER_32+0x73/0x90 [ 449.837767][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.844065][T14385] [ 449.846367][T14385] Uninit was stored to memory at: [ 449.851386][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 449.857086][T14385] __msan_chain_origin+0x50/0x90 [ 449.862005][T14385] __get_compat_msghdr+0x5be/0x890 [ 449.867097][T14385] get_compat_msghdr+0x108/0x270 [ 449.872015][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 449.876770][T14385] __sys_recvmmsg+0x4ca/0x510 [ 449.881427][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 449.887473][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 449.893620][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 449.899149][T14385] do_fast_syscall_32+0x6b/0xd0 [ 449.903980][T14385] do_SYSENTER_32+0x73/0x90 [ 449.908473][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 449.914791][T14385] [ 449.917098][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 449.923750][T14385] do_recvmmsg+0xc5/0x1ee0 [ 449.928145][T14385] do_recvmmsg+0xc5/0x1ee0 [ 450.105579][T14385] not chained 280000 origins [ 450.110216][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 450.118889][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 450.128967][T14385] Call Trace: [ 450.132297][T14385] dump_stack+0x1df/0x240 [ 450.136651][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 450.142423][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 450.147544][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 450.153105][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 450.159193][T14385] ? _copy_from_user+0x15b/0x260 [ 450.164145][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 450.169264][T14385] __msan_chain_origin+0x50/0x90 [ 450.174218][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.179366][T14385] get_compat_msghdr+0x108/0x270 [ 450.184330][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.188870][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 450.194543][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 450.199670][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 450.205316][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 450.210605][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 450.215351][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 450.220097][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 450.225296][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.229979][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.236048][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 450.242273][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.248425][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.253615][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.258450][T14385] do_SYSENTER_32+0x73/0x90 [ 450.262935][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.269237][T14385] RIP: 0023:0xf7f3c549 [ 450.273290][T14385] Code: Bad RIP value. [ 450.277347][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 450.285735][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 450.293681][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 450.301629][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 450.309577][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 450.317524][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 450.325485][T14385] Uninit was stored to memory at: [ 450.330492][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.336199][T14385] __msan_chain_origin+0x50/0x90 [ 450.341118][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.346207][T14385] get_compat_msghdr+0x108/0x270 [ 450.351133][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.355616][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.360284][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.366326][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.372459][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.377638][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.382467][T14385] do_SYSENTER_32+0x73/0x90 [ 450.386989][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.393288][T14385] [ 450.395592][T14385] Uninit was stored to memory at: [ 450.400597][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.406294][T14385] __msan_chain_origin+0x50/0x90 [ 450.411240][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.416341][T14385] get_compat_msghdr+0x108/0x270 [ 450.421258][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.425736][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.430391][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.436432][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.442565][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.447760][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.452589][T14385] do_SYSENTER_32+0x73/0x90 [ 450.457070][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.463366][T14385] [ 450.465668][T14385] Uninit was stored to memory at: [ 450.470673][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.476369][T14385] __msan_chain_origin+0x50/0x90 [ 450.481286][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.486372][T14385] get_compat_msghdr+0x108/0x270 [ 450.491285][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.495787][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.500456][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.506510][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.512658][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.517839][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.522669][T14385] do_SYSENTER_32+0x73/0x90 [ 450.527172][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.534949][T14385] [ 450.537252][T14385] Uninit was stored to memory at: [ 450.542268][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.547963][T14385] __msan_chain_origin+0x50/0x90 [ 450.552884][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.557988][T14385] get_compat_msghdr+0x108/0x270 [ 450.562923][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.567407][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.572074][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.578129][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.584267][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.589449][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.594278][T14385] do_SYSENTER_32+0x73/0x90 [ 450.598768][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.605061][T14385] [ 450.607366][T14385] Uninit was stored to memory at: [ 450.612374][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.618085][T14385] __msan_chain_origin+0x50/0x90 [ 450.623003][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.628110][T14385] get_compat_msghdr+0x108/0x270 [ 450.633060][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.637980][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.642669][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.648727][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.654863][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.660057][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.666116][T14385] do_SYSENTER_32+0x73/0x90 [ 450.670615][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.676915][T14385] [ 450.679219][T14385] Uninit was stored to memory at: [ 450.684228][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.689926][T14385] __msan_chain_origin+0x50/0x90 [ 450.694844][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.699953][T14385] get_compat_msghdr+0x108/0x270 [ 450.704872][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.709355][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.714014][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.720061][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.726206][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.731398][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.736239][T14385] do_SYSENTER_32+0x73/0x90 [ 450.740808][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.747138][T14385] [ 450.749455][T14385] Uninit was stored to memory at: [ 450.754465][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 450.760169][T14385] __msan_chain_origin+0x50/0x90 [ 450.765087][T14385] __get_compat_msghdr+0x5be/0x890 [ 450.770184][T14385] get_compat_msghdr+0x108/0x270 [ 450.775106][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 450.779607][T14385] __sys_recvmmsg+0x4ca/0x510 [ 450.784260][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 450.790305][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 450.796440][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 450.801622][T14385] do_fast_syscall_32+0x6b/0xd0 [ 450.806449][T14385] do_SYSENTER_32+0x73/0x90 [ 450.810939][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 450.817238][T14385] [ 450.819541][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 450.826217][T14385] do_recvmmsg+0xc5/0x1ee0 [ 450.830613][T14385] do_recvmmsg+0xc5/0x1ee0 [ 450.972490][T14385] not chained 290000 origins [ 450.977129][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 450.985799][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 450.995866][T14385] Call Trace: [ 450.999177][T14385] dump_stack+0x1df/0x240 [ 451.003533][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 451.009332][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.014579][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 451.020140][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 451.026225][T14385] ? _copy_from_user+0x15b/0x260 [ 451.031171][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.036288][T14385] __msan_chain_origin+0x50/0x90 [ 451.041241][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.046390][T14385] get_compat_msghdr+0x108/0x270 [ 451.051354][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.055896][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 451.061571][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.066696][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 451.072342][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 451.077640][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 451.082410][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 451.087182][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 451.092418][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.097177][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.103260][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 451.109511][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.115679][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.120907][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.125772][T14385] do_SYSENTER_32+0x73/0x90 [ 451.130287][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.136610][T14385] RIP: 0023:0xf7f3c549 [ 451.140654][T14385] Code: Bad RIP value. [ 451.144694][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 451.153095][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 451.161047][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 451.168997][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 451.176972][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 451.184931][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 451.192906][T14385] Uninit was stored to memory at: [ 451.197928][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.203625][T14385] __msan_chain_origin+0x50/0x90 [ 451.208554][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.213648][T14385] get_compat_msghdr+0x108/0x270 [ 451.218564][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.223061][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.227730][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.233787][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.239920][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.245098][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.249939][T14385] do_SYSENTER_32+0x73/0x90 [ 451.254424][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.260721][T14385] [ 451.263037][T14385] Uninit was stored to memory at: [ 451.268056][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.273752][T14385] __msan_chain_origin+0x50/0x90 [ 451.278672][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.283763][T14385] get_compat_msghdr+0x108/0x270 [ 451.288680][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.293159][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.297815][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.303877][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.310010][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.315190][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.320032][T14385] do_SYSENTER_32+0x73/0x90 [ 451.324509][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.330802][T14385] [ 451.333103][T14385] Uninit was stored to memory at: [ 451.338106][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.343803][T14385] __msan_chain_origin+0x50/0x90 [ 451.348725][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.353814][T14385] get_compat_msghdr+0x108/0x270 [ 451.358731][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.363223][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.367880][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.373921][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.380051][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.385223][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.390049][T14385] do_SYSENTER_32+0x73/0x90 [ 451.394527][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.400824][T14385] [ 451.403126][T14385] Uninit was stored to memory at: [ 451.408128][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.413823][T14385] __msan_chain_origin+0x50/0x90 [ 451.418740][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.423826][T14385] get_compat_msghdr+0x108/0x270 [ 451.428742][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.433218][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.437904][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.443947][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.450091][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.455264][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.460092][T14385] do_SYSENTER_32+0x73/0x90 [ 451.464571][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.470871][T14385] [ 451.473193][T14385] Uninit was stored to memory at: [ 451.478202][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.483910][T14385] __msan_chain_origin+0x50/0x90 [ 451.488830][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.493927][T14385] get_compat_msghdr+0x108/0x270 [ 451.498846][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.503331][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.507986][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.514039][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.520172][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.525347][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.530177][T14385] do_SYSENTER_32+0x73/0x90 [ 451.534661][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.540957][T14385] [ 451.543260][T14385] Uninit was stored to memory at: [ 451.548266][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.553963][T14385] __msan_chain_origin+0x50/0x90 [ 451.558883][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.563973][T14385] get_compat_msghdr+0x108/0x270 [ 451.568893][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.573373][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.578034][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.584252][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.590383][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.595563][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.600394][T14385] do_SYSENTER_32+0x73/0x90 [ 451.604905][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.611219][T14385] [ 451.613521][T14385] Uninit was stored to memory at: [ 451.618547][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 451.624382][T14385] __msan_chain_origin+0x50/0x90 [ 451.629306][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.634397][T14385] get_compat_msghdr+0x108/0x270 [ 451.639333][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.643821][T14385] __sys_recvmmsg+0x4ca/0x510 [ 451.648478][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 451.654535][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 451.660669][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 451.665850][T14385] do_fast_syscall_32+0x6b/0xd0 [ 451.670686][T14385] do_SYSENTER_32+0x73/0x90 [ 451.675166][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 451.681462][T14385] [ 451.683765][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 451.690417][T14385] do_recvmmsg+0xc5/0x1ee0 [ 451.694813][T14385] do_recvmmsg+0xc5/0x1ee0 [ 451.885999][T14385] not chained 300000 origins [ 451.890670][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 451.899341][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 451.909399][T14385] Call Trace: [ 451.912708][T14385] dump_stack+0x1df/0x240 [ 451.917058][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 451.922802][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.927898][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 451.933423][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 451.939476][T14385] ? _copy_from_user+0x15b/0x260 [ 451.944393][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.949517][T14385] __msan_chain_origin+0x50/0x90 [ 451.954472][T14385] __get_compat_msghdr+0x5be/0x890 [ 451.959593][T14385] get_compat_msghdr+0x108/0x270 [ 451.964551][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 451.969062][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 451.974690][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 451.979815][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 451.985429][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 451.990699][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 451.995455][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 452.000200][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 452.005393][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.010080][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.016130][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 452.022362][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.028559][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.033761][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.038601][T14385] do_SYSENTER_32+0x73/0x90 [ 452.043123][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.049432][T14385] RIP: 0023:0xf7f3c549 [ 452.053472][T14385] Code: Bad RIP value. [ 452.057553][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 452.065965][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 452.073931][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 452.081884][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 452.089838][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 452.097790][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 452.105760][T14385] Uninit was stored to memory at: [ 452.110783][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.116489][T14385] __msan_chain_origin+0x50/0x90 [ 452.121412][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.126519][T14385] get_compat_msghdr+0x108/0x270 [ 452.131441][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.135937][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.140597][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.146677][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.152808][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.158007][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.162838][T14385] do_SYSENTER_32+0x73/0x90 [ 452.167321][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.173629][T14385] [ 452.175962][T14385] Uninit was stored to memory at: [ 452.180980][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.187721][T14385] __msan_chain_origin+0x50/0x90 [ 452.192638][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.197731][T14385] get_compat_msghdr+0x108/0x270 [ 452.202648][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.207143][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.211808][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.217878][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.224010][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.229191][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.234020][T14385] do_SYSENTER_32+0x73/0x90 [ 452.238503][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.244798][T14385] [ 452.247117][T14385] Uninit was stored to memory at: [ 452.252141][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.257848][T14385] __msan_chain_origin+0x50/0x90 [ 452.262768][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.267860][T14385] get_compat_msghdr+0x108/0x270 [ 452.272775][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.277256][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.281908][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.287950][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.294077][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.299257][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.304090][T14385] do_SYSENTER_32+0x73/0x90 [ 452.308569][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.314865][T14385] [ 452.317170][T14385] Uninit was stored to memory at: [ 452.322175][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.327872][T14385] __msan_chain_origin+0x50/0x90 [ 452.332806][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.337918][T14385] get_compat_msghdr+0x108/0x270 [ 452.342854][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.347350][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.352018][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.358060][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.364203][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.369379][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.374203][T14385] do_SYSENTER_32+0x73/0x90 [ 452.378684][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.384980][T14385] [ 452.387285][T14385] Uninit was stored to memory at: [ 452.392292][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.397991][T14385] __msan_chain_origin+0x50/0x90 [ 452.402938][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.408029][T14385] get_compat_msghdr+0x108/0x270 [ 452.412947][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.417429][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.422081][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.428128][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.434288][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.439475][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.444335][T14385] do_SYSENTER_32+0x73/0x90 [ 452.448824][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.455120][T14385] [ 452.457424][T14385] Uninit was stored to memory at: [ 452.462425][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.468122][T14385] __msan_chain_origin+0x50/0x90 [ 452.473036][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.478156][T14385] get_compat_msghdr+0x108/0x270 [ 452.483075][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.487562][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.492219][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.498264][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.504396][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.509576][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.514406][T14385] do_SYSENTER_32+0x73/0x90 [ 452.518891][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.525239][T14385] [ 452.527551][T14385] Uninit was stored to memory at: [ 452.532587][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.538297][T14385] __msan_chain_origin+0x50/0x90 [ 452.543216][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.548394][T14385] get_compat_msghdr+0x108/0x270 [ 452.553313][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.557797][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.562484][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.568542][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.574673][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.579856][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.584698][T14385] do_SYSENTER_32+0x73/0x90 [ 452.589181][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.595477][T14385] [ 452.597783][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 452.604442][T14385] do_recvmmsg+0xc5/0x1ee0 [ 452.608844][T14385] do_recvmmsg+0xc5/0x1ee0 [ 452.752166][T14385] not chained 310000 origins [ 452.756804][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 452.765471][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 452.775527][T14385] Call Trace: [ 452.778836][T14385] dump_stack+0x1df/0x240 [ 452.783198][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 452.789061][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 452.794182][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 452.799742][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 452.805826][T14385] ? _copy_from_user+0x15b/0x260 [ 452.810779][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 452.815903][T14385] __msan_chain_origin+0x50/0x90 [ 452.820868][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.826019][T14385] get_compat_msghdr+0x108/0x270 [ 452.831010][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 452.835546][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 452.841216][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 452.846340][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 452.851985][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 452.857291][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 452.862065][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 452.866837][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 452.872055][T14385] __sys_recvmmsg+0x4ca/0x510 [ 452.876767][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 452.882888][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 452.889142][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 452.895308][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 452.900535][T14385] do_fast_syscall_32+0x6b/0xd0 [ 452.905405][T14385] do_SYSENTER_32+0x73/0x90 [ 452.909920][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 452.916249][T14385] RIP: 0023:0xf7f3c549 [ 452.920342][T14385] Code: Bad RIP value. [ 452.924405][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 452.932824][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 452.940805][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 452.948770][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 452.956756][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 452.964705][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 452.972665][T14385] Uninit was stored to memory at: [ 452.977670][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 452.983395][T14385] __msan_chain_origin+0x50/0x90 [ 452.988311][T14385] __get_compat_msghdr+0x5be/0x890 [ 452.993400][T14385] get_compat_msghdr+0x108/0x270 [ 452.998329][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.002811][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.007466][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.013511][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.019739][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.024968][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.029798][T14385] do_SYSENTER_32+0x73/0x90 [ 453.034278][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.040587][T14385] [ 453.042892][T14385] Uninit was stored to memory at: [ 453.047899][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.053606][T14385] __msan_chain_origin+0x50/0x90 [ 453.058523][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.063611][T14385] get_compat_msghdr+0x108/0x270 [ 453.068541][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.073037][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.077706][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.083763][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.089899][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.095077][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.099909][T14385] do_SYSENTER_32+0x73/0x90 [ 453.104400][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.110696][T14385] [ 453.113015][T14385] Uninit was stored to memory at: [ 453.118020][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.123728][T14385] __msan_chain_origin+0x50/0x90 [ 453.128647][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.133736][T14385] get_compat_msghdr+0x108/0x270 [ 453.138654][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.143132][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.147787][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.153832][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.159970][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.165147][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.169978][T14385] do_SYSENTER_32+0x73/0x90 [ 453.174458][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.180756][T14385] [ 453.183059][T14385] Uninit was stored to memory at: [ 453.188064][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.193758][T14385] __msan_chain_origin+0x50/0x90 [ 453.198680][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.203783][T14385] get_compat_msghdr+0x108/0x270 [ 453.208703][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.213182][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.217840][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.223894][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.230028][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.235218][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.240047][T14385] do_SYSENTER_32+0x73/0x90 [ 453.244529][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.250838][T14385] [ 453.253149][T14385] Uninit was stored to memory at: [ 453.258166][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.263878][T14385] __msan_chain_origin+0x50/0x90 [ 453.268796][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.273895][T14385] get_compat_msghdr+0x108/0x270 [ 453.278827][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.283319][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.287973][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.294015][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.300146][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.305323][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.310154][T14385] do_SYSENTER_32+0x73/0x90 [ 453.314632][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.320945][T14385] [ 453.323247][T14385] Uninit was stored to memory at: [ 453.328250][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.333961][T14385] __msan_chain_origin+0x50/0x90 [ 453.338884][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.343973][T14385] get_compat_msghdr+0x108/0x270 [ 453.348903][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.353401][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.358082][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.364127][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.370259][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.375434][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.380268][T14385] do_SYSENTER_32+0x73/0x90 [ 453.384753][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.391090][T14385] [ 453.393415][T14385] Uninit was stored to memory at: [ 453.398433][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.404171][T14385] __msan_chain_origin+0x50/0x90 [ 453.409097][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.414197][T14385] get_compat_msghdr+0x108/0x270 [ 453.419121][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.423607][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.428266][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.434313][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.440455][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.445639][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.450517][T14385] do_SYSENTER_32+0x73/0x90 [ 453.455000][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.461304][T14385] [ 453.463611][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 453.470281][T14385] do_recvmmsg+0xc5/0x1ee0 [ 453.474676][T14385] do_recvmmsg+0xc5/0x1ee0 [ 453.661236][T14385] not chained 320000 origins [ 453.665842][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 453.674484][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 453.684517][T14385] Call Trace: [ 453.687793][T14385] dump_stack+0x1df/0x240 [ 453.692157][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 453.697885][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 453.702980][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 453.708508][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 453.714559][T14385] ? _copy_from_user+0x15b/0x260 [ 453.719516][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 453.724610][T14385] __msan_chain_origin+0x50/0x90 [ 453.729537][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.734648][T14385] get_compat_msghdr+0x108/0x270 [ 453.739606][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.744103][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 453.749735][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 453.754829][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 453.760447][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 453.765734][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 453.770481][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 453.775224][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 453.780406][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.785080][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.791148][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 453.797375][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.803513][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.809139][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.813975][T14385] do_SYSENTER_32+0x73/0x90 [ 453.818466][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.824776][T14385] RIP: 0023:0xf7f3c549 [ 453.828837][T14385] Code: Bad RIP value. [ 453.832880][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 453.841279][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 453.849255][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 453.857218][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 453.865175][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 453.873131][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 453.881114][T14385] Uninit was stored to memory at: [ 453.886145][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.891842][T14385] __msan_chain_origin+0x50/0x90 [ 453.896761][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.901867][T14385] get_compat_msghdr+0x108/0x270 [ 453.906802][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.911297][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.915952][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.922002][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.928153][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 453.933620][T14385] do_fast_syscall_32+0x6b/0xd0 [ 453.938458][T14385] do_SYSENTER_32+0x73/0x90 [ 453.942942][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 453.949239][T14385] [ 453.951547][T14385] Uninit was stored to memory at: [ 453.956558][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 453.962256][T14385] __msan_chain_origin+0x50/0x90 [ 453.967176][T14385] __get_compat_msghdr+0x5be/0x890 [ 453.972264][T14385] get_compat_msghdr+0x108/0x270 [ 453.977181][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 453.981675][T14385] __sys_recvmmsg+0x4ca/0x510 [ 453.986351][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 453.992406][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 453.998540][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.003719][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.008546][T14385] do_SYSENTER_32+0x73/0x90 [ 454.013024][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.019316][T14385] [ 454.021619][T14385] Uninit was stored to memory at: [ 454.026626][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.032323][T14385] __msan_chain_origin+0x50/0x90 [ 454.037242][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.042345][T14385] get_compat_msghdr+0x108/0x270 [ 454.047266][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.051765][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.056438][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.062537][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.068686][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.073877][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.078730][T14385] do_SYSENTER_32+0x73/0x90 [ 454.083220][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.089520][T14385] [ 454.091870][T14385] Uninit was stored to memory at: [ 454.096892][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.102626][T14385] __msan_chain_origin+0x50/0x90 [ 454.107548][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.112679][T14385] get_compat_msghdr+0x108/0x270 [ 454.117599][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.122085][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.126746][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.132797][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.138936][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.144120][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.148951][T14385] do_SYSENTER_32+0x73/0x90 [ 454.153436][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.159741][T14385] [ 454.162047][T14385] Uninit was stored to memory at: [ 454.167066][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.172762][T14385] __msan_chain_origin+0x50/0x90 [ 454.177683][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.182774][T14385] get_compat_msghdr+0x108/0x270 [ 454.187693][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.192173][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.196826][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.202873][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.210986][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.216171][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.221009][T14385] do_SYSENTER_32+0x73/0x90 [ 454.225497][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.231800][T14385] [ 454.234110][T14385] Uninit was stored to memory at: [ 454.239122][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.244819][T14385] __msan_chain_origin+0x50/0x90 [ 454.249738][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.254830][T14385] get_compat_msghdr+0x108/0x270 [ 454.259758][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.264243][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.269340][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.275383][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.281520][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.286703][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.291561][T14385] do_SYSENTER_32+0x73/0x90 [ 454.296083][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.302398][T14385] [ 454.304735][T14385] Uninit was stored to memory at: [ 454.309751][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.315454][T14385] __msan_chain_origin+0x50/0x90 [ 454.320393][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.325488][T14385] get_compat_msghdr+0x108/0x270 [ 454.330410][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.334895][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.339577][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.345629][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.351766][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.356953][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.361828][T14385] do_SYSENTER_32+0x73/0x90 [ 454.366397][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.372733][T14385] [ 454.375075][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 454.381738][T14385] do_recvmmsg+0xc5/0x1ee0 [ 454.386140][T14385] do_recvmmsg+0xc5/0x1ee0 [ 454.521705][T14385] not chained 330000 origins [ 454.526342][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 454.535015][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 454.545075][T14385] Call Trace: [ 454.548384][T14385] dump_stack+0x1df/0x240 [ 454.552741][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 454.558522][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 454.563659][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 454.569223][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 454.575312][T14385] ? _copy_from_user+0x15b/0x260 [ 454.580268][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 454.585389][T14385] __msan_chain_origin+0x50/0x90 [ 454.590346][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.595499][T14385] get_compat_msghdr+0x108/0x270 [ 454.600468][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.605002][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 454.610671][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 454.615794][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 454.621437][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 454.626741][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 454.631510][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 454.636283][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 454.641499][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.646212][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.652296][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 454.658548][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.664720][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.669945][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.674813][T14385] do_SYSENTER_32+0x73/0x90 [ 454.679340][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.685673][T14385] RIP: 0023:0xf7f3c549 [ 454.689740][T14385] Code: Bad RIP value. [ 454.693809][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 454.702236][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 454.710243][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 454.718225][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 454.726207][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 454.734282][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 454.742284][T14385] Uninit was stored to memory at: [ 454.747329][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.753062][T14385] __msan_chain_origin+0x50/0x90 [ 454.758016][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.763142][T14385] get_compat_msghdr+0x108/0x270 [ 454.768092][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.772599][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.777322][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.783392][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.789532][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.794717][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.799551][T14385] do_SYSENTER_32+0x73/0x90 [ 454.804084][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.810389][T14385] [ 454.812703][T14385] Uninit was stored to memory at: [ 454.817734][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.823446][T14385] __msan_chain_origin+0x50/0x90 [ 454.828394][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.833512][T14385] get_compat_msghdr+0x108/0x270 [ 454.838446][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.842943][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.847603][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.853649][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.859788][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.864986][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.869820][T14385] do_SYSENTER_32+0x73/0x90 [ 454.874302][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.880616][T14385] [ 454.882920][T14385] Uninit was stored to memory at: [ 454.887927][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.893627][T14385] __msan_chain_origin+0x50/0x90 [ 454.898553][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.903643][T14385] get_compat_msghdr+0x108/0x270 [ 454.908561][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.913041][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.917700][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.923745][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 454.929886][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 454.935082][T14385] do_fast_syscall_32+0x6b/0xd0 [ 454.939919][T14385] do_SYSENTER_32+0x73/0x90 [ 454.944405][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 454.950705][T14385] [ 454.953030][T14385] Uninit was stored to memory at: [ 454.958050][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 454.963759][T14385] __msan_chain_origin+0x50/0x90 [ 454.968684][T14385] __get_compat_msghdr+0x5be/0x890 [ 454.973776][T14385] get_compat_msghdr+0x108/0x270 [ 454.978693][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 454.983171][T14385] __sys_recvmmsg+0x4ca/0x510 [ 454.987830][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 454.993901][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.000037][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.005231][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.010090][T14385] do_SYSENTER_32+0x73/0x90 [ 455.014585][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.020881][T14385] [ 455.023184][T14385] Uninit was stored to memory at: [ 455.028192][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.033885][T14385] __msan_chain_origin+0x50/0x90 [ 455.038815][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.043908][T14385] get_compat_msghdr+0x108/0x270 [ 455.048841][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.053347][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.058093][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.064154][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.070299][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.075483][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.080314][T14385] do_SYSENTER_32+0x73/0x90 [ 455.084795][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.091094][T14385] [ 455.093409][T14385] Uninit was stored to memory at: [ 455.098418][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.104118][T14385] __msan_chain_origin+0x50/0x90 [ 455.109037][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.114130][T14385] get_compat_msghdr+0x108/0x270 [ 455.119054][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.123557][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.128216][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.135317][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.141453][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.146635][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.151463][T14385] do_SYSENTER_32+0x73/0x90 [ 455.155947][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.162245][T14385] [ 455.164551][T14385] Uninit was stored to memory at: [ 455.169576][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.175285][T14385] __msan_chain_origin+0x50/0x90 [ 455.180210][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.185305][T14385] get_compat_msghdr+0x108/0x270 [ 455.190229][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.194715][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.199380][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.205431][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.211573][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.216759][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.221599][T14385] do_SYSENTER_32+0x73/0x90 [ 455.226083][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.232396][T14385] [ 455.234718][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 455.241391][T14385] do_recvmmsg+0xc5/0x1ee0 [ 455.245804][T14385] do_recvmmsg+0xc5/0x1ee0 [ 455.414155][T14385] not chained 340000 origins [ 455.418796][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 455.427472][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 455.437526][T14385] Call Trace: [ 455.440843][T14385] dump_stack+0x1df/0x240 [ 455.445202][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 455.450981][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 455.456093][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 455.461625][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 455.467682][T14385] ? _copy_from_user+0x15b/0x260 [ 455.472605][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 455.477735][T14385] __msan_chain_origin+0x50/0x90 [ 455.482665][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.487802][T14385] get_compat_msghdr+0x108/0x270 [ 455.492755][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.497254][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 455.502883][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 455.507974][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 455.513588][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 455.518864][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 455.523607][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 455.528355][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 455.533543][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.538221][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.544294][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 455.550519][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.556674][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.561884][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.566726][T14385] do_SYSENTER_32+0x73/0x90 [ 455.571229][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.577549][T14385] RIP: 0023:0xf7f3c549 [ 455.581590][T14385] Code: Bad RIP value. [ 455.585632][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 455.594027][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 455.601988][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 455.609948][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 455.617913][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 455.625872][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 455.633846][T14385] Uninit was stored to memory at: [ 455.638866][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.644656][T14385] __msan_chain_origin+0x50/0x90 [ 455.649584][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.654680][T14385] get_compat_msghdr+0x108/0x270 [ 455.659610][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.664094][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.668759][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.674815][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.680971][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.686159][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.691023][T14385] do_SYSENTER_32+0x73/0x90 [ 455.695541][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.701859][T14385] [ 455.704170][T14385] Uninit was stored to memory at: [ 455.709179][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.714899][T14385] __msan_chain_origin+0x50/0x90 [ 455.719820][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.724934][T14385] get_compat_msghdr+0x108/0x270 [ 455.729886][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.734369][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.739029][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.745081][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.751288][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.756485][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.761337][T14385] do_SYSENTER_32+0x73/0x90 [ 455.765823][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.772126][T14385] [ 455.774429][T14385] Uninit was stored to memory at: [ 455.779437][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.785136][T14385] __msan_chain_origin+0x50/0x90 [ 455.790057][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.795147][T14385] get_compat_msghdr+0x108/0x270 [ 455.800067][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.804550][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.809209][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.815258][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.821398][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.826631][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.831466][T14385] do_SYSENTER_32+0x73/0x90 [ 455.835980][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.842401][T14385] [ 455.844712][T14385] Uninit was stored to memory at: [ 455.849723][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.855418][T14385] __msan_chain_origin+0x50/0x90 [ 455.860397][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.865489][T14385] get_compat_msghdr+0x108/0x270 [ 455.870420][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.874912][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.879584][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.885631][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.891766][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.896946][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.901774][T14385] do_SYSENTER_32+0x73/0x90 [ 455.906264][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.912576][T14385] [ 455.914900][T14385] Uninit was stored to memory at: [ 455.919917][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.925623][T14385] __msan_chain_origin+0x50/0x90 [ 455.930544][T14385] __get_compat_msghdr+0x5be/0x890 [ 455.935635][T14385] get_compat_msghdr+0x108/0x270 [ 455.940565][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 455.945046][T14385] __sys_recvmmsg+0x4ca/0x510 [ 455.949702][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 455.955745][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 455.961887][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 455.967076][T14385] do_fast_syscall_32+0x6b/0xd0 [ 455.971915][T14385] do_SYSENTER_32+0x73/0x90 [ 455.976417][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 455.982748][T14385] [ 455.985061][T14385] Uninit was stored to memory at: [ 455.990071][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 455.995786][T14385] __msan_chain_origin+0x50/0x90 [ 456.000706][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.005907][T14385] get_compat_msghdr+0x108/0x270 [ 456.010859][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.015346][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.020037][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.026083][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.032239][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.037431][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.042291][T14385] do_SYSENTER_32+0x73/0x90 [ 456.046809][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.053122][T14385] [ 456.055484][T14385] Uninit was stored to memory at: [ 456.060501][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.066209][T14385] __msan_chain_origin+0x50/0x90 [ 456.071159][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.076268][T14385] get_compat_msghdr+0x108/0x270 [ 456.081219][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.085706][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.090369][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.096428][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.102580][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.107767][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.112602][T14385] do_SYSENTER_32+0x73/0x90 [ 456.117090][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.123388][T14385] [ 456.125692][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 456.132366][T14385] do_recvmmsg+0xc5/0x1ee0 [ 456.136803][T14385] do_recvmmsg+0xc5/0x1ee0 [ 456.293407][T14385] not chained 350000 origins [ 456.298055][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 456.306737][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 456.316805][T14385] Call Trace: [ 456.320128][T14385] dump_stack+0x1df/0x240 [ 456.324485][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 456.330264][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 456.335390][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 456.340961][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 456.347063][T14385] ? _copy_from_user+0x15b/0x260 [ 456.352026][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 456.357246][T14385] __msan_chain_origin+0x50/0x90 [ 456.362212][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.367377][T14385] get_compat_msghdr+0x108/0x270 [ 456.372363][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.376919][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 456.382609][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 456.387761][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 456.393427][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 456.398752][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 456.403538][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 456.408326][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 456.413554][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.418277][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.424372][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 456.430634][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.436821][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.442060][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.446941][T14385] do_SYSENTER_32+0x73/0x90 [ 456.451465][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.457803][T14385] RIP: 0023:0xf7f3c549 [ 456.462045][T14385] Code: Bad RIP value. [ 456.466118][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 456.474545][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 456.482571][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 456.490584][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 456.498552][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 456.506530][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 456.514566][T14385] Uninit was stored to memory at: [ 456.519631][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.525342][T14385] __msan_chain_origin+0x50/0x90 [ 456.530291][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.535393][T14385] get_compat_msghdr+0x108/0x270 [ 456.540369][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.544863][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.549536][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.555594][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.561740][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.566946][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.571801][T14385] do_SYSENTER_32+0x73/0x90 [ 456.576307][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.582628][T14385] [ 456.584948][T14385] Uninit was stored to memory at: [ 456.589961][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.595665][T14385] __msan_chain_origin+0x50/0x90 [ 456.600594][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.605695][T14385] get_compat_msghdr+0x108/0x270 [ 456.610637][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.615125][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.619790][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.625855][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.632004][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.637194][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.643263][T14385] do_SYSENTER_32+0x73/0x90 [ 456.647755][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.654243][T14385] [ 456.656559][T14385] Uninit was stored to memory at: [ 456.661605][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.667327][T14385] __msan_chain_origin+0x50/0x90 [ 456.672248][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.677345][T14385] get_compat_msghdr+0x108/0x270 [ 456.682268][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.686775][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.691450][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.697506][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.703643][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.708847][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.713711][T14385] do_SYSENTER_32+0x73/0x90 [ 456.718205][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.724510][T14385] [ 456.726831][T14385] Uninit was stored to memory at: [ 456.731888][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.737601][T14385] __msan_chain_origin+0x50/0x90 [ 456.742545][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.747656][T14385] get_compat_msghdr+0x108/0x270 [ 456.752591][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.757273][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.761970][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.768119][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.774291][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.779486][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.784321][T14385] do_SYSENTER_32+0x73/0x90 [ 456.788812][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.795126][T14385] [ 456.797437][T14385] Uninit was stored to memory at: [ 456.802463][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.808183][T14385] __msan_chain_origin+0x50/0x90 [ 456.813111][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.818228][T14385] get_compat_msghdr+0x108/0x270 [ 456.823171][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.827661][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.832338][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.838395][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.844536][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.849729][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.854567][T14385] do_SYSENTER_32+0x73/0x90 [ 456.859065][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.865371][T14385] [ 456.867700][T14385] Uninit was stored to memory at: [ 456.872712][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.878411][T14385] __msan_chain_origin+0x50/0x90 [ 456.883334][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.888427][T14385] get_compat_msghdr+0x108/0x270 [ 456.893361][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.897848][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.902517][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.908574][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.914723][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.919930][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.924760][T14385] do_SYSENTER_32+0x73/0x90 [ 456.929253][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 456.935580][T14385] [ 456.937888][T14385] Uninit was stored to memory at: [ 456.942899][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 456.948598][T14385] __msan_chain_origin+0x50/0x90 [ 456.953514][T14385] __get_compat_msghdr+0x5be/0x890 [ 456.958627][T14385] get_compat_msghdr+0x108/0x270 [ 456.963564][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 456.968076][T14385] __sys_recvmmsg+0x4ca/0x510 [ 456.972758][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 456.978832][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 456.984974][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 456.990158][T14385] do_fast_syscall_32+0x6b/0xd0 [ 456.994990][T14385] do_SYSENTER_32+0x73/0x90 [ 456.999473][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.005770][T14385] [ 457.008076][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 457.014732][T14385] do_recvmmsg+0xc5/0x1ee0 [ 457.019126][T14385] do_recvmmsg+0xc5/0x1ee0 [ 457.155516][T14385] not chained 360000 origins [ 457.160156][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 457.168922][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 457.178990][T14385] Call Trace: [ 457.182306][T14385] dump_stack+0x1df/0x240 [ 457.186668][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 457.192449][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 457.197582][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 457.203145][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 457.209233][T14385] ? _copy_from_user+0x15b/0x260 [ 457.214182][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 457.219340][T14385] __msan_chain_origin+0x50/0x90 [ 457.224303][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.229457][T14385] get_compat_msghdr+0x108/0x270 [ 457.234424][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.238961][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 457.244632][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 457.249758][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 457.255404][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 457.260706][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 457.265480][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 457.270256][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 457.275470][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.280186][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.286274][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 457.292528][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.298702][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.303935][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.308811][T14385] do_SYSENTER_32+0x73/0x90 [ 457.313341][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.319676][T14385] RIP: 0023:0xf7f3c549 [ 457.323772][T14385] Code: Bad RIP value. [ 457.327878][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 457.336336][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 457.344327][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 457.352284][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 457.360241][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 457.368197][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 457.376179][T14385] Uninit was stored to memory at: [ 457.381224][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.386942][T14385] __msan_chain_origin+0x50/0x90 [ 457.391920][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.397035][T14385] get_compat_msghdr+0x108/0x270 [ 457.401987][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.406501][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.411175][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.417236][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.423428][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.428611][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.433440][T14385] do_SYSENTER_32+0x73/0x90 [ 457.437934][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.444242][T14385] [ 457.446554][T14385] Uninit was stored to memory at: [ 457.451570][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.457276][T14385] __msan_chain_origin+0x50/0x90 [ 457.462245][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.467337][T14385] get_compat_msghdr+0x108/0x270 [ 457.472248][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.476740][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.481438][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.487496][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.493644][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.498838][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.503699][T14385] do_SYSENTER_32+0x73/0x90 [ 457.508182][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.514476][T14385] [ 457.516787][T14385] Uninit was stored to memory at: [ 457.521808][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.527524][T14385] __msan_chain_origin+0x50/0x90 [ 457.532442][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.537544][T14385] get_compat_msghdr+0x108/0x270 [ 457.542474][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.546970][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.551654][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.557710][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.563874][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.569055][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.573981][T14385] do_SYSENTER_32+0x73/0x90 [ 457.578477][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.584796][T14385] [ 457.587116][T14385] Uninit was stored to memory at: [ 457.592120][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.597832][T14385] __msan_chain_origin+0x50/0x90 [ 457.602787][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.607884][T14385] get_compat_msghdr+0x108/0x270 [ 457.612805][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.617310][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.622032][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.628102][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.634261][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.639479][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.644360][T14385] do_SYSENTER_32+0x73/0x90 [ 457.648871][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.655174][T14385] [ 457.657490][T14385] Uninit was stored to memory at: [ 457.662510][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.668210][T14385] __msan_chain_origin+0x50/0x90 [ 457.673142][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.678261][T14385] get_compat_msghdr+0x108/0x270 [ 457.683191][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.687676][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.692334][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.698398][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.704550][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.709736][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.714579][T14385] do_SYSENTER_32+0x73/0x90 [ 457.719065][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.725376][T14385] [ 457.727698][T14385] Uninit was stored to memory at: [ 457.732705][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.738420][T14385] __msan_chain_origin+0x50/0x90 [ 457.743354][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.748456][T14385] get_compat_msghdr+0x108/0x270 [ 457.753383][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.757890][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.762569][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.768621][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.774756][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.779936][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.784783][T14385] do_SYSENTER_32+0x73/0x90 [ 457.789271][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.795573][T14385] [ 457.797886][T14385] Uninit was stored to memory at: [ 457.802918][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 457.808623][T14385] __msan_chain_origin+0x50/0x90 [ 457.813564][T14385] __get_compat_msghdr+0x5be/0x890 [ 457.818706][T14385] get_compat_msghdr+0x108/0x270 [ 457.823648][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 457.828133][T14385] __sys_recvmmsg+0x4ca/0x510 [ 457.832799][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 457.838869][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 457.845037][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 457.850873][T14385] do_fast_syscall_32+0x6b/0xd0 [ 457.855723][T14385] do_SYSENTER_32+0x73/0x90 [ 457.860221][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 457.866536][T14385] [ 457.868859][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 457.875519][T14385] do_recvmmsg+0xc5/0x1ee0 [ 457.879925][T14385] do_recvmmsg+0xc5/0x1ee0 [ 458.029439][T14385] not chained 370000 origins [ 458.034080][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 458.042760][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.052834][T14385] Call Trace: [ 458.056157][T14385] dump_stack+0x1df/0x240 [ 458.060526][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 458.066315][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.071455][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 458.077036][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 458.083234][T14385] ? _copy_from_user+0x15b/0x260 [ 458.088190][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.093326][T14385] __msan_chain_origin+0x50/0x90 [ 458.098287][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.103449][T14385] get_compat_msghdr+0x108/0x270 [ 458.108425][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.112960][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 458.118647][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.123777][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 458.129430][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 458.134741][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 458.139504][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 458.144255][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 458.149442][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.154119][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.160189][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 458.166477][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.172651][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.177850][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.182700][T14385] do_SYSENTER_32+0x73/0x90 [ 458.187197][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.193510][T14385] RIP: 0023:0xf7f3c549 [ 458.197561][T14385] Code: Bad RIP value. [ 458.201611][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 458.210031][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 458.218011][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 458.225972][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 458.233946][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 458.241926][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 458.249906][T14385] Uninit was stored to memory at: [ 458.255016][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.260731][T14385] __msan_chain_origin+0x50/0x90 [ 458.265667][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.270784][T14385] get_compat_msghdr+0x108/0x270 [ 458.275728][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.280238][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.284922][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.290984][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.297122][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.302317][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.307322][T14385] do_SYSENTER_32+0x73/0x90 [ 458.311806][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.318104][T14385] [ 458.320414][T14385] Uninit was stored to memory at: [ 458.325423][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.331123][T14385] __msan_chain_origin+0x50/0x90 [ 458.336061][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.341152][T14385] get_compat_msghdr+0x108/0x270 [ 458.346070][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.350551][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.355206][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.361251][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.367386][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.372564][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.377446][T14385] do_SYSENTER_32+0x73/0x90 [ 458.381937][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.388339][T14385] [ 458.390664][T14385] Uninit was stored to memory at: [ 458.395675][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.401376][T14385] __msan_chain_origin+0x50/0x90 [ 458.406297][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.411439][T14385] get_compat_msghdr+0x108/0x270 [ 458.416361][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.420844][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.425536][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.431581][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.437721][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.442940][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.447773][T14385] do_SYSENTER_32+0x73/0x90 [ 458.452257][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.458555][T14385] [ 458.460898][T14385] Uninit was stored to memory at: [ 458.465912][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.471623][T14385] __msan_chain_origin+0x50/0x90 [ 458.476555][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.481659][T14385] get_compat_msghdr+0x108/0x270 [ 458.486597][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.491197][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.495868][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.501934][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.508081][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.513265][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.518097][T14385] do_SYSENTER_32+0x73/0x90 [ 458.522594][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.528891][T14385] [ 458.531199][T14385] Uninit was stored to memory at: [ 458.536216][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.541921][T14385] __msan_chain_origin+0x50/0x90 [ 458.546858][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.551950][T14385] get_compat_msghdr+0x108/0x270 [ 458.556869][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.561366][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.566028][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.572085][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.578227][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.583413][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.588257][T14385] do_SYSENTER_32+0x73/0x90 [ 458.592769][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.599099][T14385] [ 458.601429][T14385] Uninit was stored to memory at: [ 458.606450][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.612159][T14385] __msan_chain_origin+0x50/0x90 [ 458.617089][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.622207][T14385] get_compat_msghdr+0x108/0x270 [ 458.627138][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.631646][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.636336][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.642400][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.648563][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.653751][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.658588][T14385] do_SYSENTER_32+0x73/0x90 [ 458.663077][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.669380][T14385] [ 458.671691][T14385] Uninit was stored to memory at: [ 458.676702][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 458.682407][T14385] __msan_chain_origin+0x50/0x90 [ 458.687349][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.692443][T14385] get_compat_msghdr+0x108/0x270 [ 458.697367][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.701854][T14385] __sys_recvmmsg+0x4ca/0x510 [ 458.706516][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 458.712570][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 458.718718][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 458.723930][T14385] do_fast_syscall_32+0x6b/0xd0 [ 458.728769][T14385] do_SYSENTER_32+0x73/0x90 [ 458.733256][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 458.739581][T14385] [ 458.741906][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 458.748585][T14385] do_recvmmsg+0xc5/0x1ee0 [ 458.752983][T14385] do_recvmmsg+0xc5/0x1ee0 [ 458.894959][T14385] not chained 380000 origins [ 458.899615][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 458.908293][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.918360][T14385] Call Trace: [ 458.921710][T14385] dump_stack+0x1df/0x240 [ 458.926076][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 458.931867][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.937005][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 458.942576][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 458.948681][T14385] ? _copy_from_user+0x15b/0x260 [ 458.953641][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.958858][T14385] __msan_chain_origin+0x50/0x90 [ 458.963821][T14385] __get_compat_msghdr+0x5be/0x890 [ 458.968980][T14385] get_compat_msghdr+0x108/0x270 [ 458.973956][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 458.978528][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 458.984200][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 458.989325][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 458.994980][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 459.000283][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 459.005062][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 459.009837][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 459.015050][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.019783][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.025875][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 459.032139][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.038314][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.043544][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.048416][T14385] do_SYSENTER_32+0x73/0x90 [ 459.053544][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.059878][T14385] RIP: 0023:0xf7f3c549 [ 459.064034][T14385] Code: Bad RIP value. [ 459.068102][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 459.076549][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 459.084559][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 459.092537][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 459.100496][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 459.108470][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 459.116447][T14385] Uninit was stored to memory at: [ 459.121482][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.127183][T14385] __msan_chain_origin+0x50/0x90 [ 459.132103][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.137196][T14385] get_compat_msghdr+0x108/0x270 [ 459.142132][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.146632][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.151306][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.157363][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.163611][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.168797][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.173633][T14385] do_SYSENTER_32+0x73/0x90 [ 459.178121][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.184422][T14385] [ 459.186746][T14385] Uninit was stored to memory at: [ 459.191757][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.197456][T14385] __msan_chain_origin+0x50/0x90 [ 459.202377][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.207470][T14385] get_compat_msghdr+0x108/0x270 [ 459.212388][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.216872][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.221812][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.227945][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.234079][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.239276][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.244126][T14385] do_SYSENTER_32+0x73/0x90 [ 459.248627][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.254944][T14385] [ 459.257249][T14385] Uninit was stored to memory at: [ 459.262275][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.267976][T14385] __msan_chain_origin+0x50/0x90 [ 459.272913][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.278005][T14385] get_compat_msghdr+0x108/0x270 [ 459.282922][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.287404][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.292069][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.298115][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.304268][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.309468][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.314489][T14385] do_SYSENTER_32+0x73/0x90 [ 459.319084][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.325383][T14385] [ 459.328172][T14385] Uninit was stored to memory at: [ 459.333181][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.338922][T14385] __msan_chain_origin+0x50/0x90 [ 459.343881][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.348979][T14385] get_compat_msghdr+0x108/0x270 [ 459.353923][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.358413][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.363092][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.369187][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.375329][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.380554][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.385403][T14385] do_SYSENTER_32+0x73/0x90 [ 459.389944][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.396247][T14385] [ 459.398555][T14385] Uninit was stored to memory at: [ 459.403692][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.409493][T14385] __msan_chain_origin+0x50/0x90 [ 459.414413][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.419507][T14385] get_compat_msghdr+0x108/0x270 [ 459.424426][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.428941][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.433622][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.439675][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.445813][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.450996][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.455826][T14385] do_SYSENTER_32+0x73/0x90 [ 459.460335][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.466743][T14385] [ 459.469053][T14385] Uninit was stored to memory at: [ 459.474252][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.479957][T14385] __msan_chain_origin+0x50/0x90 [ 459.484891][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.489992][T14385] get_compat_msghdr+0x108/0x270 [ 459.494916][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.499421][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.504084][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.510151][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.516292][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.521478][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.526319][T14385] do_SYSENTER_32+0x73/0x90 [ 459.530804][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.537102][T14385] [ 459.539410][T14385] Uninit was stored to memory at: [ 459.544418][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.550120][T14385] __msan_chain_origin+0x50/0x90 [ 459.555041][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.560585][T14385] get_compat_msghdr+0x108/0x270 [ 459.565507][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.569991][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.574649][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.580697][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.586878][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.592150][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.596989][T14385] do_SYSENTER_32+0x73/0x90 [ 459.601497][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.607802][T14385] [ 459.610116][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 459.617664][T14385] do_recvmmsg+0xc5/0x1ee0 [ 459.622075][T14385] do_recvmmsg+0xc5/0x1ee0 [ 459.753951][T14385] not chained 390000 origins [ 459.758715][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 459.767390][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 459.777450][T14385] Call Trace: [ 459.780766][T14385] dump_stack+0x1df/0x240 [ 459.785148][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 459.790935][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 459.796070][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 459.801647][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 459.807751][T14385] ? _copy_from_user+0x15b/0x260 [ 459.812712][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 459.817881][T14385] __msan_chain_origin+0x50/0x90 [ 459.822850][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.828015][T14385] get_compat_msghdr+0x108/0x270 [ 459.832985][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 459.837521][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 459.843188][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 459.848314][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 459.853963][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 459.859269][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 459.864048][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 459.868826][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 459.874048][T14385] __sys_recvmmsg+0x4ca/0x510 [ 459.878772][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 459.884872][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 459.891125][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 459.897295][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 459.902520][T14385] do_fast_syscall_32+0x6b/0xd0 [ 459.907374][T14385] do_SYSENTER_32+0x73/0x90 [ 459.911892][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 459.918216][T14385] RIP: 0023:0xf7f3c549 [ 459.922258][T14385] Code: Bad RIP value. [ 459.926308][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 459.934699][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 459.942668][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 459.950624][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 459.958579][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 459.966552][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 459.974520][T14385] Uninit was stored to memory at: [ 459.979545][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 459.985254][T14385] __msan_chain_origin+0x50/0x90 [ 459.990176][T14385] __get_compat_msghdr+0x5be/0x890 [ 459.995281][T14385] get_compat_msghdr+0x108/0x270 [ 460.000202][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.004685][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.009351][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.015406][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.021550][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.026744][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.031584][T14385] do_SYSENTER_32+0x73/0x90 [ 460.036078][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.042420][T14385] [ 460.044745][T14385] Uninit was stored to memory at: [ 460.049762][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.055472][T14385] __msan_chain_origin+0x50/0x90 [ 460.060423][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.065565][T14385] get_compat_msghdr+0x108/0x270 [ 460.070517][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.075008][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.079681][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.085731][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.091877][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.097059][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.101898][T14385] do_SYSENTER_32+0x73/0x90 [ 460.106394][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.112691][T14385] [ 460.114994][T14385] Uninit was stored to memory at: [ 460.120004][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.125721][T14385] __msan_chain_origin+0x50/0x90 [ 460.130642][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.135736][T14385] get_compat_msghdr+0x108/0x270 [ 460.140655][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.145140][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.149798][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.155858][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.162013][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.167193][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.172022][T14385] do_SYSENTER_32+0x73/0x90 [ 460.176518][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.182840][T14385] [ 460.185145][T14385] Uninit was stored to memory at: [ 460.190166][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.195865][T14385] __msan_chain_origin+0x50/0x90 [ 460.200792][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.205887][T14385] get_compat_msghdr+0x108/0x270 [ 460.210807][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.215288][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.219946][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.225989][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.232139][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.237319][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.242150][T14385] do_SYSENTER_32+0x73/0x90 [ 460.246651][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.252951][T14385] [ 460.255261][T14385] Uninit was stored to memory at: [ 460.260278][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.265987][T14385] __msan_chain_origin+0x50/0x90 [ 460.270932][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.276034][T14385] get_compat_msghdr+0x108/0x270 [ 460.280960][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.285460][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.290119][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.296169][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.302302][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.307485][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.312327][T14385] do_SYSENTER_32+0x73/0x90 [ 460.316830][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.323132][T14385] [ 460.325441][T14385] Uninit was stored to memory at: [ 460.330468][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.336185][T14385] __msan_chain_origin+0x50/0x90 [ 460.341124][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.346232][T14385] get_compat_msghdr+0x108/0x270 [ 460.351162][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.355666][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.360322][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.366367][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.372499][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.377694][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.382523][T14385] do_SYSENTER_32+0x73/0x90 [ 460.387014][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.393317][T14385] [ 460.395651][T14385] Uninit was stored to memory at: [ 460.400680][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.406383][T14385] __msan_chain_origin+0x50/0x90 [ 460.411305][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.416401][T14385] get_compat_msghdr+0x108/0x270 [ 460.421320][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.425804][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.430467][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.438334][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.444505][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.449715][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.454552][T14385] do_SYSENTER_32+0x73/0x90 [ 460.459042][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.465356][T14385] [ 460.467682][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 460.474362][T14385] do_recvmmsg+0xc5/0x1ee0 [ 460.478772][T14385] do_recvmmsg+0xc5/0x1ee0 [ 460.605370][T14385] not chained 400000 origins [ 460.610030][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 460.618702][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 460.628763][T14385] Call Trace: [ 460.632076][T14385] dump_stack+0x1df/0x240 [ 460.636433][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 460.642230][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 460.647359][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 460.652928][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 460.659039][T14385] ? _copy_from_user+0x15b/0x260 [ 460.664011][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 460.669135][T14385] __msan_chain_origin+0x50/0x90 [ 460.674093][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.679249][T14385] get_compat_msghdr+0x108/0x270 [ 460.684222][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.688763][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 460.694481][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 460.699636][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 460.705294][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 460.710635][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 460.715419][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 460.720196][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 460.725443][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.730155][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.736244][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 460.742503][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.748674][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.753912][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.758783][T14385] do_SYSENTER_32+0x73/0x90 [ 460.763309][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.769650][T14385] RIP: 0023:0xf7f3c549 [ 460.773747][T14385] Code: Bad RIP value. [ 460.777833][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 460.786256][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 460.794234][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 460.802195][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 460.810153][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 460.818111][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 460.826110][T14385] Uninit was stored to memory at: [ 460.831141][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.836846][T14385] __msan_chain_origin+0x50/0x90 [ 460.841767][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.846860][T14385] get_compat_msghdr+0x108/0x270 [ 460.851784][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.856269][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.860973][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.867058][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.873201][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.878419][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.883251][T14385] do_SYSENTER_32+0x73/0x90 [ 460.887775][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.894080][T14385] [ 460.896393][T14385] Uninit was stored to memory at: [ 460.901407][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.907130][T14385] __msan_chain_origin+0x50/0x90 [ 460.912065][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.917194][T14385] get_compat_msghdr+0x108/0x270 [ 460.922123][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.926619][T14385] __sys_recvmmsg+0x4ca/0x510 [ 460.931285][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 460.937358][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 460.943512][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 460.948694][T14385] do_fast_syscall_32+0x6b/0xd0 [ 460.953526][T14385] do_SYSENTER_32+0x73/0x90 [ 460.958031][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 460.964330][T14385] [ 460.966653][T14385] Uninit was stored to memory at: [ 460.971665][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 460.977383][T14385] __msan_chain_origin+0x50/0x90 [ 460.982321][T14385] __get_compat_msghdr+0x5be/0x890 [ 460.987416][T14385] get_compat_msghdr+0x108/0x270 [ 460.992333][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 460.996817][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.001478][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.007524][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.013765][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.018946][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.023779][T14385] do_SYSENTER_32+0x73/0x90 [ 461.028265][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.034562][T14385] [ 461.036868][T14385] Uninit was stored to memory at: [ 461.041889][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.047587][T14385] __msan_chain_origin+0x50/0x90 [ 461.052520][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.057615][T14385] get_compat_msghdr+0x108/0x270 [ 461.062547][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.067037][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.071703][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.077752][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.083918][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.089100][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.093945][T14385] do_SYSENTER_32+0x73/0x90 [ 461.098428][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.104727][T14385] [ 461.107033][T14385] Uninit was stored to memory at: [ 461.112042][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.117762][T14385] __msan_chain_origin+0x50/0x90 [ 461.122686][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.127804][T14385] get_compat_msghdr+0x108/0x270 [ 461.132749][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.137252][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.141920][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.147978][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.154121][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.159322][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.164156][T14385] do_SYSENTER_32+0x73/0x90 [ 461.168643][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.174948][T14385] [ 461.177271][T14385] Uninit was stored to memory at: [ 461.182295][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.187995][T14385] __msan_chain_origin+0x50/0x90 [ 461.192929][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.198024][T14385] get_compat_msghdr+0x108/0x270 [ 461.202960][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.207445][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.212121][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.218170][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.224307][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.229494][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.234328][T14385] do_SYSENTER_32+0x73/0x90 [ 461.238813][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.245120][T14385] [ 461.247430][T14385] Uninit was stored to memory at: [ 461.252442][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.258146][T14385] __msan_chain_origin+0x50/0x90 [ 461.263085][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.268181][T14385] get_compat_msghdr+0x108/0x270 [ 461.273098][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.277583][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.282242][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.288305][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.294438][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.299631][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.304461][T14385] do_SYSENTER_32+0x73/0x90 [ 461.308945][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.315242][T14385] [ 461.317566][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 461.324220][T14385] do_recvmmsg+0xc5/0x1ee0 [ 461.328619][T14385] do_recvmmsg+0xc5/0x1ee0 [ 461.454094][T14385] not chained 410000 origins [ 461.458755][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 461.467454][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 461.477550][T14385] Call Trace: [ 461.480877][T14385] dump_stack+0x1df/0x240 [ 461.485242][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 461.491039][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 461.496177][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 461.501752][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 461.507845][T14385] ? _copy_from_user+0x15b/0x260 [ 461.512805][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 461.517933][T14385] __msan_chain_origin+0x50/0x90 [ 461.522898][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.528052][T14385] get_compat_msghdr+0x108/0x270 [ 461.533020][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.537552][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 461.543228][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 461.548355][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 461.554036][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 461.559337][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 461.564111][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 461.568890][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 461.574105][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.578813][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.584909][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 461.591167][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.597336][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.602567][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.607435][T14385] do_SYSENTER_32+0x73/0x90 [ 461.611954][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.618284][T14385] RIP: 0023:0xf7f3c549 [ 461.622348][T14385] Code: Bad RIP value. [ 461.626416][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 461.634820][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 461.642807][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 461.650792][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 461.658760][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 461.666728][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 461.674693][T14385] Uninit was stored to memory at: [ 461.679721][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.685426][T14385] __msan_chain_origin+0x50/0x90 [ 461.690365][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.695457][T14385] get_compat_msghdr+0x108/0x270 [ 461.700377][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.704880][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.709538][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.715585][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.721734][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.726917][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.731749][T14385] do_SYSENTER_32+0x73/0x90 [ 461.736235][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.742554][T14385] [ 461.744866][T14385] Uninit was stored to memory at: [ 461.749882][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.755582][T14385] __msan_chain_origin+0x50/0x90 [ 461.760516][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.765606][T14385] get_compat_msghdr+0x108/0x270 [ 461.770541][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.775024][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.779682][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.785730][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.791886][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.797070][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.801903][T14385] do_SYSENTER_32+0x73/0x90 [ 461.806387][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.812688][T14385] [ 461.814997][T14385] Uninit was stored to memory at: [ 461.820005][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.825725][T14385] __msan_chain_origin+0x50/0x90 [ 461.830663][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.835757][T14385] get_compat_msghdr+0x108/0x270 [ 461.840678][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.845165][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.849840][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.855894][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.862029][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.867210][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.872040][T14385] do_SYSENTER_32+0x73/0x90 [ 461.876526][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.882838][T14385] [ 461.885149][T14385] Uninit was stored to memory at: [ 461.890158][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.895864][T14385] __msan_chain_origin+0x50/0x90 [ 461.900785][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.905923][T14385] get_compat_msghdr+0x108/0x270 [ 461.910892][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.915378][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.920038][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.926095][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 461.932259][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 461.937440][T14385] do_fast_syscall_32+0x6b/0xd0 [ 461.942274][T14385] do_SYSENTER_32+0x73/0x90 [ 461.946761][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 461.953059][T14385] [ 461.955368][T14385] Uninit was stored to memory at: [ 461.960389][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 461.966714][T14385] __msan_chain_origin+0x50/0x90 [ 461.971652][T14385] __get_compat_msghdr+0x5be/0x890 [ 461.976745][T14385] get_compat_msghdr+0x108/0x270 [ 461.981664][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 461.986173][T14385] __sys_recvmmsg+0x4ca/0x510 [ 461.990853][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 461.996908][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.003044][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.008223][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.013069][T14385] do_SYSENTER_32+0x73/0x90 [ 462.017553][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.023851][T14385] [ 462.026161][T14385] Uninit was stored to memory at: [ 462.031166][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.036884][T14385] __msan_chain_origin+0x50/0x90 [ 462.041814][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.046906][T14385] get_compat_msghdr+0x108/0x270 [ 462.051824][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.056323][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.060978][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.067048][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.073182][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.078361][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.083189][T14385] do_SYSENTER_32+0x73/0x90 [ 462.087670][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.093967][T14385] [ 462.096271][T14385] Uninit was stored to memory at: [ 462.101291][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.106988][T14385] __msan_chain_origin+0x50/0x90 [ 462.111908][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.117035][T14385] get_compat_msghdr+0x108/0x270 [ 462.121955][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.126436][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.131092][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.137141][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.143289][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.148470][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.153299][T14385] do_SYSENTER_32+0x73/0x90 [ 462.157788][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.164102][T14385] [ 462.166412][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 462.173080][T14385] do_recvmmsg+0xc5/0x1ee0 [ 462.177477][T14385] do_recvmmsg+0xc5/0x1ee0 [ 462.304763][T14385] not chained 420000 origins [ 462.309429][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 462.318110][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 462.328206][T14385] Call Trace: [ 462.331530][T14385] dump_stack+0x1df/0x240 [ 462.335898][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 462.341682][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 462.346814][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 462.352381][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 462.358474][T14385] ? _copy_from_user+0x15b/0x260 [ 462.363431][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 462.368562][T14385] __msan_chain_origin+0x50/0x90 [ 462.373526][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.378689][T14385] get_compat_msghdr+0x108/0x270 [ 462.383660][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.388202][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 462.393876][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 462.399032][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 462.404682][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 462.409987][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 462.414778][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 462.419551][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 462.424782][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.429517][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.435609][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 462.441900][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.448074][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.453300][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.458169][T14385] do_SYSENTER_32+0x73/0x90 [ 462.462690][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.469024][T14385] RIP: 0023:0xf7f3c549 [ 462.473081][T14385] Code: Bad RIP value. [ 462.477129][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 462.485556][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 462.493593][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 462.501570][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 462.509540][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 462.517494][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 462.525462][T14385] Uninit was stored to memory at: [ 462.530477][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.536196][T14385] __msan_chain_origin+0x50/0x90 [ 462.541119][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.546212][T14385] get_compat_msghdr+0x108/0x270 [ 462.551129][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.555720][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.560396][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.566446][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.572583][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.577767][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.582610][T14385] do_SYSENTER_32+0x73/0x90 [ 462.587120][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.593453][T14385] [ 462.595762][T14385] Uninit was stored to memory at: [ 462.600794][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.606773][T14385] __msan_chain_origin+0x50/0x90 [ 462.611694][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.616800][T14385] get_compat_msghdr+0x108/0x270 [ 462.621717][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.626200][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.630890][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.636937][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.643086][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.648267][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.653096][T14385] do_SYSENTER_32+0x73/0x90 [ 462.657579][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.663894][T14385] [ 462.666199][T14385] Uninit was stored to memory at: [ 462.671220][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.676919][T14385] __msan_chain_origin+0x50/0x90 [ 462.681864][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.686960][T14385] get_compat_msghdr+0x108/0x270 [ 462.691879][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.696380][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.701040][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.707091][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.713227][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.718426][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.723264][T14385] do_SYSENTER_32+0x73/0x90 [ 462.727758][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.734159][T14385] [ 462.736472][T14385] Uninit was stored to memory at: [ 462.741501][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.747204][T14385] __msan_chain_origin+0x50/0x90 [ 462.752128][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.757240][T14385] get_compat_msghdr+0x108/0x270 [ 462.762165][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.766679][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.771428][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.777479][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.783627][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.788817][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.793651][T14385] do_SYSENTER_32+0x73/0x90 [ 462.798137][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.804437][T14385] [ 462.806744][T14385] Uninit was stored to memory at: [ 462.811756][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.817457][T14385] __msan_chain_origin+0x50/0x90 [ 462.822379][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.827500][T14385] get_compat_msghdr+0x108/0x270 [ 462.832421][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.836908][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.841586][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.847635][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.853788][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.858990][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.863842][T14385] do_SYSENTER_32+0x73/0x90 [ 462.868329][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.874633][T14385] [ 462.876953][T14385] Uninit was stored to memory at: [ 462.881967][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.887669][T14385] __msan_chain_origin+0x50/0x90 [ 462.892619][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.897709][T14385] get_compat_msghdr+0x108/0x270 [ 462.902627][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.907138][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.911794][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.917865][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.924002][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.929197][T14385] do_fast_syscall_32+0x6b/0xd0 [ 462.934029][T14385] do_SYSENTER_32+0x73/0x90 [ 462.938513][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 462.944811][T14385] [ 462.947117][T14385] Uninit was stored to memory at: [ 462.952148][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 462.957866][T14385] __msan_chain_origin+0x50/0x90 [ 462.962801][T14385] __get_compat_msghdr+0x5be/0x890 [ 462.967894][T14385] get_compat_msghdr+0x108/0x270 [ 462.972817][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 462.977318][T14385] __sys_recvmmsg+0x4ca/0x510 [ 462.981976][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 462.988022][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 462.994178][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 462.999361][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.004207][T14385] do_SYSENTER_32+0x73/0x90 [ 463.008692][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.014991][T14385] [ 463.017302][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 463.023960][T14385] do_recvmmsg+0xc5/0x1ee0 [ 463.028356][T14385] do_recvmmsg+0xc5/0x1ee0 [ 463.125692][T14385] not chained 430000 origins [ 463.130331][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 463.139105][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 463.149173][T14385] Call Trace: [ 463.152513][T14385] dump_stack+0x1df/0x240 [ 463.156898][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 463.162676][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 463.167809][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 463.173398][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 463.179499][T14385] ? _copy_from_user+0x15b/0x260 [ 463.184460][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 463.189600][T14385] __msan_chain_origin+0x50/0x90 [ 463.194570][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.199737][T14385] get_compat_msghdr+0x108/0x270 [ 463.204718][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.209271][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 463.214962][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 463.220099][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 463.225753][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 463.231060][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 463.235886][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 463.240671][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 463.245905][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.250629][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.256802][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 463.263078][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.269254][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.274479][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.279349][T14385] do_SYSENTER_32+0x73/0x90 [ 463.283876][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.290241][T14385] RIP: 0023:0xf7f3c549 [ 463.294306][T14385] Code: Bad RIP value. [ 463.300306][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 463.308841][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 463.316846][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 463.324825][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 463.332803][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 463.340813][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 463.348830][T14385] Uninit was stored to memory at: [ 463.353849][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.359556][T14385] __msan_chain_origin+0x50/0x90 [ 463.364506][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.369616][T14385] get_compat_msghdr+0x108/0x270 [ 463.374537][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.379031][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.383688][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.389745][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.395887][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.401077][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.405948][T14385] do_SYSENTER_32+0x73/0x90 [ 463.410479][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.416780][T14385] [ 463.419086][T14385] Uninit was stored to memory at: [ 463.424098][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.429804][T14385] __msan_chain_origin+0x50/0x90 [ 463.434727][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.439849][T14385] get_compat_msghdr+0x108/0x270 [ 463.444788][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.449296][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.453962][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.460023][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.466160][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.471341][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.476174][T14385] do_SYSENTER_32+0x73/0x90 [ 463.480658][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.486956][T14385] [ 463.489261][T14385] Uninit was stored to memory at: [ 463.494269][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.499970][T14385] __msan_chain_origin+0x50/0x90 [ 463.504892][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.510000][T14385] get_compat_msghdr+0x108/0x270 [ 463.515014][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.519500][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.524174][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.530226][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.536399][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.541584][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.546415][T14385] do_SYSENTER_32+0x73/0x90 [ 463.550902][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.557218][T14385] [ 463.559533][T14385] Uninit was stored to memory at: [ 463.564551][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.570255][T14385] __msan_chain_origin+0x50/0x90 [ 463.575179][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.580278][T14385] get_compat_msghdr+0x108/0x270 [ 463.585201][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.589688][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.594349][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.600414][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.606554][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.611751][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.616608][T14385] do_SYSENTER_32+0x73/0x90 [ 463.621093][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.627415][T14385] [ 463.629728][T14385] Uninit was stored to memory at: [ 463.634750][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.640495][T14385] __msan_chain_origin+0x50/0x90 [ 463.645436][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.650533][T14385] get_compat_msghdr+0x108/0x270 [ 463.655471][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.659958][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.664632][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.670693][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.676853][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.682048][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.688203][T14385] do_SYSENTER_32+0x73/0x90 [ 463.692690][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.699004][T14385] [ 463.701325][T14385] Uninit was stored to memory at: [ 463.706350][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.712050][T14385] __msan_chain_origin+0x50/0x90 [ 463.716972][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.722064][T14385] get_compat_msghdr+0x108/0x270 [ 463.727001][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.731483][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.736147][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.742227][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.749007][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.754204][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.759058][T14385] do_SYSENTER_32+0x73/0x90 [ 463.763559][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.769874][T14385] [ 463.772181][T14385] Uninit was stored to memory at: [ 463.777194][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 463.782895][T14385] __msan_chain_origin+0x50/0x90 [ 463.787833][T14385] __get_compat_msghdr+0x5be/0x890 [ 463.792933][T14385] get_compat_msghdr+0x108/0x270 [ 463.797855][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 463.802337][T14385] __sys_recvmmsg+0x4ca/0x510 [ 463.806995][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 463.813054][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 463.819279][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 463.824463][T14385] do_fast_syscall_32+0x6b/0xd0 [ 463.829296][T14385] do_SYSENTER_32+0x73/0x90 [ 463.833780][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 463.840096][T14385] [ 463.842416][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 463.849073][T14385] do_recvmmsg+0xc5/0x1ee0 [ 463.853489][T14385] do_recvmmsg+0xc5/0x1ee0 [ 463.953567][T14385] not chained 440000 origins [ 463.958214][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 463.966924][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 463.976999][T14385] Call Trace: [ 463.980312][T14385] dump_stack+0x1df/0x240 [ 463.984672][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 463.990449][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 463.995578][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 464.001164][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 464.007343][T14385] ? _copy_from_user+0x15b/0x260 [ 464.012299][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 464.017425][T14385] __msan_chain_origin+0x50/0x90 [ 464.022477][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.027636][T14385] get_compat_msghdr+0x108/0x270 [ 464.032610][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.037180][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 464.042879][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 464.048007][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 464.053656][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 464.058967][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 464.063773][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 464.068550][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 464.073767][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.078475][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.084579][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 464.090842][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.097014][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.102245][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.107113][T14385] do_SYSENTER_32+0x73/0x90 [ 464.111658][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.118079][T14385] RIP: 0023:0xf7f3c549 [ 464.122141][T14385] Code: Bad RIP value. [ 464.126232][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 464.134655][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 464.142635][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 464.150611][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 464.158591][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 464.166647][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 464.174614][T14385] Uninit was stored to memory at: [ 464.179625][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.185339][T14385] __msan_chain_origin+0x50/0x90 [ 464.190259][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.195348][T14385] get_compat_msghdr+0x108/0x270 [ 464.200283][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.204779][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.209437][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.215482][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.221617][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.226797][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.231670][T14385] do_SYSENTER_32+0x73/0x90 [ 464.236156][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.242989][T14385] [ 464.245294][T14385] Uninit was stored to memory at: [ 464.250320][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.256039][T14385] __msan_chain_origin+0x50/0x90 [ 464.260974][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.266067][T14385] get_compat_msghdr+0x108/0x270 [ 464.270993][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.275475][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.280146][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.286221][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.292643][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.297844][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.302691][T14385] do_SYSENTER_32+0x73/0x90 [ 464.307180][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.313486][T14385] [ 464.315797][T14385] Uninit was stored to memory at: [ 464.320812][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.326535][T14385] __msan_chain_origin+0x50/0x90 [ 464.331470][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.336578][T14385] get_compat_msghdr+0x108/0x270 [ 464.341512][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.346007][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.350682][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.356728][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.362864][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.368056][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.372918][T14385] do_SYSENTER_32+0x73/0x90 [ 464.377404][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.383708][T14385] [ 464.386021][T14385] Uninit was stored to memory at: [ 464.391048][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.396752][T14385] __msan_chain_origin+0x50/0x90 [ 464.401678][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.406780][T14385] get_compat_msghdr+0x108/0x270 [ 464.411705][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.416211][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.420874][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.426926][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.433062][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.438262][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.443104][T14385] do_SYSENTER_32+0x73/0x90 [ 464.447603][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.453909][T14385] [ 464.456234][T14385] Uninit was stored to memory at: [ 464.461258][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.466972][T14385] __msan_chain_origin+0x50/0x90 [ 464.471914][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.477034][T14385] get_compat_msghdr+0x108/0x270 [ 464.481957][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.486454][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.491113][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.497164][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.503312][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.508506][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.513359][T14385] do_SYSENTER_32+0x73/0x90 [ 464.517856][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.524184][T14385] [ 464.526498][T14385] Uninit was stored to memory at: [ 464.531527][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.537250][T14385] __msan_chain_origin+0x50/0x90 [ 464.542182][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.547303][T14385] get_compat_msghdr+0x108/0x270 [ 464.552250][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.556750][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.561422][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.567501][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.573647][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.578838][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.583679][T14385] do_SYSENTER_32+0x73/0x90 [ 464.588175][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.594477][T14385] [ 464.596806][T14385] Uninit was stored to memory at: [ 464.601818][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 464.607523][T14385] __msan_chain_origin+0x50/0x90 [ 464.612449][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.617548][T14385] get_compat_msghdr+0x108/0x270 [ 464.622474][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.626968][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.631632][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.637718][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.643877][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.649068][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.653908][T14385] do_SYSENTER_32+0x73/0x90 [ 464.658400][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.664716][T14385] [ 464.667027][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 464.673690][T14385] do_recvmmsg+0xc5/0x1ee0 [ 464.678110][T14385] do_recvmmsg+0xc5/0x1ee0 [ 464.777133][T14385] not chained 450000 origins [ 464.781774][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 464.790477][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 464.800551][T14385] Call Trace: [ 464.803867][T14385] dump_stack+0x1df/0x240 [ 464.808222][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 464.813997][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 464.819126][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 464.824691][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 464.830783][T14385] ? _copy_from_user+0x15b/0x260 [ 464.835736][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 464.840867][T14385] __msan_chain_origin+0x50/0x90 [ 464.845829][T14385] __get_compat_msghdr+0x5be/0x890 [ 464.850990][T14385] get_compat_msghdr+0x108/0x270 [ 464.855953][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 464.860489][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 464.866165][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 464.871300][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 464.876956][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 464.882269][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 464.887057][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 464.891835][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 464.897057][T14385] __sys_recvmmsg+0x4ca/0x510 [ 464.901766][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 464.907907][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 464.914163][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 464.920329][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 464.925556][T14385] do_fast_syscall_32+0x6b/0xd0 [ 464.930426][T14385] do_SYSENTER_32+0x73/0x90 [ 464.934945][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 464.941279][T14385] RIP: 0023:0xf7f3c549 [ 464.945342][T14385] Code: Bad RIP value. [ 464.949413][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 464.957831][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 464.965829][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 464.973811][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 464.981794][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 464.989804][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 464.997812][T14385] Uninit was stored to memory at: [ 465.002834][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.008556][T14385] __msan_chain_origin+0x50/0x90 [ 465.013481][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.018579][T14385] get_compat_msghdr+0x108/0x270 [ 465.023500][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.027984][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.032642][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.038705][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.044840][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.050034][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.054870][T14385] do_SYSENTER_32+0x73/0x90 [ 465.059353][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.065651][T14385] [ 465.067958][T14385] Uninit was stored to memory at: [ 465.072977][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.078692][T14385] __msan_chain_origin+0x50/0x90 [ 465.083613][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.088703][T14385] get_compat_msghdr+0x108/0x270 [ 465.093621][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.098122][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.102794][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.108854][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.114996][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.120175][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.125006][T14385] do_SYSENTER_32+0x73/0x90 [ 465.129489][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.135788][T14385] [ 465.138094][T14385] Uninit was stored to memory at: [ 465.143102][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.148807][T14385] __msan_chain_origin+0x50/0x90 [ 465.153730][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.158828][T14385] get_compat_msghdr+0x108/0x270 [ 465.163754][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.168244][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.172913][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.178972][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.185130][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.190315][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.195146][T14385] do_SYSENTER_32+0x73/0x90 [ 465.199651][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.206145][T14385] [ 465.208450][T14385] Uninit was stored to memory at: [ 465.213458][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.219186][T14385] __msan_chain_origin+0x50/0x90 [ 465.224110][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.229228][T14385] get_compat_msghdr+0x108/0x270 [ 465.234147][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.238632][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.243304][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.249377][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.255518][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.260702][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.265990][T14385] do_SYSENTER_32+0x73/0x90 [ 465.270473][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.276771][T14385] [ 465.279076][T14385] Uninit was stored to memory at: [ 465.284097][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.289798][T14385] __msan_chain_origin+0x50/0x90 [ 465.294718][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.299835][T14385] get_compat_msghdr+0x108/0x270 [ 465.304774][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.309272][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.313929][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.319989][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.326140][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.331318][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.336147][T14385] do_SYSENTER_32+0x73/0x90 [ 465.340629][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.346941][T14385] [ 465.349260][T14385] Uninit was stored to memory at: [ 465.354264][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.359962][T14385] __msan_chain_origin+0x50/0x90 [ 465.364883][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.370164][T14385] get_compat_msghdr+0x108/0x270 [ 465.375082][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.379588][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.384245][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.390339][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.396475][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.401670][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.406524][T14385] do_SYSENTER_32+0x73/0x90 [ 465.411008][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.418358][T14385] [ 465.420676][T14385] Uninit was stored to memory at: [ 465.425700][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.431413][T14385] __msan_chain_origin+0x50/0x90 [ 465.436338][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.441465][T14385] get_compat_msghdr+0x108/0x270 [ 465.448591][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.453093][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.457751][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.463823][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.469961][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.475143][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.479998][T14385] do_SYSENTER_32+0x73/0x90 [ 465.484481][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.490794][T14385] [ 465.493109][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 465.499792][T14385] do_recvmmsg+0xc5/0x1ee0 [ 465.504231][T14385] do_recvmmsg+0xc5/0x1ee0 [ 465.602060][T14385] not chained 460000 origins [ 465.606703][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 465.615382][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 465.625451][T14385] Call Trace: [ 465.628769][T14385] dump_stack+0x1df/0x240 [ 465.633128][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 465.638910][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 465.644042][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 465.649605][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 465.655695][T14385] ? _copy_from_user+0x15b/0x260 [ 465.661603][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 465.666765][T14385] __msan_chain_origin+0x50/0x90 [ 465.671725][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.676889][T14385] get_compat_msghdr+0x108/0x270 [ 465.681868][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.686414][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 465.692111][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 465.697262][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 465.702911][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 465.708219][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 465.712994][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 465.717773][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 465.722991][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.727703][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.733793][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 465.740050][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.746223][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.751456][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.756324][T14385] do_SYSENTER_32+0x73/0x90 [ 465.760843][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.767208][T14385] RIP: 0023:0xf7f3c549 [ 465.771268][T14385] Code: Bad RIP value. [ 465.775335][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 465.783754][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 465.791757][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 465.799734][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 465.807700][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 465.815651][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 465.823627][T14385] Uninit was stored to memory at: [ 465.828638][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.834337][T14385] __msan_chain_origin+0x50/0x90 [ 465.839256][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.844346][T14385] get_compat_msghdr+0x108/0x270 [ 465.849265][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.853746][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.858421][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.864467][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.871050][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.876230][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.881075][T14385] do_SYSENTER_32+0x73/0x90 [ 465.885559][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.891870][T14385] [ 465.894176][T14385] Uninit was stored to memory at: [ 465.899183][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.904880][T14385] __msan_chain_origin+0x50/0x90 [ 465.909802][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.914893][T14385] get_compat_msghdr+0x108/0x270 [ 465.919824][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.924313][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.928980][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 465.935026][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 465.941163][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 465.946383][T14385] do_fast_syscall_32+0x6b/0xd0 [ 465.951247][T14385] do_SYSENTER_32+0x73/0x90 [ 465.955732][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 465.962035][T14385] [ 465.964357][T14385] Uninit was stored to memory at: [ 465.969366][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 465.975080][T14385] __msan_chain_origin+0x50/0x90 [ 465.980017][T14385] __get_compat_msghdr+0x5be/0x890 [ 465.985108][T14385] get_compat_msghdr+0x108/0x270 [ 465.990027][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 465.994510][T14385] __sys_recvmmsg+0x4ca/0x510 [ 465.999183][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.005229][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.011411][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.016640][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.021491][T14385] do_SYSENTER_32+0x73/0x90 [ 466.026013][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.032329][T14385] [ 466.034687][T14385] Uninit was stored to memory at: [ 466.039713][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.045413][T14385] __msan_chain_origin+0x50/0x90 [ 466.050346][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.055444][T14385] get_compat_msghdr+0x108/0x270 [ 466.060380][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.064881][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.069542][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.075611][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.081755][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.086938][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.091785][T14385] do_SYSENTER_32+0x73/0x90 [ 466.096289][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.102587][T14385] [ 466.104890][T14385] Uninit was stored to memory at: [ 466.109898][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.115617][T14385] __msan_chain_origin+0x50/0x90 [ 466.120540][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.125631][T14385] get_compat_msghdr+0x108/0x270 [ 466.130567][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.135052][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.139720][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.145773][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.151911][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.157097][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.161932][T14385] do_SYSENTER_32+0x73/0x90 [ 466.166419][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.172719][T14385] [ 466.175027][T14385] Uninit was stored to memory at: [ 466.180041][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.185756][T14385] __msan_chain_origin+0x50/0x90 [ 466.190680][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.195789][T14385] get_compat_msghdr+0x108/0x270 [ 466.200716][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.205206][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.209885][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.215965][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.222119][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.227323][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.232169][T14385] do_SYSENTER_32+0x73/0x90 [ 466.236674][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.242973][T14385] [ 466.245290][T14385] Uninit was stored to memory at: [ 466.250310][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.256031][T14385] __msan_chain_origin+0x50/0x90 [ 466.260976][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.266068][T14385] get_compat_msghdr+0x108/0x270 [ 466.270986][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.275468][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.280127][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.286259][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.292395][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.297576][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.302423][T14385] do_SYSENTER_32+0x73/0x90 [ 466.306906][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.313225][T14385] [ 466.315544][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 466.322215][T14385] do_recvmmsg+0xc5/0x1ee0 [ 466.326610][T14385] do_recvmmsg+0xc5/0x1ee0 [ 466.422972][T14385] not chained 470000 origins [ 466.427610][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 466.436286][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 466.446372][T14385] Call Trace: [ 466.449680][T14385] dump_stack+0x1df/0x240 [ 466.454038][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 466.459819][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 466.464963][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 466.470523][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 466.476612][T14385] ? _copy_from_user+0x15b/0x260 [ 466.481560][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 466.486688][T14385] __msan_chain_origin+0x50/0x90 [ 466.491646][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.496799][T14385] get_compat_msghdr+0x108/0x270 [ 466.501778][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.506314][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 466.511981][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 466.517109][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 466.522758][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 466.528082][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 466.532860][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 466.537638][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 466.542862][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.547571][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.553662][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 466.559918][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.566121][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.571350][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.576242][T14385] do_SYSENTER_32+0x73/0x90 [ 466.580975][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.587313][T14385] RIP: 0023:0xf7f3c549 [ 466.591379][T14385] Code: Bad RIP value. [ 466.595448][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 466.604399][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 466.612390][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 466.620409][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 466.628387][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 466.636368][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 466.644372][T14385] Uninit was stored to memory at: [ 466.649387][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.655116][T14385] __msan_chain_origin+0x50/0x90 [ 466.660038][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.665130][T14385] get_compat_msghdr+0x108/0x270 [ 466.670065][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.674546][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.679216][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.685270][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.691409][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.696615][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.701447][T14385] do_SYSENTER_32+0x73/0x90 [ 466.705939][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.712244][T14385] [ 466.714551][T14385] Uninit was stored to memory at: [ 466.719562][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.725273][T14385] __msan_chain_origin+0x50/0x90 [ 466.731514][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.736618][T14385] get_compat_msghdr+0x108/0x270 [ 466.741543][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.746029][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.750718][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.756780][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.762931][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.768123][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.772966][T14385] do_SYSENTER_32+0x73/0x90 [ 466.777453][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.783767][T14385] [ 466.786072][T14385] Uninit was stored to memory at: [ 466.791093][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.796812][T14385] __msan_chain_origin+0x50/0x90 [ 466.801736][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.806829][T14385] get_compat_msghdr+0x108/0x270 [ 466.811769][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.816293][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.820957][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.827024][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.833160][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.838347][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.843192][T14385] do_SYSENTER_32+0x73/0x90 [ 466.847692][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.853991][T14385] [ 466.856314][T14385] Uninit was stored to memory at: [ 466.861340][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.867054][T14385] __msan_chain_origin+0x50/0x90 [ 466.871974][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.877085][T14385] get_compat_msghdr+0x108/0x270 [ 466.882008][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.886496][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.891177][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.897238][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.903399][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.908611][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.913455][T14385] do_SYSENTER_32+0x73/0x90 [ 466.917949][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.924256][T14385] [ 466.926565][T14385] Uninit was stored to memory at: [ 466.931587][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 466.937306][T14385] __msan_chain_origin+0x50/0x90 [ 466.942233][T14385] __get_compat_msghdr+0x5be/0x890 [ 466.947327][T14385] get_compat_msghdr+0x108/0x270 [ 466.952266][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 466.956777][T14385] __sys_recvmmsg+0x4ca/0x510 [ 466.961435][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 466.967482][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 466.973623][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 466.978817][T14385] do_fast_syscall_32+0x6b/0xd0 [ 466.983649][T14385] do_SYSENTER_32+0x73/0x90 [ 466.988132][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 466.994429][T14385] [ 466.996754][T14385] Uninit was stored to memory at: [ 467.001760][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.007470][T14385] __msan_chain_origin+0x50/0x90 [ 467.012385][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.017476][T14385] get_compat_msghdr+0x108/0x270 [ 467.022395][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.026878][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.031533][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.037581][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.043734][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.048919][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.053750][T14385] do_SYSENTER_32+0x73/0x90 [ 467.058236][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.064535][T14385] [ 467.066842][T14385] Uninit was stored to memory at: [ 467.071864][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.077568][T14385] __msan_chain_origin+0x50/0x90 [ 467.082508][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.087609][T14385] get_compat_msghdr+0x108/0x270 [ 467.092530][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.097013][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.101670][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.107716][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.113856][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.119038][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.123875][T14385] do_SYSENTER_32+0x73/0x90 [ 467.128376][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.134675][T14385] [ 467.136983][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 467.143655][T14385] do_recvmmsg+0xc5/0x1ee0 [ 467.148053][T14385] do_recvmmsg+0xc5/0x1ee0 [ 467.248213][T14385] not chained 480000 origins [ 467.252855][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 467.261527][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 467.271584][T14385] Call Trace: [ 467.274898][T14385] dump_stack+0x1df/0x240 [ 467.279282][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 467.285078][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 467.290201][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 467.295764][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 467.301852][T14385] ? _copy_from_user+0x15b/0x260 [ 467.306808][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 467.311929][T14385] __msan_chain_origin+0x50/0x90 [ 467.316926][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.322112][T14385] get_compat_msghdr+0x108/0x270 [ 467.327081][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.331616][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 467.337289][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 467.342415][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 467.348064][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 467.353368][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 467.358141][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 467.362920][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 467.368135][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.372840][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.378933][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 467.385186][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.391357][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.396614][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.401486][T14385] do_SYSENTER_32+0x73/0x90 [ 467.406043][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.412380][T14385] RIP: 0023:0xf7f3c549 [ 467.416450][T14385] Code: Bad RIP value. [ 467.420520][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 467.428939][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 467.436927][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 467.444899][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 467.452851][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 467.460804][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 467.468769][T14385] Uninit was stored to memory at: [ 467.473779][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.479480][T14385] __msan_chain_origin+0x50/0x90 [ 467.484437][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.489531][T14385] get_compat_msghdr+0x108/0x270 [ 467.494452][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.498938][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.503619][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.509666][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.515829][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.521039][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.525887][T14385] do_SYSENTER_32+0x73/0x90 [ 467.530397][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.536714][T14385] [ 467.539021][T14385] Uninit was stored to memory at: [ 467.544054][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.549772][T14385] __msan_chain_origin+0x50/0x90 [ 467.554713][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.559824][T14385] get_compat_msghdr+0x108/0x270 [ 467.564748][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.569235][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.573896][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.579963][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.586118][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.591300][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.596135][T14385] do_SYSENTER_32+0x73/0x90 [ 467.600623][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.606935][T14385] [ 467.609263][T14385] Uninit was stored to memory at: [ 467.614270][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.619982][T14385] __msan_chain_origin+0x50/0x90 [ 467.624901][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.629993][T14385] get_compat_msghdr+0x108/0x270 [ 467.634912][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.639394][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.644051][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.650099][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.656235][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.661416][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.666263][T14385] do_SYSENTER_32+0x73/0x90 [ 467.670746][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.677043][T14385] [ 467.679363][T14385] Uninit was stored to memory at: [ 467.684369][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.690067][T14385] __msan_chain_origin+0x50/0x90 [ 467.694985][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.700076][T14385] get_compat_msghdr+0x108/0x270 [ 467.704997][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.709478][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.714135][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.720181][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.726314][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.731491][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.736322][T14385] do_SYSENTER_32+0x73/0x90 [ 467.740803][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.747100][T14385] [ 467.749410][T14385] Uninit was stored to memory at: [ 467.754431][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.760147][T14385] __msan_chain_origin+0x50/0x90 [ 467.765072][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.770166][T14385] get_compat_msghdr+0x108/0x270 [ 467.775100][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.779592][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.784248][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.790295][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.796429][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.801632][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.806479][T14385] do_SYSENTER_32+0x73/0x90 [ 467.810965][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.817263][T14385] [ 467.819591][T14385] Uninit was stored to memory at: [ 467.824613][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.830311][T14385] __msan_chain_origin+0x50/0x90 [ 467.835232][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.840325][T14385] get_compat_msghdr+0x108/0x270 [ 467.845259][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.849743][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.854399][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.860461][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.866606][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.871786][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.876618][T14385] do_SYSENTER_32+0x73/0x90 [ 467.881105][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.887403][T14385] [ 467.889706][T14385] Uninit was stored to memory at: [ 467.894712][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 467.900425][T14385] __msan_chain_origin+0x50/0x90 [ 467.905344][T14385] __get_compat_msghdr+0x5be/0x890 [ 467.910434][T14385] get_compat_msghdr+0x108/0x270 [ 467.915353][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 467.919851][T14385] __sys_recvmmsg+0x4ca/0x510 [ 467.924855][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 467.930903][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 467.937037][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 467.942231][T14385] do_fast_syscall_32+0x6b/0xd0 [ 467.947085][T14385] do_SYSENTER_32+0x73/0x90 [ 467.951574][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 467.957878][T14385] [ 467.960191][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 467.966880][T14385] do_recvmmsg+0xc5/0x1ee0 [ 467.971280][T14385] do_recvmmsg+0xc5/0x1ee0 [ 468.067287][T14385] not chained 490000 origins [ 468.071924][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 468.080603][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 468.090665][T14385] Call Trace: [ 468.094146][T14385] dump_stack+0x1df/0x240 [ 468.098531][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 468.104306][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.109436][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 468.115011][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 468.121100][T14385] ? _copy_from_user+0x15b/0x260 [ 468.126048][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.131193][T14385] __msan_chain_origin+0x50/0x90 [ 468.136152][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.141327][T14385] get_compat_msghdr+0x108/0x270 [ 468.146299][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.150836][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 468.156507][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.161631][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 468.167280][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 468.172583][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 468.177358][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 468.182134][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 468.187351][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.192059][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.198150][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 468.204425][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.210684][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.215930][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.220837][T14385] do_SYSENTER_32+0x73/0x90 [ 468.225355][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.231717][T14385] RIP: 0023:0xf7f3c549 [ 468.235785][T14385] Code: Bad RIP value. [ 468.239886][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 468.248509][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 468.256489][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 468.264469][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 468.272550][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 468.280523][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 468.288512][T14385] Uninit was stored to memory at: [ 468.293526][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.299243][T14385] __msan_chain_origin+0x50/0x90 [ 468.304203][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.309330][T14385] get_compat_msghdr+0x108/0x270 [ 468.314263][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.318745][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.323419][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.329470][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.335607][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.340808][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.345644][T14385] do_SYSENTER_32+0x73/0x90 [ 468.350152][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.356451][T14385] [ 468.358758][T14385] Uninit was stored to memory at: [ 468.363763][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.369462][T14385] __msan_chain_origin+0x50/0x90 [ 468.374483][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.379596][T14385] get_compat_msghdr+0x108/0x270 [ 468.384533][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.389032][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.393696][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.399745][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.405885][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.411072][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.415912][T14385] do_SYSENTER_32+0x73/0x90 [ 468.420397][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.426697][T14385] [ 468.429021][T14385] Uninit was stored to memory at: [ 468.434049][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.439754][T14385] __msan_chain_origin+0x50/0x90 [ 468.444691][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.449789][T14385] get_compat_msghdr+0x108/0x270 [ 468.454723][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.459226][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.463886][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.469934][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.476071][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.481254][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.486088][T14385] do_SYSENTER_32+0x73/0x90 [ 468.490571][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.496873][T14385] [ 468.499180][T14385] Uninit was stored to memory at: [ 468.504202][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.509921][T14385] __msan_chain_origin+0x50/0x90 [ 468.514863][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.519957][T14385] get_compat_msghdr+0x108/0x270 [ 468.524879][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.529362][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.534019][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.540065][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.546213][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.551392][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.556221][T14385] do_SYSENTER_32+0x73/0x90 [ 468.560705][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.567003][T14385] [ 468.569330][T14385] Uninit was stored to memory at: [ 468.574357][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.580070][T14385] __msan_chain_origin+0x50/0x90 [ 468.584990][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.590094][T14385] get_compat_msghdr+0x108/0x270 [ 468.595012][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.599496][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.604169][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.610229][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.616381][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.621560][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.626394][T14385] do_SYSENTER_32+0x73/0x90 [ 468.630877][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.637174][T14385] [ 468.639477][T14385] Uninit was stored to memory at: [ 468.644524][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.650245][T14385] __msan_chain_origin+0x50/0x90 [ 468.655182][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.660276][T14385] get_compat_msghdr+0x108/0x270 [ 468.665218][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.669702][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.674361][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.680412][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.686586][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.691771][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.696608][T14385] do_SYSENTER_32+0x73/0x90 [ 468.701091][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.707393][T14385] [ 468.709698][T14385] Uninit was stored to memory at: [ 468.714781][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 468.720485][T14385] __msan_chain_origin+0x50/0x90 [ 468.725404][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.730499][T14385] get_compat_msghdr+0x108/0x270 [ 468.735418][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.739903][T14385] __sys_recvmmsg+0x4ca/0x510 [ 468.744568][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 468.750634][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 468.756792][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 468.761976][T14385] do_fast_syscall_32+0x6b/0xd0 [ 468.766839][T14385] do_SYSENTER_32+0x73/0x90 [ 468.771425][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 468.777745][T14385] [ 468.780057][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 468.786725][T14385] do_recvmmsg+0xc5/0x1ee0 [ 468.791142][T14385] do_recvmmsg+0xc5/0x1ee0 [ 468.889091][T14385] not chained 500000 origins [ 468.893733][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 468.902408][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 468.912474][T14385] Call Trace: [ 468.915786][T14385] dump_stack+0x1df/0x240 [ 468.920144][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 468.925947][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.931079][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 468.936650][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 468.942738][T14385] ? _copy_from_user+0x15b/0x260 [ 468.947687][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.952824][T14385] __msan_chain_origin+0x50/0x90 [ 468.957839][T14385] __get_compat_msghdr+0x5be/0x890 [ 468.963031][T14385] get_compat_msghdr+0x108/0x270 [ 468.967999][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 468.972538][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 468.978209][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 468.983333][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 468.988982][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 468.994283][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 468.999060][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 469.003843][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 469.009066][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.013781][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.019875][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 469.026564][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.032751][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.038001][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.042873][T14385] do_SYSENTER_32+0x73/0x90 [ 469.047403][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.053735][T14385] RIP: 0023:0xf7f3c549 [ 469.057807][T14385] Code: Bad RIP value. [ 469.061880][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 469.070298][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 469.078300][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 469.086295][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 469.094271][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 469.102250][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 469.110228][T14385] Uninit was stored to memory at: [ 469.115238][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.120939][T14385] __msan_chain_origin+0x50/0x90 [ 469.125866][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.130959][T14385] get_compat_msghdr+0x108/0x270 [ 469.135881][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.140363][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.145019][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.151067][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.157202][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.162395][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.167226][T14385] do_SYSENTER_32+0x73/0x90 [ 469.171718][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.178015][T14385] [ 469.180321][T14385] Uninit was stored to memory at: [ 469.185363][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.191061][T14385] __msan_chain_origin+0x50/0x90 [ 469.195996][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.201087][T14385] get_compat_msghdr+0x108/0x270 [ 469.206007][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.210504][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.215162][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.221212][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.227370][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.232554][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.237409][T14385] do_SYSENTER_32+0x73/0x90 [ 469.241914][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.248217][T14385] [ 469.250524][T14385] Uninit was stored to memory at: [ 469.255533][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.261279][T14385] __msan_chain_origin+0x50/0x90 [ 469.266204][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.271333][T14385] get_compat_msghdr+0x108/0x270 [ 469.276256][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.280777][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.285438][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.291506][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.297654][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.302863][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.307713][T14385] do_SYSENTER_32+0x73/0x90 [ 469.312207][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.318549][T14385] [ 469.320860][T14385] Uninit was stored to memory at: [ 469.325896][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.331610][T14385] __msan_chain_origin+0x50/0x90 [ 469.336537][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.341634][T14385] get_compat_msghdr+0x108/0x270 [ 469.346558][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.351051][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.355735][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.361804][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.367948][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.373132][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.377972][T14385] do_SYSENTER_32+0x73/0x90 [ 469.382462][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.388800][T14385] [ 469.391154][T14385] Uninit was stored to memory at: [ 469.396166][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.401904][T14385] __msan_chain_origin+0x50/0x90 [ 469.406830][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.411939][T14385] get_compat_msghdr+0x108/0x270 [ 469.416860][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.421399][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.426058][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.432121][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.438259][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.443438][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.448270][T14385] do_SYSENTER_32+0x73/0x90 [ 469.452758][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.459058][T14385] [ 469.461366][T14385] Uninit was stored to memory at: [ 469.466372][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.472094][T14385] __msan_chain_origin+0x50/0x90 [ 469.477016][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.482108][T14385] get_compat_msghdr+0x108/0x270 [ 469.487027][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.491509][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.496165][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.502207][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.508355][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.513546][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.518392][T14385] do_SYSENTER_32+0x73/0x90 [ 469.522879][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.529176][T14385] [ 469.531478][T14385] Uninit was stored to memory at: [ 469.536484][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.542179][T14385] __msan_chain_origin+0x50/0x90 [ 469.547105][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.552212][T14385] get_compat_msghdr+0x108/0x270 [ 469.557147][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.561645][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.566302][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.572347][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.578481][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.583661][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.588494][T14385] do_SYSENTER_32+0x73/0x90 [ 469.592977][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.599361][T14385] [ 469.601683][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 469.608338][T14385] do_recvmmsg+0xc5/0x1ee0 [ 469.612733][T14385] do_recvmmsg+0xc5/0x1ee0 [ 469.712149][T14385] not chained 510000 origins [ 469.716888][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 469.725560][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 469.735618][T14385] Call Trace: [ 469.738931][T14385] dump_stack+0x1df/0x240 [ 469.743287][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 469.749070][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 469.755031][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 469.760626][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 469.766733][T14385] ? _copy_from_user+0x15b/0x260 [ 469.771708][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 469.776839][T14385] __msan_chain_origin+0x50/0x90 [ 469.781808][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.786985][T14385] get_compat_msghdr+0x108/0x270 [ 469.791953][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.796487][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 469.802165][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 469.807293][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 469.812946][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 469.818261][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 469.823033][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 469.827808][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 469.833023][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.837737][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.843854][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 469.850137][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.856320][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.861544][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.866412][T14385] do_SYSENTER_32+0x73/0x90 [ 469.870929][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 469.877288][T14385] RIP: 0023:0xf7f3c549 [ 469.881354][T14385] Code: Bad RIP value. [ 469.885443][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 469.893862][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 469.901846][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 469.909820][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 469.917785][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 469.925746][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 469.933724][T14385] Uninit was stored to memory at: [ 469.938735][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 469.944448][T14385] __msan_chain_origin+0x50/0x90 [ 469.949389][T14385] __get_compat_msghdr+0x5be/0x890 [ 469.954494][T14385] get_compat_msghdr+0x108/0x270 [ 469.959411][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 469.963896][T14385] __sys_recvmmsg+0x4ca/0x510 [ 469.968552][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 469.974600][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 469.980747][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 469.985946][T14385] do_fast_syscall_32+0x6b/0xd0 [ 469.990776][T14385] do_SYSENTER_32+0x73/0x90 [ 469.995258][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.001557][T14385] [ 470.003863][T14385] Uninit was stored to memory at: [ 470.008879][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.014592][T14385] __msan_chain_origin+0x50/0x90 [ 470.019513][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.024625][T14385] get_compat_msghdr+0x108/0x270 [ 470.029545][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.034033][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.038700][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.044758][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.050907][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.056115][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.060957][T14385] do_SYSENTER_32+0x73/0x90 [ 470.065444][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.071742][T14385] [ 470.074052][T14385] Uninit was stored to memory at: [ 470.079076][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.084775][T14385] __msan_chain_origin+0x50/0x90 [ 470.089711][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.094805][T14385] get_compat_msghdr+0x108/0x270 [ 470.099814][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.104301][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.108961][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.115011][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.121147][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.126331][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.131162][T14385] do_SYSENTER_32+0x73/0x90 [ 470.135643][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.141940][T14385] [ 470.144245][T14385] Uninit was stored to memory at: [ 470.149251][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.154968][T14385] __msan_chain_origin+0x50/0x90 [ 470.159906][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.164996][T14385] get_compat_msghdr+0x108/0x270 [ 470.169928][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.174425][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.179085][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.185131][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.191265][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.196444][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.201277][T14385] do_SYSENTER_32+0x73/0x90 [ 470.205772][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.212096][T14385] [ 470.214401][T14385] Uninit was stored to memory at: [ 470.219413][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.225124][T14385] __msan_chain_origin+0x50/0x90 [ 470.230050][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.235145][T14385] get_compat_msghdr+0x108/0x270 [ 470.240071][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.244593][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.249312][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.255379][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.261520][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.266710][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.271547][T14385] do_SYSENTER_32+0x73/0x90 [ 470.276033][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.282363][T14385] [ 470.284671][T14385] Uninit was stored to memory at: [ 470.289680][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.295379][T14385] __msan_chain_origin+0x50/0x90 [ 470.300300][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.305421][T14385] get_compat_msghdr+0x108/0x270 [ 470.310427][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.314923][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.319596][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.325657][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.331792][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.336974][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.341806][T14385] do_SYSENTER_32+0x73/0x90 [ 470.346305][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.352602][T14385] [ 470.354907][T14385] Uninit was stored to memory at: [ 470.359914][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.365612][T14385] __msan_chain_origin+0x50/0x90 [ 470.370531][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.375637][T14385] get_compat_msghdr+0x108/0x270 [ 470.380577][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.385075][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.389732][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.395797][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.401943][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.407124][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.411955][T14385] do_SYSENTER_32+0x73/0x90 [ 470.416439][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.422757][T14385] [ 470.425064][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 470.431718][T14385] do_recvmmsg+0xc5/0x1ee0 [ 470.436117][T14385] do_recvmmsg+0xc5/0x1ee0 [ 470.533066][T14385] not chained 520000 origins [ 470.538229][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 470.546906][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 470.556964][T14385] Call Trace: [ 470.560274][T14385] dump_stack+0x1df/0x240 [ 470.564623][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 470.570388][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 470.575506][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 470.581061][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 470.587140][T14385] ? _copy_from_user+0x15b/0x260 [ 470.592082][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 470.597197][T14385] __msan_chain_origin+0x50/0x90 [ 470.602149][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.607297][T14385] get_compat_msghdr+0x108/0x270 [ 470.612252][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.616780][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 470.622465][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 470.627582][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 470.633226][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 470.638547][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 470.643316][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 470.648095][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 470.653308][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.658018][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.664111][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 470.670372][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.676550][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.681781][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.686662][T14385] do_SYSENTER_32+0x73/0x90 [ 470.691180][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.697514][T14385] RIP: 0023:0xf7f3c549 [ 470.701598][T14385] Code: Bad RIP value. [ 470.705663][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 470.714098][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 470.722078][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 470.730087][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 470.738065][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 470.746042][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 470.754036][T14385] Uninit was stored to memory at: [ 470.759072][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.764802][T14385] __msan_chain_origin+0x50/0x90 [ 470.769754][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.774875][T14385] get_compat_msghdr+0x108/0x270 [ 470.779818][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.784323][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.789006][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.795080][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.801242][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.806445][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.811299][T14385] do_SYSENTER_32+0x73/0x90 [ 470.815804][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.822119][T14385] [ 470.824441][T14385] Uninit was stored to memory at: [ 470.829467][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.835182][T14385] __msan_chain_origin+0x50/0x90 [ 470.840122][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.845233][T14385] get_compat_msghdr+0x108/0x270 [ 470.850171][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.854674][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.859350][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.865417][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.871569][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.876771][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.881623][T14385] do_SYSENTER_32+0x73/0x90 [ 470.886127][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.892455][T14385] [ 470.894775][T14385] Uninit was stored to memory at: [ 470.899804][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.905523][T14385] __msan_chain_origin+0x50/0x90 [ 470.910467][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.915578][T14385] get_compat_msghdr+0x108/0x270 [ 470.920516][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.925045][T14385] __sys_recvmmsg+0x4ca/0x510 [ 470.929724][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 470.935794][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 470.941947][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 470.947145][T14385] do_fast_syscall_32+0x6b/0xd0 [ 470.951998][T14385] do_SYSENTER_32+0x73/0x90 [ 470.956503][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 470.962816][T14385] [ 470.965134][T14385] Uninit was stored to memory at: [ 470.970159][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 470.975883][T14385] __msan_chain_origin+0x50/0x90 [ 470.980826][T14385] __get_compat_msghdr+0x5be/0x890 [ 470.985944][T14385] get_compat_msghdr+0x108/0x270 [ 470.990911][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 470.995440][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.000129][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.006204][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.012377][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.017605][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.022516][T14385] do_SYSENTER_32+0x73/0x90 [ 471.027048][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.033376][T14385] [ 471.035715][T14385] Uninit was stored to memory at: [ 471.040755][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.046481][T14385] __msan_chain_origin+0x50/0x90 [ 471.051428][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.056542][T14385] get_compat_msghdr+0x108/0x270 [ 471.061480][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.065986][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.070672][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.076742][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.082907][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.088112][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.092978][T14385] do_SYSENTER_32+0x73/0x90 [ 471.097493][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.103820][T14385] [ 471.106158][T14385] Uninit was stored to memory at: [ 471.111205][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.116943][T14385] __msan_chain_origin+0x50/0x90 [ 471.121900][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.127032][T14385] get_compat_msghdr+0x108/0x270 [ 471.131984][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.136498][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.141186][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.147264][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.153434][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.158652][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.163524][T14385] do_SYSENTER_32+0x73/0x90 [ 471.168041][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.174364][T14385] [ 471.176694][T14385] Uninit was stored to memory at: [ 471.181735][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.187458][T14385] __msan_chain_origin+0x50/0x90 [ 471.192402][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.197519][T14385] get_compat_msghdr+0x108/0x270 [ 471.202479][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.207007][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.211687][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.217787][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.223954][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.229181][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.234038][T14385] do_SYSENTER_32+0x73/0x90 [ 471.238544][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.244858][T14385] [ 471.247188][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 471.253870][T14385] do_recvmmsg+0xc5/0x1ee0 [ 471.258293][T14385] do_recvmmsg+0xc5/0x1ee0 [ 471.422077][T14385] not chained 530000 origins [ 471.426747][T14385] CPU: 1 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 471.435504][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 471.445566][T14385] Call Trace: [ 471.448894][T14385] dump_stack+0x1df/0x240 [ 471.453250][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 471.459030][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 471.464164][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 471.469758][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 471.476020][T14385] ? _copy_from_user+0x15b/0x260 [ 471.480971][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 471.486116][T14385] __msan_chain_origin+0x50/0x90 [ 471.491072][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.496238][T14385] get_compat_msghdr+0x108/0x270 [ 471.501207][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.505738][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 471.511417][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 471.516543][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 471.522190][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 471.527494][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 471.532265][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 471.537040][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 471.542275][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.546984][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.553093][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 471.561086][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.567254][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.572480][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.577356][T14385] do_SYSENTER_32+0x73/0x90 [ 471.581883][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.588218][T14385] RIP: 0023:0xf7f3c549 [ 471.592281][T14385] Code: Bad RIP value. [ 471.596350][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 471.604780][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 471.612769][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 471.620751][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 471.628819][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 471.636800][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 471.644799][T14385] Uninit was stored to memory at: [ 471.649844][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.655575][T14385] __msan_chain_origin+0x50/0x90 [ 471.660526][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.665650][T14385] get_compat_msghdr+0x108/0x270 [ 471.670598][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.675112][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.679796][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.685868][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.692028][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.697237][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.702096][T14385] do_SYSENTER_32+0x73/0x90 [ 471.706611][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.712928][T14385] [ 471.715255][T14385] Uninit was stored to memory at: [ 471.720290][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.726015][T14385] __msan_chain_origin+0x50/0x90 [ 471.730960][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.736081][T14385] get_compat_msghdr+0x108/0x270 [ 471.741026][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.747294][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.752010][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.758104][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.764275][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.769484][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.774344][T14385] do_SYSENTER_32+0x73/0x90 [ 471.778863][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.785180][T14385] [ 471.787503][T14385] Uninit was stored to memory at: [ 471.792535][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.798279][T14385] __msan_chain_origin+0x50/0x90 [ 471.803227][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.808349][T14385] get_compat_msghdr+0x108/0x270 [ 471.813301][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.817812][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.822496][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.828566][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.834735][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.839942][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.844808][T14385] do_SYSENTER_32+0x73/0x90 [ 471.849354][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.855685][T14385] [ 471.858013][T14385] Uninit was stored to memory at: [ 471.863048][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.868774][T14385] __msan_chain_origin+0x50/0x90 [ 471.873722][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.878841][T14385] get_compat_msghdr+0x108/0x270 [ 471.883787][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.888296][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.892980][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.899077][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.905240][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.910447][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.915305][T14385] do_SYSENTER_32+0x73/0x90 [ 471.919819][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.926163][T14385] [ 471.928487][T14385] Uninit was stored to memory at: [ 471.933550][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 471.939273][T14385] __msan_chain_origin+0x50/0x90 [ 471.944223][T14385] __get_compat_msghdr+0x5be/0x890 [ 471.949341][T14385] get_compat_msghdr+0x108/0x270 [ 471.954292][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 471.958801][T14385] __sys_recvmmsg+0x4ca/0x510 [ 471.963490][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 471.969562][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 471.975725][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 471.980937][T14385] do_fast_syscall_32+0x6b/0xd0 [ 471.985808][T14385] do_SYSENTER_32+0x73/0x90 [ 471.990331][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 471.996669][T14385] [ 471.999009][T14385] Uninit was stored to memory at: [ 472.004059][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.009800][T14385] __msan_chain_origin+0x50/0x90 [ 472.014764][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.019906][T14385] get_compat_msghdr+0x108/0x270 [ 472.024872][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.029415][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.034115][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.040200][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.046379][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.051594][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.056459][T14385] do_SYSENTER_32+0x73/0x90 [ 472.060971][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.067294][T14385] [ 472.069617][T14385] Uninit was stored to memory at: [ 472.074650][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.080383][T14385] __msan_chain_origin+0x50/0x90 [ 472.085336][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.090463][T14385] get_compat_msghdr+0x108/0x270 [ 472.095409][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.099921][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.104601][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.110673][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.116834][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.122045][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.126905][T14385] do_SYSENTER_32+0x73/0x90 [ 472.131414][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.137733][T14385] [ 472.140064][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 472.146753][T14385] do_recvmmsg+0xc5/0x1ee0 [ 472.151179][T14385] do_recvmmsg+0xc5/0x1ee0 [ 472.271183][T14385] not chained 540000 origins [ 472.275922][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 472.284615][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 472.294702][T14385] Call Trace: [ 472.297994][T14385] dump_stack+0x1df/0x240 [ 472.302323][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 472.308097][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 472.313217][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 472.318776][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 472.324841][T14385] ? _copy_from_user+0x15b/0x260 [ 472.329793][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 472.334918][T14385] __msan_chain_origin+0x50/0x90 [ 472.339881][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.345021][T14385] get_compat_msghdr+0x108/0x270 [ 472.349978][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.354590][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 472.360253][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 472.365354][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 472.370982][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 472.376265][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 472.381019][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 472.385796][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 472.391071][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.395773][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.401850][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 472.408094][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.414273][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.419470][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.424312][T14385] do_SYSENTER_32+0x73/0x90 [ 472.428819][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.435224][T14385] RIP: 0023:0xf7f3c549 [ 472.439313][T14385] Code: Bad RIP value. [ 472.443398][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 472.451799][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 472.459798][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 472.467765][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 472.475733][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 472.483721][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 472.491700][T14385] Uninit was stored to memory at: [ 472.496721][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.502426][T14385] __msan_chain_origin+0x50/0x90 [ 472.507353][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.512463][T14385] get_compat_msghdr+0x108/0x270 [ 472.517386][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.521880][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.526543][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.532595][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.538736][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.543935][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.548770][T14385] do_SYSENTER_32+0x73/0x90 [ 472.553256][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.559556][T14385] [ 472.561878][T14385] Uninit was stored to memory at: [ 472.566892][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.572611][T14385] __msan_chain_origin+0x50/0x90 [ 472.577540][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.582657][T14385] get_compat_msghdr+0x108/0x270 [ 472.587599][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.592106][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.596769][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.602914][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.609067][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.614310][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.619155][T14385] do_SYSENTER_32+0x73/0x90 [ 472.623642][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.629945][T14385] [ 472.632294][T14385] Uninit was stored to memory at: [ 472.637341][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.643055][T14385] __msan_chain_origin+0x50/0x90 [ 472.647992][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.653087][T14385] get_compat_msghdr+0x108/0x270 [ 472.658006][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.662487][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.667148][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.673193][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.679328][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.684510][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.689359][T14385] do_SYSENTER_32+0x73/0x90 [ 472.693844][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.700150][T14385] [ 472.702457][T14385] Uninit was stored to memory at: [ 472.707467][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.713179][T14385] __msan_chain_origin+0x50/0x90 [ 472.718101][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.723195][T14385] get_compat_msghdr+0x108/0x270 [ 472.728134][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.732617][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.737273][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.743321][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.749459][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.754640][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.759475][T14385] do_SYSENTER_32+0x73/0x90 [ 472.763975][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.770283][T14385] [ 472.772592][T14385] Uninit was stored to memory at: [ 472.777616][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.783332][T14385] __msan_chain_origin+0x50/0x90 [ 472.788269][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.793383][T14385] get_compat_msghdr+0x108/0x270 [ 472.798317][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.802808][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.807466][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.813523][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.819658][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.824860][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.829692][T14385] do_SYSENTER_32+0x73/0x90 [ 472.834191][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.840504][T14385] [ 472.842810][T14385] Uninit was stored to memory at: [ 472.847829][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.853536][T14385] __msan_chain_origin+0x50/0x90 [ 472.858469][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.863564][T14385] get_compat_msghdr+0x108/0x270 [ 472.868485][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.872979][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.877684][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.883750][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.889901][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.895089][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.899925][T14385] do_SYSENTER_32+0x73/0x90 [ 472.904442][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.910745][T14385] [ 472.913090][T14385] Uninit was stored to memory at: [ 472.918116][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 472.923819][T14385] __msan_chain_origin+0x50/0x90 [ 472.928739][T14385] __get_compat_msghdr+0x5be/0x890 [ 472.933836][T14385] get_compat_msghdr+0x108/0x270 [ 472.938756][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 472.943238][T14385] __sys_recvmmsg+0x4ca/0x510 [ 472.947897][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 472.953945][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 472.960078][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 472.965271][T14385] do_fast_syscall_32+0x6b/0xd0 [ 472.970120][T14385] do_SYSENTER_32+0x73/0x90 [ 472.974606][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 472.980904][T14385] [ 472.983210][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 472.989886][T14385] do_recvmmsg+0xc5/0x1ee0 [ 472.994279][T14385] do_recvmmsg+0xc5/0x1ee0 [ 473.117358][T14385] not chained 550000 origins [ 473.122014][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 473.130686][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.140748][T14385] Call Trace: [ 473.144054][T14385] dump_stack+0x1df/0x240 [ 473.148406][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 473.154177][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 473.159300][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 473.164947][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 473.171036][T14385] ? _copy_from_user+0x15b/0x260 [ 473.175982][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 473.181106][T14385] __msan_chain_origin+0x50/0x90 [ 473.186065][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.191214][T14385] get_compat_msghdr+0x108/0x270 [ 473.196186][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.200727][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 473.206397][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 473.211520][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 473.217167][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 473.222471][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 473.227245][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 473.232019][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 473.237236][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.241944][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.248033][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 473.254302][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.260470][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.265717][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.270585][T14385] do_SYSENTER_32+0x73/0x90 [ 473.275124][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.281463][T14385] RIP: 0023:0xf7f3c549 [ 473.285563][T14385] Code: Bad RIP value. [ 473.289651][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 473.298070][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 473.306048][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 473.314130][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 473.322108][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 473.330084][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 473.338074][T14385] Uninit was stored to memory at: [ 473.343215][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.348938][T14385] __msan_chain_origin+0x50/0x90 [ 473.353889][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.359008][T14385] get_compat_msghdr+0x108/0x270 [ 473.363956][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.368439][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.373112][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.379157][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.385297][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.390483][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.395317][T14385] do_SYSENTER_32+0x73/0x90 [ 473.399801][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.406113][T14385] [ 473.408419][T14385] Uninit was stored to memory at: [ 473.413424][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.419122][T14385] __msan_chain_origin+0x50/0x90 [ 473.424039][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.429144][T14385] get_compat_msghdr+0x108/0x270 [ 473.434060][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.438542][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.443218][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.449262][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.455410][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.460588][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.465419][T14385] do_SYSENTER_32+0x73/0x90 [ 473.469922][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.476220][T14385] [ 473.478523][T14385] Uninit was stored to memory at: [ 473.483526][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.489236][T14385] __msan_chain_origin+0x50/0x90 [ 473.494167][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.499272][T14385] get_compat_msghdr+0x108/0x270 [ 473.504190][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.508671][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.513329][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.519389][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.525521][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.530700][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.535574][T14385] do_SYSENTER_32+0x73/0x90 [ 473.540082][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.546393][T14385] [ 473.548698][T14385] Uninit was stored to memory at: [ 473.557450][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.563162][T14385] __msan_chain_origin+0x50/0x90 [ 473.568082][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.573172][T14385] get_compat_msghdr+0x108/0x270 [ 473.578092][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.582573][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.587243][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.593301][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.599449][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.604625][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.609471][T14385] do_SYSENTER_32+0x73/0x90 [ 473.613952][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.620250][T14385] [ 473.622555][T14385] Uninit was stored to memory at: [ 473.627573][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.633284][T14385] __msan_chain_origin+0x50/0x90 [ 473.638216][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.643304][T14385] get_compat_msghdr+0x108/0x270 [ 473.648222][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.652703][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.657369][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.663415][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.669576][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.674754][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.679603][T14385] do_SYSENTER_32+0x73/0x90 [ 473.684084][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.690382][T14385] [ 473.692701][T14385] Uninit was stored to memory at: [ 473.697707][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.703419][T14385] __msan_chain_origin+0x50/0x90 [ 473.708341][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.713444][T14385] get_compat_msghdr+0x108/0x270 [ 473.718460][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.722941][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.727599][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.733643][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.739777][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.744960][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.749793][T14385] do_SYSENTER_32+0x73/0x90 [ 473.754275][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.760587][T14385] [ 473.762895][T14385] Uninit was stored to memory at: [ 473.767905][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 473.773622][T14385] __msan_chain_origin+0x50/0x90 [ 473.778540][T14385] __get_compat_msghdr+0x5be/0x890 [ 473.783644][T14385] get_compat_msghdr+0x108/0x270 [ 473.788563][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 473.793045][T14385] __sys_recvmmsg+0x4ca/0x510 [ 473.797702][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 473.803747][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 473.809887][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 473.815066][T14385] do_fast_syscall_32+0x6b/0xd0 [ 473.819901][T14385] do_SYSENTER_32+0x73/0x90 [ 473.824392][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 473.830689][T14385] [ 473.832995][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 473.839909][T14385] do_recvmmsg+0xc5/0x1ee0 [ 473.844304][T14385] do_recvmmsg+0xc5/0x1ee0 [ 473.942155][T14385] not chained 560000 origins [ 473.946791][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 473.955460][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.965517][T14385] Call Trace: [ 473.968823][T14385] dump_stack+0x1df/0x240 [ 473.973178][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 473.978956][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 473.984102][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 473.989692][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 473.995779][T14385] ? _copy_from_user+0x15b/0x260 [ 474.000730][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 474.005851][T14385] __msan_chain_origin+0x50/0x90 [ 474.010815][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.015964][T14385] get_compat_msghdr+0x108/0x270 [ 474.020966][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.025521][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 474.031211][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 474.036355][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 474.042005][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 474.047309][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 474.052083][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 474.056885][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 474.062133][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.066841][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.072933][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 474.079184][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.085350][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.090573][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.095439][T14385] do_SYSENTER_32+0x73/0x90 [ 474.100008][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.106339][T14385] RIP: 0023:0xf7f3c549 [ 474.110411][T14385] Code: Bad RIP value. [ 474.114479][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 474.122899][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 474.130864][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 474.138820][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 474.146788][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 474.154752][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 474.162715][T14385] Uninit was stored to memory at: [ 474.167726][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.173523][T14385] __msan_chain_origin+0x50/0x90 [ 474.178459][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.183549][T14385] get_compat_msghdr+0x108/0x270 [ 474.188468][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.192950][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.197607][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.203670][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.209805][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.215012][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.219842][T14385] do_SYSENTER_32+0x73/0x90 [ 474.224340][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.230638][T14385] [ 474.232943][T14385] Uninit was stored to memory at: [ 474.237948][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.243644][T14385] __msan_chain_origin+0x50/0x90 [ 474.248562][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.253667][T14385] get_compat_msghdr+0x108/0x270 [ 474.258587][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.263082][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.267753][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.273811][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.279944][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.285123][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.289954][T14385] do_SYSENTER_32+0x73/0x90 [ 474.294435][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.300733][T14385] [ 474.303037][T14385] Uninit was stored to memory at: [ 474.308055][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.313753][T14385] __msan_chain_origin+0x50/0x90 [ 474.318671][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.323771][T14385] get_compat_msghdr+0x108/0x270 [ 474.328713][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.333198][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.337861][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.343907][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.350044][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.355223][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.360055][T14385] do_SYSENTER_32+0x73/0x90 [ 474.364555][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.370871][T14385] [ 474.373176][T14385] Uninit was stored to memory at: [ 474.378198][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.383912][T14385] __msan_chain_origin+0x50/0x90 [ 474.388843][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.393934][T14385] get_compat_msghdr+0x108/0x270 [ 474.398860][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.403351][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.408006][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.414067][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.420216][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.425396][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.430225][T14385] do_SYSENTER_32+0x73/0x90 [ 474.434756][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.441064][T14385] [ 474.443390][T14385] Uninit was stored to memory at: [ 474.448420][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.454135][T14385] __msan_chain_origin+0x50/0x90 [ 474.459055][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.464147][T14385] get_compat_msghdr+0x108/0x270 [ 474.469072][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.473572][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.478232][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.484280][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.490422][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.495616][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.500462][T14385] do_SYSENTER_32+0x73/0x90 [ 474.504969][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.511271][T14385] [ 474.513590][T14385] Uninit was stored to memory at: [ 474.518612][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.524310][T14385] __msan_chain_origin+0x50/0x90 [ 474.529250][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.534345][T14385] get_compat_msghdr+0x108/0x270 [ 474.539271][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.543758][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.548453][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.554499][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.560649][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.565847][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.570684][T14385] do_SYSENTER_32+0x73/0x90 [ 474.575167][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.581468][T14385] [ 474.583774][T14385] Uninit was stored to memory at: [ 474.588796][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.594509][T14385] __msan_chain_origin+0x50/0x90 [ 474.599431][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.604521][T14385] get_compat_msghdr+0x108/0x270 [ 474.609458][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.613941][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.618626][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.624670][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.630804][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.635986][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.640830][T14385] do_SYSENTER_32+0x73/0x90 [ 474.645311][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.651607][T14385] [ 474.653913][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 474.660581][T14385] do_recvmmsg+0xc5/0x1ee0 [ 474.664995][T14385] do_recvmmsg+0xc5/0x1ee0 [ 474.766622][T14385] not chained 570000 origins [ 474.771267][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 474.779936][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 474.789994][T14385] Call Trace: [ 474.793303][T14385] dump_stack+0x1df/0x240 [ 474.797657][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 474.803443][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 474.808568][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 474.814129][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 474.820218][T14385] ? _copy_from_user+0x15b/0x260 [ 474.825165][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 474.830287][T14385] __msan_chain_origin+0x50/0x90 [ 474.835264][T14385] __get_compat_msghdr+0x5be/0x890 [ 474.840415][T14385] get_compat_msghdr+0x108/0x270 [ 474.845385][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 474.849925][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 474.855600][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 474.860724][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 474.866372][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 474.871710][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 474.876501][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 474.881275][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 474.886500][T14385] __sys_recvmmsg+0x4ca/0x510 [ 474.891227][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 474.897314][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 474.903569][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 474.909770][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 474.914992][T14385] do_fast_syscall_32+0x6b/0xd0 [ 474.919859][T14385] do_SYSENTER_32+0x73/0x90 [ 474.924392][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 474.930726][T14385] RIP: 0023:0xf7f3c549 [ 474.934790][T14385] Code: Bad RIP value. [ 474.938859][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 474.947304][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 474.955282][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 474.963283][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 474.971264][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 474.979252][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 474.987258][T14385] Uninit was stored to memory at: [ 474.992290][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 474.998004][T14385] __msan_chain_origin+0x50/0x90 [ 475.002938][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.008060][T14385] get_compat_msghdr+0x108/0x270 [ 475.012987][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.017474][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.022149][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.028203][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.034338][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.039519][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.044348][T14385] do_SYSENTER_32+0x73/0x90 [ 475.048846][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.055151][T14385] [ 475.057458][T14385] Uninit was stored to memory at: [ 475.062466][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.068167][T14385] __msan_chain_origin+0x50/0x90 [ 475.073104][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.078198][T14385] get_compat_msghdr+0x108/0x270 [ 475.083148][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.087635][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.092304][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.098367][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.104501][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.109685][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.114516][T14385] do_SYSENTER_32+0x73/0x90 [ 475.119002][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.125299][T14385] [ 475.127606][T14385] Uninit was stored to memory at: [ 475.132617][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.138342][T14385] __msan_chain_origin+0x50/0x90 [ 475.143280][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.148372][T14385] get_compat_msghdr+0x108/0x270 [ 475.153290][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.157799][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.162457][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.168502][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.174650][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.179832][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.184677][T14385] do_SYSENTER_32+0x73/0x90 [ 475.189161][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.195459][T14385] [ 475.197780][T14385] Uninit was stored to memory at: [ 475.202805][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.208507][T14385] __msan_chain_origin+0x50/0x90 [ 475.213427][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.218520][T14385] get_compat_msghdr+0x108/0x270 [ 475.223438][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.227937][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.232594][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.238657][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.244807][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.250089][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.254927][T14385] do_SYSENTER_32+0x73/0x90 [ 475.259416][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.265731][T14385] [ 475.268038][T14385] Uninit was stored to memory at: [ 475.273060][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.278763][T14385] __msan_chain_origin+0x50/0x90 [ 475.283686][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.288779][T14385] get_compat_msghdr+0x108/0x270 [ 475.293696][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.298196][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.302875][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.308922][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.315059][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.320245][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.325082][T14385] do_SYSENTER_32+0x73/0x90 [ 475.329568][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.335867][T14385] [ 475.338171][T14385] Uninit was stored to memory at: [ 475.343199][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.348913][T14385] __msan_chain_origin+0x50/0x90 [ 475.353832][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.358931][T14385] get_compat_msghdr+0x108/0x270 [ 475.363855][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.368341][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.373004][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.379056][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.385208][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.390410][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.395249][T14385] do_SYSENTER_32+0x73/0x90 [ 475.399738][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.406037][T14385] [ 475.408345][T14385] Uninit was stored to memory at: [ 475.413354][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.419058][T14385] __msan_chain_origin+0x50/0x90 [ 475.423982][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.429096][T14385] get_compat_msghdr+0x108/0x270 [ 475.434030][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.438689][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.443347][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.449430][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.455606][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.460810][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.465663][T14385] do_SYSENTER_32+0x73/0x90 [ 475.470155][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.476469][T14385] [ 475.478790][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 475.485461][T14385] do_recvmmsg+0xc5/0x1ee0 [ 475.489862][T14385] do_recvmmsg+0xc5/0x1ee0 [ 475.586909][T14385] not chained 580000 origins [ 475.591546][T14385] CPU: 0 PID: 14385 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 475.600216][T14385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 475.610303][T14385] Call Trace: [ 475.613615][T14385] dump_stack+0x1df/0x240 [ 475.617968][T14385] kmsan_internal_chain_origin+0x6f/0x130 [ 475.623859][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 475.628986][T14385] ? kmsan_set_origin_checked+0x95/0xf0 [ 475.634550][T14385] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 475.640643][T14385] ? _copy_from_user+0x15b/0x260 [ 475.645593][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 475.650719][T14385] __msan_chain_origin+0x50/0x90 [ 475.655677][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.660832][T14385] get_compat_msghdr+0x108/0x270 [ 475.665807][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.670353][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 475.676039][T14385] ? kmsan_get_metadata+0x4f/0x180 [ 475.681170][T14385] ? kmsan_internal_set_origin+0x75/0xb0 [ 475.686824][T14385] ? __msan_poison_alloca+0xf0/0x120 [ 475.692130][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 475.696929][T14385] ? __sys_recvmmsg+0xb4/0x510 [ 475.701704][T14385] ? kmsan_get_metadata+0x11d/0x180 [ 475.706919][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.711627][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.717715][T14385] ? __x32_compat_sys_recvmmsg_time64+0x80/0x80 [ 475.723972][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.730140][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.735366][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.740236][T14385] do_SYSENTER_32+0x73/0x90 [ 475.744766][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.751102][T14385] RIP: 0023:0xf7f3c549 [ 475.755170][T14385] Code: Bad RIP value. [ 475.759260][T14385] RSP: 002b:00000000f5d370cc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 475.767686][T14385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001f4c [ 475.775668][T14385] RDX: 0000000090bb7b17 RSI: 0000000000000000 RDI: 0000000000000000 [ 475.783649][T14385] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 475.791615][T14385] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 475.799606][T14385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 475.807571][T14385] Uninit was stored to memory at: [ 475.812581][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.818283][T14385] __msan_chain_origin+0x50/0x90 [ 475.823218][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.828311][T14385] get_compat_msghdr+0x108/0x270 [ 475.833227][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.837725][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.842383][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.848451][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.854599][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.859780][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.864612][T14385] do_SYSENTER_32+0x73/0x90 [ 475.869097][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.875395][T14385] [ 475.877701][T14385] Uninit was stored to memory at: [ 475.882726][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.888429][T14385] __msan_chain_origin+0x50/0x90 [ 475.893441][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.898550][T14385] get_compat_msghdr+0x108/0x270 [ 475.903478][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.907972][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.912646][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.918708][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.924871][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 475.930060][T14385] do_fast_syscall_32+0x6b/0xd0 [ 475.934904][T14385] do_SYSENTER_32+0x73/0x90 [ 475.939415][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 475.945755][T14385] [ 475.948079][T14385] Uninit was stored to memory at: [ 475.953117][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 475.958853][T14385] __msan_chain_origin+0x50/0x90 [ 475.963795][T14385] __get_compat_msghdr+0x5be/0x890 [ 475.968902][T14385] get_compat_msghdr+0x108/0x270 [ 475.973834][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 475.978327][T14385] __sys_recvmmsg+0x4ca/0x510 [ 475.982999][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 475.989082][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 475.995216][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 476.000396][T14385] do_fast_syscall_32+0x6b/0xd0 [ 476.005243][T14385] do_SYSENTER_32+0x73/0x90 [ 476.009727][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 476.016025][T14385] [ 476.018332][T14385] Uninit was stored to memory at: [ 476.023337][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 476.029059][T14385] __msan_chain_origin+0x50/0x90 [ 476.033979][T14385] __get_compat_msghdr+0x5be/0x890 [ 476.039085][T14385] get_compat_msghdr+0x108/0x270 [ 476.044005][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 476.048487][T14385] __sys_recvmmsg+0x4ca/0x510 [ 476.053161][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 476.059208][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 476.065341][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 476.070536][T14385] do_fast_syscall_32+0x6b/0xd0 [ 476.075367][T14385] do_SYSENTER_32+0x73/0x90 [ 476.079858][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 476.086158][T14385] [ 476.088462][T14385] Uninit was stored to memory at: [ 476.093484][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 476.099182][T14385] __msan_chain_origin+0x50/0x90 [ 476.104101][T14385] __get_compat_msghdr+0x5be/0x890 [ 476.109193][T14385] get_compat_msghdr+0x108/0x270 [ 476.114113][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 476.118599][T14385] __sys_recvmmsg+0x4ca/0x510 [ 476.123271][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 476.129331][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 476.135484][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 476.140670][T14385] do_fast_syscall_32+0x6b/0xd0 [ 476.145515][T14385] do_SYSENTER_32+0x73/0x90 [ 476.157580][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 476.163881][T14385] [ 476.166220][T14385] Uninit was stored to memory at: [ 476.171241][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 476.176943][T14385] __msan_chain_origin+0x50/0x90 [ 476.181901][T14385] __get_compat_msghdr+0x5be/0x890 [ 476.187010][T14385] get_compat_msghdr+0x108/0x270 [ 476.191929][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 476.196418][T14385] __sys_recvmmsg+0x4ca/0x510 [ 476.201094][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 476.207157][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 476.213291][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 476.218472][T14385] do_fast_syscall_32+0x6b/0xd0 [ 476.223305][T14385] do_SYSENTER_32+0x73/0x90 [ 476.227790][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 476.234089][T14385] [ 476.236394][T14385] Uninit was stored to memory at: [ 476.241400][T14385] kmsan_internal_chain_origin+0xad/0x130 [ 476.247099][T14385] __msan_chain_origin+0x50/0x90 [ 476.252022][T14385] __get_compat_msghdr+0x5be/0x890 [ 476.257120][T14385] get_compat_msghdr+0x108/0x270 [ 476.262043][T14385] do_recvmmsg+0xa6a/0x1ee0 [ 476.266531][T14385] __sys_recvmmsg+0x4ca/0x510 [ 476.271197][T14385] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 476.277246][T14385] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 476.283412][T14385] __do_fast_syscall_32+0x2aa/0x400 [ 476.288592][T14385] do_fast_syscall_32+0x6b/0xd0 [ 476.293423][T14385] do_SYSENTER_32+0x73/0x90 [ 476.297908][T14385] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 476.304206][T14385] [ 476.306530][T14385] Local variable ----msg_sys@do_recvmmsg created at: [ 476.313374][T14385] do_recvmmsg+0xc5/0x1ee0 [ 476.317785][T14385] do_recvmmsg+0xc5/0x1ee0 09:45:27 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:27 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000000)=0x7, 0x2) 09:45:27 executing program 1: openat$sequencer2(0xffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x4200, 0x0) r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:27 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x0, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:27 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000300e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 09:45:27 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000780)={@in={{0x2, 0x0, @local}}, 0x0, 0x9, 0x6}, 0xd8) bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200187ec, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRESOCT, @ANYBLOB, @ANYRES64, @ANYRESDEC=r0, @ANYRESHEX=r0, @ANYRES16=r0, @ANYRESOCT], 0x1000001bd) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000780)={@in={{0x2, 0x0, @local}}, 0x0, 0x9, 0x6}, 0xd8) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200187ec, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r1, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100) write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYBLOB, @ANYBLOB="103fe8e166099685633d0c744bfa86b974ad74f63374875875ee260acc9d92ddd07395feca20bea2", @ANYRESHEX, @ANYRES64, @ANYRESHEX, @ANYRESOCT], 0x1000001bd) poll(&(0x7f0000000140)=[{r1}, {0xffffffffffffffff, 0x220}], 0x2, 0xffffffff) [ 476.700536][T14469] loop0: p1[EZD] p2 p3 p4 [ 476.705166][T14469] loop0: partition table partially beyond EOD, truncated [ 476.713101][T14469] loop0: p1 start 4106 is beyond EOD, truncated [ 476.719517][T14469] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 476.829729][T14469] loop0: p3 start 225 is beyond EOD, truncated [ 476.836160][T14469] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:28 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x0, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 477.025502][T14469] loop0: p1[EZD] p2 p3 p4 [ 477.030714][T14469] loop0: partition table partially beyond EOD, truncated [ 477.039083][T14469] loop0: p1 start 4106 is beyond EOD, truncated [ 477.045402][T14469] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 477.067792][T14469] loop0: p3 start 225 is beyond EOD, truncated 09:45:28 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) setsockopt$packet_buf(r2, 0x107, 0x1, &(0x7f0000000080)="62730629d51054c1543a9505bb6df4442babc9e69f9a3e40233a05f3a880e2b99137ce91dc567f352ccfa3cd5cb5d362506e080edd7d4bed54108571033eba5ec294d8600c1121042477bf855d808d6af82b353d6f22e4ab19de173eb17a828f9d3ddfa69e653a0508e36a7ea355d404af96394b0ace1d772c70ff2ed1efef95b866598031c04226943255598fba051746899be6ac7cf717e48f4be30cf87d0401850acf4400fde85429b5058e6d2cf9d760819ff0dfa746ab6999a0d15f75", 0xbf) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) [ 477.074035][T14469] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:28 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) sendto$rxrpc(0xffffffffffffffff, &(0x7f0000000000)="c3ab51c4a7fc1e881b0959ee1ce14c1ca43c9bb5e6c9dcaf9f35e52fb724ee86e4880fa032f67955e6c6c5f9b502e3ee474ced647116025a2a6fe96ac1585940de48e6c74ac0982ee1006af2ef03689a69f593e743f0db14aefd39f8f6a9bf88c2980b50943247e7f5913729fb1b83e094c3c0f5e7766a2645911602ccb0b6ca2f1a5f595c6773a1", 0x88, 0x4000000, &(0x7f00000000c0)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e20, 0x37, @initdev={0xfe, 0x88, [], 0x1, 0x0}}}, 0x24) 09:45:28 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:28 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00'}) r1 = accept4(r0, &(0x7f0000000080)=@caif=@dgm, &(0x7f0000000100)=0x80, 0x80000) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r2, &(0x7f0000d83fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000000)={r4, @in6={{0xa, 0x4e23, 0x0, @loopback}}}, &(0x7f0000000240)=0x9c) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000140)={r4, @in6={{0xa, 0x4e20, 0x4, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x76f}}}, 0x84) 09:45:28 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r2, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) write$P9_RGETLOCK(r2, &(0x7f0000000080)={0x27, 0x37, 0x3, {0x1, 0xfffffffffffff000, 0x0, r3, 0x9, 'cpu.stat\x00'}}, 0x27) r4 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r4, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:28 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(0xffffffffffffffff, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:28 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x4, 0x20000000, 0xb7f, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) [ 477.727630][T14507] loop0: p1[EZD] p2 p3 p4 [ 477.732269][T14507] loop0: partition table partially beyond EOD, truncated [ 477.740739][T14507] loop0: p1 start 4106 is beyond EOD, truncated [ 477.747298][T14507] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:28 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='limits\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) 09:45:29 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:29 executing program 5: clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) poll(0x0, 0x0, 0xffffffff) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x13, &(0x7f0000000100)) ptrace(0x10, r0) pipe(&(0x7f0000000240)) ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000080)={&(0x7f0000000040)=""/61, 0xffffff78}) [ 477.883598][T14507] loop0: p3 start 225 is beyond EOD, truncated [ 477.889958][T14507] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:29 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(0xffffffffffffffff, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:29 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) r2 = socket(0x10, 0x80002, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x0, 'bond_slave_1\x00', 0x3}, 0x18) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setresuid(0x0, r4, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@remote, @in6=@ipv4={[], [], @loopback}, 0x4e23, 0x8, 0x4e23, 0x6, 0xa, 0xa0, 0x0, 0x73, 0x0, r4}, {0x865b, 0x1000, 0x6, 0x6d, 0x2, 0x1, 0xf80000000000000, 0x5}, {0x129, 0x3, 0x9, 0x6}, 0x5, 0x6e6bb0, 0x1, 0x1, 0x1, 0x3}, {{@in6=@mcast2, 0x4d4, 0x6c}, 0xa, @in=@dev={0xac, 0x14, 0x14, 0xf}, 0x0, 0x4, 0x3, 0x1, 0x7, 0x1, 0x1}}, 0xe4) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) r5 = openat$cgroup_ro(r1, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r6 = openat$vcsa(0xffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x111, 0xdb57b854a7dd0e24}}, 0x20) write$RDMA_USER_CM_CMD_ACCEPT(r6, &(0x7f0000000240)={0x8, 0x120, 0xfa00, {0x0, {0x4, 0x4, "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", 0x5, 0x9, 0x4, 0x1, 0xbe, 0x81, 0x3, 0x1}, r8}}, 0x128) openat$dlm_monitor(0xffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0x8000, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r5, 0x4) 09:45:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f0000001280)=""/4096) 09:45:29 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:29 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(0xffffffffffffffff, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 478.497626][T14507] loop0: p1[EZD] p2 p3 p4 [ 478.502187][T14507] loop0: partition table partially beyond EOD, truncated [ 478.510060][T14507] loop0: p1 start 4106 is beyond EOD, truncated [ 478.516466][T14507] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 478.644448][T14507] loop0: p3 start 225 is beyond EOD, truncated [ 478.650894][T14507] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') r1 = socket$alg(0x26, 0x5, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) fcntl$dupfd(r1, 0x0, r2) preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) 09:45:29 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080)='devlink\x00') sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xf0, r2, 0x800, 0x70bd28, 0x25dfdbfc, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xc5}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0x6433}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0x3}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0xfff}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0xc1}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0xb, 0x7}}]}, 0xf0}, 0x1, 0x0, 0x0, 0x4000}, 0x81) r3 = gettid() tkill(r3, 0x1000000000016) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000280)=0x0) tgkill(r3, r4, 0x22) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r5, 0x4) 09:45:29 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x11, 0x2, 0x0) bind(r2, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000280)={{{@in6, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@loopback}}, &(0x7f0000000380)=0xe4) syz_mount_image$f2fs(&(0x7f00000001c0)='f2fs\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x80080, &(0x7f00000003c0)={[{@four_active_logs='active_logs=4'}], [{@uid_eq={'uid', 0x3d, r4}}, {@obj_user={'obj_user', 0x3d, 'team0\x00'}}, {@dont_measure='dont_measure'}]}) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r1, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x5, {0x81000000}}]}]}, @IFLA_MTU={0x8}]}, 0x40}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080)={'team0\x00', r5}) 09:45:29 executing program 3: fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:29 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:30 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'rmd128\x00'}, 0x58) r2 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f0000002440)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff8d}}], 0x4d7, 0x0, 0x0) [ 479.227363][T14575] loop0: p1[EZD] p2 p3 p4 [ 479.231999][T14575] loop0: partition table partially beyond EOD, truncated [ 479.239925][T14575] loop0: p1 start 4106 is beyond EOD, truncated [ 479.246360][T14575] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:30 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1fbc, 0x359) ioctl$KVM_ASSIGN_PCI_DEVICE(r0, 0x8040ae69, &(0x7f0000000000)={0x7fff, 0x5, 0x3, 0x0, 0x8}) 09:45:30 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:30 executing program 3: fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) [ 479.382698][T14578] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 479.414756][T14575] loop0: p3 start 225 is beyond EOD, truncated [ 479.421543][T14575] loop0: p4 size 3657465856 extends beyond EOD, truncated [ 479.676106][T14575] loop0: p1[EZD] p2 p3 p4 [ 479.680599][T14575] loop0: partition table partially beyond EOD, truncated [ 479.688446][T14575] loop0: p1 start 4106 is beyond EOD, truncated [ 479.694754][T14575] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 479.757499][T14578] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 09:45:30 executing program 2: r0 = gettid() tkill(r0, 0x10) pipe(&(0x7f0000000100)) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x1, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="9c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="1b4fc9fe000000006000128009000100766c616e000000005000028006000100000000000c000200120000001800000004000480340003800c00010068e30000030000000c0001007f000000070000000c00010000000000ff0000000c00010001000000ff01000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB], 0x9c}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x18912, r4, 0x0) ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000040)=0x0) r6 = syz_open_procfs(r5, &(0x7f0000000000)='net/llc/socket\x00') setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000180)=0x9, 0x2) preadv(r6, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x8) [ 479.946589][T14575] loop0: p3 start 225 is beyond EOD, truncated [ 479.952840][T14575] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:31 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:31 executing program 3: fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:31 executing program 0: r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000380), 0x0, &(0x7f0000000380)=[@iv={0x1010, 0x117, 0x2, 0x1000, "42e39aebd4078c869a6e985a0e2b44ef969bedef27901ccf2f2521e16c04e965546bdfa6dd49aad4831d96f04d161e944afc3ea3876238ef352e30172b2d0d7733907eb1af51f82afdf96555ea743406a37079c745fc0b3235866ef9ea772554097e101a515c8d3d22efba20a62835b337cf08533af2e0dd4033132b3b555b1a83e3cfa4cb12a2f07654016e85b572c07d7102952dbb4cba081525b0a6ca3d420428546f377fa8d23e5a24da75f16ce688b178cfe387a351ecc653798b21708b5e9d27807b5d659826c7f2215f1ed36de0f8ebc61191614305847a51d1f6c0dfc82fef06a24d9fc0b960aedeae44d80e12cb1bfc202a459739372dc7d5caaab50b286580a6d97b353d746286655051f17346a36f357f4776c75fc88df7ea6774e9994dea6fe63fde7c5df64ec6d5d5f30330bc2f8b13151a8305628bce66d07fb1bcb2408a63b06462906e3522ec160e31e19ab401ba4580c6df4273b7536cb6be9fd63282273360a83ec0b611efb7df03095910218aa0662531e197f7f850f112cb91a7ff669b738ad62e9a7b1de677c4375afe727ef5839c8c434cd2add67161ffab8004477b7739aa0c3ce39c1a9e33a43c20fbf4490f10e27115635a3a144baef69885ee8f1d1a941d30be2fd43ee5f2289ce4d23b1475fbee303c9d2ac620b794a311cf7f96a7e9c18b6e7de1d53279afc6abb26c3f057dc6ad3e11ba9f681932c6038648ed4e128d1e6a49aacb4123171966fce614df0a3df8eb1f7f7560b0240d8521d7b34ea0889067d855382c30fba0f24e4904c887c0f6baebb3aff02ef8f18e9ef883722ba1ce626995e5650a8a3e5fb12bed22976bd4e0524158f2cccc6ebb8e40dfee5e39519ffb430351ac8efec39ef66286ca1f2dbbfa540c4be3af3759cc5e2384bb212ead158d9bed506f19093756d1a2baed59c88895190842e909506aa9f27d01e12ec106b479e2dac6f07c0f79b0fea7a4f7b308f1231c44be8d7d88326bffcb03183e980d71e45401308b65cbd0502dbf59851a4a5822b596f3ae86c2b169766973e6af5da837234dc15f5d8a87accc996756acc0e6fd86e8e6455485aa992a573b9fabf74351e0e9164da6d834b3a18c193fdbd5086969a49277cc950cdbd12c9d16bf8c606d4b76359ee664dc38c9f25a8727b71d671b369dee920e026576656f3b92f9c67b0c2a181bd43531baa0f376990d1ea00eca8a3118dae76862841dd0253143b49f953b01ee0204073eb6ec303b066f2c9c9f97fee4037d72c07c19e50291ed573c08123a4a6fe7e228e647f0947e943f579f91f97cb99cb86111f00f45de97c6faa2f6eac395eb6fd1c07498812dbd7319b80d4818af7022efbf5eb5e66ae8f42c7554e0181def579de062fa108f8a1f3c76fb009727d955a67ec83a766b910e907db40872a30a5e3eacc33b21bc20bfa7e3a35109dad5c332b9087c04704af38b3aa7e4da8f64958d0b3fbb96d9bf43f148796e04ddc3f2c9d0d24a49141abbfb91058865b2e00b07ca02693a4085ad1801ef87051d7d0bc5f95560d769fdea9716e2e2505ad1137f2c24a480f53261dfadd22d9f64c1834448be5ec044d860c425e4f12dfeeec673a07d09efa5a7a364c3a2c122c5b553a8c7475408903f9b5c983f894c2d0746fa8173d3d0b640de8634faa1d943f2590ec9b5aa5a2963fa49e2def0aba7a7be4fcce5d06186378992c610b1790474d9ce0b111493c4300f1fa8b7d0e70f12f6ec0eec1aaf3a7634d8dcadaeac76417313bf0f0f0f9e2a7770ab8f0538edf87b1094d790c30b859a50798704731c9687601fdb8542d53602996ed42061828bd36bd6b0bb85f69466384ac7246d0dfb636190237e54a34ba498f37904d4d0ad141f882a5765936c3d709285b30e27644a82713de81898e8bdd065c34ee58fa529d85f61ab0c974ffb7180fd2737d5056a3dd768c34f78398442c9c41fd477997425d161fe3a954d41c968b85bbdc30aca97a03d93c87b0514efdbf841a887a1ed1c9a21cf7bc0aea6b793352e1b5a306dbc5ff0ae66ca7cbbeab14d15750e75adf902404fb778ca72c5d313f6ca921009426c9d0b02a53bd61ecec8feb47d0bb390bb3c4d1a03f1cdaeb6a69cd36582d37306f4efab9c92b23cea17f81e93596a5a5bb0a48da4dd811701a50cbfd4a55a8c00a31c6e5ad27f3c47644b9a5f8c6848d5b85cb2ff4850bba6b7ecd0d2a57a93c98b96266eebc0dc8d2adf425c659843c38a340ddec3871a94f4102bad255492e8c3a0c3f7a1fdba249bf8571986a2f646ad5ea4395790a073b7cc28ba53d7e2e1dc651b578bda351964d8b69b6b92767d92fe9d0fbb2accbb38c8fd986a6245f71caa12545148d3cff01d0e9ece1294990977d44e281e16de62fd5e259367e771faf93879ab45bd99768588ed6db099e10371a4982c5c68bcdfec7a3792b9f5b86101938fd98e97a9c540f5b95983a9bf768db0a9489f9ac190eac36ad0b47bd81045dd599f4d65ee40f2cadbab7c54e6d9c5a5eb7b19e7368cf03b11ed673410050acef19e2663f5f150b46693f42772d105a3a6e465464cf9dd4f0f395b7359e94c21e30e68f872779ffbe3c892887fe33bd19da2c39d8a3cd75683d0785853d39ad238553333a9992cfe232936e8697887ac4891f27641290f14eea1e7c2d1cbef34db3bf1ff7594194fb38ebeae939d625bafbec424fd3dd1e5b1ffcc2299fbe6a1e8b3531e45bf0c99aaac8aeb6f4f813d7f91c1da5882ff4573e85083d2812110bd0bf983d92c488d044f6bc6481c079187741cc5bac1ad5b8e58ab8802a453e9dd1c6e252cdcb46314acb88a57b69b97e0d1a3f64f058204ff83f023e7533e08b6bd387b930238726558ed4e9da78b058c0057e19b1c5c4cfa4968db45953f8f22a665ca344c02ffb0bee76a745fbd83986363fa77ecbbe2c470d561c47ed3abde7d02340e4bad5a5bc2ca17afa6045012b1bc1e9f0f4b047eb63b987d6e8fd86450dfaeb4825a6bb0ee2bd408f7613eb0b96c34d8b65801a37eb6368c86e7e17fc7cd39db8cc36ea056e9bc7a2e7eee7c2bf798b66164ebf42d22873a2ac3d046709b514fdd802e4a4a438fadcd09c5656fcde71256ebbabefe3e72af101278df7c4ce67650da18cb16df963031265a684eac6c3ba65503e0dc324da3ae385f1d62a9352a937849c620ce281a004262a508e82a5ef5d94ccd77f2b0a701c8efe828a472e76d1321d212188a2c5e288c31d4d316dd91615e05cc3f5f4996df04b1d2bef15721a549baabe249dfb639d8bc7e0f22aa20c739926ab39fcb76f34c5c26fb0cbfb8e1753c471a95d7512f7cf37e17c4c4f90f172b0f3da227f5845eef6016aa5f91d926b0fa0a227242147a537d37163aa5bd6c5817223cda13c553ddd71d6226296abf9498a52907912a8dc5e50e1a33b8dcd2a7fbca43a6c75062fce4236a0f565d47b486b6a16b75fc6073090d258d263404ffc3a3966348a0411a98a377813f540ee3f4e6a8ea36bc5a0ad1f38d0f8565c9bab3d8b16220650296594d220154f508929e8ac5ea050ae81de187a773fb782a499243672401a22a15f9262eea6a8f84f9576261ff283f4881aa03fdf5e6b286092396eb0c4e6fe6982a58ad43261e65ad7193877c51286779ce9879b2057c33a26533e4ee32a016f52ba43cff5e84dbe54af50b56660dd31e001d4b1142bce1f82c6b01e9165ae53a2cf9aac6fd6b7470185dda4ab3fa115e4742b2c7bcded36f19d650b7b2d23620b9486c623ca46d2a4082979b97965eb640d2954ee20b2f306af969a7db3c090ac81a1c66e013379571127aeaaa176213b903c3795a5adbfeef1e3310fa4d60b053b8c2a7e891e4f22a97ac8dc48651fb87cd7c2dda41f78c992b722fd1183c22d70bce1ad3f3051fa36f53e0e00ee22d8df10483653fe936b426c5f0aed65058b832d684f42ac2758c22f1352ec6079ae3e13984d5244d8238ca127211a01fc4cd917a4dd0ff7e9ce9bac61c33a9d734459793539829ff42dfbe3635b4b045ca2204c20c2b4f4354708e4ee53095461ede550232d8ab5252d7fa9c0d1f56f5fcc27204b825638ff311b7986012a38cba0e43d73b275b7041af78a7712ab7ace31c389ad36c06997e5263b507f08a8eb530dbf28d2a7636d7dedf4d0d8ee4f284b24d924d305748774a00d1bbd6573088228cde1575f83e46d2143a6f6f0806c32a63635552810bd6091291762475a1dde869f2676454eafc146672bf5317642819e9f4a59899d69032c233045a5fde2130f23e87f6a59b01eae7151a30420bc651f7015ae1adf46fed55923aec0e4a5a66ddc0fdb8f8298518228539d66fe1a03d5a6279d8e4084269e1b4492f6cabf0b75ba0ffb299b931759a1ce781354031816798e849a1bb9ecca5a93c3f9dcd2651ca77be845598d598d8b250875baa3f450c3f6dc15da4aab539fac44c67d7a000bf67eb6bac6db289fcc3e7d0f83bb613bc86fd5a8c08e2d436f4f89992317a7b95ea9f50a0a8ffb23751e8a7077fb9596cdb5111055c81cce936b31a6203f2a2fd5fd409115074e24beae716bc925c82cc52dc80ea6857a4ad5eed6a80674d05dc2b1f3325f024ac59c943485b955a2654cc2f0bd17f2a7eab020a55b1cea5fbae38d6b1c7ca41899c690e41636aa73b4c581f9a2d3a0c1465d1c0319356c4ca14705bb5bdabe38e20668d884cbf9d122884a88e9deb531dc4b04ac0276b696eba883dbad071a16edc1086616b8f82fb867573f3b8b95da1c97afcf56362ce2386ebfd2832d86fc59295571290f58659284e6ce847ca24f8890de0178ff58e217e9014920fe0dd74c7ab0c656b2ca4317a0d37eae949566d5019f791a72c814ea70f1f2659cee8a00b6ca9a9df5c537e3da216ee93f5188d001c827dee265d0f5c9eb4fc6458347c69f6550a105ec565a7b685389905622c7aacfc8ba276a0a059087a37f12b18d04b1f89a5166384869fb09725cda443876260bacdd710c63619e1f6a542a95e0acbb991ef483680f38dfb682ef93f14415b57406672eb8c341a62ce17d9740d214ed440c9385680282d69c3dcc093b5f51f978b02292aa707058fe9fd7999ffba9083046124508453625f21d79060a364a1e16ae6408dbf75390d6c198ebaa344b7e3ab3f012ab4c624e0cdab1ca2c5c557cc81655ceb5c641a25076411cde3477dc3e450f82f32e984f769f89a5249be2910db78105ce3ffd179c0d1a41bbef189379a2cd1d9aee9e68f59c1e2f79b8d4947ac467605ae1ef6fc266b87698df04050a4de282d6b6a4ec96011a10e0d6d762d43bce1b05f85cd922131a54c8f5ff0627cf4c7598a5c2657620740d3004ec444b91bd691df1a713f0038cdcc577bd94b08c14d906a32116af3fc01c47648407fd3f3f23bd87e5361057a7e6e21602b436efcf8cf6e5887f7e2b9803118bb803b3fc030865c5d534d9de8cde4400ebf63dfe6988450fcd4349bbb7da318abbd9ad9b530c94c328b3910e9a1d2ea3fceb022ce50e7c90cce58a79a539bce081677153e95c5f5c93780958a570031e62be454ce25fafe84e9c3b4a55065eba7f8c7830cbb629dec71c1b1396a3cc026ceaf72460793586a75456d788a02bc876c862dfe8fa0fc34d5e4b88b9951bd2d23a15a3c3cfd5fd66c62e46e36ab6116fe216733d3b64fe9fb635c6ff17e83d5198293afe886e1d993057d0a7bfcb9e078e7f3242048a8316c467ebcd528740cbb6eed98772a0f1dbc872e932de65a57975cc9f6e7aba0c6d1"}, @op={0x10, 0x117, 0x3, 0x1}, @iv={0x50, 0x117, 0x2, 0x3f, "9589e352b8a08034d8999f80e19a9c0c28ce1173986fc761012ed4e5980164da09e05624b40cfc0deb726a8d116ca26f7930b6f75ebb69ddcbdade64dbaee4"}], 0x1070}], 0x1, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000001400)=ANY=[@ANYBLOB="d8a3", @ANYRES16=r1, @ANYBLOB="20002d007000fbdbdf250100b9dc1be36f9d7000000000000101410000001800170000000a000000096574683a697036677265300032fa5d561e0cf6517db7e67ef8cc020414d2c02d3f4f207b2bfc29a85c40b5ff4c939842990da062073996b2d3c7099177e15efb"], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x840) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r2, 0x0) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r4, &(0x7f0000d83fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r5 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000000)={r6, @in={{0x2, 0x4e23, @loopback}}}, &(0x7f0000000240)=0x9c) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, &(0x7f0000000300)={r6, 0x400, 0x20, 0x1, 0x8}, &(0x7f0000000340)=0x18) r7 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r7, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0x0, &(0x7f0000000100), 0x0, 0x4010}], 0x1, 0x40) setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f00000002c0)={&(0x7f0000000280)=""/14, 0x4000, 0x0, 0x8004, 0x1}, 0x1c) ioctl$EVIOCGSND(r2, 0x8040451a, &(0x7f00000001c0)=""/191) [ 480.721941][T14614] loop0: p1[EZD] p2 p3 p4 [ 480.726674][T14614] loop0: partition table partially beyond EOD, truncated [ 480.734454][T14614] loop0: p1 start 4106 is beyond EOD, truncated [ 480.741055][T14614] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 480.880393][T14614] loop0: p3 start 225 is beyond EOD, truncated [ 480.886971][T14614] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:33 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) ioctl$UI_END_FF_ERASE(r1, 0x400c55cb, &(0x7f0000000000)={0x2, 0x0, 0x80000001}) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:33 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, 0x0, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'rmd128\x00'}, 0x58) r2 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f0000002440)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff8d}}], 0x4d7, 0x0, 0x0) 09:45:33 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:33 executing program 3: fanotify_init(0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:33 executing program 0: r0 = openat$procfs(0xffffff9c, &(0x7f0000002240)='/proc/sysvipc/shm\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x5c, r2, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @ipv4={[], [], @dev}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}]}, 0x5c}}, 0x0) sendmsg$L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000002340)={&(0x7f0000002280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002300)={&(0x7f00000022c0)={0x1c, r2, 0x202, 0x70bd2d, 0x25dfdbfb, {}, [@L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x805}, 0x400d0) syz_read_part_table(0x800, 0x0, &(0x7f0000000000)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r3, 0x0) ioctl$SNAPSHOT_SET_SWAP_AREA(r3, 0x400c330d, &(0x7f0000000080)={0x1, 0x6}) setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f0000000000)={{0x89, @broadcast, 0x4e24, 0x2, 'lblc\x00', 0x20, 0x100000, 0x39}, {@dev={0xac, 0x14, 0x14, 0x37}, 0x4e21, 0x10000, 0x2, 0x5}}, 0x44) [ 482.350115][T14647] Dev loop0: unable to read RDB block 4 [ 482.356090][T14647] loop0: unable to read partition table [ 482.361926][T14647] loop0: partition table beyond EOD, truncated [ 482.368578][T14647] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) 09:45:33 executing program 3: fanotify_init(0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:33 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:33 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = openat$qat_adf_ctl(0xffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x8802, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40047602, &(0x7f0000000100)=0x5) connect$pptp(r0, &(0x7f00000000c0)={0x18, 0x2, {0x1, @dev={0xac, 0x14, 0x14, 0x27}}}, 0x1e) 09:45:33 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000180), 0x0, 0x4) bind$rose(r2, &(0x7f0000000000)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, 0x1, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, 0x1c) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:34 executing program 3: fanotify_init(0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:34 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:34 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00'}) dup2(r2, r0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0185649, &(0x7f0000000080)={0x9e0000, 0x7, 0x200, 0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x9d0902, 0xfff, [], @ptr=0x1}}) r4 = openat$cgroup_ro(r3, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r5 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x4, 0x680200) write$P9_RSTAT(r5, &(0x7f0000000500)={0xe0, 0x7d, 0x8002, {0x0, 0xd9, 0x2, 0x6, {0x1, 0x4, 0x6}, 0x10a000000, 0xe1, 0x6, 0x4, 0x2, '\x00\x00', 0x17, 'cpu.s\x1f\x9c\x81s\x9d\xf1\xedH\x9ftat\x00\x00\x00\x00\x00\x00', 0x84, 'k\xec\xcb\xadFr\x8e\x86\x00&\fc\xc7\xc9\xa9\xe2\xd3\xa3R\xc9\xe1\x8bJ\xd3)7TN\xfc\xfb\t\xb9\x95\x82\x8c\xc2Y\xfd\xdf\xf8\xf9`\xdd\xf5q\xcd\x8a\x0e\x86\xb94\xe4qS\xd1R\xf0\x8aS\xcc\xce\xbb\xb0\"\x88WY64\x90\x85e\xbd\xba\xf3\x19\x99\a\x12In\xf4\x19\x066\xf3\x1d\x9b\xc1\xbd0\n\x80\x16\xc1\x8e\xa1e\xecP\x15\xf2\x1cf\x05\xef.2U_\xca`\xb8\xc2\xb6Q\xd9\x1c\xc2\x87\x88\x9bq\xb5-\v\xe4S\x8d\t>~', 0x9, 'cpw.s.[On'}}, 0xe0) r6 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r6, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) getsockopt$PNPIPE_IFINDEX(r6, 0x113, 0x2, &(0x7f0000000280)=0x0, &(0x7f00000002c0)=0x4) r8 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setresuid(0x0, r9, 0x0) setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@empty, @in6=@remote, 0x4e20, 0x41, 0x4e22, 0x0, 0xa, 0x40, 0x20, 0x33, r7, r9}, {0x200, 0x3ff, 0x9, 0x0, 0x3, 0x4, 0xe5518e0, 0x2d21}, {0x40000000000, 0x2, 0x5, 0x8}, 0x2, 0x6e6bc0, 0x1, 0x1, 0x2}, {{@in6=@mcast1, 0x4d3, 0x6c}, 0x2, @in6=@empty, 0x3504, 0x0, 0x1, 0x3c, 0x4, 0xa09a, 0xef95}}, 0xe4) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r4, 0x4) 09:45:34 executing program 5: clone(0x3000000a0160101, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b702000000400400bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000000000812d6405000000000025040000010000001704000009000a40b7040000000100006a0a00fe00000000850000001a000000b7000000000000009500000000000000a93e90832ff9d40a409f01f6147c8f6fd267bf410e76c540106f89ec68823ce3c4bcc4ce81e97719ea969f2a019a6137ad1efc966f1cfdc4ea29f673efc20c07ec082bc6de68ab0a5ebf4ee60253516cc871311ab25868e1d9a014263697ca83c57fc2ead0d85a2bcc922a3aa71489fa000000004bcff56cf5a84cefb43ea72351190a711fd2b83a3596d80729476ab7140606791e81960ea313ea74c2cde2dedd424a4596f98e3e70a6f1d8abce75f01dbb60bdf7316a4fed35f16ae8b3aa4c6dd4880c76e5837f39a161b050abc5a34588ea19114caebb79951084e7113c77ae25a0121de52e5e8cceddf2cb4b9895a592558509d6bc95bfb57834fdb2b8c0738fda3ea38c09e75b1f39ae8af2c746fbb43e3530767d8ee296487c0e650ead90030000008fee2e02ece680c0d3d19b2b62fc202240219f497e89548a2977f86137ecb5753dfc87f148ed2392ef113cbe241a98b4e8f3bf878f1dc0e115ddfe318f54369bc8dfd3a4ea21259ed518ae80606ef83d69b9d0d972b2211d05b2e31d61bf49ca69bdb022a6cff57d5f16769d1605e8045c6880b425f8575f863a7e1b7174281ab87fba93555853df9dbd3da536d88168217230eabfaf7ff9b0146acffea06f3b0ba7b7357ba84c953523e92ee8cc4d8be0050000002c305d59cb68bff089979504c71418bd62ec60cfae7d75ce2adcfbe3921dae5937b47e07da3f62be170ac03ca60b10c8123a7ae91659fc79fc36c84dd1b2b8972c5c2544e3b50acd3b00000000000d62fae930c2308e2401bb761565ac4eda4ca118ebbe000000000000000000000000000000a52d598dbcfeb90dd310175435c843624027f7d55431a5756e4be9698bcd550c272c391cf24ea56d016e1f21b5999e1448f8784db63fd4f36ec14cc67fcd91a2925b49f6040087cfaa9f83a6cdb0e031d9"], &(0x7f0000000100)='GPL\x00'}, 0x48) pipe(&(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$unix(0x1, 0x1, 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) vmsplice(r0, &(0x7f0000000040)=[{&(0x7f0000000640)="8a", 0xa00}], 0x1, 0x0) [ 484.411342][T14675] loop0: p1[EZD] p2 p3 p4 [ 484.416204][T14675] loop0: partition table partially beyond EOD, truncated [ 484.423983][T14675] loop0: p1 start 4106 is beyond EOD, truncated [ 484.430468][T14675] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:35 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000100)=@nat={'nat\x00', 0x1b, 0x5, 0x590, 0x260, 0x3a8, 0xffffffff, 0x148, 0x3a8, 0x4c0, 0x4c0, 0xffffffff, 0x4c0, 0x4c0, 0x5, 0x0, {[{{@ipv6={@remote, @private1, [], [], 'veth0_vlan\x00', 'wg2\x00'}, 0x0, 0x100, 0x148, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}, @common=@eui64={{0x28, 'eui64\x00'}}]}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv4=@broadcast, @ipv4=@multicast2}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@mh={{0x28, 'mh\x00'}, {'ix'}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv6=@local, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @gre_key, @icmp_id}}}, {{@uncond, 0x0, 0x100, 0x148, 0x0, {}, [@common=@srh={{0x30, 'srh\x00'}}, @common=@eui64={{0x28, 'eui64\x00'}}]}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@private0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@eui64={{0x28, 'eui64\x00'}}]}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@remote, @ipv6=@remote, @gre_key, @icmp_id}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0) 09:45:35 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 484.632951][T14675] loop0: p3 start 225 is beyond EOD, truncated [ 484.639528][T14675] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:35 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x0, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00000002c0)) 09:45:36 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.limit_in_bytes\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:36 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:36 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x0, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:36 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) write$evdev(r1, &(0x7f0000000080)=[{{}, 0x0, 0xff, 0x40}, {{0x77359400}, 0x16, 0x59, 0x1}, {{0x77359400}, 0x1f, 0x9, 0x400}, {{0x77359400}, 0x4, 0x9, 0x100}, {{0x0, 0xea60}, 0x16, 0x7fff, 0x796}], 0x50) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) 09:45:36 executing program 5: perf_event_open(&(0x7f00000012c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@mangle={'mangle\x00', 0x1f, 0x6, 0x390, 0x1c8, 0x98, 0x98, 0x0, 0x0, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x6, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}, {{@ip={@empty, @multicast1, 0x0, 0x0, 'bond_slave_1\x00', 'vxcan1\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@dev, @local, 0x0, 0x0, '\x00', 'veth0_virt_wifi\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x39}}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000002b8, 0x0) 09:45:36 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:36 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x0, &(0x7f0000000000)={0x2, 0x0, 0x2, 0xffffffff}) 09:45:37 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, 0x0, &(0x7f0000000040)) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:37 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, 0x0) 09:45:37 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) openat$dlm_monitor(0xffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x200880, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x2000, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) r2 = openat$dlm_control(0xffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x131400, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f0000000140)='cpuacct.usage_user\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r3, 0x4) 09:45:37 executing program 2: r0 = openat$ipvs(0xffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0086426, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x0}, {}, {}]}) ioctl$DRM_IOCTL_DMA(r0, 0xc0286429, &(0x7f0000000200)={r1, 0x2, &(0x7f00000000c0)=[0xe28, 0x101], &(0x7f0000000100)=[0x9, 0x80000000, 0x2, 0x101, 0x1, 0x0], 0x10, 0x5, 0x4, &(0x7f0000000180)=[0x4, 0x96, 0x316a, 0x0, 0x200], &(0x7f00000001c0)=[0x1000000, 0x1, 0x1]}) r2 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r2, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) 09:45:37 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x2, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x5, {0x81000000}}]}]}, @IFLA_MTU={0x8}]}, 0x40}}, 0x0) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x11, 0x2, 0x0) bind(r5, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r4, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x5, {0x81000000}}]}]}, @IFLA_MTU={0x8}]}, 0x40}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000008900)={'ip6tnl0\x00', &(0x7f0000008880)={'syztnl1\x00', r6, 0x4, 0x91, 0x6, 0x7fff0000, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, 0x40, 0x7, 0x95d1, 0x2}}) r8 = socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x11, 0x2, 0x0) bind(r9, &(0x7f0000000080)=@generic={0x11, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r8, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r10}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_RATE={0x10, 0x5, {0x81000000}}]}]}, @IFLA_MTU={0x8}]}, 0x40}}, 0x0) sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000008b40)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000008b00)={&(0x7f0000008940)={0x1ac, 0x0, 0x200, 0x70bd2d, 0xf85, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x4}, 0x44000000) [ 486.697670][T14738] loop0: p1[EZD] p2 p3 p4 [ 486.702163][T14738] loop0: partition table partially beyond EOD, truncated [ 486.710091][T14738] loop0: p1 start 4106 is beyond EOD, truncated [ 486.716638][T14738] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:37 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, 0x0, &(0x7f0000000040)) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) [ 486.740462][T14745] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 09:45:37 executing program 1: socket$kcm(0xa, 0x6, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='devices.list\x00', 0x26e1, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x10d, 0x2, &(0x7f0000000040)=r0, 0x4) [ 486.801703][T14747] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. 09:45:37 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4095, 0xfff}], 0x1, 0x80000006) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00'}) ioctl$F2FS_IOC_GET_FEATURES(r1, 0x8004f50c, &(0x7f0000000000)) [ 486.876432][T14748] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 486.919212][T14738] loop0: p3 start 225 is beyond EOD, truncated [ 486.926107][T14738] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:38 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, 0x0) [ 487.284101][T14745] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 487.305464][T14738] loop0: p1[EZD] p2 p3 p4 [ 487.309954][T14738] loop0: partition table partially beyond EOD, truncated [ 487.317714][T14738] loop0: p1 start 4106 is beyond EOD, truncated [ 487.324013][T14738] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 487.336762][T14748] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 487.403875][T14767] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 487.526151][T14738] loop0: p3 start 225 is beyond EOD, truncated [ 487.532402][T14738] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:40 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000080)) 09:45:40 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, 0x0, &(0x7f0000000040)) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:40 executing program 2: r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) ioctl$GIO_SCRNMAP(0xffffffffffffffff, 0x4b40, &(0x7f0000000080)=""/57) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x18) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r1, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) 09:45:40 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, 0x0) 09:45:40 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r3 = accept4$inet(r2, &(0x7f0000000100)={0x2, 0x0, @local}, &(0x7f0000000140)=0x10, 0x800) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000180), &(0x7f00000001c0)=0x4) 09:45:40 executing program 0: syz_read_part_table(0x0, 0x0, &(0x7f0000000000)) 09:45:40 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:40 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x359) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000000)) 09:45:40 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x2, 0xffffffff}) 09:45:40 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) fchmod(r0, 0xa6) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000b0000000c0005800700020069620000"], 0x20}}, 0x0) sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000100)={0x3a8, r3, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x88, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x89}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_BEARER={0xec, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x4, @mcast1, 0x7ff}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x8, @mcast2, 0x7f}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0xfff, @local, 0x6}}, {0x14, 0x2, @in={0x2, 0x4e23, @remote}}}}, @TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'ib', 0x3a, 'veth0_macvtap\x00'}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'eth', 0x3a, 'hsr0\x00'}}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x54f5}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}]}, @TIPC_NLA_BEARER={0xdc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'erspan0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0xffffffff, @ipv4={[], [], @multicast2}, 0x4}}, {0x14, 0x2, @in={0x2, 0x4e20, @loopback}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xffffffe0, @private2={0xfc, 0x2, [], 0x1}, 0xffff}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x42, @private0={0xfc, 0x0, [], 0x1}, 0x2}}}}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa90}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x20}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x5}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x400}]}, @TIPC_NLA_NODE={0x50, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "18901653f251b279ddbd121cbd2791cc8c328cfca6f4b01d7c"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_SOCK={0xb8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xe5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfbc6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}]}, @TIPC_NLA_SOCK_CON={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x40}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffe35e}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x400}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3b1}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x3a8}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000) mmap$snddsp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x4010, r0, 0xf000) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 09:45:40 executing program 1: r0 = socket(0x2a, 0x80002, 0x10000) r1 = socket(0x10, 0x80002, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00'}) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x16, r3, 0x65f81000) ioctl$KDGKBDIACR(r2, 0x4b4a, &(0x7f00000002c0)=""/12) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) sendmmsg$alg(r1, &(0x7f00000002c0), 0x49249249249268c, 0x0) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000000), &(0x7f00000000c0)=0x4) r4 = socket$kcm(0xa, 0x6, 0x0) r5 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r5, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r5, 0x0, 0x41, &(0x7f00000001c0)=ANY=[@ANYBLOB="6e6174000000000000000000000000000000000000000000000000000000b50000005238cfff9e87421cbf8d6e2849cf06ddc6bc21e8cb0ab535b2affa831444c5b1e83cac1552b051d4b8aebfcf026efce44656ec579efeb74325857ce8acacb6909ae9199b7ceeb679a7622291b7e8a691d36009808f9bf465e7900f823ec81c0fd7c5fe67958cdebb7aabff0000009c5cdbeffa280dc998390aed26e3a359080d0ea7b04509c816293e85dfe7ffa123309f50f2e0aca5097bb2d45e76cef7148cecf3afb88ce3788a0fd8984c3697a23e5a634bfc1a0000"], &(0x7f0000000140)=0xd9) r6 = openat$null(0xffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x200400, 0x0) r7 = openat$cgroup_ro(r6, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r4, 0x10d, 0x2, &(0x7f0000000040)=r7, 0x4) ioctl$SIOCX25GFACILITIES(r2, 0x89e2, &(0x7f0000000300)) 09:45:40 executing program 5: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r1 = fanotify_init(0x0, 0x0) read(r1, 0x0, 0x0) 09:45:41 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:41 executing program 2: r0 = gettid() tkill(r0, 0x1000000000016) syz_open_procfs(r0, &(0x7f0000000000)='net/hci\x00') preadv(0xffffffffffffffff, &(0x7f0000000140), 0x0, 0x258) [ 490.113541][T14819] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=14819 comm=syz-executor.0 09:45:41 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x2, 0xffffffff}) [ 490.197621][T14825] loop0: p1[EZD] p2 p3 p4 [ 490.202378][T14825] loop0: partition table partially beyond EOD, truncated [ 490.210319][T14825] loop0: p1 start 4106 is beyond EOD, truncated [ 490.216831][T14825] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 490.429884][T14825] loop0: p3 start 225 is beyond EOD, truncated [ 490.436600][T14825] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:41 executing program 1: socket$kcm(0xa, 0x6, 0x0) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10d, 0x2, &(0x7f0000000040), 0x4) [ 490.563673][T14825] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=14825 comm=syz-executor.0 09:45:41 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x2, 0xffffffff}) 09:45:41 executing program 0: syz_read_part_table(0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000000)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 09:45:41 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:42 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x400300, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@loopback, @in6=@dev}}, @sadb_address={0x5, 0x5, 0x0, 0x80, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}}, @sadb_address={0x5, 0x6, 0x0, 0x80, 0x0, @in6={0xa, 0x0, 0x0, @local}}]}, 0xa0}}, 0x0) [ 491.190966][T14859] loop0: p1[EZD] p2 p3 p4 [ 491.195579][T14859] loop0: partition table partially beyond EOD, truncated [ 491.203278][T14859] loop0: p1 start 4106 is beyond EOD, truncated [ 491.209752][T14859] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 491.219231][T14859] loop0: p3 start 225 is beyond EOD, truncated [ 491.226157][T14859] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:42 executing program 4: socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:42 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x0, 0xffffffff}) [ 491.338809][T14859] loop0: p1[EZD] p2 p3 p4 [ 491.343379][T14859] loop0: partition table partially beyond EOD, truncated [ 491.351265][T14859] loop0: p1 start 4106 is beyond EOD, truncated [ 491.357867][T14859] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 491.430325][T14859] loop0: p3 start 225 is beyond EOD, truncated [ 491.436839][T14859] loop0: p4 size 3657465856 extends beyond EOD, truncated [ 491.514362][ T4885] loop0: p1[EZD] p2 p3 p4 [ 491.519083][ T4885] loop0: partition table partially beyond EOD, truncated [ 491.527077][ T4885] loop0: p1 start 4106 is beyond EOD, truncated [ 491.533381][ T4885] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 491.643502][ T4885] loop0: p3 start 225 is beyond EOD, truncated [ 491.649954][ T4885] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:43 executing program 4: socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:43 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x0, 0xffffffff}) 09:45:43 executing program 5: syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/pid\x00') 09:45:44 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)) fcntl$notify(r0, 0x402, 0xb1c661d318500c73) fcntl$notify(r0, 0x402, 0x0) 09:45:44 executing program 0: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) socket(0x10, 0x3, 0x0) dup3(0xffffffffffffffff, r0, 0x0) openat$btrfs_control(0xffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x80800, 0x0) r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) r2 = socket(0x10, 0x3, 0x0) dup3(r2, r1, 0x0) openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) socket(0x10, 0x3, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) r4 = socket(0x10, 0x3, 0x0) dup3(r4, r3, 0x0) r5 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) r6 = socket(0x10, 0x3, 0x0) dup3(r6, r5, 0x0) r7 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x2100, 0x0) socket(0x10, 0x3, 0x0) ioctl$RNDADDTOENTCNT(r7, 0x40045201, &(0x7f0000000080)=0x8000) syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) 09:45:44 executing program 4: socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:44 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x0, 0xffffffff}) 09:45:44 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x80) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000840)=@filter={'filter\x00', 0x50, 0x4, 0x370, 0xd0, 0x0, 0x1f8, 0x0, 0xd0, 0x2f0, 0x2f0, 0x2f0, 0x2f0, 0xd0, 0x4, 0x0, {[{{@ipv6={@mcast1, @loopback, [], [], 'bond_slave_0\x00', 'syzkaller1\x00'}, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}, {{@ipv6={@dev, @mcast1, [], [], 'dummy0\x00', 'veth0_to_bond\x00'}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@frag={{0x30, 'frag\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@ipv6={@remote, @mcast1, [], [], 'ip6tnl0\x00', 'ip_vti0\x00'}, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0) 09:45:44 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000000000)) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r2, 0x4) 09:45:44 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2}) [ 493.707442][T14910] loop0: p1[EZD] p2 p3 p4 [ 493.712100][T14910] loop0: partition table partially beyond EOD, truncated [ 493.720015][T14910] loop0: p1 start 4106 is beyond EOD, truncated [ 493.726462][T14910] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:44 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000ca6000)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x3, 0x400300, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@loopback, @in6=@dev}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}]}, 0xa0}}, 0x0) sendmsg$key(r2, &(0x7f0000000200)={0x3f00000000000000, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0) [ 493.867160][T14910] loop0: p3 start 225 is beyond EOD, truncated [ 493.873611][T14910] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:45 executing program 1: mlock2(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1) r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r1, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f00000000c0)='rdma.current\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r2, 0x4) 09:45:45 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, 0x0, 0x0) 09:45:45 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) 09:45:45 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2}) 09:45:45 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) syz_extract_tcp_res(&(0x7f0000000080), 0x6, 0x5) 09:45:45 executing program 5: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000400)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, r0) keyctl$get_persistent(0x16, 0xffffffffffffffff, r1) keyctl$read(0xb, r1, &(0x7f0000000240)=""/188, 0xbc) 09:45:45 executing program 1: r0 = socket$kcm(0xa, 0x6, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r2 = openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x2, @loopback}], 0x1c) connect$inet6(r3, &(0x7f0000d83fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000000)={r5, @in6={{0xa, 0x4e23, 0x0, @loopback}}}, &(0x7f0000000240)=0x9c) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000001280)=ANY=[@ANYRES32=r5, @ANYBLOB="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"], &(0x7f0000000080)=0x1008) setsockopt$sock_attach_bpf(r0, 0x10d, 0x2, &(0x7f0000000040)=r1, 0x4) r6 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r6, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r7, &(0x7f0000d83fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r8 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000000)={r9, @in6={{0xa, 0x4e23, 0x0, @loopback}}}, &(0x7f0000000240)=0x9c) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r6, 0x84, 0xf, &(0x7f00000000c0)={r9, @in={{0x2, 0x4e20, @loopback}}, 0x2, 0xff, 0x10001, 0x5, 0x8001}, &(0x7f0000000180)=0x98) 09:45:45 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, 0x0, 0x0) 09:45:45 executing program 3: r0 = fanotify_init(0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x2, 0x0, 0x2}) [ 494.593538][T14946] loop0: p1[EZD] p2 p3 p4 [ 494.598166][T14946] loop0: partition table partially beyond EOD, truncated [ 494.606223][T14946] loop0: p1 start 4106 is beyond EOD, truncated [ 494.612571][T14946] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 494.727907][T14946] loop0: p3 start 225 is beyond EOD, truncated [ 494.735438][T14946] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:46 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, 0x0, 0x0) 09:45:46 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9, 0x1, 'veth\x00'}, {0xfffffffffffffd41, 0x2, 0x0, 0x1, @void}}}, @IFLA_OPERSTATE={0x5, 0x3}]}, 0x3c}}, 0x0) [ 494.868448][T14946] loop0: p1[EZD] p2 p3 p4 [ 494.873004][T14946] loop0: partition table partially beyond EOD, truncated [ 494.881281][T14946] loop0: p1 start 4106 is beyond EOD, truncated [ 494.887721][T14946] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:46 executing program 5: pipe(&(0x7f0000000100)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@newlink={0x168, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x140, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x130, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}, @IFLA_VLAN_EGRESS_QOS={0x4c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffff, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7f, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8007}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x20000003}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0xfffffffa}}]}, @IFLA_VLAN_INGRESS_QOS={0x64, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xa99, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7ff, 0x7f}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x10001}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffffd, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xcb0, 0x400}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xae5f}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x88a8}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0xffffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x200f3af9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x1ff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7fffffff, 0x38}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xffff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10001, 0x100}}]}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x168}}, 0x8000) 09:45:46 executing program 3: r0 = socket(0x1000000010, 0x80002, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB='\\\x00\x00\x00,\x00\'\r\x00'/20, @ANYRES32, @ANYBLOB="00000000000000000400000009000100666c6f77000000002c00020028000b8008000100010000001c00028018000100000001"], 0x5c}}, 0x0) sendmmsg$alg(r0, &(0x7f0000000200), 0x10efe10675dec16, 0x0) [ 495.045804][T14946] loop0: p3 start 225 is beyond EOD, truncated [ 495.055528][T14946] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:46 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r0, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x20, r2, 0x1, 0x0, 0x0, {0xb}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x2, 'ib\x00'}]}]}, 0x20}}, 0x0) sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008a0}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x7c, r2, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x68, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x20}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfe27}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x10001}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ADDR={0x8}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4040}, 0x40080) [ 495.312085][T14979] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 09:45:46 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) [ 495.466168][T14995] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 09:45:46 executing program 5: pipe(&(0x7f0000000100)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@newlink={0x168, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x140, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x130, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}, @IFLA_VLAN_EGRESS_QOS={0x4c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffff, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7f, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8007}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x20000003}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0xfffffffa}}]}, @IFLA_VLAN_INGRESS_QOS={0x64, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xa99, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7ff, 0x7f}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x10001}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffffd, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xcb0, 0x400}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xae5f}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x88a8}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0xffffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x200f3af9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x1ff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7fffffff, 0x38}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xffff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10001, 0x100}}]}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x168}}, 0x8000) 09:45:46 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)) prlimit64(0x0, 0xe, &(0x7f0000000280)={0xd, 0xffffffffffffff81}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) socket$inet6(0xa, 0x2, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) pipe(&(0x7f0000000140)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0xff9}, 0x0, 0x0) 09:45:46 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) clone(0x27300900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000001c0)=@md0='/dev/md0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='iso9660\x00', 0x0, 0x0) [ 495.788411][ T4885] loop0: p1[EZD] p2 p3 p4 [ 495.792904][ T4885] loop0: partition table partially beyond EOD, truncated [ 495.801263][ T4885] loop0: p1 start 4106 is beyond EOD, truncated [ 495.807736][ T4885] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 495.843176][T15008] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=15008 comm=syz-executor.0 [ 495.875815][ T32] audit: type=1326 audit(1595324746.987:29): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15012 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=40000003 syscall=265 compat=1 ip=0xf7f3c549 code=0x0 [ 495.976138][ T4885] loop0: p3 start 225 is beyond EOD, truncated [ 495.982482][ T4885] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:47 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) 09:45:47 executing program 1: r0 = socket(0xb, 0x80002, 0x4cf7) sendmmsg$alg(r0, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0x0, &(0x7f00000001c0)}], 0x1, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0xbd3, 0x0) r3 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r3, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) sendfile(r2, r3, &(0x7f00000000c0)=0x677, 0x800) r4 = socket$kcm(0xa, 0x4, 0x0) r5 = socket$xdp(0x2c, 0x3, 0x0) r6 = gettid() tkill(r6, 0x1000000000016) fcntl$setownex(r5, 0xf, &(0x7f0000000000)={0x0, r6}) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, &(0x7f0000000100)=0x9) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r8, 0x0) ioctl$LOOP_SET_FD(r8, 0x4c00, r5) setsockopt$sock_attach_bpf(r4, 0x10d, 0x2, &(0x7f0000000040)=r7, 0x4) setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000280)={0x0, 0x7fffffff}, 0x8) 09:45:47 executing program 5: perf_event_open(&(0x7f00000012c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$alg(0x26, 0x5, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) dup(r0) r1 = socket$inet_udp(0x2, 0x2, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000580)=@mangle={'mangle\x00', 0x1f, 0x6, 0x390, 0x1c8, 0x98, 0x98, 0x0, 0x0, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x6, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}, {{@ip={@empty, @multicast1, 0x0, 0x0, 'bond_slave_1\x00', 'vxcan1\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@dev, @local, 0x0, 0x0, '\x00', 'veth0_virt_wifi\x00'}, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x39}}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28, 'TTL\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r1, &(0x7f0000007fc0), 0x4000000000002b8, 0x0) [ 496.103160][T15021] isofs_fill_super: bread failed, dev=md0, iso_blknum=16, block=32 [ 496.130313][T15003] loop0: p1[EZD] p2 p3 p4 [ 496.134953][T15003] loop0: partition table partially beyond EOD, truncated [ 496.142880][T15003] loop0: p1 start 4106 is beyond EOD, truncated [ 496.149246][T15003] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:47 executing program 2: pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$inet_icmp_raw(0x2, 0x3, 0x1) write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[], 0x4240a2a0) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) splice(r0, 0x0, r2, 0x0, 0x19401, 0x0) [ 496.175397][T15023] isofs_fill_super: bread failed, dev=md0, iso_blknum=16, block=32 [ 496.232542][T15003] loop0: p3 start 225 is beyond EOD, truncated [ 496.239203][T15003] loop0: p4 size 3657465856 extends beyond EOD, truncated [ 496.460750][T15003] loop0: p1[EZD] p2 p3 p4 [ 496.461562][T15010] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=15010 comm=syz-executor.0 [ 496.465543][T15003] loop0: partition table partially beyond EOD, truncated [ 496.486856][T15003] loop0: p1 start 4106 is beyond EOD, truncated [ 496.493155][T15003] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:47 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) [ 496.727456][ T32] audit: type=1326 audit(1595324747.847:30): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15012 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=40000003 syscall=265 compat=1 ip=0xf7f3c549 code=0x0 [ 496.820946][T15003] loop0: p3 start 225 is beyond EOD, truncated [ 496.827908][T15003] loop0: p4 size 3657465856 extends beyond EOD, truncated [ 496.851500][T15041] not chained 590000 origins [ 496.856124][T15041] CPU: 1 PID: 15041 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 496.864822][T15041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 496.874882][T15041] Call Trace: [ 496.878199][T15041] dump_stack+0x1df/0x240 [ 496.882559][T15041] kmsan_internal_chain_origin+0x6f/0x130 [ 496.888301][T15041] ? kmsan_get_metadata+0x11d/0x180 [ 496.893518][T15041] ? kmsan_set_origin_checked+0x95/0xf0 [ 496.899085][T15041] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 496.905171][T15041] ? kmsan_get_metadata+0x11d/0x180 [ 496.910387][T15041] ? kmsan_set_origin_checked+0x95/0xf0 [ 496.915954][T15041] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 496.922135][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 496.927271][T15041] ? kmsan_set_origin_checked+0x95/0xf0 [ 496.932834][T15041] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 496.938925][T15041] ? _copy_from_user+0x15b/0x260 [ 496.943883][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 496.949013][T15041] __msan_chain_origin+0x50/0x90 [ 496.953986][T15041] __get_compat_msghdr+0x5be/0x890 [ 496.959144][T15041] get_compat_msghdr+0x108/0x270 [ 496.964119][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 496.968829][T15041] ? kmsan_get_metadata+0x11d/0x180 [ 496.974059][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 496.979194][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 496.984325][T15041] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 496.990256][T15041] ? kmsan_check_memory+0xd/0x10 [ 496.995211][T15041] ? kmsan_get_metadata+0x11d/0x180 [ 497.000427][T15041] ? kmsan_get_metadata+0x11d/0x180 [ 497.005652][T15041] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 497.011482][T15041] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 497.017669][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 497.022808][T15041] ? kmsan_get_metadata+0x4f/0x180 [ 497.027941][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.033348][T15041] ? __x32_compat_sys_sendmsg+0x70/0x70 [ 497.038913][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.044481][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.049715][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.054591][T15041] do_SYSENTER_32+0x73/0x90 [ 497.059115][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.065452][T15041] RIP: 0023:0xf7f55549 [ 497.069520][T15041] Code: Bad RIP value. [ 497.073590][T15041] RSP: 002b:00000000f5d500cc EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 497.082021][T15041] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180 [ 497.090002][T15041] RDX: 0000000092492642 RSI: 0000000000000000 RDI: 0000000000000000 [ 497.097985][T15041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 497.105972][T15041] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 497.113949][T15041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 497.121973][T15041] Uninit was stored to memory at: [ 497.127010][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.132727][T15041] __msan_chain_origin+0x50/0x90 [ 497.137667][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.142781][T15041] get_compat_msghdr+0x108/0x270 [ 497.147743][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.152417][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.157818][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.163364][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.168582][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.173434][T15041] do_SYSENTER_32+0x73/0x90 [ 497.177937][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.184254][T15041] [ 497.186575][T15041] Uninit was stored to memory at: [ 497.191601][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.197320][T15041] __msan_chain_origin+0x50/0x90 [ 497.202259][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.207372][T15041] get_compat_msghdr+0x108/0x270 [ 497.212310][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.216989][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.222360][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.228339][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.233549][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.238406][T15041] do_SYSENTER_32+0x73/0x90 [ 497.242942][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.249263][T15041] [ 497.251584][T15041] Uninit was stored to memory at: [ 497.256703][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.262434][T15041] __msan_chain_origin+0x50/0x90 [ 497.267397][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.272513][T15041] get_compat_msghdr+0x108/0x270 [ 497.277458][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.282132][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.287527][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.293344][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.298554][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.303412][T15041] do_SYSENTER_32+0x73/0x90 [ 497.308042][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.314361][T15041] [ 497.316680][T15041] Uninit was stored to memory at: [ 497.321716][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.327436][T15041] __msan_chain_origin+0x50/0x90 [ 497.332377][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.337497][T15041] get_compat_msghdr+0x108/0x270 [ 497.342446][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.347133][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.352509][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.358061][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.363272][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.368129][T15041] do_SYSENTER_32+0x73/0x90 [ 497.372634][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.378951][T15041] [ 497.381274][T15041] Uninit was stored to memory at: [ 497.386306][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.392026][T15041] __msan_chain_origin+0x50/0x90 [ 497.396972][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.402096][T15041] get_compat_msghdr+0x108/0x270 [ 497.407044][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.411729][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.417105][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.422658][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.427878][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.432748][T15041] do_SYSENTER_32+0x73/0x90 [ 497.437263][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.443583][T15041] [ 497.445906][T15041] Uninit was stored to memory at: [ 497.450935][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.456674][T15041] __msan_chain_origin+0x50/0x90 [ 497.461615][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.466729][T15041] get_compat_msghdr+0x108/0x270 [ 497.471667][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.476344][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.481716][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.487262][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.492467][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.497322][T15041] do_SYSENTER_32+0x73/0x90 [ 497.501824][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 497.508147][T15041] [ 497.510472][T15041] Uninit was stored to memory at: [ 497.515504][T15041] kmsan_internal_chain_origin+0xad/0x130 [ 497.521223][T15041] __msan_chain_origin+0x50/0x90 [ 497.526168][T15041] __get_compat_msghdr+0x5be/0x890 [ 497.531281][T15041] get_compat_msghdr+0x108/0x270 [ 497.536222][T15041] __sys_sendmmsg+0x7d5/0xd80 [ 497.540902][T15041] __se_compat_sys_sendmmsg+0xcd/0xf0 [ 497.546276][T15041] __ia32_compat_sys_sendmmsg+0x56/0x70 [ 497.551851][T15041] __do_fast_syscall_32+0x2aa/0x400 [ 497.557054][T15041] do_fast_syscall_32+0x6b/0xd0 [ 497.561906][T15041] do_SYSENTER_32+0x73/0x90 [ 497.566408][T15041] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c 09:45:48 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) clone(0x200000008890d100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() tkill(r1, 0x3c) syz_read_part_table(0x0, 0x0, 0x0) [ 497.572724][T15041] [ 497.575048][T15041] Local variable ----msg_sys@__sys_sendmmsg created at: [ 497.581993][T15041] __sys_sendmmsg+0xb7/0xd80 [ 497.586606][T15041] __sys_sendmmsg+0xb7/0xd80 09:45:48 executing program 2: timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0x8ec0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 09:45:49 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000080)="0200000000000006000000000000024000ffffff82000000e1000000887700720030070008ffffff00000000008000da55aa7e2d81b40c68f554ed3d74e30f7c93612940ccf5bc05450324cfb7ce10a4e78c168dd71dfb1733e3b80aeb38ed62ae76fada36f8ee1d20b26d3f04054971bad9fed5c453f2f949268f04d8a3d6317490d77bd2fea3df7328a333ace747ac27347f6428806fbf323c6986d23c04000000000000446db1558843ffed2ead492e0a25ae8d021b700cd075e26277ac6bb90e50a57821aee63ec8d79158037fa151b3b787f700"/227, 0xe3, 0x81c4}]) r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r2, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) r4 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f0000d83fe4)={0xa, 0x4e23, 0x0, @private0={0xfc, 0x0, [], 0x4}}, 0x1c) r5 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000000)={r6, @in6={{0xa, 0x4e23, 0x0, @loopback}}}, &(0x7f0000000240)=0x9c) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000180)={r6, @in6={{0xa, 0x4e22, 0x3, @mcast2, 0x7fff}}, 0x101, 0x3}, &(0x7f0000000240)=0x88) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000280)={r7, 0x6}, &(0x7f00000002c0)=0x8) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000040)={0x3, 'team_slave_0\x00', {0x3}}) [ 497.893941][ T4885] loop0: p1[EZD] p2 p3 p4 [ 497.899028][ T4885] loop0: partition table partially beyond EOD, truncated [ 497.906819][ T4885] loop0: p1 start 4106 is beyond EOD, truncated [ 497.913113][ T4885] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 497.983325][ T4885] loop0: p3 start 225 is beyond EOD, truncated [ 497.990112][ T4885] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:49 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 09:45:49 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = gettid() tkill(r0, 0x1000000000016) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000002580)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002540)={&(0x7f0000000100)={0x2438, r2, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xad9}]}, @TIPC_NLA_BEARER={0xc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xadf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcae3}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x491c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}]}, @TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'xfrm0\x00'}}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}]}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_NODE={0x21d4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xf0, 0x3, "ec810ec9e0bac4661e599209cdeeb259ab7d3977246d46d62e7b8ed62c30fec39d7e2de54f5e6ee807c0e6f75fdd8aec16d35bbdd3f978691595e5f0eb74f5ea08c6d621423b0a6d9adafeede838424a0ba703de85de77adf3c7e968bab5bcdc796312b4130ff95dd58540b76aee47de7c8f198d9c75f73bc06aad78058193bcd94db626a5aa18c64b265c9f0ab701d4cace4fe3473d8c8a2098a5b19362c43a6428daf68feec17b48d6b5bdf0dbf263bf6847289db3fc1016b357cfb6e0b52c820ebb239c3201be15edcc4b41b9408e9d597a593b41a32418705077c501a936d2d091bd8a6a61540cabecd7"}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "204a6ffc8e4388e480247b08fb0ec7de9d23513afd1e185b"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8000}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "68a5fa1bbc15401e45e2cbb27e6cb263383c80c9b3f7"}}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}, @TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "5a19bd2de780b97e4be36c8bf21a99d3d3e7f6f6f26fa54ed19f"}}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}]}, @TIPC_NLA_SOCK={0x40, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5e2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}]}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x53}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}]}, @TIPC_NLA_BEARER={0x8c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x20}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth1_to_bond\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x64010102}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x7, @private2, 0x3}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1000}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfff}, @TIPC_NLA_BEARER_DOMAIN={0x8}]}, @TIPC_NLA_PUBL={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x800}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}]}]}, 0x2438}}, 0x0) 09:45:49 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) [ 498.848402][T15089] loop0: p1[EZD] p2 p3 p4 [ 498.853171][T15089] loop0: partition table partially beyond EOD, truncated [ 498.861433][T15089] loop0: p1 start 4106 is beyond EOD, truncated [ 498.867841][T15089] loop0: p2 size 1073872896 extends beyond EOD, truncated [ 499.064057][T15089] loop0: p3 start 225 is beyond EOD, truncated [ 499.070463][T15089] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:45:50 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 09:45:50 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:50 executing program 1: socket$kcm(0xa, 0x6, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpu.stat\x00', 0x26e1, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000180)=[{0x3, 0x1000000000000, &(0x7f0000000080), 0xe, &(0x7f0000000100)}], 0x492492492492642, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000000)={'netpci0\x00', @remote}) setsockopt$sock_attach_bpf(r1, 0x10d, 0x2, &(0x7f0000000040)=r0, 0x4) 09:45:51 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x8e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0xf, 0x4, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x24, 0x14, 0x1, 0x0, [{@empty}, {@remote}, {@multicast2}, {@dev}]}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:45:51 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:51 executing program 1: clone(0x10408100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) r0 = memfd_create(&(0x7f0000000100)='-vboxneT0\x00]#wb\xac0E@!N%\xf73\xde\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xfe)\xdd\x8f\x98\xe8\xbe\x16\xc5-\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\x03\x00\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8r\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddp>\xd7\x9f\xf8r\xeeE\xa8%K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2(\x8c*\xff\x8aA\xa1\x153\x15\b\x00\x00\xef\xc4\xa6\xc7c@\xb5?\xa2\x1e\xe8\xad\xd9ht\x02~\x05B{\xe2\xb6\xebh\xa2\xdd_{\xdc\xf2\x84\x14s\xfe\xd6\xe8\xb8\x14y\x1cg\xf9\xc0\xc5hv\x00\x00\x00\x00\x00\x00\x00\a~\x9c+\x03\xf1\x01\xaf\xf5g\xf7WfI\xe9\xceg\b\\\xee4\x1aW\xcf\xb9\x85n\xf7/\f\x16Wy', 0x0) ftruncate(r0, 0x1000000) finit_module(r0, 0x0, 0x0) 09:45:51 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x20}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0), 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8840}, 0x48000) splice(r1, 0x0, r3, 0x0, 0x8ec0, 0x0) read$FUSE(r2, &(0x7f0000000880), 0x1000) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200)='threaded\x00', 0x175d900f) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) write$P9_RRENAME(r3, &(0x7f0000000000)={0x7}, 0x7) [ 500.416567][ T32] audit: type=1400 audit(1595324751.527:31): avc: denied { module_load } for pid=15124 comm="syz-executor.1" path=2F6D656D66643A2D76626F786E655430202864656C6574656429 dev="tmpfs" ino=45482 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:tmpfs_t:s0 tclass=system permissive=1 09:45:52 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000940)=@mangle={'mangle\x00', 0x64, 0x6, 0x618, 0x420, 0xf8, 0x230, 0x420, 0x420, 0x548, 0x548, 0x548, 0x548, 0x548, 0x6, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'syzkaller1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@local}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, [], [], 'gretap0\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'veth0_to_hsr\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x678) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x16) wait4(0x0, 0x0, 0x0, 0x0) 09:45:52 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:52 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045515, &(0x7f0000000040)) 09:45:52 executing program 0: syz_read_part_table(0x2, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="0201550000250a100000ff80000000ffffff810008000000d53d9716024000ffffff82000000e10000008800bd00008100da55aa00000000000000000000000029eeb642ff3ca0b77597f25ac077f967b0227cbabad75fca3cd4d8e41f5281bd947e24d547acec45a182c7470a7b6e9433140d0000000000000078e5265126eb95a2d03dce2806f8cbba7553c7c197e193c41fde2cffbdab96b2dfb60d447ef29839716f84169f623942a02d7e0d196726e715b191ae5835de7d5aea6af7ff133929990136420425be9e4b3eca036157d25b516c6c306e76ba6a7d7acbe959d94119a4b245e06090b5dec55b2c4b204cc5ac698a18aa18e787868b1df0d1ad0b1deea9b7bb8bb6f6f6a439cb9a7ab5882a4d0f9efde4c2a4503e4d8a33ca8d09d05ade6b25076696b859df35ceac59135d47f3759ed6e000707a37e0ee5a594f8d9fa61dd909d3a8d9b6fdb57ee1b0fb61da8dfc6d930ac3ed563c208c8b054122982381fec07d75e38ca87649a130237037b48ebb8bcbabda0800002a4780e90913b6fd778476a07863171a6ebb737c8db79f427f8835aadcede0336c4a41967ca858a53f53a82bc77bc9b8e4c1ffffffffffffff111bf468c419", 0x1bb, 0x1c1}]) 09:45:52 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/tcp6\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x0) 09:45:52 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045515, &(0x7f0000000040)) 09:45:52 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:53 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045515, &(0x7f0000000040)) [ 502.347006][T15164] Dev loop0: unable to read RDB block 1 [ 502.352847][T15164] loop0: unable to read partition table [ 502.358898][T15164] loop0: partition table beyond EOD, truncated [ 502.365280][T15164] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) 09:45:53 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:53 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/tcp6\x00') preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x0) 09:45:54 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x30, 0x6, 0x658, 0x398, 0x468, 0x0, 0x398, 0x2c8, 0x588, 0x588, 0x588, 0x588, 0x588, 0x6, 0x0, {[{{@ipv6={@loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'syzkaller1\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x1f8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}, {0x10}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:pam_console_exec_t:s0\x00'}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28, 'DSCP\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@mcast1, @private2, [], [], 'ip6gre0\x00', 'tunl0\x00'}, 0x0, 0xa8, 0xd0}, @HL={0x28, 'HL\x00'}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @remote, [], [], 'ipvlan1\x00', 'ip6gre0\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6b8) 09:45:54 executing program 0: syz_read_part_table(0x0, 0x0, &(0x7f0000000000)) 09:45:55 executing program 2: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0) sync() ptrace(0x10, r0) wait4(0x0, 0x0, 0x0, 0x0) 09:45:55 executing program 5: syz_emit_ethernet(0x82, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0xc, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x1c, 0x14, 0x2, 0x0, [{@empty}, {@remote}, {@multicast2}]}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:45:55 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x40}}, 0x0) 09:45:55 executing program 3: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000000000)={0x7, 0x100, 0x7ff, 0xc0, 0xe1, 0x4, 0x81}, 0xc) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x422) 09:45:55 executing program 1: perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) readv(r0, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xfffffd74}, {&(0x7f0000000700)=""/4096, 0x1002}, {&(0x7f00000001c0)=""/63, 0x3f}, {&(0x7f0000001700)=""/236, 0xec}, {&(0x7f0000001800)=""/254, 0xfe}], 0xa) 09:45:55 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000d00)=ANY=[@ANYBLOB="61128c000000000061138c0000000000bf2000000000000095000000080000002d0301000000000095000000000000006916000000000000bf67000000000000350600000fff07006706000002000000070300000ee60060bf050000000000004f650000000000006507f9ff01000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000000500000000000000950000000000000032ed3c5be9525db67754bb12feffffff8ecf264e0f8492b80482f48821a0d2d17f2f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd399703d6c4f6f3ffff369289aa6812b8e007e733a9a459788b9c37931bdba010fb94fe9de56c9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea0180185473d51b546cad3f1d5af65727546e7c955cfa1f6ab689fde4de4e63ede20271a51445dc8da39e5b0ab70100010000000000d04acd6002d4519af619e3cca4d69e0dee5eb106774a8f3e6916df85aaf34c4756ad3a6d75ec88158f0200000000c8fb735fd552bdbcfdcc39598068551a7c291c3770e335c206004aeb0743eb2dc819b6cf5c8ac86d8a297dff0445a13d0045fb3cda32a673a6bb55d8c85f21dce431e56723888fb126a163f16fb2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20ce2ac16f64ea7b0ef3b3a6aa57f1ad2e99e0e67a993716dbf580469f0f53acbb40b401c3738270b31dd362ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000800000000000000000bc00f674629709e7e78f4ddc211bc3ebf0bd9d42ca019dd5d022cf74686e9fbe2562671cd47840a7afaab43176e65ec1118d46d1e827f3472f4445d253887a5ad103649afa17690884f9d2001e038451bb96589a7eab04871bc47207cd313f00000000000000407d000000000000000000000000005f37d83f84e98a523d80bd0d0d703f37ca363f601ae899a53f6715a0a61434b0c94cce699452050000000000000026a0f6a5480a55c22fe394ac000000000000000000000000000000437d57defb79ea6a58bc3eeed729a2f95e1d6a1fc357b27990f51d33cd1bdf3dbcdf1c2cbb82ce8605abd094d3c495483186eef5cb247aa410dd86f07ea7ba5cded1f8fc47de13d2ba17b1e608cc3067aa5e2460900d472c275cc1dcd46a6321be36dd5342da5989dcc8c1e9ed32eb08bfbd9f7a4a1c63020a8d6d9662b3bc89140a6a36413f13d9536247ba66eb701a30744debfe69126c3f54250d7b3639e13f8df6ff262b2ce045b032abe1e891c50201e114e8c2ac0c274597e183953d823bc92acff3fbeb58c4ea7a9eb3c19ed601fe598919857bbdf0ce8de1a9cd06453ff86bb9b29844fd9f0e6d993eb721132a693a1f11cf58527a27239131d7ec873934ee8de796d83a8375129b"], &(0x7f0000000100)='GPL\x00'}, 0x48) r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001c007d1c000000000000000007000000", @ANYRES32=r5, @ANYBLOB="00006b610a000200bbbb51bbbbbb00000600050002"], 0x30}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', r5, 0x29, 0x3, 0xd9, 0x3, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, [], 0x3b}, 0x8000, 0x0, 0x7ff80000, 0x6}}) 09:45:56 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000940)=@mangle={'mangle\x00', 0x64, 0x6, 0x618, 0x420, 0xf8, 0x230, 0x420, 0x420, 0x548, 0x548, 0x548, 0x548, 0x548, 0x6, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'syzkaller1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@local}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, [], [], 'gretap0\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'veth0_to_hsr\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x678) ptrace$setopts(0x4206, r0, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38}, 0x0) tkill(r0, 0x16) wait4(0x0, 0x0, 0x0, 0x0) 09:45:56 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}]}, 0x2c}}, 0x0) 09:45:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:45:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:45:56 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001c007d1c000000000000000007000000", @ANYRES32=r5, @ANYBLOB="00006b610a000200bbbb51bbbbbb00000600050002"], 0x30}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', r5, 0x29, 0x3, 0xd9, 0x3, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, [], 0x3b}, 0x8000, 0x0, 0x7ff80000, 0x6}}) 09:45:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:45:56 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}]}, 0x2c}}, 0x0) 09:45:56 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:45:56 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001c007d1c000000000000000007000000", @ANYRES32=r5, @ANYBLOB="00006b610a000200bbbb51bbbbbb00000600050002"], 0x30}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', r5, 0x29, 0x3, 0xd9, 0x3, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, [], 0x3b}, 0x8000, 0x0, 0x7ff80000, 0x6}}) 09:45:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:45:57 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:45:57 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}]}, 0x2c}}, 0x0) 09:45:59 executing program 5: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x308, 0x0, 0x0, 0x148, 0x0, 0x148, 0x270, 0x240, 0x240, 0x270, 0x240, 0x3, 0x0, {[{{@ip={@private, @remote, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0x120, 0x168, 0x0, {}, [@common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'bond_slave_1\x00', {0x0, 0x0, 0x3, 0x0, 0x0, 0x801, 0x7}}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'gretap0\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x6, 0x0, 0x40}}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0xa0, 0x108, 0x0, {}, [@common=@unspec=@connmark={{0x30, 'connmark\x00'}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x368) dup(0xffffffffffffffff) 09:45:59 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000d00)=ANY=[@ANYBLOB="61128c000000000061138c0000000000bf2000000000000095000000080000002d0301000000000095000000000000006916000000000000bf67000000000000350600000fff07006706000002000000070300000ee60060bf050000000000004f650000000000006507f9ff01000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000000500000000000000950000000000000032ed3c5be9525db67754bb12feffffff8ecf264e0f8492b80482f48821a0d2d17f2f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd399703d6c4f6f3ffff369289aa6812b8e007e733a9a459788b9c37931bdba010fb94fe9de56c9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea0180185473d51b546cad3f1d5af65727546e7c955cfa1f6ab689fde4de4e63ede20271a51445dc8da39e5b0ab70100010000000000d04acd6002d4519af619e3cca4d69e0dee5eb106774a8f3e6916df85aaf34c4756ad3a6d75ec88158f0200000000c8fb735fd552bdbcfdcc39598068551a7c291c3770e335c206004aeb0743eb2dc819b6cf5c8ac86d8a297dff0445a13d0045fb3cda32a673a6bb55d8c85f21dce431e56723888fb126a163f16fb2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20ce2ac16f64ea7b0ef3b3a6aa57f1ad2e99e0e67a993716dbf580469f0f53acbb40b401c3738270b31dd362ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000800000000000000000bc00f674629709e7e78f4ddc211bc3ebf0bd9d42ca019dd5d022cf74686e9fbe2562671cd47840a7afaab43176e65ec1118d46d1e827f3472f4445d253887a5ad103649afa17690884f9d2001e038451bb96589a7eab04871bc47207cd313f00000000000000407d000000000000000000000000005f37d83f84e98a523d80bd0d0d703f37ca363f601ae899a53f6715a0a61434b0c94cce699452050000000000000026a0f6a5480a55c22fe394ac000000000000000000000000000000437d57defb79ea6a58bc3eeed729a2f95e1d6a1fc357b27990f51d33cd1bdf3dbcdf1c2cbb82ce8605abd094d3c495483186eef5cb247aa410dd86f07ea7ba5cded1f8fc47de13d2ba17b1e608cc3067aa5e2460900d472c275cc1dcd46a6321be36dd5342da5989dcc8c1e9ed32eb08bfbd9f7a4a1c63020a8d6d9662b3bc89140a6a36413f13d9536247ba66eb701a30744debfe69126c3f54250d7b3639e13f8df6ff262b2ce045b032abe1e891c50201e114e8c2ac0c274597e183953d823bc92acff3fbeb58c4ea7a9eb3c19ed601fe598919857bbdf0ce8de1a9cd06453ff86bb9b29844fd9f0e6d993eb721132a693a1f11cf58527a27239131d7ec873934ee8de796d83a8375129b"], &(0x7f0000000100)='GPL\x00'}, 0x48) r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001c007d1c000000000000000007000000", @ANYRES32=r5, @ANYBLOB="00006b610a000200bbbb51bbbbbb00000600050002"], 0x30}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', r5, 0x29, 0x3, 0xd9, 0x3, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, [], 0x3b}, 0x8000, 0x0, 0x7ff80000, 0x6}}) 09:45:59 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:45:59 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xe7}}]}, 0x40}}, 0x0) 09:45:59 executing program 0: syz_read_part_table(0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="0201550000250a100000ff45ac0000ffffff81000800000000000000024000ffffff82000000e10000008877007200300700a5ffffff00000000008000da55aa", 0x40, 0x1c0}]) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f00000000c0)={&(0x7f0000000080)=[0x68, 0x7fffffff], 0x2, 0x80000}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000001, 0x13, r0, 0x13000) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x10000}) 09:45:59 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:45:59 executing program 5: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r1, 0x89fa, &(0x7f0000001880)={'sit0\x00', 0x0}) 09:45:59 executing program 3: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:45:59 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xe7}}]}, 0x40}}, 0x0) [ 508.491174][T15263] loop0: p1[EZD] p2 p3 p4 [ 508.495797][T15263] loop0: partition table partially beyond EOD, truncated [ 508.503568][T15263] loop0: p1 start 4106 is beyond EOD, truncated [ 508.510155][T15263] loop0: p2 size 1073872896 extends beyond EOD, truncated 09:45:59 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:45:59 executing program 1: perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) readv(r0, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xfffffd74}, {&(0x7f0000000700)=""/4096, 0x1002}, {&(0x7f00000001c0)=""/63, 0x3f}, {&(0x7f0000001700)=""/236, 0xec}, {&(0x7f0000001800)=""/254, 0xfe}], 0xa) [ 508.594272][T15263] loop0: p3 start 225 is beyond EOD, truncated [ 508.600720][T15263] loop0: p4 size 3657465856 extends beyond EOD, truncated 09:46:00 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0xe7}}]}, 0x40}}, 0x0) 09:46:00 executing program 3: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:00 executing program 0: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045519, &(0x7f0000000040)) 09:46:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:00 executing program 5: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x6c00000000000000) 09:46:00 executing program 1: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88882, 0x0) syz_emit_ethernet(0xd9, &(0x7f0000000140)=ANY=[@ANYBLOB="0000aaaaaa390180c200000291001600810011000137ffff"], 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x18102, 0x0) 09:46:00 executing program 0: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) pwrite64(r0, &(0x7f0000000000)="b5", 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x46802) io_setup(0x100000000000c333, &(0x7f0000000180)=0x0) syz_open_procfs(0x0, 0x0) io_submit(r1, 0x0, 0x0) io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x7c1aa21bac0d27b2}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x1a0}, 0x1, 0x0, 0x0, 0x4000041}, 0x0) r3 = epoll_create(0x400) syz_genetlink_get_family_id$gtp(0x0) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RREMOVE(r4, &(0x7f0000000280)={0xfffffffffffffcd2}, 0xff7f) write(r3, 0x0, 0xfffffffffffffdd8) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{&(0x7f0000000b80)={0xa, 0x0, 0x40, @private2={0xfc, 0x2, [], 0x1}, 0x80}, 0x1c, &(0x7f0000002140)=[{&(0x7f0000000bc0)}, {&(0x7f0000000c00)="0daeb7815deb97de9704302334ac901bb179ee054406c2525e49eb651c51492ced813d1817b7ec30581b7fef8f45b6c6cde4e6e1d95842170bfb447f9f2b819e9e2f0f7acbccad1346849a21571258f3242c7e87c81aac4ea0f5ab46d68b31b2106ee586283ce57d793edbe25b37c4b91dcbe9dda67c607158eb41f7d06c95c30eeeac97dae4fc81f06a8b1035cad8977f7239cd659ccbcacf54714bf55df1e1848a10dbc456db9a29b7a9535805d6edd891aa7acd0b4a047845caf009", 0xbd}, {&(0x7f0000000d00)="2a11c4755c9e98ddc18b83a8a5636e69c5874defb1066de9cdf116e3b39b998a0caf133ba8de672b82ad4798bec24b63bf699165f29400049f4d48f2ae70a547d1b640d34e", 0x45}, {&(0x7f0000000d80)="ce6552bf699be5bd5b848abc8dcf1b6bd5e161539fe43893301aa3b9f7a78fb3b74420e887a1d26bd4d979f148e5774417c9f9bea3333d37168f7416e01181d507b5072e0f180e0b65a7e7d59ea7ce982ccd12e4064707c71aa3286711f2c3bb1f1bc40f9cbdca7b358e7b83e3294a9d0537a2b36c3963f25fe456b7a5f2056dffd9f25d4c965da7ff4e6a67229643bf3c7fe831aa51c8b1ba76e63c28d87b0becb12a8a05ebc49edf5e7aab7554450c88a8a2ad3b5002eac1ffee8eecb72178abb93192f165b5554d25c067292990f807f0b0a63527669807ff5b860bc49a38e82ed1be4895cf75a06cd158", 0xec}, {&(0x7f0000000e80)="b1ef92448f689747aa6a3b127e3b914d149cca26a85cff637dfee5b3acb74bf59053c77b674051a99375dde276546b661f9cf9150de3ba95b181365faa7c4906d99f1c617232b48e54a9edf031dd793d92c307593e746900221ef769cd59f71d7c1a865432afaeb73d1bdf72b383b1ee53324d25243cf96c3346a16c42146093b96766f14f414ecd3961bbb7b76960a28878e792d97726572fdc3c", 0x9b}, {&(0x7f0000000f40)="4bf0aef7aa5ef310a5", 0x9}, {&(0x7f0000000f80)="eb87db8207f2a8d07c37a7887be66f4eaebb22d186107dfdb5dc00a784292994943cccfad8f12f66429bc38acc761643703dfed46838ab54beb3dc", 0x3b}, {&(0x7f0000000fc0)="12528b01129c0b179211d9ee26d25e3e835f3d116807f0be987b0d1aa30904c435e0872bc69626e1f5bb7d625174980e06d166cbd6ca8f6be78e1b60768ea3e83010bef88a290e132eb2835c63a772d54e96b62183a89d2abaac2070d3a2468167ff06ebd45f5591644ba467564bdd48def3deb504805278e3", 0x79}, {&(0x7f0000001040)="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", 0xfe0}, {0x0}], 0xa, &(0x7f0000002200)=ANY=[@ANYBLOB="b80000000000000029000000390000002f14020300000000fe8800000000000000000000000001012001000000000000000000000000000120010000000000000000000000000001fe8000000000000000000000000000bbfe8000000000000000000000000000bbfe8000000000000000000000000000bb2001000000000000000000000000000100000000000000000000ffffe0000002fc000000000000000100000000000000000000000000004100"], 0xb8}}, {{0x0, 0x0, &(0x7f0000002440)=[{&(0x7f00000022c0)="7867990b2d4aeed45296c609f976dbc4c86c6142942aa02ce9632e78c5ca0a413edac583b78241e4c50110f0418f16fd494be21d8affaa12508338b26cb4aca652520713e6ecf2656486fd655d9901250a86eb7f5ff2b5e6dd4856664e03de3509f0965c810789ad6608ed0f9f10c8bd636e2b0cf3f9c7ccf4837fee66a86fea449c629075dbe2d9161a9e946cf2c15b58c02e4ed97cf74ea1bb1ebb12b0fb45c5cf633f22d94ccb404e3546f994fcd237ec7b4fc5f704489962bf3ea5eea55bdee001b10a91120d026d9eb04d7d", 0xce}, {&(0x7f00000023c0)="ccd0b69e89abcce4558c62237ad096f67e1e904c02b40c5bdc54ebc9f24c91ba7ba8d9d735e9cb44b88865618ff370f9385e8ab4bf3d9b2f8c79c12ef974710338d28de68c38e8383b9847ba6cf15d0f14c1b987dc88e757a35627220ec75a26", 0x60}], 0x2}}, {{0x0, 0x0, &(0x7f0000004940)=[{&(0x7f0000004840)}], 0x1}}], 0x5, 0x8011) r5 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) fdatasync(r4) ioctl$FS_IOC_MEASURE_VERITY(0xffffffffffffffff, 0xc0046686, &(0x7f00000002c0)={0x1, 0xbd, "df470b7f96d709a5c0cc14657b8809c1b24643c9b6013a9203107014797ef26b670a911b589b1e0202e119c8e960e25d551439315c085c979f3e981bcaecfc0a9b889cc8f5848d7b86614b7d7c926e3bc53f612e9e43bb86e9cc7c2e947d71e86ddd5a9433005cb495564593ae9ef0ef7edd009f237871a94898ae7931257a0010fad4858075f8bbb490c58ec5b3b3134d74110622a9c6c09dc0b4987716bd69bdbde521f6fabbcaea99b7c1694e42d71701ac755b5f187c445000f84e"}) perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000200)={0x100a00, r4, 0x9, 0x0, 0xff010000}) 09:46:00 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2}}]}, 0x40}}, 0x0) 09:46:01 executing program 3: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:01 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:01 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2}}]}, 0x40}}, 0x0) 09:46:01 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:01 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045505, &(0x7f0000000040)) 09:46:01 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:02 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88882, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732}) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @private}}) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@val, @void, @eth={@broadcast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "163dac", 0x8, 0x2c, 0x0, @local, @mcast2, {[@fragment={0x0, 0x0, 0x0, 0x0, 0x0, 0x17}]}}}}}}, 0x42) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r2, 0x0, r4, 0x0, 0x18100, 0x0) 09:46:02 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x40, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x2}}]}, 0x40}}, 0x0) 09:46:02 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58) r0 = syz_open_procfs(0x0, 0x0) lseek(0xffffffffffffffff, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) write$FUSE_STATFS(r0, &(0x7f0000000180)={0x60, 0xfffffffffffffff5, 0x8, {{0xffffffff, 0x4, 0x748, 0x3, 0xff, 0x2, 0x0, 0x1}}}, 0x60) openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) r2 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @loopback}}) fadvise64(r2, 0x100, 0xffffffffffffffe1, 0x5) r3 = socket(0x10, 0x803, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xd}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 09:46:02 executing program 3: syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:02 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045503, &(0x7f0000000040)) 09:46:02 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) [ 511.418480][T15364] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready 09:46:02 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x2c}}, 0x0) 09:46:02 executing program 3: syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:03 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) [ 511.854308][T15364] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready 09:46:03 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) [ 511.956618][T15364] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 511.976834][T15364] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 09:46:03 executing program 3: syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f003668"], 0x78) 09:46:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) [ 512.429985][T15385] blk_update_request: I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 09:46:04 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = fcntl$dupfd(r1, 0x0, r2) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000940)=ANY=[@ANYBLOB="726177000000000000000000000000000000000000000000000000000000000008f80000030000003003000098020000000000000000000000000000000000009802000098020000980700009802000098020000030080000000000000000000ffffffffe00000010000000000000000e4000000010000000000bd00000000007465616d5f735c6176655f310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001080200000000000000000000000000000000000000005001686173686c696d6974000000000000000000000000008800000000000002726f7365300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000fb000000000000ecff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff0000000000000000000000000300000007000000000000000000000000000000480043540000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000100000000000000000000000000000000ee000000000000c20000000000000000000000000000000000000000000000000000000000002000000000000005000000000004000000000000000000000000e95e0070009000000000000000000000000000000000000000010020004e4f545241434b0000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) sendto$inet(r0, 0x0, 0x0, 0x200407fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860005cf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) 09:46:04 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, 0x0, 0x78) 09:46:04 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) 09:46:04 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:04 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x2c}}, 0x0) 09:46:04 executing program 0: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) 09:46:04 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, 0x0, 0x78) 09:46:04 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:04 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x1f) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_CACHEINFO={0x14, 0x6, {0x2, 0xe7}}]}, 0x2c}}, 0x0) [ 513.798396][T15419] blk_update_request: I/O error, dev loop0, sector 768 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 09:46:05 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) 09:46:05 executing program 0: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) 09:46:05 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:05 executing program 5: r0 = socket$inet6(0xa, 0x401000000001, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) syz_open_procfs(0x0, &(0x7f00000002c0)='comm\x00') r1 = open(&(0x7f0000000100)='./bus\x00', 0x1141042, 0x0) r2 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ftruncate(r2, 0x208200) sendfile(r0, r1, 0x0, 0x8000fffffffe) 09:46:05 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, 0x0, 0x78) 09:46:05 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x64, 0x6, 0x610, 0xf8, 0x420, 0xf8, 0x300, 0x0, 0x540, 0x540, 0x540, 0x540, 0x540, 0x6, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'syzkaller1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@local}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, [], [], 'gretap0\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'veth0_to_hsr\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x670) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2e) wait4(0x0, 0x0, 0x0, 0x0) 09:46:05 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x8008551c, &(0x7f0000000040)) [ 514.780404][T15448] blk_update_request: I/O error, dev loop0, sector 768 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 09:46:06 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2001001, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xfffffffffffffffd}}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) setfsgid(0x0) socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) ioctl$TUNSETFILTEREBPF(r1, 0x6609, 0x0) ioctl$TIOCGRS485(r1, 0x542e, &(0x7f0000000180)) ioctl$NS_GET_OWNER_UID(r1, 0xb704, &(0x7f0000000040)) setfsuid(0x0) setfsuid(0x0) mount$fuseblk(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='fuseblk\x00', 0xa00020, 0x0) pivot_root(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00') mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000002, 0x10, r0, 0xaf35f000) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001000010800"/18, @ANYRES32=0x0, @ANYBLOB="60629101dce48285e42050235381dbc473203571fa3d201f9a0600002dcf000000086d"], 0x28}, 0x1, 0xfffffffe}, 0x20000040) syz_open_procfs(0x0, 0x0) 09:46:06 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:06 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0x78) [ 515.040703][ T32] audit: type=1800 audit(1595324766.157:32): pid=15463 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="" name="bus" dev="sda1" ino=16380 res=0 09:46:06 executing program 0: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000240)='\x14\xccmPn\x9be\x13\x1d\xe5\x1c\x95\x14tc\x93\xe6\xd1\xa47\xf9\vc8tU\x90\x13\xf3\xfc9\x9bP\xe5\x12\x85\x9c\x86\x87\xe3\x88\xdb\xb5\xd5\xe0q\xfb\r?\x1c\xf5$Q\xdbKo\xe0\x0f\xf1W\xc9w\x10\xa9\xdeW^\x9e\x8eV\xcf8\x00\x02\xb6a\f\xe1\x8a\xeaw\xfe\x8b\xc2\nh}\xc3|p\'\xf0\x8eM-?\xccG_\x16\xa4\x1bQn\xd0\x06\xc7FIR\xd3\x88\f/@*\xe6\x8a\x13)H\xd5\xe7\xa4\xaf\xc5\xe6\xb2p$\xb9\xce\x98\xedY\x8a\xb2t\xaan|\x8a\xa9\x9dC*\xc5\r\x8e\xbb\x1e\xf6:i\xa5r`\xa4ij\x1b\x9a\xfe\x94\x95\xec26!\xe82', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000140)='!', 0x1}], 0x1, 0x81805) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x89e1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24000000) ioctl$LOOP_CLR_FD(r0, 0x4c01) msgget(0x3, 0x0) 09:46:06 executing program 5: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000480)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:'}) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0x0) 09:46:06 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x802) ioctl$USBDEVFS_CONNECTINFO(r0, 0x8008551c, &(0x7f0000000040)) [ 515.443718][T15475] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 09:46:06 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:06 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0x78) 09:46:07 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)=r2) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x7132}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'lo\x00', 0x400}) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="2000000011000d0400"/20, @ANYRES32=r5], 0x20}}, 0x0) [ 516.197606][T15492] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 09:46:07 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0xd, 0xffffffffffffff81}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000000c0)={0x11, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x2000000]}, 0x40) dup3(r1, r2, 0x0) [ 516.244995][T15472] EXT4-fs (sda1): re-mounted. Opts: (null) [ 516.253100][T15478] EXT4-fs (sda1): re-mounted. Opts: (null) 09:46:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, 0x0, 0x0) 09:46:07 executing program 4: syz_emit_ethernet(0x86, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0xd, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x1c, 0x14, 0x2, 0x0, [{@empty}, {@remote}, {@multicast2}]}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:46:07 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0x78) 09:46:07 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0xc100) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000140)="8e3ca9e9", 0x4}], 0x1) [ 516.738234][ T32] audit: type=1326 audit(1595324767.857:33): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15512 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=40000003 syscall=265 compat=1 ip=0xf7f5d549 code=0x0 09:46:07 executing program 1: ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) r0 = memfd_create(&(0x7f0000000100)='-vboxneT0\x00]#wb\xac0E@!N%\xf73\xde\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xfe)\xdd\x8f\x98\xe8\xbe\x16\xc5-\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\x03\x00\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8r\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddp>\xd7\x9f\xf8r\xeeE\xa8%K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2(\x8c*\xff\x8aA\xa1\x153\x15\b\x00\x00\xef\xc4\xa6\xc7c@\xb5?\xa2\x1e\xe8\xad\xd9ht\x02~\x05B{\xe2\xb6\xebh\xa2\xdd_{\xdc\xf2\x84\x14s\xfe\xd6\xe8\xb8\x14y\x1cg\xf9\xc0\xc5hv\x00\x00\x00\x00\x00\x00\x00\a~\x9c+\x03\xf1\x01\xaf\xf5g\xf7WfI\xe9\xceg\b\\\xee4\x1aW\xcf\xb9\x85n\xf7/\f\x16Wy', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ftruncate(r0, 0x1000000) finit_module(r0, 0x0, 0x0) 09:46:08 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, 0x0, 0x0) 09:46:08 executing program 0: preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, 0x0) r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x76, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x63) sendmsg$nl_generic(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1800000017001f70000000000000008004000000040010"], 0x18}}, 0x0) r2 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0) r3 = syz_open_procfs(0x0, 0x0) setsockopt(r3, 0x0, 0x0, &(0x7f0000000040), 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="00007afb", @ANYRES16=r5, @ANYBLOB="010000000000000000001b00000008009a"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c003b4c42f4f93488b94b", @ANYRES16=0x0, @ANYBLOB="000028bd7000fc60df251100000006001a010100"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x1) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) writev(r6, &(0x7f0000000500)=[{&(0x7f0000000280)='{', 0x1}], 0x1) close(r6) 09:46:08 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x8e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0xf, 0x4, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x14, 0x14, 0x1, 0x0, [{@empty}, {@remote}, {@multicast2}, {@dev}]}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:46:08 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x78) 09:46:08 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, 0x0, 0x0) [ 517.509379][ T32] audit: type=1326 audit(1595324768.627:34): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=15512 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=40000003 syscall=265 compat=1 ip=0xf7f5d549 code=0x0 09:46:08 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x86, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0xd, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x1c, 0x14, 0x2, 0x0, [{@empty}, {@remote}, {@multicast2}]}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:46:08 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x6a, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x6c, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:46:08 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x78) 09:46:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) 09:46:09 executing program 0: clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000193c0)=ANY=[@ANYBLOB="9feb010018000000000000009c00008d5bbf409463de5f009c000000040000000a0000000000000802000000000000000b00000400000000000000000000000000000000010000000000000000000000000000000000000003000000fcffffff0000000800000000000000000000000000000000000000db9a7eadbae0c32e17fc8a000300000000000000030000000000000000000020000000000000000000000000000000000000000000000100000000000000000000dec2c1ef25e561b98b8956ca0ab141634b345459404fe86ee2f6b641705e2761df9ce09eaa9fcafe319c76af580ae44549f4be53a0ee3a9b05fd227432a345c0f791d241d7ff4dbf9a22aa07bcdaa0be42c95566186929c428dc8952561c842636e24ce6aaff58063e5fcfa0c4644bcef8e8d206a50ff9178cbe91770f0600dc9d609aef6f96251c7fa812f6ea55576fd925c3aabd70e320a510d6d79d928f084707c3a58fc6e2b823b0d0d2990bdcaf08e343a0f595f3f16fa66975558f2527aaf1"], 0x0, 0xb8}, 0x20) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {0x0}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ptrace$cont(0x7, r0, 0x0, 0x0) r3 = open(&(0x7f0000000100)='./file0\x00', 0x40c2, 0x0) r4 = socket(0x27, 0x5, 0x80000001) sendmsg(r4, &(0x7f0000001dc0)={0x0, 0x0, 0x0}, 0x0) r5 = dup2(r4, r3) r6 = open$dir(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) dup2(r5, r6) 09:46:09 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x78) [ 518.589272][T15567] ptrace attach of "/root/syz-executor.0"[15566] was attempted by "/root/syz-executor.0"[15567] 09:46:10 executing program 1: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}]}, 0x34}}, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = timerfd_create(0x0, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) 09:46:10 executing program 5: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) pwrite64(r0, &(0x7f0000000000)="b5", 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x46802) io_setup(0x100000000000c333, &(0x7f0000000180)=0x0) syz_open_procfs(0x0, 0x0) io_submit(r1, 0x0, 0x0) io_submit(r1, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) sendmsg$nl_generic(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x7c1aa21bac0d27b2}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x1a0}, 0x1, 0x0, 0x0, 0x4000041}, 0x0) r3 = epoll_create(0x400) syz_genetlink_get_family_id$gtp(0x0) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RREMOVE(r4, &(0x7f0000000280)={0xfffffffffffffcd2}, 0xff7f) write(r3, 0x0, 0xfffffffffffffdd8) sendmmsg$inet6(r0, &(0x7f0000004980)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{&(0x7f0000000b80)={0xa, 0x0, 0x40, @private2={0xfc, 0x2, [], 0x1}, 0x80}, 0x1c, &(0x7f0000002140)=[{&(0x7f0000000bc0)}, {&(0x7f0000000c00)="0daeb7815deb97de9704302334ac901bb179ee054406c2525e49eb651c51492ced813d1817b7ec30581b7fef8f45b6c6cde4e6e1d95842170bfb447f9f2b819e9e2f0f7acbccad1346849a21571258f3242c7e87c81aac4ea0f5ab46d68b31b2106ee586283ce57d793edbe25b37c4b91dcbe9dda67c607158eb41f7d06c95c30eeeac97dae4fc81f06a8b1035cad8977f7239cd659ccbcacf54714bf55df1e1848a10dbc456db9a29b7a9535805d6edd891aa7acd0b4a047845caf009", 0xbd}, {&(0x7f0000000d00)="2a11c4755c9e98ddc18b83a8a5636e69c5874defb1066de9cdf116e3b39b998a0caf133ba8de672b82ad4798bec24b63bf699165f29400049f4d48f2ae70a547d1b640d34e", 0x45}, {0x0}, {&(0x7f0000000e80)="b1ef92448f689747aa6a3b127e3b914d149cca26a85cff637dfee5b3acb74bf59053c77b674051a99375dde276546b661f9cf9150de3ba95b181365faa7c4906d99f1c617232b48e54a9edf031dd793d92c307593e746900221ef769cd59f71d7c1a865432afaeb73d1bdf72b383b1ee53324d25243cf96c3346a16c42146093b96766f14f414ecd3961bbb7b76960a28878e792d97726572fdc3c8a", 0x9c}, {&(0x7f0000000f40)}, {&(0x7f0000000f80)="eb87db8207f2a8d07c37a7887be66f4eaebb22d186107dfdb5dc00a784292994943cccfad8f12f66429bc38acc761643703dfed46838ab54beb3dc", 0x3b}, {&(0x7f0000000fc0)}, {&(0x7f0000001040)="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", 0xfe0}, {0x0}], 0xa, &(0x7f0000002200)=ANY=[@ANYBLOB="b80000000000000029000000390000002f14020300000000fe8800000000000000000000000001012001000000000000000000000000000120010000000000000000000000000001fe8000000000000000000000000000bbfe8000000000000000000000000000bbfe8000000000000000000000000000bb2001000000000000000000000000000100000000000000000000ffffe0000002fc00000000000000"], 0xb8}}, {{0x0, 0x0, &(0x7f0000002440)=[{&(0x7f00000022c0)="7867990b2d4aeed45296c609f976dbc4c86c6142942aa02ce9632e78c5ca0a413edac583b78241e4c50110f0418f16fd494be21d8affaa12508338b26cb4aca652520713e6ecf2656486fd655d9901250a86eb7f5ff2b5e6dd4856664e03de3509f0965c810789ad6608ed0f9f10c8bd636e2b0cf3f9c7ccf4837fee66a86fea449c629075dbe2d9161a9e946cf2c15b58c02e4ed97cf74ea1bb1ebb12b0fb45c5cf633f22d94ccb404e3546f994fcd237ec7b4fc5f704489962bf3ea5eea55bdee001b10a91120d026d9eb04d7d", 0xce}, {0x0}], 0x2}}, {{&(0x7f0000004800)={0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x4}, 0x1c, &(0x7f0000004940)=[{&(0x7f0000004840)}], 0x1}}], 0x5, 0x8011) r5 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) fdatasync(r4) ioctl$FS_IOC_MEASURE_VERITY(0xffffffffffffffff, 0xc0046686, &(0x7f00000002c0)={0x1, 0x5f, "df470b7f96d709a5c0cc14657b8809c1b24643c9b6013a9203107014797ef26b670a911b589b1e0202e119c8e960e25d551439315c085c979f3e981bcaecfc0a9b889cc8f5848d7b86614b7d7c926e3bc53f612e9e43bb86e9cc7c2e947d71"}) perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000200)={0x100a00, r4, 0x9, 0x0, 0xff010000}) 09:46:10 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000440)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) r2 = open(&(0x7f0000000280)='./file0\x00', 0x3fc, 0x0) flock(r2, 0x1) r3 = creat(&(0x7f0000000000)='./file0\x00', 0xd) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TIOCSTI(r4, 0x5412, 0x2) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8012}, 0x0) sendmsg$IPVS_CMD_GET_DAEMON(r4, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="707038aa", @ANYRES16=r5, @ANYBLOB], 0x60}, 0x1, 0x0, 0x0, 0x4040050}, 0x2) sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x58, r5, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [], @local}}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xa3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x20000006) r6 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) flock(r6, 0x2) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) 09:46:10 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) 09:46:10 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev}}) 09:46:10 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b0707"], 0x78) [ 519.962564][ T32] audit: type=1804 audit(1595324771.077:35): pid=15587 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir453509688/syzkaller.x9RjMW/180/file0" dev="sda1" ino=16368 res=1 09:46:11 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev}}) 09:46:11 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b0707"], 0x78) 09:46:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) 09:46:11 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) [ 520.181498][ T32] audit: type=1804 audit(1595324771.157:36): pid=15584 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir453509688/syzkaller.x9RjMW/180/file0" dev="sda1" ino=16368 res=1 [ 520.206852][ T32] audit: type=1804 audit(1595324771.197:37): pid=15587 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir453509688/syzkaller.x9RjMW/180/file0" dev="sda1" ino=16368 res=1 09:46:11 executing program 5: r0 = syz_open_dev$usbfs(&(0x7f0000001280)='/dev/bus/usb/00#/00#\x00', 0x200, 0x0) bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000000c0)={0x11, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x2000000]}, 0x40) r2 = dup2(r1, r1) dup2(r2, r0) 09:46:11 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev}}) 09:46:12 executing program 1: preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, 0x0) r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x76, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x63) sendmsg$nl_generic(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1800000017001f70000000000000008004000000040010"], 0x18}}, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0) r2 = syz_open_procfs(0x0, 0x0) setsockopt(r2, 0x0, 0x0, &(0x7f0000000040), 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') sendmsg$NL80211_CMD_REQ_SET_REG(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="00007afb", @ANYRES16=r4, @ANYBLOB="010000000000000000001b00"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x1) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000500)=[{&(0x7f0000000280)='{', 0x1}], 0x1) close(r5) 09:46:12 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b0707"], 0x78) 09:46:12 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:46:12 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f00000005c0)=0x1, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f0000000040)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@pktinfo={{0x24, 0x29, 0x2, {@mcast1}}}], 0x28}, 0x0) 09:46:12 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev}}) 09:46:12 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:12 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f00"], 0x78) 09:46:12 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:12 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:46:12 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x20}, 0x0) getpid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0x8ec0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 09:46:12 executing program 1: perf_event_open(&(0x7f0000000500)={0x2, 0x70, 0x63, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000100)='./file1\x00', 0x143042, 0x0) ftruncate(r0, 0x200004) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r0, r0, 0x0, 0x80001d00c0d3) 09:46:13 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f00"], 0x78) 09:46:13 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:46:13 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) [ 522.598360][ T0] NOHZ: local_softirq_pending 08 09:46:13 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) [ 522.761376][ T32] audit: type=1800 audit(1595324773.877:38): pid=15647 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="file1" dev="sda1" ino=16381 res=0 09:46:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x6a, &(0x7f0000000000)={@local, @multicast, @void, {@ipv4={0x800, @gre={{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x6c, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0) 09:46:14 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x20}, 0x0) getpid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0x8ec0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 09:46:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:14 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f00"], 0x78) 09:46:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:14 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f0036"], 0x78) 09:46:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, 0x0, 0xab9535e9a6578fc1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:14 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:14 executing program 1: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="4400000010000104000000000000010000000000", @ANYRES32, @ANYBLOB="ff03000000000000240012800b000100627269646765000014000280080001000004000008"], 0x44}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x8001, 0x0) [ 524.114012][T15694] device bridge2 entered promiscuous mode 09:46:15 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0x0, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f0036"], 0x78) 09:46:15 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x20}, 0x0) getpid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0x8ec0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 09:46:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0x0, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:15 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b5b07073f0036"], 0x78) 09:46:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001700)={0x14, r1, 0x0, 0x0, 0x0, {0x5}}, 0x14}}, 0x0) 09:46:16 executing program 1: clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) gettid() r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) write$P9_RLOCK(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000940)=@mangle={'mangle\x00', 0x64, 0x6, 0x618, 0x420, 0xf8, 0x230, 0x420, 0x420, 0x548, 0x548, 0x548, 0x548, 0x548, 0x6, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'syzkaller1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@local}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, [], [], 'gretap0\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'veth0_to_hsr\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x678) r3 = socket(0x0, 0x80002, 0x0) write$binfmt_elf64(r3, 0x0, 0x0) 09:46:16 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) 09:46:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) prctl$PR_GET_NAME(0x10, &(0x7f00000000c0)=""/4096) r1 = syz_open_procfs(r0, 0x0) socket$inet(0x2, 0x2, 0x80000000) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getresuid(&(0x7f0000000000), &(0x7f0000000140), 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) arch_prctl$ARCH_GET_FS(0x1003, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x180000105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000000a000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000000200004d1e, 0x800007c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x1}], 0x0, 0x0) ioctl$NS_GET_USERNS(r1, 0xb701, 0x0) dup2(r2, r2) 09:46:16 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000100044000e6ff08000d00", @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) close(r0) 09:46:16 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:16 executing program 0: perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x2005, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) readv(r0, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xfffffd74}, {&(0x7f0000000700)=""/4096, 0x1002}, {&(0x7f00000001c0)=""/63, 0x3f}, {&(0x7f0000001700)=""/236, 0xec}, {&(0x7f0000001800)=""/254, 0xfe}], 0xa) 09:46:16 executing program 1: perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x76, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1800000017001f70000000000000008004"], 0x18}}, 0x0) socket$inet(0x2, 0x0, 0x0) syz_open_procfs(0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) 09:46:16 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) [ 525.820567][T15736] NFS: Device name not specified [ 525.831864][T15737] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready 09:46:17 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r0 = gettid() prctl$PR_SET_PTRACER(0x59616d61, r0) prctl$PR_GET_NAME(0x10, &(0x7f00000000c0)=""/4096) r1 = syz_open_procfs(r0, 0x0) socket$inet(0x2, 0x2, 0x80000000) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getresuid(&(0x7f0000000000), &(0x7f0000000140), 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) arch_prctl$ARCH_GET_FS(0x1003, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x180000105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000000a000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000000200004d1e, 0x800007c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x1}], 0x0, 0x0) ioctl$NS_GET_USERNS(r1, 0xb701, 0x0) dup2(r2, r2) [ 525.925793][T15746] NFS: Device name not specified 09:46:17 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0xc100) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000140)="8e3ca9e983", 0x5}], 0x1) [ 526.364169][T15737] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 526.399841][T15763] NFS: Device name not specified 09:46:17 executing program 3: ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, 0x0) r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x76, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x63) sendmsg$nl_generic(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="1800000017001f70000000000000008004000000040010"], 0x18}}, 0x0) r2 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, 0x0, 0x0) r3 = syz_open_procfs(0x0, 0x0) setsockopt(r3, 0x0, 0x0, &(0x7f0000000040), 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0) sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x1) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) writev(r4, &(0x7f0000000500)=[{&(0x7f0000000280)='{', 0x1}], 0x1) close(r4) 09:46:17 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) [ 526.531739][T15737] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 526.565576][T15737] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 09:46:17 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000017c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000001800)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_KEY_TYPE={0x8}]}, 0x1c}}, 0x0) 09:46:18 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:18 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) [ 527.368955][T15771] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 527.398305][T15771] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 527.414949][T15771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 527.422882][T15771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 09:46:19 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000300)) socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, 0x0, 0x8ec0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000140)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 09:46:19 executing program 3: ptrace(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000017c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000001800)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_KEY_TYPE={0x8}]}, 0x1c}}, 0x0) 09:46:19 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:19 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000017c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000001800)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_KEY_TYPE={0x8}]}, 0x1c}}, 0x0) 09:46:19 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:19 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xa) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000240)={@empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, [0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x10], 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24c20082, r3}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x1e34a95995e) 09:46:19 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:19 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:19 executing program 1: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100)='nl80211\x00') sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f000001d0c0)={0x0, 0x0, &(0x7f000001d080)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="090700c7885f43f5701f2d"], 0x1c}}, 0x0) 09:46:20 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:20 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() 09:46:20 executing program 1: 09:46:20 executing program 2: 09:46:20 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:20 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) perf_event_open(0x0, r2, 0x9, r0, 0x8) 09:46:20 executing program 1: 09:46:20 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:20 executing program 2: 09:46:21 executing program 1: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x200000000204a100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000940)=@mangle={'mangle\x00', 0x64, 0x6, 0x618, 0x420, 0xf8, 0x230, 0x420, 0x420, 0x548, 0x548, 0x548, 0x548, 0x548, 0x6, 0x0, {[{{@ipv6={@loopback, @mcast1, [], [], 'syzkaller1\x00', 'veth0_to_bridge\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@dev, @local, [], [], 'veth1\x00', 'ip6tnl0\x00'}, 0x0, 0xf8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@local}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @dev, [], [], 'gretap0\x00', 'veth0\x00'}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'veth0_to_hsr\x00'}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x678) ptrace$setopts(0x4206, r0, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sched_setattr(0x0, 0x0, 0x0) tkill(r0, 0x16) wait4(0x0, 0x0, 0x0, 0x0) 09:46:21 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() 09:46:21 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:21 executing program 2: r0 = memfd_create(&(0x7f0000000100)='-vboxneT0\x00]#wb\xac0E@!N%\xf73\xde\xea\xb0\xe2N\xc6c\x05\x8d\xb5\xc0\n\xfe)\xdd\x8f\x98\xe8\xbe\x16\xc5-\xad\x0f#+\x17\xd6A\xf4\xdf\x1b\xf9~\x8e\"\r\x03\x00\xb0\xc3\x86\x97\xaf\xf8\x7f*\xfc\xfd\xe7\xcc\xbc\xddI.\xc3\x9aQ\xc8\x8e8r\xdaX\x06\x92\x1d\xbd\x10\xf9\xe8q\x00\xddp>\xd7\x9f\xf8r\xeeE\xa8%K\xf60 \x7f\xcd\xac\x86\x9eT*\xf7\a^L,\x98\xa2(2(\x8c*\xff\x8aA\xa1\x153\x15\b\x00\x00\xef\xc4\xa6\xc7c@\xb5?\xa2\x1e\xe8\xad\xd9ht\x02~\x05B{\xe2\xb6\xebh\xa2\xdd_{\xdc\xf2\x84\x14s\xfe\xd6\xe8\xb8\x14y\x1cg\xf9\xc0\xc5hv\x00\x00\x00\x00\x00\x00\x00\a~\x9c+\x03\xf1\x01\xaf\xf5g\xf7WfI\xe9\xceg\b\\\xee4\x1aW\xcf\xb9\x85n\xf7/\f\x16Wy', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ftruncate(r0, 0x1000000) finit_module(r0, 0x0, 0x0) 09:46:21 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) 09:46:21 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:21 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() 09:46:22 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r3, 0x0, 0x10003, 0x0) 09:46:22 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:22 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) dup2(r0, r1) 09:46:22 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) r2 = getpid() dup2(r0, r1) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0) 09:46:22 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:24 executing program 1: 09:46:24 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:24 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r3, 0x0, 0x10003, 0x0) 09:46:24 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) getpid() dup2(r0, r1) 09:46:24 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) dup2(r0, r1) 09:46:24 executing program 2: 09:46:24 executing program 2: 09:46:24 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:24 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) dup2(r0, r1) 09:46:24 executing program 1: 09:46:25 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) getpid() 09:46:25 executing program 2: 09:46:25 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:25 executing program 1: 09:46:25 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$MAP_CREATE(0x0, 0x0, 0x0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r3, 0x0, 0x10003, 0x0) 09:46:25 executing program 2: 09:46:25 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:25 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) getpid() 09:46:25 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:25 executing program 1: 09:46:26 executing program 2: 09:46:26 executing program 1: 09:46:26 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:26 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:26 executing program 2: 09:46:26 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x97ba, 0x80000) 09:46:26 executing program 1: 09:46:26 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:26 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:26 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:27 executing program 2: 09:46:27 executing program 1: 09:46:27 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:27 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:27 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:27 executing program 2: 09:46:27 executing program 1: 09:46:28 executing program 2: 09:46:28 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:28 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 09:46:28 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:28 executing program 1: 09:46:28 executing program 2: 09:46:28 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:28 executing program 3: openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:28 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 09:46:28 executing program 1: 09:46:28 executing program 2: 09:46:29 executing program 3: openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:29 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 09:46:29 executing program 1: 09:46:29 executing program 2: 09:46:29 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:29 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:29 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:29 executing program 3: openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:29 executing program 1: 09:46:29 executing program 2: 09:46:29 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:30 executing program 1: 09:46:30 executing program 2: 09:46:30 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:30 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:30 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:30 executing program 1: 09:46:30 executing program 2: 09:46:30 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:30 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:31 executing program 1: 09:46:31 executing program 2: 09:46:31 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:31 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r0) 09:46:31 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:31 executing program 1: 09:46:31 executing program 2: 09:46:32 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:32 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:32 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r0) 09:46:32 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r0) 09:46:32 executing program 1: 09:46:32 executing program 2: 09:46:32 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140), 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:32 executing program 1: 09:46:33 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:33 executing program 2: 09:46:33 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:33 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:33 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:33 executing program 1: 09:46:33 executing program 2: 09:46:33 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:33 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:33 executing program 1: 09:46:33 executing program 2: 09:46:33 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:34 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x0, 0x4000000000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:34 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:34 executing program 1: 09:46:34 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:34 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:34 executing program 2: 09:46:34 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:34 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:34 executing program 1: 09:46:35 executing program 2: 09:46:35 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:35 executing program 1: 09:46:35 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:35 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:35 executing program 1: 09:46:35 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, 0x0) preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 09:46:36 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:36 executing program 2: 09:46:36 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:36 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:36 executing program 1: 09:46:36 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:36 executing program 2: 09:46:36 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:36 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:36 executing program 1: 09:46:36 executing program 2: 09:46:36 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x3da, 0x0) 09:46:37 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:37 executing program 1: 09:46:37 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:37 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:37 executing program 2: 09:46:37 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, 0x0, 0x0, 0x0) 09:46:37 executing program 2: 09:46:37 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:37 executing program 1: 09:46:37 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:37 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, 0x0, 0x0, 0x0) 09:46:38 executing program 2: 09:46:38 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:38 executing program 1: 09:46:38 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:38 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:38 executing program 2: 09:46:38 executing program 3: openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, 0x0, 0x0, 0x0) 09:46:38 executing program 1: 09:46:38 executing program 2: 09:46:38 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:38 executing program 3: 09:46:38 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:39 executing program 1: 09:46:39 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:39 executing program 2: 09:46:39 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:39 executing program 3: 09:46:39 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:39 executing program 1: 09:46:39 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0xf, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x10}]}, 0x1c}}, 0x0) 09:46:39 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f00000000c0)=[{0x28, 0x0, 0x0, 0xffedf034}, {0x80000006}]}, 0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) r4 = socket$inet6(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) socketpair$unix(0x1, 0x40000000000001, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r6 = socket$inet_udplite(0x2, 0x2, 0x88) r7 = fcntl$dupfd(r5, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) splice(r1, 0x0, r3, 0x0, 0x4ffe0, 0x0) 09:46:40 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:40 executing program 1: 09:46:40 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 09:46:40 executing program 1: 09:46:40 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:40 executing program 3: 09:46:40 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:40 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 09:46:40 executing program 1: 09:46:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:41 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:41 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5457, &(0x7f00000001c0)) 09:46:41 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 09:46:41 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:41 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) [ 550.664270][T16299] debugfs: Directory '16299-4' with parent 'kvm' already present! 09:46:42 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:42 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:42 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x541b, &(0x7f00000001c0)) 09:46:42 executing program 1: socketpair$unix(0x1, 0x40000000000001, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000730143000000000095000000000000008c62d410b9395ed98d70702bf54f00000092845ddf013cba"], &(0x7f0000000000)='GPL\x00', 0x5, 0x3e2, &(0x7f00001a7f05)=""/251}, 0x34) 09:46:42 executing program 0: syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:42 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:42 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:42 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x5) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="ae88bff8240200005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000040)="53000000fcffffff77040300000020000000002000000000000040000000000000000000", 0xffffffe5}], 0x2) 09:46:42 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) 09:46:42 executing program 0: syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:42 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) pipe(0x0) read$char_usb(0xffffffffffffffff, 0x0, 0x0) write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) fcntl$setlease(0xffffffffffffffff, 0x804, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:43 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:43 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:43 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) 09:46:43 executing program 0: syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x7ffff000) 09:46:43 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) 09:46:43 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:43 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) 09:46:43 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) 09:46:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) pipe(0x0) read$char_usb(0xffffffffffffffff, 0x0, 0x0) write$FUSE_BMAP(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) fcntl$setlease(0xffffffffffffffff, 0x804, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:44 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:44 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) 09:46:44 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) 09:46:45 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) 09:46:45 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x7ffff000) getpid() dup2(r0, r1) 09:46:45 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:45 executing program 3: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x1e8, 0x0, 0x0, 0x98, 0x0, 0x98, 0x180, 0x178, 0x178, 0x180, 0x178, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x70, 0xa0}, @common=@inet=@SET2={0x30, 'SET\x00'}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248) r2 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x1420000a77, 0x0) sendmsg(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)="550000001800fd29c78d9d00000081930a600000fca84302910000003900090020000c00020000000d0005", 0x2b}], 0x1, 0x0, 0x48}, 0x0) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xfffffd88) 09:46:45 executing program 0: syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = open(&(0x7f0000000200)='./file0\x00', 0x41adc41, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$FITRIM(r1, 0x40047211, &(0x7f0000000080)) socketpair$unix(0x1, 0x40000000000001, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = fcntl$dupfd(r2, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$P9_RREADDIR(r0, &(0x7f0000000400)={0xb}, 0xb) 09:46:45 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) 09:46:45 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) getpid() dup2(r0, r1) [ 554.809649][ T32] audit: type=1804 audit(1595324805.928:39): pid=16424 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir330363292/syzkaller.bvnL1a/222/file1/file0" dev="sda1" ino=16384 res=1 09:46:46 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r4) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:46 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) [ 554.976811][T16427] IPv6: NLM_F_CREATE should be specified when creating new route [ 554.984832][T16427] IPv6: Can't replace route, no match found 09:46:46 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:46 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) 09:46:46 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) 09:46:46 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) getpid() dup2(r0, r1) 09:46:46 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) fcntl$setlease(0xffffffffffffffff, 0x804, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, 0x0, 0x0) 09:46:46 executing program 3: socketpair$unix(0x1, 0x40000000000001, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') open(&(0x7f0000000200)='./file0\x00', 0x41adc41, 0x0) r3 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$FITRIM(r3, 0x40047211, &(0x7f0000000080)={0x1}) 09:46:46 executing program 1: syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) 09:46:46 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x0) getpid() dup2(r0, r1) 09:46:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:47 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:47 executing program 1: syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) 09:46:47 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r0, &(0x7f0000000480), 0x100000000000023a, 0x0) close(r0) [ 556.245207][ T32] audit: type=1804 audit(1595324807.358:40): pid=16466 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir828758212/syzkaller.iDgasT/254/file0" dev="sda1" ino=16368 res=1 09:46:47 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r1) [ 556.404865][ T32] audit: type=1804 audit(1595324807.428:41): pid=16466 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir828758212/syzkaller.iDgasT/254/file0" dev="sda1" ino=16368 res=1 09:46:47 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001240)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10) sendmmsg(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="04005514", 0x4}], 0x1}}], 0x1, 0x0) 09:46:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:47 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040), 0x4) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) r3 = open(0x0, 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000200)) ftruncate(r3, 0x7fff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000fffffffe) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x14081) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, &(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff034}, {0x20}, {0x6}]}, 0x10) sendmmsg(r4, &(0x7f0000001e00), 0x3fffffffffffe36, 0x0) 09:46:47 executing program 1: syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f00000001c0)) 09:46:48 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:48 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, 0x0) 09:46:48 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r1) 09:46:48 executing program 3: r0 = perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r1, &(0x7f0000000480), 0x100000000000023a, 0x0) dup2(r0, r1) 09:46:48 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:48 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:48 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, 0x0) 09:46:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:49 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(0xffffffffffffffff, r1) 09:46:49 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:49 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r1 = fanotify_init(0x0, 0x0) read(r1, 0x0, 0x0) 09:46:49 executing program 1: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, 0x0) 09:46:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:49 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:49 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:50 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) getsockname$packet(r5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000080)={@remote, r6}, 0x14) 09:46:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:50 executing program 2: write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r0 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:50 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10) sendmmsg(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="cca35514", 0x4}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 09:46:50 executing program 2: write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r0 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:50 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000240)='ns\x00') getdents(r2, &(0x7f0000000040)=""/46, 0x2e) getdents(r2, &(0x7f00000000c0)=""/58, 0x3a) 09:46:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:51 executing program 2: write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r0 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:51 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:51 executing program 1: r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x90) fallocate(r0, 0x0, 0x0, 0x1000f4) 09:46:51 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:51 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x0, 0x0) 09:46:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:51 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000240)='ns\x00') getdents(r2, &(0x7f0000000000)=""/61, 0x3d) getdents(r2, &(0x7f00000000c0)=""/58, 0x3a) 09:46:51 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:52 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:52 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x100000400000003a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c) sendmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000040)="0cbd", 0x2}], 0x1}}], 0x1, 0x2406a464) write(r0, &(0x7f0000000180)="d840", 0x2) 09:46:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) getpid() dup2(r0, 0xffffffffffffffff) 09:46:52 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TCGETS(r0, 0x5401, &(0x7f00000001c0)) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 09:46:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:52 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:52 executing program 0: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000000), 0x4) mremap(&(0x7f00002de000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f000043c000/0x3000)=nil) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) madvise(&(0x7f000005b000/0x400000)=nil, 0x400000, 0x10000000000ca) 09:46:52 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:52 executing program 1: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000000), 0x4) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) madvise(&(0x7f000005b000/0x400000)=nil, 0x400000, 0x10000000000ca) 09:46:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:53 executing program 0: r0 = socket$xdp(0x2c, 0x3, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000000)=0x8000, 0x4) mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x100000, 0xa, 0x52, r0, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) 09:46:53 executing program 4: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) 09:46:53 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440)='ethtool\x00') recvmmsg(r2, &(0x7f0000004d80)=[{{0x0, 0x0, 0x0}}], 0x58, 0x1200a, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="03070006000800fdff001900000004000180"], 0x18}}, 0x0) 09:46:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:53 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x50, 0x4, 0x3a0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x2d0, 0x2d0, 0x2d0, 0x2d0, 0x2d0, 0x4, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1d], 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x1f8}}, {{@ipv6={@mcast1, @mcast1, [], [], 'dummy0\x00', 'vcan0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@frag={{0x30, 'frag\x00'}}, @common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30, 'SET\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400) 09:46:53 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x76, 0x4) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) r3 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000200)) ftruncate(r3, 0x7fff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000fffffffe) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x14081) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, 0x0, &(0x7f0000000100)) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, &(0x7f0000000080)) open(0x0, 0x141042, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff034}, {0x20}, {0x6}]}, 0x10) sendmmsg(r4, &(0x7f0000001e00), 0x3fffffffffffe36, 0x0) 09:46:53 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_udp(0x2, 0x2, 0x0) close(r4) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r6, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r5, &(0x7f0000000100)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, r4, 0x0, 0x10003, 0x0) 09:46:53 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:54 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f0000000040)=0x0) clock_gettime(0x0, &(0x7f0000000380)={0x0, 0x0}) io_getevents(r0, 0x2, 0x6, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}], &(0x7f00000003c0)={r1, r2+10000000}) 09:46:54 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10) sendmmsg(r0, &(0x7f0000001e00), 0x3fffffffffffe36, 0x0) 09:46:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:54 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:55 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:55 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(0xffffffffffffffff) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x10003, 0x0) 09:46:55 executing program 0: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='projid_map\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 09:46:55 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:55 executing program 4: fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, 0xffffffffffffffff) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x0, 0xffffffff, 0x1000, 0x0, 0x0, r0, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x40000000, 0xfffffffc}, 0x40) dup(0xffffffffffffffff) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='./file0\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$netlink(0x10, 0x3, 0x4) getsockopt$netlink(r2, 0x10e, 0x5, &(0x7f0000000180)=""/213, &(0x7f0000000040)=0xd5) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000000380)={0x1, 'vlan0\x00'}) 09:46:55 executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x13, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x6e2801ca7d2d2cc}, 0x64) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x5a7}, 0x28) 09:46:55 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:56 executing program 0: r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) r1 = socket$inet6(0xa, 0x80003, 0x6b) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000003c0)=ANY=[], 0x1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @multicast, @val={@void}, {@ipv6={0x86dd, @tcp={0x0, 0x6, "000002", 0x14, 0x21, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 09:46:56 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:56 executing program 1: semget$private(0x0, 0x0, 0x0) semctl$SEM_STAT(0x0, 0x0, 0x12, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @tid=r0}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r2 = fanotify_init(0x0, 0x0) read(r2, 0x0, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_genetlink_get_family_id$ethtool(0x0) dup3(r3, r2, 0x0) [ 565.304267][T16731] dccp_invalid_packet: P.Data Offset(68) too large [ 565.369340][T16734] dccp_invalid_packet: P.Data Offset(68) too large 09:46:56 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:56 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(0xffffffffffffffff) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x10003, 0x0) 09:46:56 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, 0x0, 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:56 executing program 0: r0 = perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp\x00') preadv(r1, &(0x7f0000000480), 0x100000000000023a, 0x0) dup2(r0, r1) 09:46:56 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:46:57 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, 0x0, 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:46:57 executing program 1: timer_create(0x0, &(0x7f0000000300)={0x0, 0x12}, &(0x7f0000000080)) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) r3 = fanotify_init(0x0, 0x0) read(r3, 0x0, 0x0) 09:46:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, 0x0, 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:57 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(0xffffffffffffffff) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x10003, 0x0) 09:46:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:46:58 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:46:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:58 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:46:58 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:59 executing program 1: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(0x0, 0x0) msync(&(0x7f0000013000/0x4000)=nil, 0x4000, 0x0) prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000002000/0x4000)=nil) 09:46:59 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x2, 0x0) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200187ec, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100) write$binfmt_elf64(r0, &(0x7f0000000040)=ANY=[], 0x1000001bd) 09:46:59 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:46:59 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x10003, 0x0) 09:46:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:46:59 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x10003, 0x0) 09:46:59 executing program 1: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000000), 0x4) mremap(&(0x7f00002de000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f000043c000/0x3000)=nil) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) madvise(&(0x7f000005b000/0x400000)=nil, 0x400000, 0x11) 09:47:00 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:00 executing program 0: r0 = socket$can_bcm(0x1d, 0x2, 0x2) io_setup(0x9, &(0x7f0000000240)=0x0) connect$can_bcm(r0, &(0x7f0000000140), 0x10) io_submit(r1, 0x2, &(0x7f0000000080)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f000000000000ffffffff000000", 0x20000238}]) io_submit(r1, 0x283, &(0x7f0000000080)) 09:47:00 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:00 executing program 1: r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8) r1 = socket$nl_route(0x10, 0x3, 0x0) recvmmsg(r1, &(0x7f0000007ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) mkdir(&(0x7f0000000140)='./control\x00', 0x0) close(r0) r2 = inotify_init1(0x0) fcntl$setstatus(r0, 0x4, 0x2c00) r3 = gettid() fcntl$setown(r0, 0x8, r3) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) rt_sigtimedwait(&(0x7f0000000040)={[0xfffffffffffffff8]}, 0x0, 0x0, 0x8) inotify_add_watch(r2, &(0x7f0000000180)='./control\x00', 0xa4000960) rmdir(&(0x7f0000000100)='./control\x00') 09:47:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:00 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:00 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:00 executing program 0: r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x1f) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = open(0x0, 0x141042, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='net/ip6_mr_vif\x00') ftruncate(r2, 0x2007fff) sendfile(r0, r0, &(0x7f0000000380)=0x1, 0x8080fffffffe) r3 = socket(0x2, 0x803, 0xff) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) r4 = dup(r3) r5 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x8000fffffffe) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup3(r0, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:01 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) [ 569.916772][ T32] audit: type=1804 audit(1595324821.028:42): pid=16873 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir330363292/syzkaller.bvnL1a/243/bus" dev="sda1" ino=16380 res=1 09:47:01 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, 0x0) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) [ 570.048148][ T32] audit: type=1804 audit(1595324821.078:43): pid=16874 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir330363292/syzkaller.bvnL1a/243/bus" dev="sda1" ino=16380 res=1 09:47:01 executing program 0: r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1031fe, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x1f) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = open(0x0, 0x141042, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='net/ip6_mr_vif\x00') ftruncate(r2, 0x2007fff) sendfile(r0, r0, &(0x7f0000000380)=0x1, 0x8080fffffffe) r3 = socket(0x2, 0x803, 0xff) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x10) r4 = dup(r3) r5 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x8000fffffffe) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(0xffffffffffffffff, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:01 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) [ 570.585941][ T32] audit: type=1804 audit(1595324821.678:44): pid=16889 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir330363292/syzkaller.bvnL1a/244/bus" dev="sda1" ino=16365 res=1 [ 570.610765][ T32] audit: type=1804 audit(1595324821.698:45): pid=16889 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir330363292/syzkaller.bvnL1a/244/bus" dev="sda1" ino=16365 res=1 09:47:02 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:02 executing program 1: sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000002400ef0e00"/20, @ANYRES32, @ANYBLOB="00000000ffffffff00000000070001006d7100000600050000000000"], 0x34}}, 0x0) 09:47:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f00000000c0)={0x0, 0x0, [0x0, 0x0, 0x0, 0xffffffffffffffe1]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x62160555]}) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x22, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000780)={"54abec7338595f275a2292c45ff078f1cbbf04241d1c3421ec9bf61b2221bc18246e74f0001e36735c2ad340bf94ad2a35cfc5d0953a3b2bfd41050051c6765447395415a9b05dffc9957e300168dc46f8377130fd28e50a805a6005ab6167da65430e3fcc214d7893c6d91026b5f5192f346a367dbc8ae5df0fd099b4e7a6dadd7f555b203f504eda86e0e8d8c5f319604db5a686750d03bf3a67210063e9a17ca0a1ccd80a7d57cb034b828b784b14c9e5dd70ca358c6819c3df7f4443dced6d9a56bb54eac6538cc61c5e9ef3bda9feeb62cbe4f0e1d1c7f6cbbcada85dbb247b0551773f0734e6f4733db49c22e497557c2f74bfa0e4af9b6228643f180d9f9e1e2bcdf0c35a5b8c388e728b574a066e190800db7b42573f534b8f60e8f756dc4d8dec7ad58b0474fc002851b265cc72099d43115828ac723e73009150fcf7196b4133e2988d4b0fc459e57293afef8837fa0d5d24b984a95cb4bdc48fc9c6e73ebee6b1a3239b2c0eef7c751ccb9f2dcdc3c69173db48df6b5d6e59e6465283de675a8d053e7f3abf86f43006a5a0c6225a589c12583e767b9d817f17bf690444a18e6f8a35b2cb4b60c191efbb16393560b568ee6c82bed918aa4a34b575ac9966b395aafa7fc3b7f467b484eb7d2617e0a240e8acbc2a7e02b650f7d1be52f462be20faa32dd88eb041e2c46b24ed7ab79c10f05296f5461f4ebda25dd7b9908da4be62e31c7ba45e5b30b7556a062999f43d2dbb9995d2ffff000000000000ce45caa470933c0906807da75cd38533d8f16d875452c543b259e78215011d2be638eab023513cfe0693d3107e17cfc87e038fc7d1db232d15307fe1d2a818d0a4bde2c53d221111ffa646514dd1fbd3c011b058f79c6fb0a31857ea309018bf72180a434611195c975cf5e285777231b6f158ecaf212183600379fe9762277c13cb6cde9cc0178b883fd1f210180e599f8eb33d33a9ff0f70db1de485b2f2434f2707bf9a54bb6aff687c060000005087f4d53a57adf7c97a06dcc61d7733a83dc505d57d8d5c83bf83e345a979307d708756c3f0f1c53a28883b665fda239019f32fc6f07d700d05023e9ef5b66d4b6be57ffd6fe39703fd4eed61535568f47ee51eff8290618e8387d0ba0d00c5bc4585d2d85688af46bb1da08bf42901634cb10e6b03ee276c16980090b59f3c57b428ae0a7ede758c781e2a5a8585e903adde0a0a281a7779a59067d82985655d9138b75042970e11aee4b95b8bcf232473767cca0139b2c2fb40045c6e031950c314015db2524c3f2fe941f249d158a44aa14774e61b2ee185bdfea8f317e440a39533c6db7ffd3c2b626c1e1eab05cebc59526b016cc6a0e4b766c3f00f619d366e5a4378bc15f805a6fb8c94002000"}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:47:02 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(0xffffffffffffffff, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:02 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:02 executing program 1: syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x10, 0x2b, 0x0, @remote, @local, {[], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0) 09:47:02 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(0xffffffffffffffff, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:02 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(&(0x7f000000a000)={0x3, 0x70, 0xfc, 0x0, 0xff, 0x0, 0x0, 0x3, 0x2026c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x8000000200036150, 0x800007b, 0x2, 0x9, 0x0, 0x10000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 09:47:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(0xffffffffffffffff, r1, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:03 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r1, r0, 0x0) [ 572.149908][T16933] NFS: Device name not specified 09:47:03 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:03 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:03 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'cp1255'}}]}) 09:47:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:03 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r1, r0, 0x0) 09:47:03 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) [ 572.969902][T16953] FAT-fs (loop0): bogus number of reserved sectors [ 572.976692][T16953] FAT-fs (loop0): Can't find a valid FAT filesystem 09:47:04 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r1, r0, 0x0) 09:47:04 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:04 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee00, 0xee00) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x100) fallocate(r1, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:04 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r1, r0, 0x0) 09:47:04 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:04 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee00, 0xee00) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x100) fallocate(r1, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:04 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, 0xffffffffffffffff, 0x80000) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:05 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:05 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) dup(r2) dup3(r1, r0, 0x0) 09:47:05 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee00, 0xee00) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x100) fallocate(r1, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:05 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:05 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket$inet_udplite(0x2, 0x2, 0x88) dup3(r1, r0, 0x0) 09:47:05 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:05 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee00, 0xee00) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x100) fallocate(r1, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:06 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r1, r0, 0x0) 09:47:06 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee00, 0xee00) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r1 = creat(&(0x7f0000000140)='./bus\x00', 0x100) fallocate(r1, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup3(r0, r1, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:47:06 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:06 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(&(0x7f000000a000)={0x3, 0x70, 0xfc, 0x0, 0xff, 0x0, 0x0, 0x3, 0x2026c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x8000000200036150, 0x800007b, 0x2, 0x9, 0x0, 0x10000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 09:47:06 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 09:47:06 executing program 5: dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:06 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)={0x0, 0x0, 0x0, 0x0, 0x0, "00000000000000000000000000000000807e00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x15) dup3(r1, r0, 0x0) dup(0xffffffffffffffff) 09:47:07 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) dup3(0xffffffffffffffff, r0, 0x0) [ 576.031933][T17043] NFS: Device name not specified 09:47:07 executing program 0: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msgsnd(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00m'], 0x1f, 0x0) msgrcv(0x0, &(0x7f0000000100)={0x0, ""/91}, 0x63, 0x0, 0x0) 09:47:07 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:07 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x77, &(0x7f00000002c0)="c4fe91070000000000000022addee07bee6333b5cacd891969b71832cb470c94d61f3514dca771f3321613602c22bee39d365da4a455f4c9fd98ec346760c7bae64d3d00f80a16eba967a568097aa4acd6ecd74d473ff2bdb9693122311ae02ee3d3f8fbe0a10fff4bbaef7cd058ec3a54a90a11c890a7"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:07 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:07 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) dup3(0xffffffffffffffff, r0, 0x0) 09:47:07 executing program 5: dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:07 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(0xffffffffffffffff, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:08 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:08 executing program 0: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) r1 = add_key(&(0x7f00000000c0)='user\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='r', 0x1, r0) keyctl$invalidate(0x15, r1) 09:47:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:10 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x77, &(0x7f00000002c0)="c4fe91070000000000000022addee07bee6333b5cacd891969b71832cb470c94d61f3514dca771f3321613602c22bee39d365da4a455f4c9fd98ec346760c7bae64d3d00f80a16eba967a568097aa4acd6ecd74d473ff2bdb9693122311ae02ee3d3f8fbe0a10fff4bbaef7cd058ec3a54a90a11c890a7"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:10 executing program 0: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) write$sndseq(r2, 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:10 executing program 5: dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:10 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:10 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:11 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r1, r0, 0x0) 09:47:11 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:11 executing program 0: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = inotify_init() poll(&(0x7f0000000080)=[{r0}], 0x1, 0x0) 09:47:11 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:11 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r1, r0, 0x0) 09:47:11 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:14 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0)) lseek(0xffffffffffffffff, 0xf989, 0x0) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xfff}]}, 0x30}, 0x1, 0x0, 0x0, 0x20040000}, 0x4048801) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:14 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0)) lseek(0xffffffffffffffff, 0x0, 0x0) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xfff}]}, 0x30}, 0x1, 0x0, 0x0, 0x20040000}, 0x4048801) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x200) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:14 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r1, r0, 0x0) 09:47:14 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:14 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/55, 0x37}], 0x1) 09:47:14 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) dup3(0xffffffffffffffff, r0, 0x0) 09:47:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, 0x0, 0x0) 09:47:14 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0xf5, &(0x7f00000002c0)="c4fe91070000000000000022addee07bee6333b5cacd891969b71832cb470c94d61f3514dca771f3321613602c22bee39d365da4a455f4c9fd98ec346760c7bae64d3d00f80a16eba967a568097aa4acd6ecd74d473ff2bdb9693122311ae02ee3d3f8fbe0a10fff4bbaef7cd058ec3a54a90a11c890a73cef2d28533220798a410180000000000000c6fa36cea17bd8d700000000000000003f2623193c8ff31a4502a85559ca5fbc21ae2b0927eced002f21edcfdeffaa58466ada5006f7f6dd15d23531189ddfce780a453d7033f38eb1fe49301e13452d9c16e58298751ed9946ee155100e82380fbd5e9a2d53ad556a847ee4"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:14 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:14 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sysvipc/sem\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) 09:47:14 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) dup3(0xffffffffffffffff, r0, 0x0) 09:47:15 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, 0x0, 0x0) 09:47:15 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:15 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) dup3(0xffffffffffffffff, r0, 0x0) 09:47:15 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r1 = dup(r0) accept4$inet6(r1, 0x0, 0x0, 0x0) 09:47:15 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:15 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, 0x0, 0x0) 09:47:15 executing program 1: syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:15 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@uni_xlateno='uni_xlate=0'}]}) 09:47:17 executing program 1: syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:17 executing program 0: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x802, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, 0x1c) getrandom(&(0x7f0000000180)=""/25, 0x19, 0x3) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) ioctl$BLKDISCARD(0xffffffffffffffff, 0x1277, &(0x7f0000000340)) write(0xffffffffffffffff, 0x0, 0x0) io_getevents(0x0, 0x401, 0x3, &(0x7f0000000240)=[{}, {}, {}], &(0x7f00000002c0)={0x0, 0x989680}) sendmmsg(r0, &(0x7f0000005040), 0x15f, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x3}}, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000480)={@private2, 0x63}) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000400)={0x5, &(0x7f0000000200)=[{}, {}, {}, {}, {}]}) 09:47:17 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0), 0x0) 09:47:17 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:17 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r1 = dup(r0) recvfrom$unix(r1, 0x0, 0x0, 0x0, &(0x7f0000000140)=@abs, 0x6e) 09:47:17 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:18 executing program 1: syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r0, 0xffffffffffffffff, 0x0) 09:47:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0), 0x0) 09:47:18 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:18 executing program 0: remap_file_pages(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000002, 0x0, 0x0) 09:47:18 executing program 1: syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd60"], 0x0) 09:47:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0), 0x0) 09:47:18 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:18 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000140)={{0x4000000000000000}, {0x0, 0x989680}}, 0x0) timerfd_gettime(r0, 0x0) 09:47:18 executing program 0: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000180), 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(&(0x7f000000a000)={0x3, 0x70, 0xfc, 0x0, 0xff, 0x0, 0x0, 0x3, 0x2026c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}, 0x8000000200036150, 0x800007b, 0x2, 0x9, 0x0, 0x10000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) fadvise64(0xffffffffffffffff, 0x0, 0x0, 0x3) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 09:47:19 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:19 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x0, 0x0) 09:47:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{0x0}], 0x1) 09:47:19 executing program 0: r0 = socket$inet(0x2, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000001) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1224, 0x2201, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x483, 0x0, @perf_config_ext={0x0, 0x1000}, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0) write$rfkill(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x7, 0xff}, 0x8) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000001c0)) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) getpgid(0x0) r1 = creat(&(0x7f00000002c0)='./file1\x00', 0x8c) ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000100)) write$eventfd(r1, &(0x7f0000000080), 0xfffffe5e) stat(0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r2) setuid(r2) fdatasync(r1) sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0x0) [ 588.262020][T17272] NFS: Device name not specified 09:47:19 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:19 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) getsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000180), 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) pwrite64(r1, &(0x7f00000000c0)="59c63cc320cb44a1cbc95375bcfc326285f63d0b743c8aada3cb4409e2cf8a375fb738779b055da345acdbe8f4bf99b20ea57298bdcb37", 0x37, 0x9) perf_event_open(&(0x7f000001d000)={0x1, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(&(0x7f000000a000)={0x3, 0x70, 0xfc, 0x0, 0xff, 0x0, 0x0, 0x3, 0x2426c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000380)}, 0x8000000200036150, 0x800007b, 0x2, 0x9, 0x0, 0x10000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) fadvise64(0xffffffffffffffff, 0x0, 0x0, 0x3) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 09:47:19 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x86, &(0x7f00000002c0)="c4fe91070000000000000022addee07bee6333b5cacd891969b71832cb470c94d61f3514dca771f3321613602c22bee39d365da4a455f4c9fd98ec346760c7bae64d3d00f80a16eba967a568097aa4acd6ecd74d473ff2bdb9693122311ae02ee3d3f8fbe0a10fff4bbaef7cd058ec3a54a90a11c890a73cef2d28533220798a410180000000"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{0x0}], 0x1) [ 588.819159][T17293] NFS: Device name not specified 09:47:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) 09:47:20 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:20 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x201, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0x2) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2800) ioctl$TCSETS2(r1, 0x402c542b, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, "36eb00000000fc660000001000"}) readv(r1, &(0x7f00000001c0)=[{0x0}], 0x1) 09:47:20 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:20 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) 09:47:20 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:20 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0)) lseek(0xffffffffffffffff, 0xf989, 0x0) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20040000}, 0x4048801) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000480), 0x100000000000022c, 0x6c00000000000000) msgget(0x1, 0x0) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:21 executing program 0: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/seq/clients\x00', 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) write$sndseq(r4, 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:21 executing program 1: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:21 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000000)) 09:47:22 executing program 3: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:22 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:22 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f0000000180)='\xad\xbb\xf5\xd1\xacy\xa9{G\x1b+\xf4\xf7\xea0\xefdu\xa6%\\\xce\xc0\xde;\xfeB\x85R\xe3d\xa9\xd0\x99\x81\xeb\x98\x8ee\xf8<5g\xc8%`\xf7\x86n\xdf=\xc1\x1d\x9e1C\x8b/\x0eB\xfc\x1a\xae\x8f1\xc1\x12/}\x9e\x90\x04!<5\xd9 \x83\xd0\x92\xa5H\x05\x84\xc7i\x14?\xdc9\xac\xf6dW{\x90\x91A\xc2\x8ct4') r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='smaps\x00') lseek(r4, 0xf989, 0x0) ioctl$PPPIOCGDEBUG(r4, 0x80047441, &(0x7f00000000c0)) 09:47:22 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:22 executing program 0: perf_event_open(&(0x7f0000000300)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r1 = dup(r0) getsockopt$bt_BT_POWER(r1, 0x112, 0x9, 0x0, &(0x7f0000000040)) 09:47:22 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) lseek(0xffffffffffffffff, 0x800002, 0x0) ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0)) write$UHID_DESTROY(0xffffffffffffffff, &(0x7f00000004c0), 0x4) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xc) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xffffffffffff5930}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) recvmmsg(0xffffffffffffffff, &(0x7f0000000c40), 0x0, 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) msgget(0x0, 0x200) r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x84003ff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x8, 0x4) creat(&(0x7f0000000100)='./bus\x00', 0x0) 09:47:23 executing program 4: r0 = socket(0x11, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(0xffffffffffffffff, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:23 executing program 0: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r1 = dup(r0) recvfrom$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 09:47:23 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x4080, 0x0) 09:47:23 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x105, &(0x7f00000002c0)="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"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 592.454376][T17368] nfs: Unknown parameter '­»õѬy©{G+ô÷ê0ïdu¦%\ÎÀÞ;þB…Rãd©Ð™ë˜Žeø<5gÈ%`÷†nß' 09:47:23 executing program 4: socket(0x11, 0x800000003, 0x8) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:23 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r4 = dup3(r3, r2, 0x0) write$uinput_user_dev(r4, &(0x7f0000000240)={'syz1\x00'}, 0x45c) 09:47:23 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) [ 592.932467][T17368] nfs: Unknown parameter '­»õѬy©{G+ô÷ê0ïdu¦%\ÎÀÞ;þB…Rãd©Ð™ë˜Žeø<5gÈ%`÷†nß' 09:47:24 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f0000000180)='\xad\xbb\xf5\xd1\xacy\xa9{G\x1b+\xf4\xf7\xea0\xefdu\xa6%\\\xce\xc0\xde;\xfeB\x85R\xe3d\xa9\xd0\x99\x81\xeb\x98\x8ee\xf8<5g\xc8%`\xf7\x86n\xdf=\xc1\x1d\x9e1C\x8b/\x0eB\xfc\x1a\xae\x8f1\xc1\x12/}\x9e\x90\x04!<5\xd9 \x83\xd0\x92\xa5H\x05\x84\xc7i\x14?\xdc9\xac\xf6dW{\x90\x91A\xc2\x8ct4') r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='smaps\x00') lseek(r4, 0xf989, 0x0) ioctl$PPPIOCGDEBUG(r4, 0x80047441, &(0x7f00000000c0)) 09:47:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) 09:47:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) [ 593.837546][T17414] nfs: Unknown parameter '­»õѬy©{G+ô÷ê0ïdu¦%\ÎÀÞ;þB…Rãd©Ð™ë˜Žeø<5gÈ%`÷†nß' 09:47:25 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='personality\x00') r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f0000000000)=0x100000001, 0x4) connect$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r1, r0, 0x0, 0xedc0) 09:47:25 executing program 4: socket(0x11, 0x800000003, 0x8) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:25 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) 09:47:25 executing program 0: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/shm\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@shortname_mixed='shortname=mixed'}], [{@permit_directio='permit_directio'}]}) 09:47:26 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) dup(0xffffffffffffffff) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r4, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r3, &(0x7f0000000100)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 09:47:26 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x53, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000001300)='/dev/rtc0\x00', 0x4000, 0x0) 09:47:26 executing program 0: add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) request_key(0x0, 0x0, 0x0, 0x0) add_key$user(&(0x7f0000000000)='user\x00', 0x0, &(0x7f0000000240), 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x4000000000010048) 09:47:26 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x74, &(0x7f00000002c0)="c4fe91070000000000000022addee07bee6333b5cacd891969b71832cb470c94d61f3514dca771f3321613602c22bee39d365da4a455f4c9fd98ec346760c7bae64d3d00f80a16eba967a568097aa4acd6ecd74d473ff2bdb9693122311ae02ee3d3f8fbe0a10fff4bbaef7cd058ec3a54a90a11"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:26 executing program 4: socket(0x11, 0x800000003, 0x8) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) [ 595.892300][T17453] FAT-fs (loop2): Unrecognized mount option "permit_directio" or missing value 09:47:27 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000002c0)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x4c, &(0x7f0000000300)="f7f249b9740c9e57f4f22a160500000032a5b60a00008024c30e478947d190ac00000000000000000000000000000000663697ba4ecb40a2f32e32a3b88aaf3c06f4970e85a63c9a4b0d8b9a"}}], 0x1c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:47:27 executing program 1: pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x37cb1133) socket$inet(0x2, 0x3, 0x33) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10) connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x19404, 0x0) 09:47:27 executing program 2: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) msgsnd(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00m'], 0x1f, 0x0) msgrcv(0x0, &(0x7f0000000100)=ANY=[], 0x63, 0x0, 0x2000) 09:47:27 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r1) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r2, &(0x7f0000000100)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10003, 0x0) 09:47:28 executing program 4: bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:28 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r1) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r2, &(0x7f0000000100)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10003, 0x0) 09:47:28 executing program 1: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendfile(r0, r1, 0x0, 0x4000000000010048) 09:47:30 executing program 3: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)='sysfs\x00', 0x0, 0x0) clone(0x0, 0x0, 0x0, 0x0, 0x0) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/\x00'], 0x2) mount$fuse(0x20000000, &(0x7f0000000580)='./file0\x00', 0x0, 0x7a04, 0x0) 09:47:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@shortname_win95='shortname=win95'}]}) 09:47:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004, 0x1d}) close(r1) r2 = socket$packet(0x11, 0x3, 0x300) r3 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r2, &(0x7f0000000100)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x10003, 0x0) 09:47:30 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)=ANY=[@ANYBLOB="00040120", @ANYRES16=0x0, @ANYBLOB="000000000b00000000000300000014000700ff02"], 0x28}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="68020000100013070000000000000000fe880000000000002600000000000001ac1e00010000000800"/64, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="f0000000000000010000ffffffffffff0000000032000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300200000000000000003000000000000000000000000000000000002000000960000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c0017000000000000000000000000000000000000000000000000001301140073686131"], 0x268}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0xf1, 0x0) 09:47:30 executing program 4: bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) [ 599.178405][T17516] FAT-fs (loop2): bogus number of reserved sectors [ 599.185228][T17516] FAT-fs (loop2): Can't find a valid FAT filesystem 09:47:30 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0xa) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000240)={@empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, [0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x10], 0x0, 0x0}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x1e34a95995e) 09:47:30 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = socket$nl_route(0x10, 0x3, 0x0) dup2(r1, r0) 09:47:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:30 executing program 2: msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) msgsnd(0x0, &(0x7f0000000000)={0x3}, 0x8, 0x0) [ 599.782311][T17530] input: syz1 as /devices/virtual/input/input5 09:47:31 executing program 4: bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:31 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = socket$nl_route(0x10, 0x3, 0x0) dup2(r1, r0) 09:47:31 executing program 2: msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) msgsnd(0x0, &(0x7f0000000000)={0x3}, 0x8, 0x0) 09:47:31 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = socket$nl_route(0x10, 0x3, 0x0) dup2(r1, r0) 09:47:31 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0x4, r4}, @IFLA_IFNAME={0x14, 0x3, 'veth1_vlan\x00'}]}, 0x3c}}, 0x0) 09:47:31 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = socket$nl_route(0x10, 0x3, 0x0) dup2(r1, r0) 09:47:32 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000000706f1640300000000000000da5da2a60c00010006"], 0x1}}, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = socket$inet6(0xa, 0x800000000000002, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) splice(r0, 0x0, r2, 0x0, 0x207fff, 0x0) 09:47:32 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0x4, r4}, @IFLA_IFNAME={0x14, 0x3, 'veth1_vlan\x00'}]}, 0x3c}}, 0x0) 09:47:32 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:32 executing program 3: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000000)={0x2a, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e20, 0x2, 'dh\x00'}, 0x2c) memfd_create(0x0, 0x0) r1 = memfd_create(&(0x7f00000000c0)='queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2\x1e\x00', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) 09:47:32 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00', {}, 0x0, [], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800]}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = socket$nl_route(0x10, 0x3, 0x0) dup2(r1, r0) [ 601.377463][T17570] netlink: 'syz-executor.2': attribute type 1 has an invalid length. [ 601.385885][T17570] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 601.395493][T17570] netlink: 'syz-executor.2': attribute type 1 has an invalid length. 09:47:32 executing program 4: r0 = socket(0x0, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:32 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1) r1 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00') sendfile(r1, r2, 0x0, 0xa808) 09:47:32 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp\x00') sendfile(r0, r0, 0x0, 0x80000000) 09:47:33 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000200)="3100000012000900690006342fc56aef40c74408100000e446005c79cbb900540d03c000ec192dced88d5d5ae1673653b6", 0x31}], 0x1) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@flushpolicy={0x10, 0x12, 0x4e326d0846e0c13d}, 0x10}, 0x8}, 0x0) dup(0xffffffffffffffff) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 09:47:33 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0x0) 09:47:33 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$nl_route(0x10, 0x3, 0x0) splice(r0, 0x0, r4, 0x0, 0x1420000a74, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="fc0000001c000704ab095806090007000aab08000600000002ffff93210001", 0x1a) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xff87) 09:47:33 executing program 1: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0xfe40, 0x0) chdir(&(0x7f0000000440)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.memory_pressure\x00', 0x275a, 0x0) r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) write$P9_ROPEN(r1, &(0x7f0000000200)={0x18}, 0x18) write$FUSE_STATFS(r0, &(0x7f0000000040)={0x60}, 0x60) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000140)={0x0, r1}) 09:47:33 executing program 3: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000880)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000180)='\x01H\x12\x1b\xe2+\x95\x1d\x14\xae\xfb\xd2a\v\xca\xf9\xcf\x1cx\xd4+i<\xeb\xa8N\xfa\xe2\x9e\xfdHp\xd9\xdb\x94E\x1d\x9a\xd9k\xeeH\xb7\'H\xdd\x12\xb93\xa6-R9\xa4\xe1\f\x87\x01\x13\x9a\xad^\x82?\r~\x96\xc3\x86\x91~6%x>\xb1\xd2\xc2Ki\xe2Z\xe33\xa9z3\xe7\x9d57\xb9\xdaBhf\x1e\x03_\x91\x04\xcd\x00\a1\x17\xa1%\xd5\x14w7t\xfe\xb3ST}\xf60\x05\xd5\n\xa1\xb4\x9c-\xf2\xac@\x17\xb0\xa1S\xbd\xd3R\xc0P\x19tR\x0f\xbbB\'\xcb2\xf9\xba\xce\xac\xff\x1cM\xfe\xeb\x94\xb7\xc9\xf8\xff\x0fA\xb4\xf8\xd6\xadwD\xd9\x10SX2\xf8\xcb\xdb\xbd~\x18z\x85\xce\x9f-\x9f\x89\xc3\x16\xdd\xcfH\xa0\x83\xe4:x\x16\x05\xdb\xfa\x9eM\xc7\xac4-W\xa5:=N', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff) 09:47:33 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:33 executing program 4: r0 = socket(0x0, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) [ 602.643809][T17598] netlink: 180 bytes leftover after parsing attributes in process `syz-executor.2'. 09:47:34 executing program 2: prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='//selinux\x00\x00\x01\x10') openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000240)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x145042, 0x0) pwritev(r3, &(0x7f0000000080), 0xc3, 0x0) 09:47:34 executing program 3: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/ip_mr_cache\x00') preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/99, 0x63}], 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 09:47:34 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0) 09:47:34 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0xa, 0x802, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r2, 0x0, 0x482, &(0x7f0000000000)=""/8, &(0x7f0000000040)=0x8) 09:47:34 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000780)={@in={{0x2, 0x0, @local}}, 0x0, 0x9, 0x6}, 0xd8) bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200187ec, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYRESHEX=r0, @ANYRES16=r0, @ANYRESOCT], 0x1000001bd) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x169, 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000780)={@in={{0x2, 0x0, @local}}, 0x0, 0x9, 0x6}, 0xd8) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200187ec, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r1, &(0x7f0000000240)={0x0, 0xfffffffffffffd83, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0x5801}], 0x1, 0x0, 0xf080}, 0x100) write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYRESOCT, @ANYBLOB, @ANYBLOB="103fe8e166099685633d0c744bfa86b974ad74f63374875875ee260acc9d92ddd07395feca20bea2", @ANYRESHEX, @ANYRES64, @ANYRESHEX, @ANYRESOCT], 0x1000001bd) 09:47:35 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x0, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:35 executing program 4: r0 = socket(0x0, 0x800000003, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:35 executing program 2: r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet(0x2, 0x3, 0x6) setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB=')'], 0x1) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000140)={0x0, @local, @local}, &(0x7f0000000000)=0xc) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f00000002c0)=@newqdisc={0x3c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8, 0x8, 'tbf\x00'}, {0x10, 0x2, [@TCA_TBF_PRATE64={0x7}]}}]}, 0x3c}}, 0x0) 09:47:35 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0xfffffffc}]}) rt_sigpending(0x0, 0x0) 09:47:35 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) syz_emit_ethernet(0x66, &(0x7f00000000c0)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "42bf00", 0x30, 0x3a, 0x0, @local={0xfe, 0x80, [0x3, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "7f112d", 0x0, 0x0, 0x0, @mcast1, @remote}}}}}}}, 0x0) 09:47:35 executing program 3: [ 604.209984][ T32] audit: type=1326 audit(1595324855.328:46): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=17632 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=40000003 syscall=265 compat=1 ip=0xf7f55549 code=0xffff0000 09:47:35 executing program 2: 09:47:35 executing program 0: 09:47:35 executing program 3: 09:47:35 executing program 2: 09:47:35 executing program 3: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) unlink(&(0x7f0000000080)='./file0\x00') clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(0x0, 0x0) 09:47:35 executing program 0: [ 604.884771][ T32] audit: type=1326 audit(1595324855.998:47): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=17632 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=40000003 syscall=265 compat=1 ip=0xf7f55549 code=0xffff0000 09:47:36 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x0, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:36 executing program 4: r0 = socket(0x11, 0x0, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:36 executing program 2: 09:47:36 executing program 1: 09:47:36 executing program 0: 09:47:36 executing program 2: 09:47:36 executing program 1: 09:47:36 executing program 0: 09:47:36 executing program 2: 09:47:37 executing program 1: 09:47:37 executing program 2: 09:47:37 executing program 0: 09:47:37 executing program 3: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) unlink(&(0x7f0000000080)='./file0\x00') clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(0x0, 0x0) 09:47:37 executing program 1: 09:47:37 executing program 4: r0 = socket(0x11, 0x0, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:37 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x0, 0x10004, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:37 executing program 2: 09:47:37 executing program 0: 09:47:37 executing program 1: 09:47:38 executing program 0: 09:47:38 executing program 2: 09:47:38 executing program 1: 09:47:38 executing program 0: 09:47:38 executing program 2: 09:47:38 executing program 3: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) unlink(&(0x7f0000000080)='./file0\x00') clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(0x0, 0x0) 09:47:38 executing program 1: 09:47:38 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x0, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:38 executing program 4: r0 = socket(0x11, 0x0, 0x8) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:38 executing program 0: 09:47:38 executing program 2: 09:47:38 executing program 1: 09:47:39 executing program 2: 09:47:39 executing program 0: 09:47:39 executing program 1: 09:47:39 executing program 3: 09:47:39 executing program 2: 09:47:39 executing program 0: 09:47:39 executing program 1: 09:47:39 executing program 1: 09:47:39 executing program 3: 09:47:39 executing program 2: 09:47:39 executing program 4: r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:39 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x0, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:39 executing program 0: 09:47:40 executing program 3: 09:47:40 executing program 2: 09:47:40 executing program 0: 09:47:40 executing program 1: 09:47:40 executing program 1: 09:47:40 executing program 3: 09:47:40 executing program 2: 09:47:40 executing program 0: 09:47:41 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x0, 0x1d}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:41 executing program 1: 09:47:41 executing program 2: 09:47:41 executing program 3: 09:47:41 executing program 0: 09:47:41 executing program 4: r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:41 executing program 2: 09:47:41 executing program 0: 09:47:41 executing program 3: 09:47:41 executing program 1: 09:47:41 executing program 0: 09:47:41 executing program 2: 09:47:42 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:42 executing program 1: 09:47:42 executing program 3: 09:47:42 executing program 2: 09:47:42 executing program 0: 09:47:42 executing program 4: r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r1, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:42 executing program 2: 09:47:42 executing program 1: 09:47:42 executing program 3: 09:47:42 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) 09:47:42 executing program 1: 09:47:42 executing program 2: 09:47:43 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:43 executing program 3: 09:47:43 executing program 0: 09:47:43 executing program 2: 09:47:43 executing program 1: 09:47:43 executing program 4: socket(0x11, 0x800000003, 0x8) bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:43 executing program 3: 09:47:43 executing program 2: 09:47:43 executing program 1: 09:47:43 executing program 0: 09:47:43 executing program 3: 09:47:43 executing program 0: 09:47:44 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x4a5, 0x10004}) close(r3) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet(0x2, 0x3, 0x14) setsockopt$inet_msfilter(r5, 0x0, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB='S'], 0x1) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @local}, &(0x7f0000000080)=0xc) bind$packet(r4, &(0x7f0000000100)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f00000000c0)=0x7, 0x4) splice(r1, 0x0, r3, 0x0, 0x10003, 0x0) 09:47:44 executing program 2: 09:47:44 executing program 1: 09:47:44 executing program 0: 09:47:44 executing program 3: 09:47:44 executing program 4: socket(0x11, 0x800000003, 0x8) bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044941a4976e252922cb1996e2e34ba800000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3fedb1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x6d, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='illinois\x00', 0x9) sendto$inet(r0, &(0x7f00000012c0)="0b2603927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f10fb02bd67aa030596decc7a95425a3a07e758044ab4ea6f7aebcd88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27) 09:47:44 executing program 0: 09:47:44 executing program 2: 09:47:44 executing program 3: 09:47:44 executing program 1: 09:47:44 executing program 0: 09:47:44 executing program 1: [ 613.802192][ C0] ===================================================== [ 613.809185][ C0] BUG: KMSAN: uninit-value in update_stack_state+0x974/0xb40 [ 613.816563][ C0] CPU: 0 PID: 17800 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 613.825229][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.835310][ C0] Call Trace: [ 613.838595][ C0] [ 613.841454][ C0] dump_stack+0x1df/0x240 [ 613.845803][ C0] kmsan_report+0xf7/0x1e0 [ 613.850236][ C0] __msan_warning+0x58/0xa0 [ 613.854751][ C0] update_stack_state+0x974/0xb40 [ 613.859857][ C0] unwind_next_frame+0x8c6/0xed0 [ 613.864803][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 613.870641][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 613.876811][ C0] arch_stack_walk+0x33e/0x3e0 [ 613.881587][ C0] ? stack_trace_save+0x1a0/0x1a0 [ 613.886662][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 613.892836][ C0] stack_trace_save+0x117/0x1a0 [ 613.897715][ C0] kmsan_internal_chain_origin+0xad/0x130 [ 613.903535][ C0] ? __msan_poison_alloca+0xe3/0x120 [ 613.908829][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 613.914120][ C0] ? local_bh_enable+0x36/0x40 [ 613.918912][ C0] ? kmsan_internal_chain_origin+0xad/0x130 [ 613.924835][ C0] ? kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 613.931011][ C0] ? kmsan_memcpy_metadata+0xb/0x10 [ 613.936213][ C0] ? __msan_memcpy+0x43/0x50 [ 613.940808][ C0] ? pskb_expand_head+0x38b/0x1b00 [ 613.945922][ C0] ? ___pskb_trim+0x276/0x1730 [ 613.950691][ C0] ? sk_filter_trim_cap+0x5d0/0xcc0 [ 613.955893][ C0] ? tcp_v4_rcv+0x4098/0x5040 [ 613.960575][ C0] ? ip_protocol_deliver_rcu+0x4b7/0xbc0 [ 613.966212][ C0] ? ip_local_deliver+0x62a/0x7c0 [ 613.971236][ C0] ? ip_rcv+0x6cf/0x750 [ 613.975393][ C0] ? process_backlog+0xfb5/0x14e0 [ 613.980417][ C0] ? net_rx_action+0x746/0x1aa0 [ 613.985268][ C0] ? __do_softirq+0x311/0x83d [ 613.989953][ C0] ? asm_call_on_stack+0x12/0x20 [ 613.994893][ C0] ? do_softirq_own_stack+0x7c/0xa0 [ 614.000179][ C0] ? __irq_exit_rcu+0x226/0x270 [ 614.005031][ C0] ? irq_exit_rcu+0xe/0x10 [ 614.009449][ C0] ? sysvec_call_function_single+0x107/0x130 [ 614.015433][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 614.021590][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.027660][ C0] ? should_fail+0x72/0x9e0 [ 614.032170][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.038240][ C0] ? __module_address+0x68/0x600 [ 614.043179][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.048391][ C0] ? __should_failslab+0x1f6/0x290 [ 614.053507][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.058714][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.064526][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.070593][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.075804][ C0] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 614.081803][ C0] kmsan_memcpy_metadata+0xb/0x10 [ 614.086858][ C0] __msan_memcpy+0x43/0x50 [ 614.091304][ C0] pskb_expand_head+0x38b/0x1b00 [ 614.096283][ C0] ___pskb_trim+0x276/0x1730 [ 614.100904][ C0] sk_filter_trim_cap+0x5d0/0xcc0 [ 614.105964][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.111168][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.116987][ C0] tcp_v4_rcv+0x4098/0x5040 [ 614.121501][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.127628][ C0] ? tcp_v4_rcv+0x1531/0x5040 [ 614.132327][ C0] ? tcp_filter+0xf0/0xf0 [ 614.136663][ C0] ip_protocol_deliver_rcu+0x4b7/0xbc0 [ 614.142329][ C0] ip_local_deliver+0x62a/0x7c0 [ 614.147203][ C0] ? ip_local_deliver+0x7c0/0x7c0 [ 614.152229][ C0] ? ip_protocol_deliver_rcu+0xbc0/0xbc0 [ 614.157865][ C0] ip_rcv+0x6cf/0x750 [ 614.161865][ C0] ? ip_rcv_core+0x12c0/0x12c0 [ 614.166654][ C0] ? ip_local_deliver_finish+0x350/0x350 [ 614.172311][ C0] process_backlog+0xfb5/0x14e0 [ 614.177213][ C0] ? rps_trigger_softirq+0x2e0/0x2e0 [ 614.182512][ C0] net_rx_action+0x746/0x1aa0 [ 614.187226][ C0] ? net_tx_action+0xc40/0xc40 [ 614.192005][ C0] __do_softirq+0x311/0x83d [ 614.196536][ C0] asm_call_on_stack+0x12/0x20 [ 614.201383][ C0] [ 614.204334][ C0] do_softirq_own_stack+0x7c/0xa0 [ 614.209368][ C0] __irq_exit_rcu+0x226/0x270 [ 614.214055][ C0] irq_exit_rcu+0xe/0x10 [ 614.218302][ C0] sysvec_call_function_single+0x107/0x130 [ 614.224120][ C0] asm_sysvec_call_function_single+0x12/0x20 [ 614.230104][ C0] RIP: 0010:__msan_poison_alloca+0xe3/0x120 [ 614.236002][ C0] Code: 00 e8 11 c8 d0 02 65 44 0f c1 3d 48 e2 31 56 41 ff cf 75 34 89 c3 e8 bc 6d 2e ff 48 8b 44 24 08 48 89 44 24 10 ff 74 24 10 9d <4c> 89 e7 44 89 f6 89 da e8 10 f5 ff ff 48 8d 65 d8 5b 41 5c 41 5d [ 614.255618][ C0] RSP: 0018:ffff9bfe01106dc0 EFLAGS: 00000246 [ 614.261711][ C0] RAX: 0000000000000246 RBX: 0000000006df0008 RCX: ffffffffa91863fa [ 614.269682][ C0] RDX: 0000000000000a20 RSI: 00000000000c199b RDI: 00000000256c9741 [ 614.277660][ C0] RBP: ffff9bfe01106e38 R08: 0000000000000002 R09: ffff9bfe01106df8 [ 614.285657][ C0] R10: 0000000000000004 R11: 0000000000000000 R12: ffff9bfe01106e58 [ 614.293627][ C0] R13: 0000000000000001 R14: 0000000000000008 R15: 0000000000000000 [ 614.301648][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 614.306952][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 614.312238][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 614.317533][ C0] __local_bh_enable_ip+0xea/0x1d0 [ 614.322664][ C0] local_bh_enable+0x36/0x40 [ 614.327262][ C0] ip_finish_output2+0x1fee/0x24a0 [ 614.332380][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.337608][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.343449][ C0] __ip_finish_output+0x7fe/0xd80 [ 614.348505][ C0] ip_finish_output+0x166/0x410 [ 614.353371][ C0] ip_output+0x593/0x680 [ 614.357671][ C0] ? ip_mc_finish_output+0x6c0/0x6c0 [ 614.362959][ C0] ? ip_finish_output+0x410/0x410 [ 614.367988][ C0] __ip_queue_xmit+0x1b5c/0x21a0 [ 614.373018][ C0] ? kmsan_set_origin_checked+0x95/0xf0 [ 614.378572][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.383792][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.389018][ C0] ip_queue_xmit+0xcc/0xf0 [ 614.393459][ C0] ? tcp_v4_fill_cb+0x580/0x580 [ 614.398326][ C0] __tcp_transmit_skb+0x440e/0x6090 [ 614.403580][ C0] tcp_write_xmit+0x30b1/0xb430 [ 614.408535][ C0] tcp_push_one+0x187/0x210 [ 614.413073][ C0] tcp_sendmsg_locked+0x47f4/0x6d00 [ 614.418362][ C0] tcp_sendmsg+0xb2/0x100 [ 614.422701][ C0] ? tcp_sendmsg_locked+0x6d00/0x6d00 [ 614.428075][ C0] ? tcp_sendmsg_locked+0x6d00/0x6d00 [ 614.433457][ C0] inet_sendmsg+0x178/0x2e0 [ 614.437976][ C0] ? inet_send_prepare+0x600/0x600 [ 614.443097][ C0] __sys_sendto+0xade/0xc90 [ 614.447636][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.452840][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.458652][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 614.464810][ C0] ? kmsan_get_metadata+0x4f/0x180 [ 614.469948][ C0] __se_sys_sendto+0x107/0x130 [ 614.474730][ C0] ? __se_sys_sendto+0x130/0x130 [ 614.479673][ C0] __ia32_sys_sendto+0x6e/0x90 [ 614.484466][ C0] __do_fast_syscall_32+0x2aa/0x400 [ 614.489687][ C0] do_fast_syscall_32+0x6b/0xd0 [ 614.494544][ C0] do_SYSENTER_32+0x73/0x90 [ 614.499053][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.505397][ C0] RIP: 0023:0xf7f40549 [ 614.509458][ C0] Code: Bad RIP value. [ 614.513519][ C0] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 614.521957][ C0] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200012c0 [ 614.529928][ C0] RDX: 000000000000fe6a RSI: 000000000020c49a RDI: 0000000000000000 [ 614.537898][ C0] RBP: 0000000000000027 R08: 0000000000000000 R09: 0000000000000000 [ 614.545867][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 614.553857][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.561843][ C0] [ 614.564164][ C0] Local variable ----_addrs@nf_ct_get_tuple created at: [ 614.571117][ C0] nf_ct_get_tuple+0xe1/0x1530 [ 614.575899][ C0] nf_ct_get_tuple+0xe1/0x1530 [ 614.580652][ C0] ===================================================== [ 614.587591][ C0] Disabling lock debugging due to kernel taint [ 614.593739][ C0] Kernel panic - not syncing: panic_on_warn set ... [ 614.600330][ C0] CPU: 0 PID: 17800 Comm: syz-executor.4 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 614.610434][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.620495][ C0] Call Trace: [ 614.623783][ C0] [ 614.626649][ C0] dump_stack+0x1df/0x240 [ 614.630994][ C0] panic+0x3d5/0xc3e [ 614.634933][ C0] kmsan_report+0x1df/0x1e0 [ 614.639450][ C0] __msan_warning+0x58/0xa0 [ 614.643963][ C0] update_stack_state+0x974/0xb40 [ 614.649024][ C0] unwind_next_frame+0x8c6/0xed0 [ 614.653964][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.659800][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 614.665957][ C0] arch_stack_walk+0x33e/0x3e0 [ 614.670727][ C0] ? stack_trace_save+0x1a0/0x1a0 [ 614.675769][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 614.681936][ C0] stack_trace_save+0x117/0x1a0 [ 614.686811][ C0] kmsan_internal_chain_origin+0xad/0x130 [ 614.692541][ C0] ? __msan_poison_alloca+0xe3/0x120 [ 614.697834][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 614.703123][ C0] ? local_bh_enable+0x36/0x40 [ 614.707893][ C0] ? kmsan_internal_chain_origin+0xad/0x130 [ 614.713789][ C0] ? kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 614.719962][ C0] ? kmsan_memcpy_metadata+0xb/0x10 [ 614.725178][ C0] ? __msan_memcpy+0x43/0x50 [ 614.729776][ C0] ? pskb_expand_head+0x38b/0x1b00 [ 614.734902][ C0] ? ___pskb_trim+0x276/0x1730 [ 614.739695][ C0] ? sk_filter_trim_cap+0x5d0/0xcc0 [ 614.744913][ C0] ? tcp_v4_rcv+0x4098/0x5040 [ 614.749655][ C0] ? ip_protocol_deliver_rcu+0x4b7/0xbc0 [ 614.755303][ C0] ? ip_local_deliver+0x62a/0x7c0 [ 614.760335][ C0] ? ip_rcv+0x6cf/0x750 [ 614.764506][ C0] ? process_backlog+0xfb5/0x14e0 [ 614.769549][ C0] ? net_rx_action+0x746/0x1aa0 [ 614.774416][ C0] ? __do_softirq+0x311/0x83d [ 614.779334][ C0] ? asm_call_on_stack+0x12/0x20 [ 614.784300][ C0] ? do_softirq_own_stack+0x7c/0xa0 [ 614.789653][ C0] ? __irq_exit_rcu+0x226/0x270 [ 614.794525][ C0] ? irq_exit_rcu+0xe/0x10 [ 614.798953][ C0] ? sysvec_call_function_single+0x107/0x130 [ 614.804987][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 614.811167][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.817261][ C0] ? should_fail+0x72/0x9e0 [ 614.821779][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.827881][ C0] ? __module_address+0x68/0x600 [ 614.832827][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.838049][ C0] ? __should_failslab+0x1f6/0x290 [ 614.843177][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.848386][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.854200][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.860276][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.865498][ C0] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 614.871513][ C0] kmsan_memcpy_metadata+0xb/0x10 [ 614.876553][ C0] __msan_memcpy+0x43/0x50 [ 614.880983][ C0] pskb_expand_head+0x38b/0x1b00 [ 614.885966][ C0] ___pskb_trim+0x276/0x1730 [ 614.890614][ C0] sk_filter_trim_cap+0x5d0/0xcc0 [ 614.895669][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 614.900887][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.906728][ C0] tcp_v4_rcv+0x4098/0x5040 [ 614.911262][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.917369][ C0] ? tcp_v4_rcv+0x1531/0x5040 [ 614.922067][ C0] ? tcp_filter+0xf0/0xf0 [ 614.926400][ C0] ip_protocol_deliver_rcu+0x4b7/0xbc0 [ 614.931875][ C0] ip_local_deliver+0x62a/0x7c0 [ 614.936748][ C0] ? ip_local_deliver+0x7c0/0x7c0 [ 614.941776][ C0] ? ip_protocol_deliver_rcu+0xbc0/0xbc0 [ 614.947431][ C0] ip_rcv+0x6cf/0x750 [ 614.951437][ C0] ? ip_rcv_core+0x12c0/0x12c0 [ 614.956211][ C0] ? ip_local_deliver_finish+0x350/0x350 [ 614.961850][ C0] process_backlog+0xfb5/0x14e0 [ 614.966742][ C0] ? rps_trigger_softirq+0x2e0/0x2e0 [ 614.972036][ C0] net_rx_action+0x746/0x1aa0 [ 614.976741][ C0] ? net_tx_action+0xc40/0xc40 [ 614.981558][ C0] __do_softirq+0x311/0x83d [ 614.986093][ C0] asm_call_on_stack+0x12/0x20 [ 614.990855][ C0] [ 614.993807][ C0] do_softirq_own_stack+0x7c/0xa0 [ 614.998840][ C0] __irq_exit_rcu+0x226/0x270 [ 615.003530][ C0] irq_exit_rcu+0xe/0x10 [ 615.007787][ C0] sysvec_call_function_single+0x107/0x130 [ 615.013608][ C0] asm_sysvec_call_function_single+0x12/0x20 [ 615.019597][ C0] RIP: 0010:__msan_poison_alloca+0xe3/0x120 [ 615.025508][ C0] Code: 00 e8 11 c8 d0 02 65 44 0f c1 3d 48 e2 31 56 41 ff cf 75 34 89 c3 e8 bc 6d 2e ff 48 8b 44 24 08 48 89 44 24 10 ff 74 24 10 9d <4c> 89 e7 44 89 f6 89 da e8 10 f5 ff ff 48 8d 65 d8 5b 41 5c 41 5d [ 615.045136][ C0] RSP: 0018:ffff9bfe01106dc0 EFLAGS: 00000246 [ 615.051214][ C0] RAX: 0000000000000246 RBX: 0000000006df0008 RCX: ffffffffa91863fa [ 615.059295][ C0] RDX: 0000000000000a20 RSI: 00000000000c199b RDI: 00000000256c9741 [ 615.067361][ C0] RBP: ffff9bfe01106e38 R08: 0000000000000002 R09: ffff9bfe01106df8 [ 615.075358][ C0] R10: 0000000000000004 R11: 0000000000000000 R12: ffff9bfe01106e58 [ 615.083361][ C0] R13: 0000000000000001 R14: 0000000000000008 R15: 0000000000000000 [ 615.091479][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 615.096795][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 615.102083][ C0] ? __local_bh_enable_ip+0xea/0x1d0 [ 615.107380][ C0] __local_bh_enable_ip+0xea/0x1d0 [ 615.112503][ C0] local_bh_enable+0x36/0x40 [ 615.117102][ C0] ip_finish_output2+0x1fee/0x24a0 [ 615.122222][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 615.127446][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 615.133290][ C0] __ip_finish_output+0x7fe/0xd80 [ 615.138342][ C0] ip_finish_output+0x166/0x410 [ 615.143210][ C0] ip_output+0x593/0x680 [ 615.147477][ C0] ? ip_mc_finish_output+0x6c0/0x6c0 [ 615.152793][ C0] ? ip_finish_output+0x410/0x410 [ 615.157845][ C0] __ip_queue_xmit+0x1b5c/0x21a0 [ 615.162793][ C0] ? kmsan_set_origin_checked+0x95/0xf0 [ 615.168372][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 615.173604][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 615.178919][ C0] ip_queue_xmit+0xcc/0xf0 [ 615.183351][ C0] ? tcp_v4_fill_cb+0x580/0x580 [ 615.188234][ C0] __tcp_transmit_skb+0x440e/0x6090 [ 615.193486][ C0] tcp_write_xmit+0x30b1/0xb430 [ 615.198439][ C0] tcp_push_one+0x187/0x210 [ 615.202958][ C0] tcp_sendmsg_locked+0x47f4/0x6d00 [ 615.208248][ C0] tcp_sendmsg+0xb2/0x100 [ 615.212589][ C0] ? tcp_sendmsg_locked+0x6d00/0x6d00 [ 615.217966][ C0] ? tcp_sendmsg_locked+0x6d00/0x6d00 [ 615.223354][ C0] inet_sendmsg+0x178/0x2e0 [ 615.227878][ C0] ? inet_send_prepare+0x600/0x600 [ 615.233002][ C0] __sys_sendto+0xade/0xc90 [ 615.237538][ C0] ? kmsan_get_metadata+0x11d/0x180 [ 615.242748][ C0] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 615.248598][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 615.254763][ C0] ? kmsan_get_metadata+0x4f/0x180 [ 615.259932][ C0] __se_sys_sendto+0x107/0x130 [ 615.264745][ C0] ? __se_sys_sendto+0x130/0x130 [ 615.269693][ C0] __ia32_sys_sendto+0x6e/0x90 [ 615.274496][ C0] __do_fast_syscall_32+0x2aa/0x400 [ 615.279718][ C0] do_fast_syscall_32+0x6b/0xd0 [ 615.284583][ C0] do_SYSENTER_32+0x73/0x90 [ 615.289117][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.295444][ C0] RIP: 0023:0xf7f40549 [ 615.299521][ C0] Code: Bad RIP value. [ 615.303587][ C0] RSP: 002b:00000000f5d3b0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 615.312019][ C0] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200012c0 [ 615.320008][ C0] RDX: 000000000000fe6a RSI: 000000000020c49a RDI: 0000000000000000 [ 615.327997][ C0] RBP: 0000000000000027 R08: 0000000000000000 R09: 0000000000000000 [ 615.335967][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 615.343951][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 615.353147][ C0] Kernel Offset: 0x27c00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 615.364766][ C0] Rebooting in 86400 seconds..